Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: Kowloon

Region: Kowloon City

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
Type Details Datetime
attack
Attempted connection to port 5555.
2020-04-05 06:50:17
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.3.72.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11602
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.3.72.134.			IN	A

;; AUTHORITY SECTION:
.			127	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040402 1800 900 604800 86400

;; Query time: 95 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 05 06:50:14 CST 2020
;; MSG SIZE  rcvd: 115
Host info
134.72.3.42.in-addr.arpa domain name pointer 42-3-72-134.static.netvigator.com.
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
134.72.3.42.in-addr.arpa	name = 42-3-72-134.static.netvigator.com.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
49.88.112.67 attackbotsspam
May  3 21:45:05 v22018053744266470 sshd[5059]: Failed password for root from 49.88.112.67 port 26117 ssh2
May  3 21:46:11 v22018053744266470 sshd[5138]: Failed password for root from 49.88.112.67 port 29074 ssh2
...
2020-05-04 04:00:23
64.227.54.28 attackspam
2020-05-03T22:21:34.572788vivaldi2.tree2.info sshd[2561]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.227.54.28
2020-05-03T22:21:34.560830vivaldi2.tree2.info sshd[2561]: Invalid user song from 64.227.54.28
2020-05-03T22:21:37.155035vivaldi2.tree2.info sshd[2561]: Failed password for invalid user song from 64.227.54.28 port 43440 ssh2
2020-05-03T22:25:22.929507vivaldi2.tree2.info sshd[2671]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.227.54.28  user=root
2020-05-03T22:25:24.478175vivaldi2.tree2.info sshd[2671]: Failed password for root from 64.227.54.28 port 53840 ssh2
...
2020-05-04 03:58:03
106.75.10.4 attack
SSH Bruteforce attack
2020-05-04 03:47:36
106.13.216.231 attackbotsspam
May  3 21:22:09 vmd48417 sshd[13085]: Failed password for root from 106.13.216.231 port 50984 ssh2
2020-05-04 03:40:57
144.217.7.75 attackspambots
2020-05-03T14:44:19.345756mail.thespaminator.com sshd[26318]: Failed password for root from 144.217.7.75 port 50284 ssh2
2020-05-03T14:49:12.741820mail.thespaminator.com sshd[26858]: Invalid user sftpuser from 144.217.7.75 port 59978
...
2020-05-04 04:02:52
189.188.75.75 attackspam
Port probing on unauthorized port 88
2020-05-04 04:07:17
189.83.158.31 attackbots
Lines containing failures of 189.83.158.31
May  2 22:32:39 shared02 sshd[19685]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.83.158.31  user=r.r
May  2 22:32:40 shared02 sshd[19685]: Failed password for r.r from 189.83.158.31 port 33197 ssh2
May  2 22:32:41 shared02 sshd[19685]: Received disconnect from 189.83.158.31 port 33197:11: Bye Bye [preauth]
May  2 22:32:41 shared02 sshd[19685]: Disconnected from authenticating user r.r 189.83.158.31 port 33197 [preauth]
May  2 22:47:11 shared02 sshd[24363]: Invalid user rex from 189.83.158.31 port 42484
May  2 22:47:11 shared02 sshd[24363]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.83.158.31
May  2 22:47:13 shared02 sshd[24363]: Failed password for invalid user rex from 189.83.158.31 port 42484 ssh2
May  2 22:47:14 shared02 sshd[24363]: Received disconnect from 189.83.158.31 port 42484:11: Bye Bye [preauth]
May  2 22:47:14 shared02 ........
------------------------------
2020-05-04 03:35:25
103.13.242.215 attackspambots
Time:     Sun May  3 15:07:38 2020 -0300
IP:       103.13.242.215 (IN/India/103-13-242-215.static.hostdime.com)
Failures: 5 (mod_security)
Interval: 3600 seconds
Blocked:  Permanent Block
2020-05-04 03:48:55
128.199.248.200 attackbots
Automatic report - XMLRPC Attack
2020-05-04 03:42:44
159.203.88.7 attack
21 attempts against mh-ssh on boat
2020-05-04 04:01:01
106.13.99.51 attackbots
Unauthorized SSH login attempts
2020-05-04 03:39:43
152.67.67.89 attackbotsspam
(sshd) Failed SSH login from 152.67.67.89 (CH/Switzerland/-): 5 in the last 3600 secs
2020-05-04 04:14:49
109.168.66.27 attack
SSH/22 MH Probe, BF, Hack -
2020-05-04 03:37:07
124.251.110.164 attackspambots
May  3 21:39:57 dev0-dcde-rnet sshd[23268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.251.110.164
May  3 21:39:58 dev0-dcde-rnet sshd[23268]: Failed password for invalid user backspace from 124.251.110.164 port 33366 ssh2
May  3 21:43:08 dev0-dcde-rnet sshd[23278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.251.110.164
2020-05-04 03:56:57
106.13.203.171 attackspambots
2020-05-03T11:58:40.158653abusebot-6.cloudsearch.cf sshd[5393]: Invalid user oracle from 106.13.203.171 port 2354
2020-05-03T11:58:40.165515abusebot-6.cloudsearch.cf sshd[5393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.203.171
2020-05-03T11:58:40.158653abusebot-6.cloudsearch.cf sshd[5393]: Invalid user oracle from 106.13.203.171 port 2354
2020-05-03T11:58:41.904466abusebot-6.cloudsearch.cf sshd[5393]: Failed password for invalid user oracle from 106.13.203.171 port 2354 ssh2
2020-05-03T12:05:20.333116abusebot-6.cloudsearch.cf sshd[5744]: Invalid user jenkins from 106.13.203.171 port 5182
2020-05-03T12:05:20.339718abusebot-6.cloudsearch.cf sshd[5744]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.203.171
2020-05-03T12:05:20.333116abusebot-6.cloudsearch.cf sshd[5744]: Invalid user jenkins from 106.13.203.171 port 5182
2020-05-03T12:05:22.991965abusebot-6.cloudsearch.cf sshd[5744]: Faile
...
2020-05-04 03:59:37

Recently Reported IPs

166.254.140.52 115.41.243.179 185.221.134.178 191.158.207.76
194.30.9.127 75.233.25.152 31.136.121.71 130.62.188.127
152.249.70.18 94.9.40.101 86.26.29.91 79.106.83.99
189.37.80.161 41.14.163.66 160.179.43.137 174.143.164.13
24.84.175.15 106.127.225.146 91.127.232.179 90.216.200.224