City: unknown
Region: unknown
Country: Viet Nam
Internet Service Provider: FPT Telecom Company
Hostname: unknown
Organization: unknown
Usage Type: Fixed Line ISP
| Type | Details | Datetime |
|---|---|---|
| attack | 1590983371 - 06/01/2020 05:49:31 Host: 42.114.12.1/42.114.12.1 Port: 445 TCP Blocked |
2020-06-01 16:15:04 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 42.114.12.225 | attack | Unauthorized connection attempt from IP address 42.114.12.225 on Port 445(SMB) |
2020-09-01 18:47:23 |
| 42.114.126.120 | attackbots | Port probing on unauthorized port 23 |
2020-08-13 01:48:07 |
| 42.114.12.86 | attackbots | Unauthorized connection attempt from IP address 42.114.12.86 on Port 445(SMB) |
2020-06-17 01:02:57 |
| 42.114.121.152 | attack | kidness.family 42.114.121.152 [04/Jun/2020:05:58:59 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4265 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" kidness.family 42.114.121.152 [04/Jun/2020:05:59:03 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4265 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" |
2020-06-04 12:09:58 |
| 42.114.12.159 | attackspambots | Unauthorised access (Jun 3) SRC=42.114.12.159 LEN=52 TTL=106 ID=28409 DF TCP DPT=445 WINDOW=8192 SYN |
2020-06-03 14:10:09 |
| 42.114.121.128 | attackbotsspam | 1589881561 - 05/19/2020 11:46:01 Host: 42.114.121.128/42.114.121.128 Port: 445 TCP Blocked |
2020-05-20 01:56:34 |
| 42.114.12.240 | attack | 1586520216 - 04/10/2020 14:03:36 Host: 42.114.12.240/42.114.12.240 Port: 445 TCP Blocked |
2020-04-11 04:08:58 |
| 42.114.12.119 | attackbots | 20/2/19@23:48:09: FAIL: Alarm-Network address from=42.114.12.119 20/2/19@23:48:09: FAIL: Alarm-Network address from=42.114.12.119 ... |
2020-02-20 21:32:02 |
| 42.114.12.208 | attack | IP blocked |
2020-02-14 21:50:43 |
| 42.114.125.53 | attackbots | Feb 7 18:55:17 sip sshd[12222]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.114.125.53 Feb 7 18:55:17 sip sshd[12224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.114.125.53 Feb 7 18:55:19 sip sshd[12222]: Failed password for invalid user pi from 42.114.125.53 port 60210 ssh2 Feb 7 18:55:19 sip sshd[12224]: Failed password for invalid user pi from 42.114.125.53 port 60218 ssh2 |
2020-02-08 05:16:07 |
| 42.114.12.172 | attack | unauthorized connection attempt |
2020-02-04 16:50:21 |
| 42.114.120.250 | attackspam | Unauthorized connection attempt detected from IP address 42.114.120.250 to port 23 [J] |
2020-01-07 04:17:37 |
| 42.114.12.206 | attack | 1578026989 - 01/03/2020 05:49:49 Host: 42.114.12.206/42.114.12.206 Port: 445 TCP Blocked |
2020-01-03 16:13:21 |
| 42.114.12.91 | attack | 1576592404 - 12/17/2019 15:20:04 Host: 42.114.12.91/42.114.12.91 Port: 445 TCP Blocked |
2019-12-18 05:18:18 |
| 42.114.12.124 | attack | Attempt to attack host OS, exploiting network vulnerabilities, on 29-10-2019 11:40:31. |
2019-10-29 21:03:59 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.114.12.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10971
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.114.12.1. IN A
;; AUTHORITY SECTION:
. 500 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020060100 1800 900 604800 86400
;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 01 16:14:59 CST 2020
;; MSG SIZE rcvd: 115Host 1.12.114.42.in-addr.arpa not found: 2(SERVFAIL);; Got SERVFAIL reply from 183.60.83.19, trying next server
Server: 183.60.82.98
Address: 183.60.82.98#53
** server can't find 1.12.114.42.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 176.31.252.148 | attackbotsspam | Feb 9 02:01:49 pornomens sshd\[4952\]: Invalid user ikq from 176.31.252.148 port 54879 Feb 9 02:01:49 pornomens sshd\[4952\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.252.148 Feb 9 02:01:50 pornomens sshd\[4952\]: Failed password for invalid user ikq from 176.31.252.148 port 54879 ssh2 ... |
2020-02-09 09:35:34 |
| 35.199.38.243 | attackbots | Feb 9 02:01:47 legacy sshd[18700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.199.38.243 Feb 9 02:01:49 legacy sshd[18700]: Failed password for invalid user od from 35.199.38.243 port 43340 ssh2 Feb 9 02:04:48 legacy sshd[18836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.199.38.243 ... |
2020-02-09 09:33:22 |
| 178.128.59.109 | attackspambots | 2020-02-08T19:20:27.0249901495-001 sshd[45696]: Invalid user ush from 178.128.59.109 port 50738 2020-02-08T19:20:27.0296791495-001 sshd[45696]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.59.109 2020-02-08T19:20:27.0249901495-001 sshd[45696]: Invalid user ush from 178.128.59.109 port 50738 2020-02-08T19:20:28.8453761495-001 sshd[45696]: Failed password for invalid user ush from 178.128.59.109 port 50738 ssh2 2020-02-08T19:31:29.4613311495-001 sshd[46343]: Invalid user qca from 178.128.59.109 port 56998 2020-02-08T19:31:29.4644431495-001 sshd[46343]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.59.109 2020-02-08T19:31:29.4613311495-001 sshd[46343]: Invalid user qca from 178.128.59.109 port 56998 2020-02-08T19:31:31.8272241495-001 sshd[46343]: Failed password for invalid user qca from 178.128.59.109 port 56998 ssh2 2020-02-08T19:33:37.7003401495-001 sshd[46461]: Invalid user bd from 178 ... |
2020-02-09 09:29:50 |
| 71.6.135.131 | attack | Feb 9 01:46:22 debian-2gb-nbg1-2 kernel: \[3468420.707691\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=71.6.135.131 DST=195.201.40.59 LEN=33 TOS=0x10 PREC=0x00 TTL=110 ID=54087 PROTO=UDP SPT=32523 DPT=3283 LEN=13 |
2020-02-09 09:43:52 |
| 200.57.111.161 | attackspambots | Automatic report - Port Scan Attack |
2020-02-09 09:40:38 |
| 54.37.149.233 | attackbotsspam | $f2bV_matches |
2020-02-09 09:44:35 |
| 124.156.121.233 | attackbotsspam | Feb 9 01:27:25 silence02 sshd[21081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.121.233 Feb 9 01:27:27 silence02 sshd[21081]: Failed password for invalid user syz from 124.156.121.233 port 34810 ssh2 Feb 9 01:30:47 silence02 sshd[22551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.121.233 |
2020-02-09 09:15:20 |
| 148.70.183.43 | attackbots | Feb 9 02:03:02 silence02 sshd[3829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.183.43 Feb 9 02:03:04 silence02 sshd[3829]: Failed password for invalid user vra from 148.70.183.43 port 35917 ssh2 Feb 9 02:06:25 silence02 sshd[5325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.183.43 |
2020-02-09 09:22:18 |
| 111.229.156.243 | attackbots | Lines containing failures of 111.229.156.243 Feb 9 01:12:48 keyhelp sshd[32350]: Invalid user cbq from 111.229.156.243 port 58660 Feb 9 01:12:48 keyhelp sshd[32350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.156.243 Feb 9 01:12:51 keyhelp sshd[32350]: Failed password for invalid user cbq from 111.229.156.243 port 58660 ssh2 Feb 9 01:12:51 keyhelp sshd[32350]: Received disconnect from 111.229.156.243 port 58660:11: Bye Bye [preauth] Feb 9 01:12:51 keyhelp sshd[32350]: Disconnected from invalid user cbq 111.229.156.243 port 58660 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=111.229.156.243 |
2020-02-09 09:19:56 |
| 89.248.168.217 | attackbotsspam | 89.248.168.217 was recorded 22 times by 11 hosts attempting to connect to the following ports: 40859,41030,22547. Incident counter (4h, 24h, all-time): 22, 132, 17691 |
2020-02-09 09:25:14 |
| 107.6.183.229 | attack | Port scan: Attack repeated for 24 hours |
2020-02-09 09:49:51 |
| 221.125.165.59 | attack | 2020-02-09T00:42:48.164061abusebot-2.cloudsearch.cf sshd[27032]: Invalid user mim from 221.125.165.59 port 51198 2020-02-09T00:42:48.170228abusebot-2.cloudsearch.cf sshd[27032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.125.165.59 2020-02-09T00:42:48.164061abusebot-2.cloudsearch.cf sshd[27032]: Invalid user mim from 221.125.165.59 port 51198 2020-02-09T00:42:50.748501abusebot-2.cloudsearch.cf sshd[27032]: Failed password for invalid user mim from 221.125.165.59 port 51198 ssh2 2020-02-09T00:46:44.393835abusebot-2.cloudsearch.cf sshd[27270]: Invalid user ax from 221.125.165.59 port 56854 2020-02-09T00:46:44.399333abusebot-2.cloudsearch.cf sshd[27270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.125.165.59 2020-02-09T00:46:44.393835abusebot-2.cloudsearch.cf sshd[27270]: Invalid user ax from 221.125.165.59 port 56854 2020-02-09T00:46:45.708146abusebot-2.cloudsearch.cf sshd[27270]: Failed pass ... |
2020-02-09 09:48:58 |
| 47.102.204.52 | attackspambots | RDP Brute-Force (Grieskirchen RZ1) |
2020-02-09 09:32:51 |
| 118.24.13.248 | attackbotsspam | 2020-02-08T19:12:47.1427771495-001 sshd[45216]: Invalid user qcz from 118.24.13.248 port 58740 2020-02-08T19:12:47.1458241495-001 sshd[45216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.13.248 2020-02-08T19:12:47.1427771495-001 sshd[45216]: Invalid user qcz from 118.24.13.248 port 58740 2020-02-08T19:12:49.1426421495-001 sshd[45216]: Failed password for invalid user qcz from 118.24.13.248 port 58740 ssh2 2020-02-08T19:30:48.4451491495-001 sshd[46319]: Invalid user se from 118.24.13.248 port 33230 2020-02-08T19:30:48.4511111495-001 sshd[46319]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.13.248 2020-02-08T19:30:48.4451491495-001 sshd[46319]: Invalid user se from 118.24.13.248 port 33230 2020-02-08T19:30:50.5181191495-001 sshd[46319]: Failed password for invalid user se from 118.24.13.248 port 33230 ssh2 2020-02-08T19:33:27.5346801495-001 sshd[46428]: Invalid user xoa from 118.24.13.248 ... |
2020-02-09 09:45:09 |
| 192.241.185.120 | attackbotsspam | $f2bV_matches |
2020-02-09 09:29:16 |