City: Yuen Long
Region: Yuen Long District
Country: Hong Kong
Internet Service Provider: Hong Kong Telecommunications (HKT) Limited
Hostname: unknown
Organization: unknown
Usage Type: unknown
| Type | Details | Datetime |
|---|---|---|
| attackspambots | Unauthorized connection attempt detected from IP address 42.3.12.59 to port 81 [J] |
2020-02-04 05:55:06 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 42.3.120.202 | attackspam | Automatic report - Banned IP Access |
2020-09-25 01:32:06 |
| 42.3.120.202 | attackspam | Automatic report - Banned IP Access |
2020-09-24 17:11:05 |
| 42.3.123.244 | attack | Connection to SSH Honeypot - Detected by HoneypotDB |
2020-09-18 20:28:00 |
| 42.3.123.244 | attack | Connection to SSH Honeypot - Detected by HoneypotDB |
2020-09-18 12:47:05 |
| 42.3.123.244 | attackbots | Connection to SSH Honeypot - Detected by HoneypotDB |
2020-09-18 03:02:15 |
| 42.3.12.12 | attack | Automatic report - Port Scan Attack |
2020-04-27 20:08:57 |
| 42.3.125.130 | attackbotsspam | Honeypot attack, port: 5555, PTR: 42-3-125-130.static.netvigator.com. |
2020-02-10 15:12:57 |
| 42.3.129.35 | attackspambots | Unauthorized connection attempt detected from IP address 42.3.129.35 to port 5555 [J] |
2020-02-03 02:06:18 |
| 42.3.124.72 | attackspambots | " " |
2019-10-15 18:31:53 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.3.12.59
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39695
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.3.12.59. IN A
;; AUTHORITY SECTION:
. 467 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020020301 1800 900 604800 86400
;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 05:55:03 CST 2020
;; MSG SIZE rcvd: 11459.12.3.42.in-addr.arpa domain name pointer 42-3-12-059.static.netvigator.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
59.12.3.42.in-addr.arpa name = 42-3-12-059.static.netvigator.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 198.23.148.137 | attack | Multiple SSH authentication failures from 198.23.148.137 |
2020-07-01 10:11:17 |
| 152.67.47.139 | attackspambots | Cluster member 67.227.229.95 (US/United States/saathoff.geek) said, DENY 152.67.47.139, Reason:[(sshd) Failed SSH login from 152.67.47.139 (BR/Brazil/-): 1 in the last 3600 secs]; Ports: *; Direction: inout; Trigger: LF_CLUSTER |
2020-07-01 09:59:24 |
| 118.24.156.209 | attack |
|
2020-07-01 09:44:45 |
| 62.234.110.91 | attackbotsspam | Jun 30 18:00:53 icinga sshd[34958]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.110.91 Jun 30 18:00:55 icinga sshd[34958]: Failed password for invalid user liming from 62.234.110.91 port 47094 ssh2 Jun 30 18:29:31 icinga sshd[16005]: Failed password for root from 62.234.110.91 port 48230 ssh2 ... |
2020-07-01 10:03:06 |
| 103.117.153.61 | attackbotsspam |
|
2020-07-01 10:13:43 |
| 200.133.39.24 | attack | Jun 30 18:30:02 gestao sshd[5741]: Failed password for root from 200.133.39.24 port 50870 ssh2 Jun 30 18:31:45 gestao sshd[5796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.133.39.24 Jun 30 18:31:47 gestao sshd[5796]: Failed password for invalid user farhan from 200.133.39.24 port 46614 ssh2 ... |
2020-07-01 10:26:40 |
| 103.78.215.150 | attackbotsspam | Multiple SSH authentication failures from 103.78.215.150 |
2020-07-01 10:20:49 |
| 39.129.176.133 | attackbots | Jun 30 17:00:03 melroy-server sshd[5793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.129.176.133 Jun 30 17:00:05 melroy-server sshd[5793]: Failed password for invalid user ec2-user from 39.129.176.133 port 47411 ssh2 ... |
2020-07-01 10:16:22 |
| 192.3.139.56 | attackbots | ... |
2020-07-01 10:13:57 |
| 182.61.130.51 | attackspambots | Jun 30 16:42:18 vmd48417 sshd[22732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.130.51 |
2020-07-01 10:14:54 |
| 49.235.212.7 | attackbotsspam | Invalid user sy from 49.235.212.7 port 64272 |
2020-07-01 10:16:34 |
| 137.117.13.132 | attackspam | Jun 30 19:12:55 nextcloud sshd\[32469\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.117.13.132 user=root Jun 30 19:12:57 nextcloud sshd\[32469\]: Failed password for root from 137.117.13.132 port 58282 ssh2 Jun 30 19:24:32 nextcloud sshd\[14796\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.117.13.132 user=root |
2020-07-01 10:17:57 |
| 223.72.46.181 | attackspam | 2020-06-30T09:16:26.618097abusebot-3.cloudsearch.cf sshd[5138]: Invalid user wzy from 223.72.46.181 port 13211 2020-06-30T09:16:26.623490abusebot-3.cloudsearch.cf sshd[5138]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.72.46.181 2020-06-30T09:16:26.618097abusebot-3.cloudsearch.cf sshd[5138]: Invalid user wzy from 223.72.46.181 port 13211 2020-06-30T09:16:29.200080abusebot-3.cloudsearch.cf sshd[5138]: Failed password for invalid user wzy from 223.72.46.181 port 13211 ssh2 2020-06-30T09:23:39.874253abusebot-3.cloudsearch.cf sshd[5246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.72.46.181 user=root 2020-06-30T09:23:42.229727abusebot-3.cloudsearch.cf sshd[5246]: Failed password for root from 223.72.46.181 port 13275 ssh2 2020-06-30T09:26:06.919580abusebot-3.cloudsearch.cf sshd[5317]: Invalid user admin from 223.72.46.181 port 13174 ... |
2020-07-01 09:53:52 |
| 192.241.226.168 | attackspambots | IP 192.241.226.168 attacked honeypot on port: 102 at 6/30/2020 8:58:54 AM |
2020-07-01 10:15:25 |
| 183.62.101.90 | attackspam | Jun 30 19:14:34 [host] sshd[27069]: Invalid user t Jun 30 19:14:34 [host] sshd[27069]: pam_unix(sshd: Jun 30 19:14:36 [host] sshd[27069]: Failed passwor |
2020-07-01 09:42:00 |