Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: Yuen Long

Region: Yuen Long District

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
Type Details Datetime
attackspambots
Unauthorized connection attempt detected from IP address 42.3.12.59 to port 81 [J]
2020-02-04 05:55:06
Comments on same subnet:
IP Type Details Datetime
42.3.120.202 attackspam
Automatic report - Banned IP Access
2020-09-25 01:32:06
42.3.120.202 attackspam
Automatic report - Banned IP Access
2020-09-24 17:11:05
42.3.123.244 attack
Connection to SSH Honeypot - Detected by HoneypotDB
2020-09-18 20:28:00
42.3.123.244 attack
Connection to SSH Honeypot - Detected by HoneypotDB
2020-09-18 12:47:05
42.3.123.244 attackbots
Connection to SSH Honeypot - Detected by HoneypotDB
2020-09-18 03:02:15
42.3.12.12 attack
Automatic report - Port Scan Attack
2020-04-27 20:08:57
42.3.125.130 attackbotsspam
Honeypot attack, port: 5555, PTR: 42-3-125-130.static.netvigator.com.
2020-02-10 15:12:57
42.3.129.35 attackspambots
Unauthorized connection attempt detected from IP address 42.3.129.35 to port 5555 [J]
2020-02-03 02:06:18
42.3.124.72 attackspambots
" "
2019-10-15 18:31:53
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.3.12.59
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39695
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.3.12.59.			IN	A

;; AUTHORITY SECTION:
.			467	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020301 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 05:55:03 CST 2020
;; MSG SIZE  rcvd: 114
Host info
59.12.3.42.in-addr.arpa domain name pointer 42-3-12-059.static.netvigator.com.
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
59.12.3.42.in-addr.arpa	name = 42-3-12-059.static.netvigator.com.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
61.34.111.34 attackbotsspam
Mar 29 04:07:22 www2 sshd\[34826\]: Invalid user azb from 61.34.111.34Mar 29 04:07:24 www2 sshd\[34826\]: Failed password for invalid user azb from 61.34.111.34 port 24161 ssh2Mar 29 04:10:20 www2 sshd\[35263\]: Invalid user qgx from 61.34.111.34
...
2020-03-29 09:26:31
170.249.92.34 attackbots
Mar 28 23:28:17 marvibiene sshd[11383]: Invalid user fsj from 170.249.92.34 port 41364
Mar 28 23:28:17 marvibiene sshd[11383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.249.92.34
Mar 28 23:28:17 marvibiene sshd[11383]: Invalid user fsj from 170.249.92.34 port 41364
Mar 28 23:28:19 marvibiene sshd[11383]: Failed password for invalid user fsj from 170.249.92.34 port 41364 ssh2
...
2020-03-29 09:22:01
220.132.75.140 attackbots
Mar 28 23:51:10 vlre-nyc-1 sshd\[14285\]: Invalid user pia from 220.132.75.140
Mar 28 23:51:10 vlre-nyc-1 sshd\[14285\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.132.75.140
Mar 28 23:51:12 vlre-nyc-1 sshd\[14285\]: Failed password for invalid user pia from 220.132.75.140 port 57082 ssh2
Mar 28 23:59:45 vlre-nyc-1 sshd\[14518\]: Invalid user wqe from 220.132.75.140
Mar 28 23:59:45 vlre-nyc-1 sshd\[14518\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.132.75.140
...
2020-03-29 08:47:49
49.235.134.224 attack
Mar 29 00:23:27 pornomens sshd\[23207\]: Invalid user mandi from 49.235.134.224 port 46322
Mar 29 00:23:27 pornomens sshd\[23207\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.134.224
Mar 29 00:23:29 pornomens sshd\[23207\]: Failed password for invalid user mandi from 49.235.134.224 port 46322 ssh2
...
2020-03-29 09:18:47
190.85.145.162 attackbotsspam
Invalid user shot from 190.85.145.162 port 55410
2020-03-29 09:06:46
76.72.24.28 attack
445/tcp
[2020-03-28]1pkt
2020-03-29 08:57:01
103.95.41.9 attack
Ssh brute force
2020-03-29 09:09:33
177.140.77.65 attackbotsspam
Automatic report - Port Scan Attack
2020-03-29 09:07:34
123.182.216.158 attack
23/tcp
[2020-03-28]1pkt
2020-03-29 08:50:37
190.102.134.70 attackbotsspam
port scan and connect, tcp 1433 (ms-sql-s)
2020-03-29 09:19:16
194.26.29.121 attackspambots
Mar 29 01:32:44 debian-2gb-nbg1-2 kernel: \[7701028.335037\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.26.29.121 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=183 ID=24695 PROTO=TCP SPT=42405 DPT=44440 WINDOW=1024 RES=0x00 SYN URGP=0
2020-03-29 09:13:15
154.68.39.6 attackbots
fail2ban
2020-03-29 09:08:32
123.113.191.199 attackspam
Mar 28 22:34:09 tuxlinux sshd[61084]: Invalid user cjd from 123.113.191.199 port 45637
Mar 28 22:34:09 tuxlinux sshd[61084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.113.191.199 
Mar 28 22:34:09 tuxlinux sshd[61084]: Invalid user cjd from 123.113.191.199 port 45637
Mar 28 22:34:09 tuxlinux sshd[61084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.113.191.199 
Mar 28 22:34:09 tuxlinux sshd[61084]: Invalid user cjd from 123.113.191.199 port 45637
Mar 28 22:34:09 tuxlinux sshd[61084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.113.191.199 
Mar 28 22:34:11 tuxlinux sshd[61084]: Failed password for invalid user cjd from 123.113.191.199 port 45637 ssh2
...
2020-03-29 09:05:26
64.227.25.173 attack
Mar 28 23:40:23 mout sshd[31419]: Invalid user xzt from 64.227.25.173 port 54774
2020-03-29 09:19:37
106.13.97.10 attack
Mar 29 01:03:18 www_kotimaassa_fi sshd[19488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.97.10
Mar 29 01:03:21 www_kotimaassa_fi sshd[19488]: Failed password for invalid user pji from 106.13.97.10 port 38908 ssh2
...
2020-03-29 09:03:47

Recently Reported IPs

85.138.182.240 82.226.153.141 218.84.169.3 82.241.2.28
217.61.138.176 39.231.78.246 206.78.110.77 183.130.248.238
85.73.17.10 99.54.19.250 192.140.91.15 191.85.18.0
189.113.89.130 86.189.249.47 66.12.33.45 98.91.202.200
102.163.30.60 121.200.101.110 141.193.132.171 92.3.211.149