42.112.81.138 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: FPT Telecom Company

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 42.112.81.138 on Port 445(SMB)	2020-08-13 19:51:23

Comments on same subnet:

IP	Type	Details	Datetime
42.112.81.69	attackspam	Unauthorized connection attempt from IP address 42.112.81.69 on Port 445(SMB)	2020-05-05 23:59:10
42.112.81.82	attackbots	Unauthorized connection attempt from IP address 42.112.81.82 on Port 445(SMB)	2019-06-25 20:31:29

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.112.81.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59286
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.112.81.138.			IN	A

;; AUTHORITY SECTION:
.			520	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081300 1800 900 604800 86400

;; Query time: 71 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Aug 13 19:51:13 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 138.81.112.42.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 138.81.112.42.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
164.132.74.78	attack	Jul 26 19:36:44 raspberrypi sshd\[27327\]: Failed password for root from 164.132.74.78 port 43678 ssh2Jul 26 20:00:34 raspberrypi sshd\[27778\]: Failed password for root from 164.132.74.78 port 35888 ssh2Jul 26 20:12:43 raspberrypi sshd\[28077\]: Failed password for root from 164.132.74.78 port 58106 ssh2 ...	2019-07-27 07:57:41
130.255.63.37	attack	scan z	2019-07-27 07:45:51
211.148.135.196	attackbotsspam	SSH Brute-Force attacks	2019-07-27 07:38:52
80.211.242.211	attackbots	Jul 27 00:17:50 lnxded63 sshd[25277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.242.211	2019-07-27 07:47:36
128.199.52.45	attackspambots	Jul 27 01:40:09 vps647732 sshd[11173]: Failed password for root from 128.199.52.45 port 39184 ssh2 ...	2019-07-27 07:46:21
171.231.20.186	attack	Automatic report - Port Scan Attack	2019-07-27 07:55:07
50.21.182.192	attackbotsspam	2019-07-26T22:54:36.307099abusebot-6.cloudsearch.cf sshd\[25653\]: Invalid user comnet@123 from 50.21.182.192 port 36610	2019-07-27 07:24:29
189.135.82.22	attackbotsspam	26.07.2019 22:33:35 SSH access blocked by firewall	2019-07-27 07:46:38
58.145.168.162	attackspam	Jul 27 00:48:44 debian sshd\[20946\]: Invalid user waiwangadmin!0 from 58.145.168.162 port 51604 Jul 27 00:48:44 debian sshd\[20946\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.145.168.162 ...	2019-07-27 08:02:27
211.223.119.65	attack	Jul 26 22:56:26 debian sshd\[18525\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.223.119.65 user=root Jul 26 22:56:29 debian sshd\[18525\]: Failed password for root from 211.223.119.65 port 40780 ssh2 ...	2019-07-27 07:19:06
177.47.236.34	attackbotsspam	2019-07-26 14:47:27 H=(lundqvist.it) [177.47.236.34]:43005 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/query/ip/177.47.236.34) 2019-07-26 14:47:28 H=(lundqvist.it) [177.47.236.34]:43005 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-07-26 14:47:29 H=(lundqvist.it) [177.47.236.34]:43005 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/177.47.236.34) ...	2019-07-27 07:35:12
142.44.243.126	attackspam	Jul 27 01:03:07 MK-Soft-Root1 sshd\[24363\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.243.126 user=root Jul 27 01:03:09 MK-Soft-Root1 sshd\[24363\]: Failed password for root from 142.44.243.126 port 52252 ssh2 Jul 27 01:07:16 MK-Soft-Root1 sshd\[24978\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.243.126 user=root ...	2019-07-27 07:56:10
36.71.232.199	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-25 17:26:18,275 INFO [shellcode_manager] (36.71.232.199) no match, writing hexdump (d781cbeb585fac2235d05bf50c0bb26f :2300059) - MS17010 (EternalBlue)	2019-07-27 07:41:19
178.62.194.63	attack	Triggered by Fail2Ban	2019-07-27 07:55:29
218.92.0.173	attack	$f2bV_matches	2019-07-27 08:03:22

Recently Reported IPs

103.82.80.87	14.190.196.4	147.147.220.58	116.111.19.44
14.255.71.245	114.45.5.134	162.232.103.177	122.225.92.74
115.79.212.201	148.68.99.61	104.26.224.111	173.18.105.21
187.190.192.78	165.3.86.75	219.92.13.193	96.30.65.122
42.114.113.98	123.18.10.125	187.29.170.218	34.91.216.220