42.240.1.137 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
42.240.129.58	attackspam	TCP (SYN) 42.240.129.58:58914 -> port 8333, len 44	2020-10-05 06:51:13
42.240.129.58	attack	firewall-block, port(s): 8126/tcp	2020-10-04 22:56:07
42.240.129.58	attack	firewall-block, port(s): 8126/tcp	2020-10-04 14:42:12
42.240.129.58	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 23 - port: 8291 proto: tcp cat: Misc Attackbytes: 60	2020-10-01 07:24:31
42.240.129.58	attackspam	ET CINS Active Threat Intelligence Poor Reputation IP group 23 - port: 8291 proto: tcp cat: Misc Attackbytes: 60	2020-09-30 23:52:11
42.240.129.58	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 23 - port: 8291 proto: tcp cat: Misc Attackbytes: 60	2020-09-30 16:17:35
42.240.129.58	attack	Port scan denied	2020-09-29 06:21:14
42.240.129.58	attackbots	Port scan denied	2020-09-28 14:51:49
42.240.130.103	attackspam	Jul 30 00:27:37 ahost sshd[10953]: Invalid user devstaff from 42.240.130.103 Jul 30 00:27:37 ahost sshd[10953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.240.130.103 Jul 30 00:27:39 ahost sshd[10953]: Failed password for invalid user devstaff from 42.240.130.103 port 52746 ssh2 Jul 30 00:27:39 ahost sshd[10953]: Received disconnect from 42.240.130.103: 11: Bye Bye [preauth] Jul 30 00:37:57 ahost sshd[11139]: Invalid user xfhou from 42.240.130.103 Jul 30 00:37:57 ahost sshd[11139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.240.130.103 Jul 30 00:38:00 ahost sshd[11139]: Failed password for invalid user xfhou from 42.240.130.103 port 56808 ssh2 Jul 30 00:38:00 ahost sshd[11139]: Received disconnect from 42.240.130.103: 11: Bye Bye [preauth] Jul 30 00:44:15 ahost sshd[12013]: Invalid user honghaiyan from 42.240.130.103 Jul 30 00:44:15 ahost sshd[12013]: pam_unix(sshd:auth): au........ ------------------------------	2020-07-31 04:31:43
42.240.130.165	attack	May 29 06:07:46 vps687878 sshd\[1365\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.240.130.165 user=root May 29 06:07:48 vps687878 sshd\[1365\]: Failed password for root from 42.240.130.165 port 46000 ssh2 May 29 06:11:57 vps687878 sshd\[1931\]: Invalid user richard from 42.240.130.165 port 36430 May 29 06:11:57 vps687878 sshd\[1931\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.240.130.165 May 29 06:11:59 vps687878 sshd\[1931\]: Failed password for invalid user richard from 42.240.130.165 port 36430 ssh2 ...	2020-05-29 12:58:52
42.240.129.58	attack	firewall-block, port(s): 5095/udp	2020-05-29 00:28:20
42.240.130.165	attackspambots	May 10 06:30:53 sshgateway sshd\[21436\]: Invalid user tacpro from 42.240.130.165 May 10 06:30:53 sshgateway sshd\[21436\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.240.130.165 May 10 06:30:54 sshgateway sshd\[21436\]: Failed password for invalid user tacpro from 42.240.130.165 port 36054 ssh2	2020-05-10 17:35:29
42.240.130.165	attackbotsspam	Invalid user support from 42.240.130.165 port 58016	2020-05-01 17:32:20
42.240.130.165	attack	Invalid user postgres from 42.240.130.165 port 48684	2020-04-21 22:47:02
42.240.130.165	attack	Apr 19 13:19:39 *** sshd[26217]: Invalid user sd from 42.240.130.165	2020-04-19 23:43:50

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.240.1.137
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9830
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.240.1.137.			IN	A

;; AUTHORITY SECTION:
.			483	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022060700 1800 900 604800 86400

;; Query time: 79 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 07 17:04:44 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 137.1.240.42.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 137.1.240.42.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
112.64.32.118	attackbotsspam	Sep 11 08:11:25 hb sshd\[19492\]: Invalid user 1234 from 112.64.32.118 Sep 11 08:11:25 hb sshd\[19492\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.64.32.118 Sep 11 08:11:28 hb sshd\[19492\]: Failed password for invalid user 1234 from 112.64.32.118 port 46082 ssh2 Sep 11 08:15:37 hb sshd\[19919\]: Invalid user user123 from 112.64.32.118 Sep 11 08:15:37 hb sshd\[19919\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.64.32.118	2019-09-11 16:32:22
69.94.80.239	attackspambots	Automatic report - Port Scan Attack	2019-09-11 16:38:41
51.77.212.124	attack	Sep 10 21:51:41 lcdev sshd\[12699\]: Invalid user 12345 from 51.77.212.124 Sep 10 21:51:41 lcdev sshd\[12699\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.ip-51-77-212.eu Sep 10 21:51:43 lcdev sshd\[12699\]: Failed password for invalid user 12345 from 51.77.212.124 port 57418 ssh2 Sep 10 21:59:14 lcdev sshd\[13308\]: Invalid user support123 from 51.77.212.124 Sep 10 21:59:14 lcdev sshd\[13308\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.ip-51-77-212.eu	2019-09-11 16:10:52
141.98.9.42	attack	Sep 11 09:59:24 webserver postfix/smtpd\[3824\]: warning: unknown\[141.98.9.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 11 10:00:19 webserver postfix/smtpd\[3824\]: warning: unknown\[141.98.9.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 11 10:01:13 webserver postfix/smtpd\[3476\]: warning: unknown\[141.98.9.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 11 10:02:05 webserver postfix/smtpd\[3824\]: warning: unknown\[141.98.9.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 11 10:03:00 webserver postfix/smtpd\[3824\]: warning: unknown\[141.98.9.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-09-11 16:15:57
222.186.52.124	attackspambots	Sep 11 04:44:36 plusreed sshd[21337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.124 user=root Sep 11 04:44:38 plusreed sshd[21337]: Failed password for root from 222.186.52.124 port 26626 ssh2 ...	2019-09-11 16:51:42
163.47.214.158	attackspam	Sep 11 09:51:57 SilenceServices sshd[15542]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.47.214.158 Sep 11 09:51:59 SilenceServices sshd[15542]: Failed password for invalid user administrateur from 163.47.214.158 port 35548 ssh2 Sep 11 09:59:10 SilenceServices sshd[18211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.47.214.158	2019-09-11 16:15:19
120.27.100.100	attackbots	Apache-HttpClient/4.5.2 (Java/1.8.0_151) /?author=9	2019-09-11 16:48:54
159.203.203.93	attack	" "	2019-09-11 16:22:56
103.204.209.58	attackspam	Unauthorised access (Sep 11) SRC=103.204.209.58 LEN=52 PREC=0x20 TTL=112 ID=28318 DF TCP DPT=445 WINDOW=8192 SYN	2019-09-11 16:41:46
80.211.17.38	attack	Sep 11 11:44:38 yabzik sshd[1364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.17.38 Sep 11 11:44:40 yabzik sshd[1364]: Failed password for invalid user demo from 80.211.17.38 port 43260 ssh2 Sep 11 11:50:31 yabzik sshd[4279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.17.38	2019-09-11 16:53:23
138.68.155.9	attackbotsspam	Sep 11 10:28:42 legacy sshd[12665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.155.9 Sep 11 10:28:45 legacy sshd[12665]: Failed password for invalid user ubuntu from 138.68.155.9 port 16842 ssh2 Sep 11 10:34:46 legacy sshd[12844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.155.9 ...	2019-09-11 16:38:21
106.12.133.247	attack	Sep 11 09:52:21 tux-35-217 sshd\[11898\]: Invalid user myftp from 106.12.133.247 port 46172 Sep 11 09:52:21 tux-35-217 sshd\[11898\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.133.247 Sep 11 09:52:22 tux-35-217 sshd\[11898\]: Failed password for invalid user myftp from 106.12.133.247 port 46172 ssh2 Sep 11 09:59:10 tux-35-217 sshd\[11955\]: Invalid user testftp from 106.12.133.247 port 50140 Sep 11 09:59:10 tux-35-217 sshd\[11955\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.133.247 ...	2019-09-11 16:16:31
190.193.110.10	attackbots	Sep 11 09:58:41 ns37 sshd[3706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.193.110.10 Sep 11 09:58:43 ns37 sshd[3706]: Failed password for invalid user tester from 190.193.110.10 port 43590 ssh2 Sep 11 10:05:31 ns37 sshd[4547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.193.110.10	2019-09-11 16:14:05
61.183.178.194	attack	2019-09-11T14:58:49.930263enmeeting.mahidol.ac.th sshd\[28420\]: Invalid user 123456 from 61.183.178.194 port 2225 2019-09-11T14:58:49.950983enmeeting.mahidol.ac.th sshd\[28420\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.183.178.194 2019-09-11T14:58:52.484882enmeeting.mahidol.ac.th sshd\[28420\]: Failed password for invalid user 123456 from 61.183.178.194 port 2225 ssh2 ...	2019-09-11 16:26:30
165.22.107.38	attackbots	Sep 11 10:31:01 ns3110291 sshd\[11286\]: Invalid user tom from 165.22.107.38 Sep 11 10:31:01 ns3110291 sshd\[11286\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.107.38 Sep 11 10:31:03 ns3110291 sshd\[11286\]: Failed password for invalid user tom from 165.22.107.38 port 34780 ssh2 Sep 11 10:37:44 ns3110291 sshd\[20820\]: Invalid user debian from 165.22.107.38 Sep 11 10:37:44 ns3110291 sshd\[20820\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.107.38 ...	2019-09-11 16:41:05

Recently Reported IPs

122.175.42.87	42.240.1.105	174.127.195.99	92.55.72.196
143.172.152.26	145.239.91.241	18.201.214.100	159.227.157.29
165.199.132.149	201.57.93.217	101.71.22.52	39.195.215.85
225.17.125.47	33.117.202.58	161.177.112.134	186.217.36.226
86.196.90.0	54.39.81.7	194.31.98.29	47.254.244.239