City: unknown
Region: unknown
Country: Viet Nam
Internet Service Provider: FPT Telecom Company
Hostname: unknown
Organization: unknown
Usage Type: Fixed Line ISP
| Type | Details | Datetime |
|---|---|---|
| attackbotsspam | 1580791926 - 02/04/2020 05:52:06 Host: 42.112.149.40/42.112.149.40 Port: 445 TCP Blocked |
2020-02-04 21:51:15 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 42.112.149.45 | attackbotsspam | Honeypot attack, port: 445, PTR: PTR record not found |
2020-02-11 16:32:15 |
| 42.112.149.253 | attackbots | Unauthorized connection attempt from IP address 42.112.149.253 on Port 445(SMB) |
2020-01-30 04:57:58 |
| 42.112.149.115 | attackbots | 1578950453 - 01/13/2020 22:20:53 Host: 42.112.149.115/42.112.149.115 Port: 445 TCP Blocked |
2020-01-14 08:21:16 |
| 42.112.149.142 | attackbotsspam | Dec 21 07:04:42 h2421860 postfix/postscreen[18786]: CONNECT from [42.112.149.142]:20028 to [85.214.119.52]:25 Dec 21 07:04:42 h2421860 postfix/dnsblog[18789]: addr 42.112.149.142 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Dec 21 07:04:42 h2421860 postfix/dnsblog[18795]: addr 42.112.149.142 listed by domain zen.spamhaus.org as 127.0.0.11 Dec 21 07:04:42 h2421860 postfix/dnsblog[18795]: addr 42.112.149.142 listed by domain zen.spamhaus.org as 127.0.0.3 Dec 21 07:04:42 h2421860 postfix/dnsblog[18795]: addr 42.112.149.142 listed by domain zen.spamhaus.org as 127.0.0.4 Dec 21 07:04:43 h2421860 postfix/dnsblog[18796]: addr 42.112.149.142 listed by domain Unknown.trblspam.com as 185.53.179.7 Dec 21 07:04:48 h2421860 postfix/postscreen[18786]: DNSBL rank 5 for [42.112.149.142]:20028 Dec x@x Dec 21 07:04:51 h2421860 postfix/postscreen[18786]: HANGUP after 3.2 from [42.112.149.142]:20028 in tests after SMTP handshake Dec 21 07:04:51 h2421860 postfix/postscreen[18786]: DISC........ ------------------------------- |
2019-12-21 20:02:16 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.112.149.40
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64863
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.112.149.40. IN A
;; AUTHORITY SECTION:
. 587 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020020400 1800 900 604800 86400
;; Query time: 117 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 21:51:08 CST 2020
;; MSG SIZE rcvd: 117Host 40.149.112.42.in-addr.arpa not found: 2(SERVFAIL);; Got SERVFAIL reply from 183.60.83.19, trying next server
Server: 183.60.82.98
Address: 183.60.82.98#53
** server can't find 40.149.112.42.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 27.211.168.163 | attack | 'IP reached maximum auth failures for a one day block' |
2019-06-27 20:20:45 |
| 195.31.118.41 | attackspam | port scan and connect, tcp 23 (telnet) |
2019-06-27 19:56:46 |
| 74.82.47.2 | attackspambots | 8443/tcp 548/tcp 6379/tcp... [2019-04-27/06-27]35pkt,17pt.(tcp),1pt.(udp) |
2019-06-27 20:16:13 |
| 79.61.33.46 | attackspam | NAME : IT-TIN-20070221 CIDR : 79.0.0.0/10 DDoS attack Italy - block certain countries :) IP: 79.61.33.46 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl |
2019-06-27 19:55:11 |
| 79.40.182.195 | attackspam | 27.06.2019 03:39:03 Command injection vulnerability attempt/scan (login.cgi) |
2019-06-27 20:03:06 |
| 157.230.110.11 | attackspam | Jun 27 00:32:25 master sshd[19956]: Failed password for invalid user tomcat from 157.230.110.11 port 58860 ssh2 Jun 27 04:06:29 master sshd[22106]: Failed password for invalid user www from 157.230.110.11 port 45648 ssh2 Jun 27 13:17:26 master sshd[28480]: Failed password for invalid user zimbra from 157.230.110.11 port 53108 ssh2 |
2019-06-27 19:43:21 |
| 212.76.161.37 | attackspam | [portscan] Port scan |
2019-06-27 19:55:39 |
| 66.249.69.77 | attackbotsspam | Automatic report - Web App Attack |
2019-06-27 19:56:27 |
| 191.53.197.69 | attack | libpam_shield report: forced login attempt |
2019-06-27 19:43:43 |
| 24.35.80.137 | attackbots | Invalid user juin from 24.35.80.137 port 57742 |
2019-06-27 20:23:33 |
| 42.53.118.250 | attackbots | Telnet Server BruteForce Attack |
2019-06-27 20:07:54 |
| 92.177.197.60 | attackspambots | Jun 27 14:12:40 dev sshd\[17088\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.177.197.60 user=root Jun 27 14:12:42 dev sshd\[17088\]: Failed password for root from 92.177.197.60 port 54570 ssh2 ... |
2019-06-27 20:22:14 |
| 121.30.120.72 | attack | Honeypot attack, port: 23, PTR: 72.120.30.121.adsl-pool.sx.cn. |
2019-06-27 19:45:59 |
| 218.155.162.71 | attackspam | Jun 27 08:25:40 host sshd\[36551\]: Invalid user ftpuser from 218.155.162.71 port 37218 Jun 27 08:25:40 host sshd\[36551\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.155.162.71 ... |
2019-06-27 19:41:57 |
| 190.144.135.118 | attackspambots | 27.06.2019 09:17:43 SSH access blocked by firewall |
2019-06-27 19:54:46 |