42.112.234.250

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: FPT Telecom Company

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 30-12-2019 14:45:10.	2019-12-30 23:58:08

Comments on same subnet:

IP	Type	Details	Datetime
42.112.234.37	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2019-10-14 19:33:43
42.112.234.89	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 07-10-2019 04:50:23.	2019-10-07 14:55:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.112.234.250
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54428
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.112.234.250.			IN	A

;; AUTHORITY SECTION:
.			541	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019123000 1800 900 604800 86400

;; Query time: 922 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 30 23:58:01 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 250.234.112.42.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 250.234.112.42.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
142.93.238.162	attackspam	Nov 1 09:54:33 server sshd\[5013\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.238.162 user=root Nov 1 09:54:35 server sshd\[5013\]: Failed password for root from 142.93.238.162 port 33436 ssh2 Nov 1 10:13:47 server sshd\[9005\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.238.162 user=root Nov 1 10:13:50 server sshd\[9005\]: Failed password for root from 142.93.238.162 port 43714 ssh2 Nov 1 10:17:08 server sshd\[9827\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.238.162 user=root ...	2019-11-01 17:11:40
124.235.147.150	attackspam	Automatic report - Banned IP Access	2019-11-01 17:22:05
123.30.236.149	attackspambots	Nov 1 11:02:36 server sshd\[19323\]: Invalid user redmine from 123.30.236.149 Nov 1 11:02:36 server sshd\[19323\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.30.236.149 Nov 1 11:02:39 server sshd\[19323\]: Failed password for invalid user redmine from 123.30.236.149 port 41464 ssh2 Nov 1 11:19:04 server sshd\[23410\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.30.236.149 user=root Nov 1 11:19:06 server sshd\[23410\]: Failed password for root from 123.30.236.149 port 11278 ssh2 ...	2019-11-01 17:13:05
106.248.41.245	attack	Oct 31 22:45:50 dallas01 sshd[28528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.248.41.245 Oct 31 22:45:52 dallas01 sshd[28528]: Failed password for invalid user yt from 106.248.41.245 port 45544 ssh2 Oct 31 22:50:07 dallas01 sshd[29300]: Failed password for root from 106.248.41.245 port 56264 ssh2	2019-11-01 17:41:11
167.99.83.237	attackspam	Invalid user io from 167.99.83.237 port 59888	2019-11-01 17:19:16
14.207.13.222	attackspam	2019-11-01T04:50:14.6823061240 sshd\[27897\]: Invalid user ubnt from 14.207.13.222 port 60391 2019-11-01T04:50:14.8890651240 sshd\[27897\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.207.13.222 2019-11-01T04:50:16.4920951240 sshd\[27897\]: Failed password for invalid user ubnt from 14.207.13.222 port 60391 ssh2 ...	2019-11-01 17:39:49
159.192.107.27	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2019-11-01 17:40:42
198.108.67.142	attackspambots	Scanning random ports - tries to find possible vulnerable services	2019-11-01 17:33:59
138.201.222.216	attackbots	Nov 1 04:35:32 vps5 sshd[825]: Did not receive identification string from 138.201.222.216 Nov 1 04:35:32 vps5 sshd[826]: Did not receive identification string from 138.201.222.216 Nov 1 04:35:35 vps5 sshd[840]: Failed password for r.r from 138.201.222.216 port 45972 ssh2 Nov 1 04:35:35 vps5 sshd[829]: Failed password for r.r from 138.201.222.216 port 45950 ssh2 Nov 1 04:35:35 vps5 sshd[841]: Failed password for r.r from 138.201.222.216 port 45978 ssh2 Nov 1 04:35:35 vps5 sshd[852]: Failed password for r.r from 138.201.222.216 port 46012 ssh2 Nov 1 04:35:35 vps5 sshd[901]: Failed password for r.r from 138.201.222.216 port 35040 ssh2 Nov 1 04:35:35 vps5 sshd[830]: Failed password for r.r from 138.201.222.216 port 45952 ssh2 Nov 1 04:35:35 vps5 sshd[872]: Failed password for r.r from 138.201.222.216 port 34570 ssh2 Nov 1 04 .... truncated .... Nov 1 04:35:32 vps5 sshd[825]: Did not receive identification string from 138.201.222.216 Nov 1 04:35:32 vps5 sshd[82........ -------------------------------	2019-11-01 17:07:22
167.250.132.18	attackspambots	firewall-block, port(s): 445/tcp	2019-11-01 17:42:43
172.105.193.75	attack	Fail2Ban Ban Triggered	2019-11-01 17:44:11
114.239.250.43	attackspambots	Nov 1 04:34:10 server2 sshd[30704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.239.250.43 user=r.r Nov 1 04:34:12 server2 sshd[30704]: Failed password for r.r from 114.239.250.43 port 49553 ssh2 Nov 1 04:34:12 server2 sshd[30704]: Received disconnect from 114.239.250.43: 11: Bye Bye [preauth] Nov 1 04:37:51 server2 sshd[30963]: Invalid user tw from 114.239.250.43 Nov 1 04:37:51 server2 sshd[30963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.239.250.43 Nov 1 04:37:53 server2 sshd[30963]: Failed password for invalid user tw from 114.239.250.43 port 34236 ssh2 Nov 1 04:37:53 server2 sshd[30963]: Received disconnect from 114.239.250.43: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=114.239.250.43	2019-11-01 17:18:17
113.193.30.98	attackbotsspam	Nov 1 01:56:18 firewall sshd[11114]: Failed password for root from 113.193.30.98 port 31990 ssh2 Nov 1 02:00:34 firewall sshd[11243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.193.30.98 user=root Nov 1 02:00:36 firewall sshd[11243]: Failed password for root from 113.193.30.98 port 1383 ssh2 ...	2019-11-01 17:44:55
85.214.95.14	attackspam	Nov 1 04:39:15 HOST sshd[904]: Failed password for r.r from 85.214.95.14 port 40636 ssh2 Nov 1 04:39:15 HOST sshd[904]: Connection closed by 85.214.95.14 [preauth] Nov 1 04:39:15 HOST sshd[907]: Failed password for r.r from 85.214.95.14 port 40640 ssh2 Nov 1 04:39:15 HOST sshd[903]: Failed password for r.r from 85.214.95.14 port 40632 ssh2 Nov 1 04:39:15 HOST sshd[903]: Connection closed by 85.214.95.14 [preauth] Nov 1 04:39:15 HOST sshd[907]: Connection closed by 85.214.95.14 [preauth] Nov 1 04:39:15 HOST sshd[908]: Failed password for r.r from 85.214.95.14 port 40644 ssh2 Nov 1 04:39:15 HOST sshd[908]: Connection closed by 85.214.95.14 [preauth] Nov 1 04:39:15 HOST sshd[902]: Failed password for r.r from 85.214.95.14 port 40630 ssh2 Nov 1 04:39:15 HOST sshd[902]: Connection closed by 85.214.95.14 [preauth] Nov 1 04:39:15 HOST sshd[905]: Failed password for r.r from 85.214.95.14 port 40634 ssh2 Nov 1 04:39:15 HOST sshd[906]: Failed password for r.r from 85......... -------------------------------	2019-11-01 17:32:59
193.93.195.53	attack	Automatic report - Banned IP Access	2019-11-01 17:43:25

Recently Reported IPs

149.129.39.34	42.117.20.58	5.18.248.186	171.109.58.240
111.90.150.254	111.90.150.98	197.84.204.170	223.206.245.40
24.215.214.206	208.110.237.143	156.52.82.87	32.213.82.157
209.39.142.238	223.149.255.14	189.225.174.19	23.119.100.2
136.251.36.6	190.227.140.118	89.81.8.150	15.135.173.46