42.3.72.134 - IPInfo

Basic Info

City: Kowloon

Region: Kowloon City

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Attempted connection to port 5555.	2020-04-05 06:50:17

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.3.72.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11602
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.3.72.134.			IN	A

;; AUTHORITY SECTION:
.			127	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040402 1800 900 604800 86400

;; Query time: 95 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 05 06:50:14 CST 2020
;; MSG SIZE  rcvd: 115

Host info

134.72.3.42.in-addr.arpa domain name pointer 42-3-72-134.static.netvigator.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
134.72.3.42.in-addr.arpa	name = 42-3-72-134.static.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.55.36.153	attackspambots	2020-07-23T03:38:35.118653ionos.janbro.de sshd[33056]: Invalid user rb from 103.55.36.153 port 35214 2020-07-23T03:38:37.852586ionos.janbro.de sshd[33056]: Failed password for invalid user rb from 103.55.36.153 port 35214 ssh2 2020-07-23T03:44:06.905861ionos.janbro.de sshd[33083]: Invalid user sinusbot from 103.55.36.153 port 51276 2020-07-23T03:44:07.044765ionos.janbro.de sshd[33083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.55.36.153 2020-07-23T03:44:06.905861ionos.janbro.de sshd[33083]: Invalid user sinusbot from 103.55.36.153 port 51276 2020-07-23T03:44:09.822880ionos.janbro.de sshd[33083]: Failed password for invalid user sinusbot from 103.55.36.153 port 51276 ssh2 2020-07-23T03:49:46.374872ionos.janbro.de sshd[33096]: Invalid user zha from 103.55.36.153 port 39098 2020-07-23T03:49:46.642851ionos.janbro.de sshd[33096]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.55.36.153 2020-07-23T ...	2020-07-23 19:51:34
176.31.252.148	attackspambots	Jul 23 12:01:42 vps-51d81928 sshd[60481]: Invalid user aziz from 176.31.252.148 port 59022 Jul 23 12:01:42 vps-51d81928 sshd[60481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.252.148 Jul 23 12:01:42 vps-51d81928 sshd[60481]: Invalid user aziz from 176.31.252.148 port 59022 Jul 23 12:01:44 vps-51d81928 sshd[60481]: Failed password for invalid user aziz from 176.31.252.148 port 59022 ssh2 Jul 23 12:04:06 vps-51d81928 sshd[60564]: Invalid user kontakt from 176.31.252.148 port 50992 ...	2020-07-23 20:18:44
92.63.196.6	attackbots	Jul 23 13:40:52 debian-2gb-nbg1-2 kernel: \[17762977.180803\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=92.63.196.6 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=11216 PROTO=TCP SPT=40613 DPT=25528 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-23 19:55:07
173.169.189.134	attackbotsspam	Unauthorized connection attempt detected from IP address 173.169.189.134 to port 23	2020-07-23 19:55:34
61.95.233.61	attack	Jul 23 13:59:23 abendstille sshd\[11038\]: Invalid user terraria from 61.95.233.61 Jul 23 13:59:23 abendstille sshd\[11038\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.95.233.61 Jul 23 13:59:26 abendstille sshd\[11038\]: Failed password for invalid user terraria from 61.95.233.61 port 47638 ssh2 Jul 23 14:04:10 abendstille sshd\[15717\]: Invalid user cristiano from 61.95.233.61 Jul 23 14:04:10 abendstille sshd\[15717\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.95.233.61 ...	2020-07-23 20:16:04
185.176.27.42	attackspam	TCP (SYN) 185.176.27.42:53325 -> port 20350, len 44	2020-07-23 19:48:01
119.29.10.25	attackbots	2020-07-23T11:49:02+0200 Failed SSH Authentication/Brute Force Attack. (Server 5)	2020-07-23 20:04:24
132.255.116.14	attackbotsspam	Too many connections or unauthorized access detected from Arctic banned ip	2020-07-23 19:58:18
189.253.192.165	attackbotsspam	20/7/23@08:04:10: FAIL: Alarm-Intrusion address from=189.253.192.165 ...	2020-07-23 20:15:13
144.64.128.43	attack	Invalid user superman from 144.64.128.43 port 35466	2020-07-23 20:05:48
129.226.225.56	attack	Jul 23 13:55:23 meumeu sshd[1379169]: Invalid user xml from 129.226.225.56 port 53478 Jul 23 13:55:23 meumeu sshd[1379169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.225.56 Jul 23 13:55:23 meumeu sshd[1379169]: Invalid user xml from 129.226.225.56 port 53478 Jul 23 13:55:24 meumeu sshd[1379169]: Failed password for invalid user xml from 129.226.225.56 port 53478 ssh2 Jul 23 13:59:40 meumeu sshd[1379349]: Invalid user hadoop from 129.226.225.56 port 39488 Jul 23 13:59:40 meumeu sshd[1379349]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.225.56 Jul 23 13:59:40 meumeu sshd[1379349]: Invalid user hadoop from 129.226.225.56 port 39488 Jul 23 13:59:41 meumeu sshd[1379349]: Failed password for invalid user hadoop from 129.226.225.56 port 39488 ssh2 Jul 23 14:04:06 meumeu sshd[1379880]: Invalid user sftpuser from 129.226.225.56 port 53730 ...	2020-07-23 20:19:31
63.35.17.138	attackbots	63.35.17.138 - - [23/Jul/2020:05:24:47 +0200] "POST /xmlrpc.php HTTP/1.1" 403 13249 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 63.35.17.138 - - [23/Jul/2020:05:49:39 +0200] "POST /xmlrpc.php HTTP/1.1" 403 31 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-23 19:57:06
45.145.66.21	attack	07/23/2020-07:42:51.113880 45.145.66.21 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-07-23 19:49:12
180.76.153.46	attackbots	Jul 23 14:00:03 abendstille sshd\[11878\]: Invalid user jira from 180.76.153.46 Jul 23 14:00:03 abendstille sshd\[11878\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.153.46 Jul 23 14:00:06 abendstille sshd\[11878\]: Failed password for invalid user jira from 180.76.153.46 port 35274 ssh2 Jul 23 14:04:09 abendstille sshd\[15711\]: Invalid user sander from 180.76.153.46 Jul 23 14:04:09 abendstille sshd\[15711\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.153.46 ...	2020-07-23 20:16:35
59.124.90.231	attackspambots	Jul 23 14:00:55 electroncash sshd[53147]: Invalid user libuuid from 59.124.90.231 port 50830 Jul 23 14:00:55 electroncash sshd[53147]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.124.90.231 Jul 23 14:00:55 electroncash sshd[53147]: Invalid user libuuid from 59.124.90.231 port 50830 Jul 23 14:00:57 electroncash sshd[53147]: Failed password for invalid user libuuid from 59.124.90.231 port 50830 ssh2 Jul 23 14:04:11 electroncash sshd[55017]: Invalid user ayush from 59.124.90.231 port 54820 ...	2020-07-23 20:13:38

Recently Reported IPs

166.254.140.52	115.41.243.179	185.221.134.178	191.158.207.76
194.30.9.127	75.233.25.152	31.136.121.71	130.62.188.127
152.249.70.18	94.9.40.101	86.26.29.91	79.106.83.99
189.37.80.161	41.14.163.66	160.179.43.137	174.143.164.13
24.84.175.15	106.127.225.146	91.127.232.179	90.216.200.224