42.113.99.255 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: FPT Telecom Company

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Jul 8 08:41:37 *** sshd[25333]: Invalid user admin from 42.113.99.255	2019-07-08 19:14:19

Comments on same subnet:

IP	Type	Details	Datetime
42.113.99.103	attack	Unauthorized connection attempt detected from IP address 42.113.99.103 to port 23 [T]	2020-05-23 00:17:49
42.113.99.17	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-16 19:24:48
42.113.99.120	attackbotsspam	firewall-block, port(s): 23/tcp	2019-11-30 13:36:09
42.113.99.241	attackspam	Sep 7 23:26:12 h2034429 sshd[2595]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.113.99.241 user=r.r Sep 7 23:26:14 h2034429 sshd[2595]: Failed password for r.r from 42.113.99.241 port 44588 ssh2 Sep 7 23:26:16 h2034429 sshd[2595]: Failed password for r.r from 42.113.99.241 port 44588 ssh2 Sep 7 23:26:18 h2034429 sshd[2595]: Failed password for r.r from 42.113.99.241 port 44588 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=42.113.99.241	2019-09-08 14:20:01
42.113.99.165	attackspambots	firewall-block, port(s): 2323/tcp	2019-07-25 21:53:08
42.113.99.83	attackspambots	Sun, 21 Jul 2019 07:37:21 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-21 19:12:32

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.113.99.255
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35987
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.113.99.255.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 08 19:14:09 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 255.99.113.42.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 255.99.113.42.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.89.66.42	attackbotsspam	$f2bV_matches	2020-04-25 19:19:02
116.236.109.90	attackbotsspam	Apr 25 12:19:14 host sshd\[10302\]: Unable to negotiate with 116.236.109.90 port 45799: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 \[preauth\]	2020-04-25 19:49:36
179.110.189.96	attack	20/4/24@23:47:29: FAIL: Alarm-Telnet address from=179.110.189.96 20/4/24@23:47:29: FAIL: Alarm-Telnet address from=179.110.189.96 ...	2020-04-25 19:55:07
195.154.133.163	attack	195.154.133.163 - - [25/Apr/2020:15:41:52 +0400] "POST /GponForm/diag_Form?style/ HTTP/1.1" 502 157 "-" "curl/7.3.2" ...	2020-04-25 19:54:40
178.128.49.135	attackbotsspam	fail2ban -- 178.128.49.135 ...	2020-04-25 19:18:42
124.193.185.98	attackbotsspam	Apr 25 11:10:51 124388 sshd[22070]: Invalid user oracle from 124.193.185.98 port 47376 Apr 25 11:10:51 124388 sshd[22070]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.193.185.98 Apr 25 11:10:51 124388 sshd[22070]: Invalid user oracle from 124.193.185.98 port 47376 Apr 25 11:10:53 124388 sshd[22070]: Failed password for invalid user oracle from 124.193.185.98 port 47376 ssh2 Apr 25 11:14:28 124388 sshd[22117]: Invalid user nagiOS from 124.193.185.98 port 58380	2020-04-25 19:24:19
185.234.217.193	attack	2020-04-25 06:00:38 -> 2020-04-25 06:00:38 : [185.234.217.193]:58069 connection denied (globally) - 1 login attempts	2020-04-25 19:38:33
34.67.227.149	attack	US - - [24/Apr/2020:21:35:34 +0300] POST /wp-login.php HTTP/1.1 200 2451 - Mozilla/5.0 X11; Ubuntu; Linux x86_64; rv:62.0 Gecko/20100101 Firefox/62.0	2020-04-25 19:33:35
34.89.124.188	attackspambots	US - - [24/Apr/2020:15:39:02 +0300] POST /wp-login.php HTTP/1.1 200 2451 - Mozilla/5.0 X11; Ubuntu; Linux x86_64; rv:62.0 Gecko/20100101 Firefox/62.0	2020-04-25 19:31:05
49.235.206.148	attackspam	Apr 25 11:48:10 nextcloud sshd\[31301\]: Invalid user vz from 49.235.206.148 Apr 25 11:48:10 nextcloud sshd\[31301\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.206.148 Apr 25 11:48:12 nextcloud sshd\[31301\]: Failed password for invalid user vz from 49.235.206.148 port 50294 ssh2	2020-04-25 19:30:48
150.107.215.69	attackbotsspam	Lines containing failures of 150.107.215.69 Apr 24 04:37:45 dns01 sshd[8949]: Invalid user login from 150.107.215.69 port 14357 Apr 24 04:37:45 dns01 sshd[8949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.107.215.69 Apr 24 04:37:47 dns01 sshd[8949]: Failed password for invalid user login from 150.107.215.69 port 14357 ssh2 Apr 24 04:37:47 dns01 sshd[8949]: Connection closed by invalid user login 150.107.215.69 port 14357 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=150.107.215.69	2020-04-25 19:50:31
47.112.60.136	attackbotsspam	CN - - [24/Apr/2020:18:01:12 +0300] POST /wp-login.php HTTP/1.1 200 2254 - Mozilla/5.0 X11; Ubuntu; Linux x86_64; rv:62.0 Gecko/20100101 Firefox/62.0	2020-04-25 19:24:58
222.186.175.148	attack	2020-04-25T13:21:02.193203sd-86998 sshd[513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root 2020-04-25T13:21:04.558467sd-86998 sshd[513]: Failed password for root from 222.186.175.148 port 2046 ssh2 2020-04-25T13:21:08.558429sd-86998 sshd[513]: Failed password for root from 222.186.175.148 port 2046 ssh2 2020-04-25T13:21:02.193203sd-86998 sshd[513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root 2020-04-25T13:21:04.558467sd-86998 sshd[513]: Failed password for root from 222.186.175.148 port 2046 ssh2 2020-04-25T13:21:08.558429sd-86998 sshd[513]: Failed password for root from 222.186.175.148 port 2046 ssh2 2020-04-25T13:21:02.193203sd-86998 sshd[513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root 2020-04-25T13:21:04.558467sd-86998 sshd[513]: Failed password for root from 222.186.175.1 ...	2020-04-25 19:24:42
178.128.96.63	attack	firewall-block, port(s): 24550/tcp	2020-04-25 19:43:43
34.231.130.6	attack	Brute forcing Wordpress login	2020-04-25 19:34:53

Recently Reported IPs

131.108.191.180	179.95.142.239	31.171.0.49	131.100.79.181
152.242.67.71	131.100.79.134	93.115.27.142	180.78.1.150
45.98.98.103	81.214.12.249	220.182.30.209	131.100.132.4
38.0.84.112	21.241.140.49	210.157.24.172	138.66.205.47
95.50.27.126	131.0.122.19	131.67.21.78	133.119.39.128