42.113.161.199

Basic Info

City: Da Nang

Region: Da Nang

Country: Vietnam

Internet Service Provider: FPT Telecom Company

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt detected from IP address 42.113.161.199 to port 445	2019-12-20 03:07:27

Comments on same subnet:

IP	Type	Details	Datetime
42.113.161.212	attackbots	Unauthorized connection attempt from IP address 42.113.161.212 on Port 445(SMB)	2019-09-09 06:45:03

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.113.161.199
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49769
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.113.161.199.			IN	A

;; AUTHORITY SECTION:
.			484	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121901 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 20 03:07:19 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 199.161.113.42.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 199.161.113.42.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
138.99.216.233	attackbots	23 attempts against mh-misbehave-ban on comet	2020-03-05 18:49:59
108.26.234.213	attackspam	Honeypot attack, port: 445, PTR: static-108-26-234-213.bstnma.fios.verizon.net.	2020-03-05 18:17:55
198.108.67.55	attackbots	2850/tcp 1080/tcp 8835/tcp... [2020-01-05/03-05]99pkt,94pt.(tcp)	2020-03-05 18:31:38
192.241.221.238	attackspam	1900/udp 264/tcp 102/tcp... [2020-03-01/04]7pkt,5pt.(tcp),1pt.(udp)	2020-03-05 18:48:39
77.247.110.91	attackbotsspam	[MK-Root1] Blocked by UFW	2020-03-05 18:29:46
49.206.198.33	attackbotsspam	Unauthorized connection attempt from IP address 49.206.198.33 on Port 445(SMB)	2020-03-05 18:36:40
14.29.148.201	attackspam	Mar 5 05:47:55 [snip] sshd[15054]: Invalid user tharani from 14.29.148.201 port 33830 Mar 5 05:47:55 [snip] sshd[15054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.148.201 Mar 5 05:47:56 [snip] sshd[15054]: Failed password for invalid user tharani from 14.29.148.201 port 33830 ssh2[...]	2020-03-05 18:26:56
129.211.124.109	attackspam	Mar 5 05:48:03 vpn01 sshd[30263]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.124.109 Mar 5 05:48:05 vpn01 sshd[30263]: Failed password for invalid user teste from 129.211.124.109 port 58004 ssh2 ...	2020-03-05 18:19:38
194.182.82.52	attackspam	Mar 5 00:16:36 tdfoods sshd\[14892\]: Invalid user grid from 194.182.82.52 Mar 5 00:16:36 tdfoods sshd\[14892\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.182.82.52 Mar 5 00:16:38 tdfoods sshd\[14892\]: Failed password for invalid user grid from 194.182.82.52 port 52754 ssh2 Mar 5 00:25:17 tdfoods sshd\[15792\]: Invalid user test3 from 194.182.82.52 Mar 5 00:25:17 tdfoods sshd\[15792\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.182.82.52	2020-03-05 18:35:21
87.236.196.214	spam	MARRE de ces ORDURES et autres FILS de PUTE genre SOUS MERDES capables de POLLUER STUPIDEMENT pour ne pas dire CONNEMENT la Planète par des POURRIELS INUTILES sur des listes VOLÉES on ne sait où et SANS notre accord, en TOTALE INFRACTION avec les Législations Européennes comme Française sur la RGPD, donc à condamner à 750 € par pourriel émis, tout ça pour du PHISHING par une FAUSSE COPIE... BounceEmail@namedu.astalido.org.uk=>69.197.139.254 https://en.asytech.cn/check-ip/69.197.139.254 astalido.org.uk=>register.com astalido.org.uk=>69.197.139.250 69.197.128.0 - 69.197.191.255=>wholesaleinternet.net https://www.mywot.com/scorecard/astalido.org.uk https://www.mywot.com/scorecard/wholesaleinternet.net https://en.asytech.cn/check-ip/69.197.139.250 alichobein.co.uk=>register.com alichobein.co.uk=>87.236.196.214 87.236.196.214=>coolhousing.net https://www.mywot.com/scorecard/alichobein.co.uk https://www.mywot.com/scorecard/coolhousing.net https://en.asytech.cn/check-ip/87.236.196.214 Message-Id:<2100295267.gezxtj.82159@topspeech.net> topspeech.net=>enom.com=>whoisprivacyprotect.com topspeech.net=>64.27.55.250 64.27.55.250=>wehostwebsites.com https://www.mywot.com/scorecard/topspeech.net https://www.mywot.com/scorecard/enom.com https://www.mywot.com/scorecard/whoisprivacyprotect.com https://www.mywot.com/scorecard/wehostwebsites.com https://en.asytech.cn/check-ip/64.27.55.250 mapbrit.co.uk=>register.com mapbrit.co.uk=>92.246.84.134 92.246.84.134=>xsserver.gmbh https://www.mywot.com/scorecard/mapbrit.co.uk https://www.mywot.com/scorecard/xsserver.gmbh https://en.asytech.cn/check-ip/92.246.84.134	2020-03-05 18:16:33
51.15.149.20	attackbots	Mar 5 15:25:38 gw1 sshd[2905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.149.20 Mar 5 15:25:40 gw1 sshd[2905]: Failed password for invalid user ftpuser from 51.15.149.20 port 37878 ssh2 ...	2020-03-05 18:34:17
49.235.202.146	attackspambots	Mar 5 11:38:15 itv-usvr-01 sshd[15726]: Invalid user libuuid from 49.235.202.146 Mar 5 11:38:15 itv-usvr-01 sshd[15726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.202.146 Mar 5 11:38:15 itv-usvr-01 sshd[15726]: Invalid user libuuid from 49.235.202.146 Mar 5 11:38:18 itv-usvr-01 sshd[15726]: Failed password for invalid user libuuid from 49.235.202.146 port 39838 ssh2 Mar 5 11:48:06 itv-usvr-01 sshd[16195]: Invalid user sunsf from 49.235.202.146	2020-03-05 18:17:06
192.241.222.163	attackspambots	firewall-block, port(s): 8091/tcp	2020-03-05 18:23:06
106.12.17.19	attack	Mar 5 05:45:48 plusreed sshd[5855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.17.19 user=root Mar 5 05:45:50 plusreed sshd[5855]: Failed password for root from 106.12.17.19 port 58812 ssh2 ...	2020-03-05 18:46:38
92.118.161.13	attackspam	987/tcp 3388/tcp 8531/tcp... [2020-01-06/03-04]52pkt,37pt.(tcp),4pt.(udp)	2020-03-05 18:24:11

Recently Reported IPs

203.191.200.241	103.133.129.96	113.47.189.134	45.161.106.64
103.92.123.37	49.37.201.90	56.136.163.98	37.144.150.209
178.117.206.218	12.19.26.23	87.93.223.86	77.59.135.133
182.41.247.165	118.183.137.47	113.204.230.222	220.108.189.154
91.47.32.250	12.22.186.75	52.234.214.69	100.233.70.42