42.3.12.12 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Hong Kong Telecommunications (HKT) Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Automatic report - Port Scan Attack	2020-04-27 20:08:57

相同子网IP讨论:

IP	类型	评论内容	时间
42.3.120.202	attackspam	Automatic report - Banned IP Access	2020-09-25 01:32:06
42.3.120.202	attackspam	Automatic report - Banned IP Access	2020-09-24 17:11:05
42.3.123.244	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-18 20:28:00
42.3.123.244	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-18 12:47:05
42.3.123.244	attackbots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-18 03:02:15
42.3.125.130	attackbotsspam	Honeypot attack, port: 5555, PTR: 42-3-125-130.static.netvigator.com.	2020-02-10 15:12:57
42.3.12.59	attackspambots	Unauthorized connection attempt detected from IP address 42.3.12.59 to port 81 [J]	2020-02-04 05:55:06
42.3.129.35	attackspambots	Unauthorized connection attempt detected from IP address 42.3.129.35 to port 5555 [J]	2020-02-03 02:06:18
42.3.124.72	attackspambots	" "	2019-10-15 18:31:53

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.3.12.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13837
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.3.12.12.			IN	A

;; AUTHORITY SECTION:
.			467	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042700 1800 900 604800 86400

;; Query time: 111 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 27 20:08:53 CST 2020
;; MSG SIZE  rcvd: 114

HOST信息:

12.12.3.42.in-addr.arpa domain name pointer 42-3-12-012.static.netvigator.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
12.12.3.42.in-addr.arpa	name = 42-3-12-012.static.netvigator.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
81.199.122.12	attackspambots	Invalid user support from 81.199.122.12 port 40768	2020-07-26 03:04:36
134.209.178.109	attackspambots	"$f2bV_matches"	2020-07-26 03:21:48
157.55.39.94	attackspambots	Automatic report - Banned IP Access	2020-07-26 03:24:22
212.70.149.19	attack	2020-07-25 21:08:10 dovecot_login authenticator failed for $User$ \[212.70.149.19\]: 535 Incorrect authentication data 2020-07-25 21:12:28 dovecot_login authenticator failed for $User$ \[212.70.149.19\]: 535 Incorrect authentication data $set_id=fedoseevds@no-server.de$ 2020-07-25 21:12:40 dovecot_login authenticator failed for $User$ \[212.70.149.19\]: 535 Incorrect authentication data $set_id=fedotovv@no-server.de$ 2020-07-25 21:12:44 dovecot_login authenticator failed for $User$ \[212.70.149.19\]: 535 Incorrect authentication data $set_id=fedotovv@no-server.de$ 2020-07-25 21:12:52 dovecot_login authenticator failed for $User$ \[212.70.149.19\]: 535 Incorrect authentication data $set_id=fedotovv@no-server.de$ ...	2020-07-26 03:17:33
170.130.187.26	attackspambots	Port scan: Attack repeated for 24 hours	2020-07-26 03:22:31
134.209.236.191	attackspambots	(sshd) Failed SSH login from 134.209.236.191 (DE/Germany/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 25 19:23:57 grace sshd[7514]: Invalid user ols from 134.209.236.191 port 44968 Jul 25 19:23:59 grace sshd[7514]: Failed password for invalid user ols from 134.209.236.191 port 44968 ssh2 Jul 25 19:38:04 grace sshd[9931]: Invalid user sylvia from 134.209.236.191 port 41284 Jul 25 19:38:06 grace sshd[9931]: Failed password for invalid user sylvia from 134.209.236.191 port 41284 ssh2 Jul 25 19:41:50 grace sshd[10584]: Invalid user web from 134.209.236.191 port 53444	2020-07-26 03:16:03
23.240.66.226	attackspambots	TCP (SYN) 23.240.66.226:55423 -> port 88, len 44	2020-07-26 03:05:55
137.26.29.118	attackspam	2020-07-26T00:20:04.967087hostname sshd[91754]: Failed password for invalid user web from 137.26.29.118 port 55066 ssh2 ...	2020-07-26 03:07:14
111.72.193.80	attack	Jul 25 20:41:25 srv01 postfix/smtpd\[14972\]: warning: unknown\[111.72.193.80\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 25 20:44:55 srv01 postfix/smtpd\[20691\]: warning: unknown\[111.72.193.80\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 25 20:51:56 srv01 postfix/smtpd\[20691\]: warning: unknown\[111.72.193.80\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 25 20:52:08 srv01 postfix/smtpd\[20691\]: warning: unknown\[111.72.193.80\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 25 20:52:25 srv01 postfix/smtpd\[20691\]: warning: unknown\[111.72.193.80\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-26 03:05:42
112.85.42.104	attackspam	2020-07-25T22:25:32.874945lavrinenko.info sshd[9054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.104 user=root 2020-07-25T22:25:35.292107lavrinenko.info sshd[9054]: Failed password for root from 112.85.42.104 port 16674 ssh2 2020-07-25T22:25:32.874945lavrinenko.info sshd[9054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.104 user=root 2020-07-25T22:25:35.292107lavrinenko.info sshd[9054]: Failed password for root from 112.85.42.104 port 16674 ssh2 2020-07-25T22:25:39.276112lavrinenko.info sshd[9054]: Failed password for root from 112.85.42.104 port 16674 ssh2 ...	2020-07-26 03:28:48
123.206.17.3	attackbotsspam	IP blocked	2020-07-26 03:26:08
119.28.7.77	attackspam	Jul 25 18:14:01 hosting sshd[27554]: Invalid user add from 119.28.7.77 port 55628 ...	2020-07-26 03:11:51
222.64.168.20	attackbots	Jul 25 19:07:15 ajax sshd[6299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.64.168.20 Jul 25 19:07:17 ajax sshd[6299]: Failed password for invalid user tjones from 222.64.168.20 port 37624 ssh2	2020-07-26 03:06:16
137.135.124.92	attack	Exploited Host.	2020-07-26 03:10:57
212.70.149.67	attackbotsspam	2020-07-25 21:33:10 dovecot_login authenticator failed for $User$ \[212.70.149.67\]: 535 Incorrect authentication data $set_id=php@no-server.de$ 2020-07-25 21:33:10 dovecot_login authenticator failed for $User$ \[212.70.149.67\]: 535 Incorrect authentication data $set_id=php@no-server.de$ 2020-07-25 21:34:54 dovecot_login authenticator failed for $User$ \[212.70.149.67\]: 535 Incorrect authentication data $set_id=pics@no-server.de$ 2020-07-25 21:34:55 dovecot_login authenticator failed for $User$ \[212.70.149.67\]: 535 Incorrect authentication data $set_id=pics@no-server.de$ 2020-07-25 21:36:39 dovecot_login authenticator failed for $User$ \[212.70.149.67\]: 535 Incorrect authentication data $set_id=play@no-server.de$ 2020-07-25 21:36:42 dovecot_login authenticator failed for $User$ \[212.70.149.67\]: 535 Incorrect authentication data $set_id=play@no-server.de$ ...	2020-07-26 03:39:47

最近上报的IP列表

81.161.239.7	79.45.105.222	176.250.220.85	114.33.203.69
124.115.85.154	195.56.187.26	111.223.170.222	194.152.206.12
106.13.68.101	93.41.226.58	186.226.0.227	200.89.178.3
178.128.92.117	112.242.109.184	179.191.53.122	128.199.165.126
123.21.112.113	113.173.92.146	123.21.18.15	110.231.248.16