JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 42.5.246.34

42.5.246.34 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 0%: ?

ISP	UNICOM Liaoning Province Network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Fushun, Liaoning

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 42.5.246.34

Whois 42.5.246.34

IP Abuse Reports for 42.5.246.34:

This IP address has been reported a total of 17 times from 17 distinct sources. 42.5.246.34 was first reported on August 28th 2023, and the most recent report was 2 years ago.

Old Reports: The most recent abuse report for this IP address is from 2 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 Parth Maniar	2023-08-30 09:42:42 (2 years ago)	This IP address carried out 64 port scanning attempts on 29-08-2023. For more information or to repo ... show more This IP address carried out 64 port scanning attempts on 29-08-2023. For more information or to report interesting/incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Port Scan SSH
🇨🇳 ThreatBook.io	2023-08-30 00:06:39 (2 years ago)	ThreatBook Intelligence: Scanner,Zombie more details on https://threatbook.io/ip/42.5.246.34	SSH
🇺🇸 juguemosalacarioca.com	2023-08-28 21:18:55 (2 years ago)	(sshd) Failed SSH login from 42.5.246.34 (CN/China/-): 5 in the last 3600 secs; Ports: ; Direction: ... show more (sshd) Failed SSH login from 42.5.246.34 (CN/China/-): 5 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_SSHD; Logs: Aug 28 21:11:43 eqxclasses-dev sshd[17137]: Invalid user test from 42.5.246.34 port 39440 Aug 28 21:12:50 eqxclasses-dev sshd[17156]: Invalid user ubuntu from 42.5.246.34 port 55972 Aug 28 21:17:00 eqxclasses-dev sshd[17244]: Invalid user admin from 42.5.246.34 port 37400 Aug 28 21:17:54 eqxclasses-dev sshd[17290]: Invalid user ubuntu from 42.5.246.34 port 53930 Aug 28 21:18:50 eqxclasses-dev sshd[17318]: Invalid user test from 42.5.246.34 port 42232 show less	Port Scan
🇩🇪 pr0vieh	2023-08-28 20:35:31 (2 years ago)	Aug 28 20:32:15 Linux03 sshd[1240722]: Failed password for root from 42.5.246.34 port 34486 ssh2 Aug ... show more Aug 28 20:32:15 Linux03 sshd[1240722]: Failed password for root from 42.5.246.34 port 34486 ssh2 Aug 28 20:33:09 Linux03 sshd[1243751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.5.246.34 user=root Aug 28 20:33:11 Linux03 sshd[1243751]: Failed password for root from 42.5.246.34 port 44906 ssh2 Aug 28 20:33:53 Linux03 sshd[1246444]: Invalid user test from 42.5.246.34 port 55324 Aug 28 20:33:53 Linux03 sshd[1246444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.5.246.34 Aug 28 20:33:55 Linux03 sshd[1246444]: Failed password for invalid user test from 42.5.246.34 port 55324 ssh2 Aug 28 20:34:40 Linux03 sshd[1248981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.5.246.34 user=root Aug 28 20:34:43 Linux03 sshd[1248981]: Failed password for root from 42.5.246.34 port 37518 ssh2 Aug 28 20:35:28 Linux03 sshd[1251876]: pam_unix(sshd:auth): authentication ... show less	Brute-Force SSH
🇨🇿 lp	2023-08-28 19:52:47 (2 years ago)	SSH Brute force: 8 attempts were recorded from 42.5.246.34 2023-08-28T20:12:41+02:00 Invalid user ub ... show more SSH Brute force: 8 attempts were recorded from 42.5.246.34 2023-08-28T20:12:41+02:00 Invalid user ubuntu from 42.5.246.34 port 40870 2023-08-28T20:16:39+02:00 Invalid user admin from 42.5.246.34 port 32906 2023-08-28T20:20:41+02:00 Invalid user ali from 42.5.246.34 port 53158 2023-08-28T20:21:41+02:00 Invalid user test from 42.5.246.34 port 37050 2023-08-28T20:25:30+02:00 Invalid user fabian from 42.5.246.34 port 57310 2023-08-28T20:27:12+02:00 Invalid user nexus from 42.5.246.34 port 53324 2023-08-28T20:29:11+02:00 Invalid user admin from 42.5.246.34 port 49342 2023-08-28T20:32:17+02:00 Invalid user ali from 42.5.246.34 port 57474 show less	Brute-Force SSH
🇩🇪 www.blocklist.de	2023-08-28 19:00:32 (2 years ago)	Aug 28 20:45:07 frovhecofrsa504 sshd[3742654]: AD user ubuntu from 42.5.246.34 port 39298 Aug 28 20: ... show more Aug 28 20:45:07 frovhecofrsa504 sshd[3742654]: AD user ubuntu from 42.5.246.34 port 39298 Aug 28 20:45:07 frovhecofrsa504 sshd[3742654]: Disconnected from AD user ubuntu 42.5.246.34 port 39298 [preauth] Aug 28 20:48:14 frovhecofrsa504 sshd[3743007]: Disconnected from authenticating user r.r 42.5.246.34 port 43368 [preauth] Aug 28 20:50:48 frovhecofrsa504 sshd[3743134]: Disconnected from authenticating user r.r 42.5.246.34 port 42612 [preauth] Aug 28 20:53:16 frovhecofrsa504 sshd[3743468]: AD user ubuntu from 42.5.246.34 port 41858 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=42.5.246.34 show less	FTP Brute-Force Hacking
🇷🇺 OK	2023-08-28 18:50:05 (2 years ago)	SSH Brute-Force. Ports scanning	Port Scan Hacking Brute-Force SSH
🇩🇪 chlouis	2023-08-28 18:16:42 (2 years ago)	Aug 28 20:12:38 gateway35 sshd[400182]: pam_unix(sshd:auth): authentication failure; logname= uid=0 ... show more Aug 28 20:12:38 gateway35 sshd[400182]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.5.246.34 Aug 28 20:12:38 gateway35 sshd[400182]: Invalid user ubuntu from 42.5.246.34 port 55552 Aug 28 20:12:40 gateway35 sshd[400182]: Failed password for invalid user ubuntu from 42.5.246.34 port 55552 ssh2 Aug 28 20:13:37 gateway35 sshd[400185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.5.246.34 user=root Aug 28 20:13:39 gateway35 sshd[400185]: Failed password for root from 42.5.246.34 port 39448 ssh2 Aug 28 20:14:35 gateway35 sshd[400188]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.5.246.34 user=root Aug 28 20:14:37 gateway35 sshd[400188]: Failed password for root from 42.5.246.34 port 51570 ssh2 Aug 28 20:15:37 gateway35 sshd[400192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.5.246.34 user=root Aug 28 20 ... show less	Brute-Force SSH
🇬🇧 JesionZ	2023-08-28 18:09:05 (2 years ago)	Aug 28 20:07:50 vmi1439941 sshd[26755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 ... show more Aug 28 20:07:50 vmi1439941 sshd[26755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.5.246.34 user=root Aug 28 20:07:52 vmi1439941 sshd[26755]: Failed password for root from 42.5.246.34 port 41330 ssh2 Aug 28 20:09:05 vmi1439941 sshd[26757]: Invalid user ubuntu from 42.5.246.34 port 53454 ... show less	Brute-Force SSH
🇺🇸 oijon.net	2023-08-28 16:52:19 (2 years ago)	Aug 28 12:51:31 proliant-dl360-g7-1 sshd[1008332]: pam_unix(sshd:auth): authentication failure; logn ... show more Aug 28 12:51:31 proliant-dl360-g7-1 sshd[1008332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.5.246.34 Aug 28 12:51:34 proliant-dl360-g7-1 sshd[1008332]: Failed password for invalid user sftptest from 42.5.246.34 port 45002 ssh2 Aug 28 12:52:17 proliant-dl360-g7-1 sshd[1008368]: Invalid user admin from 42.5.246.34 port 53986 Aug 28 12:52:17 proliant-dl360-g7-1 sshd[1008368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.5.246.34 Aug 28 12:52:19 proliant-dl360-g7-1 sshd[1008368]: Failed password for invalid user admin from 42.5.246.34 port 53986 ssh2 ... show less	Brute-Force SSH
🇬🇧 UnacceptableUse	2023-08-28 15:29:59 (2 years ago)	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2023-08-28T15:19:01Z and 2023-08- ... show more Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2023-08-28T15:19:01Z and 2023-08-28T15:29:59Z show less	Brute-Force SSH
🇨🇿 ICT KnTl	2023-08-28 15:22:55 (2 years ago)	Aug 28 17:09:36 secure sshd[66800]: Invalid user ubuntu from 42.5.246.34 port 44820 Aug 28 17:20:09 ... show more Aug 28 17:09:36 secure sshd[66800]: Invalid user ubuntu from 42.5.246.34 port 44820 Aug 28 17:20:09 secure sshd[66917]: User root from 42.5.246.34 not allowed because not listed in AllowUsers Aug 28 17:22:54 secure sshd[66930]: User root from 42.5.246.34 not allowed because not listed in AllowUsers ... show less	Brute-Force SSH
🇺🇸 Like Ma	2023-08-28 14:23:07 (2 years ago)	Aug 28 10:23:04 newage sshd[14956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid ... show more Aug 28 10:23:04 newage sshd[14956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.5.246.34 Aug 28 10:23:05 newage sshd[14956]: Failed password for invalid user admin from 42.5.246.34 port 50970 ssh2 ... show less	Brute-Force SSH
🇩🇪 ipcop.net	2023-08-28 12:43:40 (2 years ago)	Aug 28 14:38:23 gw-de39-01.guestgw.net sshd[407987]: Disconnected from authenticating user root 42.5 ... show more Aug 28 14:38:23 gw-de39-01.guestgw.net sshd[407987]: Disconnected from authenticating user root 42.5.246.34 port 38426 [preauth] Aug 28 14:39:50 gw-de39-01.guestgw.net sshd[408119]: Disconnected from authenticating user root 42.5.246.34 port 52776 [preauth] Aug 28 14:41:08 gw-de39-01.guestgw.net sshd[408385]: Disconnected from authenticating user root 42.5.246.34 port 37304 [preauth] Aug 28 14:42:21 gw-de39-01.guestgw.net sshd[408540]: Disconnected from authenticating user root 42.5.246.34 port 50074 [preauth] Aug 28 14:43:38 gw-de39-01.guestgw.net sshd[408657]: Invalid user test from 42.5.246.34 port 34628 show less	Brute-Force
🇫🇮 mathieu79	2023-08-28 12:39:45 (2 years ago)	Tried sshing with brute force.	Brute-Force SSH

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 185.242.3.230

🇨🇳 180.167.128.203

🇳🇱 176.65.139.41

🇭🇰 172.253.4.20

🇸🇬 152.42.247.85

🇮🇳 117.247.48.117

🇲🇳 66.181.185.251

🇸🇬 43.163.85.226

🇭🇰 43.161.222.215

🇺🇸 34.20.185.143

🇭🇰 199.45.154.153

🇹🇼 198.235.24.82

🇧🇷 187.120.107.47

🇻🇳 171.231.193.134

🇨🇦 142.44.187.229

🇨🇳 114.217.10.60

🇨🇳 114.55.137.231

🇱🇹 81.30.98.62

🇰🇷 59.14.191.130

🇰🇷 34.64.222.215