42.3.167.163 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Port Scan detected! ...	2020-07-23 19:17:19

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.3.167.163
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14986
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.3.167.163.			IN	A

;; AUTHORITY SECTION:
.			576	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072300 1800 900 604800 86400

;; Query time: 88 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jul 23 19:17:13 CST 2020
;; MSG SIZE  rcvd: 116

Host info

163.167.3.42.in-addr.arpa domain name pointer 42-3-167-163.static.netvigator.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
163.167.3.42.in-addr.arpa	name = 42-3-167-163.static.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
189.112.109.189	attack	Dec 18 00:38:19 vmd38886 sshd\[31848\]: Invalid user hausken from 189.112.109.189 port 42772 Dec 18 00:38:19 vmd38886 sshd\[31848\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.112.109.189 Dec 18 00:38:21 vmd38886 sshd\[31848\]: Failed password for invalid user hausken from 189.112.109.189 port 42772 ssh2	2019-12-18 09:29:19
218.92.0.168	attack	Fail2Ban - SSH Bruteforce Attempt	2019-12-18 13:23:21
49.232.37.191	attackbots	Dec 18 02:28:07 loxhost sshd\[29431\]: Invalid user folashade from 49.232.37.191 port 47660 Dec 18 02:28:07 loxhost sshd\[29431\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.37.191 Dec 18 02:28:08 loxhost sshd\[29431\]: Failed password for invalid user folashade from 49.232.37.191 port 47660 ssh2 Dec 18 02:34:25 loxhost sshd\[29618\]: Invalid user fay from 49.232.37.191 port 42462 Dec 18 02:34:25 loxhost sshd\[29618\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.37.191 ...	2019-12-18 09:37:32
58.248.174.116	attack	Fail2Ban Ban Triggered	2019-12-18 09:34:06
79.9.108.59	attackbots	Aug 18 06:46:17 vtv3 sshd[17678]: Failed password for invalid user kodi from 79.9.108.59 port 52609 ssh2 Aug 18 06:50:30 vtv3 sshd[20150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.9.108.59 user=root Aug 18 06:50:32 vtv3 sshd[20150]: Failed password for root from 79.9.108.59 port 56653 ssh2 Aug 18 07:03:12 vtv3 sshd[26106]: Invalid user magic from 79.9.108.59 port 64282 Aug 18 07:03:12 vtv3 sshd[26106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.9.108.59 Aug 18 07:03:14 vtv3 sshd[26106]: Failed password for invalid user magic from 79.9.108.59 port 64282 ssh2 Aug 18 07:07:29 vtv3 sshd[28287]: Invalid user luan from 79.9.108.59 port 57508 Aug 18 07:07:29 vtv3 sshd[28287]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.9.108.59 Aug 18 07:20:20 vtv3 sshd[2447]: Invalid user hbacoustic from 79.9.108.59 port 50377 Aug 18 07:20:20 vtv3 sshd[2447]: pam_unix(sshd:auth): authenti	2019-12-18 09:30:59
103.226.185.24	attackspam	Dec 18 05:52:50 dev0-dcde-rnet sshd[6183]: Failed password for nobody from 103.226.185.24 port 47430 ssh2 Dec 18 06:01:27 dev0-dcde-rnet sshd[6233]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.226.185.24 Dec 18 06:01:29 dev0-dcde-rnet sshd[6233]: Failed password for invalid user wellmaker from 103.226.185.24 port 56496 ssh2	2019-12-18 13:22:14
218.92.0.173	attackbotsspam	Dec 18 02:01:37 tux-35-217 sshd\[28720\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.173 user=root Dec 18 02:01:38 tux-35-217 sshd\[28720\]: Failed password for root from 218.92.0.173 port 20421 ssh2 Dec 18 02:01:42 tux-35-217 sshd\[28720\]: Failed password for root from 218.92.0.173 port 20421 ssh2 Dec 18 02:01:45 tux-35-217 sshd\[28720\]: Failed password for root from 218.92.0.173 port 20421 ssh2 ...	2019-12-18 09:32:03
128.199.162.108	attackspambots	Brute-force attempt banned	2019-12-18 13:28:01
187.35.191.21	attack	Automatic report - Port Scan Attack	2019-12-18 13:10:46
80.211.169.93	attack	Dec 18 05:53:09 legacy sshd[31273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.169.93 Dec 18 05:53:11 legacy sshd[31273]: Failed password for invalid user NoGaH$@! from 80.211.169.93 port 60966 ssh2 Dec 18 05:58:49 legacy sshd[31458]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.169.93 ...	2019-12-18 13:14:19
206.72.193.222	attack	Dec 18 02:08:11 markkoudstaal sshd[15652]: Failed password for backup from 206.72.193.222 port 42998 ssh2 Dec 18 02:14:02 markkoudstaal sshd[16358]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.72.193.222 Dec 18 02:14:04 markkoudstaal sshd[16358]: Failed password for invalid user menth from 206.72.193.222 port 58608 ssh2	2019-12-18 09:34:30
119.29.28.171	attackspambots	Dec 17 19:10:46 eddieflores sshd\[32763\]: Invalid user saanum from 119.29.28.171 Dec 17 19:10:46 eddieflores sshd\[32763\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.28.171 Dec 17 19:10:48 eddieflores sshd\[32763\]: Failed password for invalid user saanum from 119.29.28.171 port 45380 ssh2 Dec 17 19:16:39 eddieflores sshd\[967\]: Invalid user test from 119.29.28.171 Dec 17 19:16:39 eddieflores sshd\[967\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.28.171	2019-12-18 13:26:17
40.92.74.21	attackspambots	Dec 18 07:58:45 debian-2gb-vpn-nbg1-1 kernel: [1023490.508335] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=40.92.74.21 DST=78.46.192.101 LEN=52 TOS=0x02 PREC=0x00 TTL=110 ID=28507 DF PROTO=TCP SPT=56414 DPT=25 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0	2019-12-18 13:18:39
49.37.139.223	attackspambots	1576645127 - 12/18/2019 05:58:47 Host: 49.37.139.223/49.37.139.223 Port: 445 TCP Blocked	2019-12-18 13:16:14
40.92.255.69	attackspam	Dec 18 01:24:44 debian-2gb-vpn-nbg1-1 kernel: [999850.406656] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=40.92.255.69 DST=78.46.192.101 LEN=52 TOS=0x02 PREC=0x00 TTL=109 ID=13988 DF PROTO=TCP SPT=24254 DPT=25 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0	2019-12-18 09:27:18

Recently Reported IPs

233.156.66.165	43.250.187.130	14.182.176.87	49.158.175.228
252.71.241.110	103.244.108.183	24.102.241.165	56.235.69.136
210.209.125.28	183.252.49.122	36.47.161.123	35.193.25.198
173.169.189.134	14.236.141.6	63.35.17.138	42.55.207.204
115.224.94.101	213.195.117.243	123.252.194.158	191.116.239.199