42.98.246.3 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Brute-force attempt banned	2020-09-03 21:53:08
attack	Brute-force attempt banned	2020-09-03 13:35:25
attackspambots	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-09-02T16:56:35Z	2020-09-03 05:48:31

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.98.246.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55365
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.98.246.3.			IN	A

;; AUTHORITY SECTION:
.			258	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020090202 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 03 05:48:26 CST 2020
;; MSG SIZE  rcvd: 115

Host info

3.246.98.42.in-addr.arpa domain name pointer 42-98-246-003.static.netvigator.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
3.246.98.42.in-addr.arpa	name = 42-98-246-003.static.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
88.198.83.130	attackspam	RecipientDoesNotExist Timestamp : 09-Mar-20 20:21 (From . core@cm8.debounce.io) Listed on spamrats justspam (504)	2020-03-10 08:06:33
211.249.226.104	attack	03/09/2020-20:29:46.581388 211.249.226.104 Protocol: 6 ET SCAN Potential SSH Scan	2020-03-10 08:37:10
111.230.241.245	attackspambots	Dec 10 19:46:36 woltan sshd[30455]: Failed password for invalid user vanoli from 111.230.241.245 port 43306 ssh2	2020-03-10 08:41:49
197.41.96.233	attackbots	Apr 2 11:51:58 ms-srv sshd[32646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.41.96.233 Apr 2 11:52:00 ms-srv sshd[32646]: Failed password for invalid user admin from 197.41.96.233 port 41464 ssh2	2020-03-10 08:20:38
111.231.110.80	attackspam	Dec 10 09:58:43 woltan sshd[28610]: Failed password for invalid user laflamme from 111.231.110.80 port 64010 ssh2	2020-03-10 08:26:39
222.186.42.136	attackspam	Mar 10 01:10:32 amit sshd\[28061\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.136 user=root Mar 10 01:10:34 amit sshd\[28061\]: Failed password for root from 222.186.42.136 port 13047 ssh2 Mar 10 01:10:37 amit sshd\[28061\]: Failed password for root from 222.186.42.136 port 13047 ssh2 ...	2020-03-10 08:11:52
223.223.200.14	attack	$f2bV_matches	2020-03-10 08:24:31
121.162.230.201	attackbots	Trying ports that it shouldn't be.	2020-03-10 08:16:25
111.231.119.141	attack	Mar 9 22:48:22 mail sshd[13028]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.119.141 user=news Mar 9 22:48:23 mail sshd[13028]: Failed password for news from 111.231.119.141 port 54488 ssh2 Mar 9 22:59:50 mail sshd[30597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.119.141 user=root Mar 9 22:59:52 mail sshd[30597]: Failed password for root from 111.231.119.141 port 47524 ssh2 Mar 9 23:03:21 mail sshd[4252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.119.141 user=root Mar 9 23:03:23 mail sshd[4252]: Failed password for root from 111.231.119.141 port 54272 ssh2 ...	2020-03-10 08:22:20
222.186.180.142	attack	Mar 9 21:31:16 firewall sshd[13662]: Failed password for root from 222.186.180.142 port 22424 ssh2 Mar 9 21:31:18 firewall sshd[13662]: Failed password for root from 222.186.180.142 port 22424 ssh2 Mar 9 21:31:20 firewall sshd[13662]: Failed password for root from 222.186.180.142 port 22424 ssh2 ...	2020-03-10 08:36:45
197.46.166.205	attack	Sep 8 11:30:45 ms-srv sshd[15814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.46.166.205 Sep 8 11:30:47 ms-srv sshd[15814]: Failed password for invalid user admin from 197.46.166.205 port 39557 ssh2	2020-03-10 08:03:08
176.113.115.52	attack	Mar 10 00:53:38 debian-2gb-nbg1-2 kernel: \[6057168.389027\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=176.113.115.52 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=26456 PROTO=TCP SPT=58556 DPT=52601 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-10 08:10:38
197.44.212.186	attackbotsspam	Oct 29 11:38:11 ms-srv sshd[27820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.44.212.186 Oct 29 11:38:13 ms-srv sshd[27820]: Failed password for invalid user admin from 197.44.212.186 port 59698 ssh2	2020-03-10 08:15:43
1.32.77.188	attackbots	Email rejected due to spam filtering	2020-03-10 08:23:03
112.85.42.178	attackspam	Mar 10 01:03:38 server sshd[2168250]: Failed none for root from 112.85.42.178 port 6529 ssh2 Mar 10 01:03:40 server sshd[2168250]: Failed password for root from 112.85.42.178 port 6529 ssh2 Mar 10 01:03:44 server sshd[2168250]: Failed password for root from 112.85.42.178 port 6529 ssh2	2020-03-10 08:05:41

Recently Reported IPs

165.192.213.207	49.174.224.30	133.89.17.222	244.167.188.101
246.175.117.85	102.250.6.201	63.104.131.86	65.204.127.55
108.221.36.92	109.228.166.242	82.59.114.122	111.199.66.84
203.218.100.182	197.223.156.103	189.101.56.202	8.80.179.108
126.208.127.157	196.5.25.127	114.101.124.143	72.123.240.211