42.55.2.41 - IPInfo

Basic Info

City: unknown

Region: Liaoning

Country: China

Internet Service Provider: China Unicom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
42.55.207.204	attackspambots	Unauthorised access (Jul 23) SRC=42.55.207.204 LEN=40 TTL=46 ID=52217 TCP DPT=23 WINDOW=64420 SYN Unauthorised access (Jul 23) SRC=42.55.207.204 LEN=40 TTL=46 ID=49837 TCP DPT=8080 WINDOW=33756 SYN Unauthorised access (Jul 22) SRC=42.55.207.204 LEN=40 TTL=46 ID=38346 TCP DPT=8080 WINDOW=53380 SYN Unauthorised access (Jul 22) SRC=42.55.207.204 LEN=40 TTL=46 ID=26975 TCP DPT=8080 WINDOW=33756 SYN Unauthorised access (Jul 22) SRC=42.55.207.204 LEN=40 TTL=46 ID=46163 TCP DPT=8080 WINDOW=53380 SYN Unauthorised access (Jul 21) SRC=42.55.207.204 LEN=40 TTL=46 ID=40291 TCP DPT=8080 WINDOW=53380 SYN Unauthorised access (Jul 21) SRC=42.55.207.204 LEN=40 TTL=46 ID=2856 TCP DPT=8080 WINDOW=53380 SYN	2020-07-23 19:58:42
42.55.20.21	attackspam	1587730166 - 04/24/2020 14:09:26 Host: 42.55.20.21/42.55.20.21 Port: 23 TCP Blocked	2020-04-24 21:20:49
42.55.218.107	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-30 23:17:58
42.55.246.227	attackspam	Connection by 42.55.246.227 on port: 23 got caught by honeypot at 12/3/2019 3:56:15 AM	2019-12-03 13:42:53
42.55.219.163	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/42.55.219.163/ CN - 1H : (682) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4837 IP : 42.55.219.163 CIDR : 42.52.0.0/14 PREFIX COUNT : 1262 UNIQUE IP COUNT : 56665856 ATTACKS DETECTED ASN4837 : 1H - 14 3H - 32 6H - 68 12H - 131 24H - 245 DateTime : 2019-11-17 07:22:04 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-11-17 20:27:30
42.55.216.173	attackspambots	8080/tcp [2019-10-28]1pkt	2019-10-28 14:11:34
42.55.213.215	attackspam	Seq 2995002506	2019-10-22 04:50:34
42.55.232.56	attack	Port Scan: TCP/52869	2019-09-01 14:00:14
42.55.216.11	attack	Seq 2995002506	2019-08-22 14:34:19
42.55.204.192	attackbots	52869/tcp [2019-07-30]1pkt	2019-07-31 00:04:24
42.55.240.76	attackbots	19/7/5@14:00:59: FAIL: IoT-Telnet address from=42.55.240.76 ...	2019-07-06 06:38:50

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.55.2.41
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7546
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.55.2.41.			IN	A

;; AUTHORITY SECTION:
.			202	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102301 1800 900 604800 86400

;; Query time: 119 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 24 03:29:01 CST 2019
;; MSG SIZE  rcvd: 114

Host info

Host 41.2.55.42.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 41.2.55.42.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
123.18.182.20	attackbots	Unauthorized connection attempt from IP address 123.18.182.20 on Port 445(SMB)	2020-09-21 06:26:02
219.154.101.78	attackbotsspam	Telnet Honeypot -> Telnet Bruteforce / Login	2020-09-21 06:20:41
64.225.47.15	attackbotsspam	Sep 20 21:58:09 raspberrypi sshd[1223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.47.15 user=root Sep 20 21:58:10 raspberrypi sshd[1223]: Failed password for invalid user root from 64.225.47.15 port 36664 ssh2 ...	2020-09-21 06:22:09
112.85.42.67	attackspambots	September 20 2020, 18:06:19 [sshd] - Banned from the Mad Pony WordPress hosting platform by Fail2ban.	2020-09-21 06:53:58
94.102.51.95	attackbotsspam	[H1.VM1] Blocked by UFW	2020-09-21 06:17:08
195.24.207.199	attackspambots	Sep 20 21:43:16 vserver sshd\[23407\]: Failed password for root from 195.24.207.199 port 54838 ssh2Sep 20 21:47:39 vserver sshd\[23437\]: Invalid user oracle from 195.24.207.199Sep 20 21:47:40 vserver sshd\[23437\]: Failed password for invalid user oracle from 195.24.207.199 port 38212 ssh2Sep 20 21:51:57 vserver sshd\[23473\]: Invalid user ftpuser2 from 195.24.207.199 ...	2020-09-21 07:00:02
213.32.92.57	attackbotsspam	Sep 21 04:10:45 itv-usvr-01 sshd[13181]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.92.57 user=root Sep 21 04:10:47 itv-usvr-01 sshd[13181]: Failed password for root from 213.32.92.57 port 54448 ssh2	2020-09-21 06:13:24
221.125.116.97	attackspam	Sep 20 20:01:46 root sshd[6768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.125.116.97 user=root Sep 20 20:01:48 root sshd[6768]: Failed password for root from 221.125.116.97 port 34737 ssh2 ...	2020-09-21 06:19:20
121.204.59.179	attack	(sshd) Failed SSH login from 121.204.59.179 (CN/China/179.59.204.121.board.fz.fj.dynamic.163data.com.cn): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 20 19:01:16 rainbow sshd[7503]: Invalid user nagios from 121.204.59.179 port 44007 Sep 20 19:01:16 rainbow sshd[7503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.204.59.179 Sep 20 19:01:16 rainbow sshd[7501]: Invalid user cablecom from 121.204.59.179 port 43995 Sep 20 19:01:16 rainbow sshd[7501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.204.59.179 Sep 20 19:01:17 rainbow sshd[7507]: Invalid user netman from 121.204.59.179 port 44010	2020-09-21 07:02:41
180.76.54.25	attackspam	Sep 20 11:30:42 main sshd[9248]: Failed password for invalid user proftpd from 180.76.54.25 port 43182 ssh2 Sep 20 11:33:52 main sshd[9285]: Failed password for invalid user ftpuser from 180.76.54.25 port 47916 ssh2	2020-09-21 07:11:30
5.43.182.159	attackbotsspam	Listed on zen-spamhaus / proto=6 . srcport=60034 . dstport=445 . (2326)	2020-09-21 06:15:43
79.46.159.185	attack	Sep 20 18:01:53 blackbee postfix/smtpd[4198]: NOQUEUE: reject: RCPT from host-79-46-159-185.retail.telecomitalia.it[79.46.159.185]: 554 5.7.1 Service unavailable; Client host [79.46.159.185] blocked using zen.spamhaus.org; from= to= proto=ESMTP helo= ...	2020-09-21 06:15:21
36.235.105.44	attack	Unauthorized connection attempt from IP address 36.235.105.44 on Port 445(SMB)	2020-09-21 06:51:20
66.249.65.203	attackbots	Automatic report - Banned IP Access	2020-09-21 06:17:22
141.212.123.190	attackspambots	20-Sep-2020 12:01:52.874 client @0x7f63dae4bda0 141.212.123.190#60972 (researchscan541.eecs.umich.edu): query (cache) 'researchscan541.eecs.umich.edu/A/IN' denied	2020-09-21 06:16:44

Recently Reported IPs

65.69.46.118	125.89.244.235	36.16.178.76	116.85.35.126
209.112.204.171	114.32.157.225	56.230.43.191	170.0.131.101
219.231.1.201	143.93.189.72	128.231.176.199	189.189.216.95
36.201.74.246	136.35.179.18	188.115.30.29	101.224.229.133
72.159.41.214	103.16.108.96	175.44.186.203	73.102.246.88