City: Tsuen Wan
Region: Tsuen Wan District
Country: Hong Kong
Internet Service Provider: unknown
Hostname: unknown
Organization: HKT Limited
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 42.2.195.132 | attack | 5555/tcp [2020-10-05]1pkt |
2020-10-07 02:52:50 |
| 42.2.195.132 | attackspam | 5555/tcp [2020-10-05]1pkt |
2020-10-06 18:52:33 |
| 42.2.19.26 | attack | SSH login attempts. |
2020-08-23 00:03:51 |
| 42.2.199.137 | attackspam | Honeypot attack, port: 5555, PTR: 42-2-199-137.static.netvigator.com. |
2020-06-11 00:13:34 |
| 42.2.198.23 | attackspam | 5555/tcp [2020-04-01]1pkt |
2020-04-01 21:55:12 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.2.19.154
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48722
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.2.19.154. IN A
;; AUTHORITY SECTION:
. 2361 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019061400 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jun 15 02:00:20 CST 2019
;; MSG SIZE rcvd: 115
154.19.2.42.in-addr.arpa domain name pointer 42-2-19-154.static.netvigator.com.
Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
154.19.2.42.in-addr.arpa name = 42-2-19-154.static.netvigator.com.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 106.75.33.66 | attack | Oct 20 06:12:21 fr01 sshd[3575]: Invalid user fulvio from 106.75.33.66 Oct 20 06:12:21 fr01 sshd[3575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.33.66 Oct 20 06:12:21 fr01 sshd[3575]: Invalid user fulvio from 106.75.33.66 Oct 20 06:12:23 fr01 sshd[3575]: Failed password for invalid user fulvio from 106.75.33.66 port 35590 ssh2 Oct 20 06:27:03 fr01 sshd[6160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.33.66 user=root Oct 20 06:27:04 fr01 sshd[6160]: Failed password for root from 106.75.33.66 port 52946 ssh2 ... |
2019-10-20 12:51:41 |
| 40.112.72.205 | attack | microsoft.com - Bad Bots Host! |
2019-10-20 13:05:32 |
| 130.105.143.153 | attackspam | Attempts to probe for or exploit a Drupal site on url: /wp-login.php. Reported by the module https://www.drupal.org/project/abuseipdb. |
2019-10-20 12:33:03 |
| 175.211.116.226 | attack | 2019-10-20T04:59:42.671757abusebot-5.cloudsearch.cf sshd\[15926\]: Invalid user bjorn from 175.211.116.226 port 47326 |
2019-10-20 13:06:27 |
| 121.157.82.218 | attackbotsspam | 2019-10-20T04:25:32.661983abusebot-5.cloudsearch.cf sshd\[15610\]: Invalid user hp from 121.157.82.218 port 39512 2019-10-20T04:25:32.665961abusebot-5.cloudsearch.cf sshd\[15610\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.157.82.218 |
2019-10-20 12:53:04 |
| 82.213.246.84 | attackspam | Oct 20 03:57:28 hcbbdb sshd\[18861\]: Invalid user pi from 82.213.246.84 Oct 20 03:57:28 hcbbdb sshd\[18860\]: Invalid user pi from 82.213.246.84 Oct 20 03:57:28 hcbbdb sshd\[18861\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=static.84.246.213.82.ibercom.com Oct 20 03:57:28 hcbbdb sshd\[18860\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=static.84.246.213.82.ibercom.com Oct 20 03:57:30 hcbbdb sshd\[18861\]: Failed password for invalid user pi from 82.213.246.84 port 39762 ssh2 |
2019-10-20 12:56:57 |
| 95.222.252.254 | attackspam | ssh failed login |
2019-10-20 12:31:02 |
| 161.117.176.196 | attackspam | Oct 20 05:57:37 www sshd\[5563\]: Invalid user ubuntu from 161.117.176.196 port 3428 ... |
2019-10-20 12:52:05 |
| 121.136.167.50 | attackbotsspam | 2019-10-20T04:25:36.274064abusebot-5.cloudsearch.cf sshd\[15612\]: Invalid user hp from 121.136.167.50 port 38072 2019-10-20T04:25:36.278887abusebot-5.cloudsearch.cf sshd\[15612\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.136.167.50 |
2019-10-20 12:37:39 |
| 61.76.175.195 | attack | Oct 20 07:15:54 server sshd\[15430\]: User root from 61.76.175.195 not allowed because listed in DenyUsers Oct 20 07:15:54 server sshd\[15430\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.76.175.195 user=root Oct 20 07:15:56 server sshd\[15430\]: Failed password for invalid user root from 61.76.175.195 port 60232 ssh2 Oct 20 07:20:29 server sshd\[20410\]: User root from 61.76.175.195 not allowed because listed in DenyUsers Oct 20 07:20:29 server sshd\[20410\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.76.175.195 user=root |
2019-10-20 12:29:53 |
| 51.75.171.150 | attackspam | Oct 20 05:54:28 jane sshd[3025]: Failed password for mail from 51.75.171.150 port 41944 ssh2 ... |
2019-10-20 12:40:06 |
| 107.151.222.194 | attackspambots | Unauthorised access (Oct 20) SRC=107.151.222.194 LEN=40 TTL=236 ID=37597 TCP DPT=1433 WINDOW=1024 SYN |
2019-10-20 13:02:09 |
| 5.160.103.202 | attack | Unauthorised access (Oct 20) SRC=5.160.103.202 LEN=40 PREC=0x20 TTL=241 ID=26285 TCP DPT=3389 WINDOW=1024 SYN Unauthorised access (Oct 19) SRC=5.160.103.202 LEN=40 PREC=0x20 TTL=241 ID=49517 TCP DPT=3389 WINDOW=1024 SYN |
2019-10-20 12:38:40 |
| 138.68.12.43 | attackspambots | Oct 20 07:05:34 vps647732 sshd[1960]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.12.43 Oct 20 07:05:36 vps647732 sshd[1960]: Failed password for invalid user polarbear from 138.68.12.43 port 59442 ssh2 ... |
2019-10-20 13:07:02 |
| 106.12.68.10 | attackbots | Oct 19 18:39:50 friendsofhawaii sshd\[24025\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.68.10 user=root Oct 19 18:39:53 friendsofhawaii sshd\[24025\]: Failed password for root from 106.12.68.10 port 45042 ssh2 Oct 19 18:45:18 friendsofhawaii sshd\[24443\]: Invalid user con from 106.12.68.10 Oct 19 18:45:18 friendsofhawaii sshd\[24443\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.68.10 Oct 19 18:45:20 friendsofhawaii sshd\[24443\]: Failed password for invalid user con from 106.12.68.10 port 36974 ssh2 |
2019-10-20 12:45:39 |