42.114.1.213 - IPInfo

Basic Info

City: Hanoi

Region: Hanoi

Country: Vietnam

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
42.114.12.225	attack	Unauthorized connection attempt from IP address 42.114.12.225 on Port 445(SMB)	2020-09-01 18:47:23
42.114.112.213	attackbotsspam	1598732822 - 08/29/2020 22:27:02 Host: 42.114.112.213/42.114.112.213 Port: 445 TCP Blocked	2020-08-30 05:43:45
42.114.162.107	attackspambots	1598616236 - 08/28/2020 14:03:56 Host: 42.114.162.107/42.114.162.107 Port: 445 TCP Blocked	2020-08-29 02:13:34
42.114.113.98	attackspambots	Unauthorized connection attempt from IP address 42.114.113.98 on Port 445(SMB)	2020-08-13 20:22:35
42.114.126.120	attackbots	Port probing on unauthorized port 23	2020-08-13 01:48:07
42.114.195.170	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-08-02 02:41:52
42.114.195.148	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-08-02 01:39:51
42.114.162.15	attack	1594439408 - 07/11/2020 05:50:08 Host: 42.114.162.15/42.114.162.15 Port: 445 TCP Blocked	2020-07-11 18:27:05
42.114.150.19	attack	TCP (SYN) 42.114.150.19:24377 -> port 23, len 44	2020-07-09 19:36:07
42.114.162.87	attackbots	1593847074 - 07/04/2020 09:17:54 Host: 42.114.162.87/42.114.162.87 Port: 445 TCP Blocked	2020-07-04 18:53:32
42.114.170.212	attackbots	Jun 28 05:53:44 debian-2gb-nbg1-2 kernel: \[15575073.274730\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=42.114.170.212 DST=195.201.40.59 LEN=130 TOS=0x00 PREC=0x00 TTL=112 ID=47779 PROTO=UDP SPT=52231 DPT=58592 LEN=110	2020-06-28 15:01:21
42.114.12.86	attackbots	Unauthorized connection attempt from IP address 42.114.12.86 on Port 445(SMB)	2020-06-17 01:02:57
42.114.170.55	attackbotsspam	1591588018 - 06/08/2020 05:46:58 Host: 42.114.170.55/42.114.170.55 Port: 445 TCP Blocked	2020-06-08 19:06:25
42.114.182.94	attack	445/tcp 445/tcp [2020-06-08]2pkt	2020-06-08 13:39:36
42.114.121.152	attack	kidness.family 42.114.121.152 [04/Jun/2020:05:58:59 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4265 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" kidness.family 42.114.121.152 [04/Jun/2020:05:59:03 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4265 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36"	2020-06-04 12:09:58

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.114.1.213
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50478
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.114.1.213.			IN	A

;; AUTHORITY SECTION:
.			220	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2021112300 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 23 18:42:40 CST 2021
;; MSG SIZE  rcvd: 105

Host info

Host 213.1.114.42.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 213.1.114.42.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.99.117.194	attackbotsspam	Invalid user mot from 14.99.117.194 port 44210	2020-08-23 02:38:17
111.161.74.106	attackspambots	2020-08-22T19:40:24.899761ks3355764 sshd[18079]: Invalid user admin from 111.161.74.106 port 45589 2020-08-22T19:40:26.715141ks3355764 sshd[18079]: Failed password for invalid user admin from 111.161.74.106 port 45589 ssh2 ...	2020-08-23 02:30:17
87.117.9.232	attackspam	Unauthorised access (Aug 22) SRC=87.117.9.232 LEN=52 TTL=53 ID=21254 DF TCP DPT=445 WINDOW=8192 SYN	2020-08-23 02:08:23
46.249.32.113	attackspam	Aug 19 14:45:20 vh1 sshd[18151]: reveeclipse mapping checking getaddrinfo for reveeclipse.hostingbb.com [46.249.32.113] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 19 14:45:20 vh1 sshd[18151]: Invalid user fake from 46.249.32.113 Aug 19 14:45:20 vh1 sshd[18151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.249.32.113 Aug 19 14:45:22 vh1 sshd[18151]: Failed password for invalid user fake from 46.249.32.113 port 37020 ssh2 Aug 19 14:45:22 vh1 sshd[18152]: Received disconnect from 46.249.32.113: 11: Bye Bye Aug 19 14:45:22 vh1 sshd[18153]: reveeclipse mapping checking getaddrinfo for reveeclipse.hostingbb.com [46.249.32.113] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 19 14:45:22 vh1 sshd[18153]: Invalid user admin from 46.249.32.113 Aug 19 14:45:22 vh1 sshd[18153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.249.32.113 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=46.249.3	2020-08-23 02:36:14
14.162.167.108	attack	Aug 22 14:10:11 ourumov-web sshd\[15151\]: Invalid user cisco from 14.162.167.108 port 46779 Aug 22 14:10:12 ourumov-web sshd\[15151\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.162.167.108 Aug 22 14:10:13 ourumov-web sshd\[15151\]: Failed password for invalid user cisco from 14.162.167.108 port 46779 ssh2 ...	2020-08-23 02:27:09
59.54.16.252	attack	Email rejected due to spam filtering	2020-08-23 02:07:27
36.57.64.21	attack	Aug 22 15:32:19 srv01 postfix/smtpd\[16084\]: warning: unknown\[36.57.64.21\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 22 15:35:46 srv01 postfix/smtpd\[11243\]: warning: unknown\[36.57.64.21\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 22 15:35:58 srv01 postfix/smtpd\[11243\]: warning: unknown\[36.57.64.21\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 22 15:36:14 srv01 postfix/smtpd\[11243\]: warning: unknown\[36.57.64.21\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 22 15:46:12 srv01 postfix/smtpd\[11242\]: warning: unknown\[36.57.64.21\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-23 02:05:57
154.204.30.164	attackspambots	Aug 22 19:42:10 server sshd[57798]: Failed password for root from 154.204.30.164 port 50884 ssh2 Aug 22 19:43:43 server sshd[58551]: Failed password for root from 154.204.30.164 port 35111 ssh2 Aug 22 19:46:23 server sshd[59920]: Failed password for invalid user share from 154.204.30.164 port 47571 ssh2	2020-08-23 02:12:28
186.147.129.110	attackbotsspam	detected by Fail2Ban	2020-08-23 02:24:22
167.172.117.26	attackbotsspam	SSH Brute-force	2020-08-23 02:03:55
23.160.208.245	attackspambots	2020-08-22T19:44:46.882841lavrinenko.info sshd[24678]: Failed password for root from 23.160.208.245 port 39657 ssh2 2020-08-22T19:44:49.015402lavrinenko.info sshd[24678]: Failed password for root from 23.160.208.245 port 39657 ssh2 2020-08-22T19:44:52.457608lavrinenko.info sshd[24678]: Failed password for root from 23.160.208.245 port 39657 ssh2 2020-08-22T19:44:56.402649lavrinenko.info sshd[24678]: Failed password for root from 23.160.208.245 port 39657 ssh2 2020-08-22T19:44:59.066569lavrinenko.info sshd[24678]: Failed password for root from 23.160.208.245 port 39657 ssh2 ...	2020-08-23 02:05:41
193.112.102.52	attack	Aug 22 13:13:57 124388 sshd[20715]: Invalid user ny from 193.112.102.52 port 64455 Aug 22 13:13:57 124388 sshd[20715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.102.52 Aug 22 13:13:57 124388 sshd[20715]: Invalid user ny from 193.112.102.52 port 64455 Aug 22 13:13:59 124388 sshd[20715]: Failed password for invalid user ny from 193.112.102.52 port 64455 ssh2 Aug 22 13:18:57 124388 sshd[20903]: Invalid user alvaro from 193.112.102.52 port 59698	2020-08-23 02:12:00
119.45.141.115	attackbots	Time: Sat Aug 22 17:28:21 2020 +0000 IP: 119.45.141.115 (-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Aug 22 17:14:32 ca-18-ede1 sshd[62469]: Invalid user sir from 119.45.141.115 port 39618 Aug 22 17:14:35 ca-18-ede1 sshd[62469]: Failed password for invalid user sir from 119.45.141.115 port 39618 ssh2 Aug 22 17:25:46 ca-18-ede1 sshd[63727]: Invalid user swapnil from 119.45.141.115 port 42972 Aug 22 17:25:47 ca-18-ede1 sshd[63727]: Failed password for invalid user swapnil from 119.45.141.115 port 42972 ssh2 Aug 22 17:28:17 ca-18-ede1 sshd[64025]: Invalid user stanley from 119.45.141.115 port 39868	2020-08-23 02:20:03
185.176.27.182	attackbots	[H1.VM1] Blocked by UFW	2020-08-23 02:23:23
45.129.33.19	attackbotsspam	ET DROP Dshield Block Listed Source group 1 - port: 9050 proto: tcp cat: Misc Attackbytes: 60	2020-08-23 02:37:53

Recently Reported IPs

216.226.144.239	138.120.252.54	135.247.130.110	143.209.238.8
162.158.92.69	206.189.92.138	36.74.45.200	68.183.107.64
39.153.233.194	187.163.40.58	201.162.241.23	197.185.102.117
213.230.118.249	135.148.57.66	109.81.210.155	160.16.153.170
174.204.196.12	45.140.152.154	45.140.152.133	45.139.213.219