City: unknown
Region: unknown
Country: Viet Nam
Internet Service Provider: FPT Telecom Company
Hostname: unknown
Organization: unknown
Usage Type: Fixed Line ISP
| Type | Details | Datetime |
|---|---|---|
| attack | 1578026989 - 01/03/2020 05:49:49 Host: 42.114.12.206/42.114.12.206 Port: 445 TCP Blocked |
2020-01-03 16:13:21 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 42.114.12.225 | attack | Unauthorized connection attempt from IP address 42.114.12.225 on Port 445(SMB) |
2020-09-01 18:47:23 |
| 42.114.126.120 | attackbots | Port probing on unauthorized port 23 |
2020-08-13 01:48:07 |
| 42.114.12.86 | attackbots | Unauthorized connection attempt from IP address 42.114.12.86 on Port 445(SMB) |
2020-06-17 01:02:57 |
| 42.114.121.152 | attack | kidness.family 42.114.121.152 [04/Jun/2020:05:58:59 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4265 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" kidness.family 42.114.121.152 [04/Jun/2020:05:59:03 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4265 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" |
2020-06-04 12:09:58 |
| 42.114.12.159 | attackspambots | Unauthorised access (Jun 3) SRC=42.114.12.159 LEN=52 TTL=106 ID=28409 DF TCP DPT=445 WINDOW=8192 SYN |
2020-06-03 14:10:09 |
| 42.114.12.1 | attack | 1590983371 - 06/01/2020 05:49:31 Host: 42.114.12.1/42.114.12.1 Port: 445 TCP Blocked |
2020-06-01 16:15:04 |
| 42.114.121.128 | attackbotsspam | 1589881561 - 05/19/2020 11:46:01 Host: 42.114.121.128/42.114.121.128 Port: 445 TCP Blocked |
2020-05-20 01:56:34 |
| 42.114.12.240 | attack | 1586520216 - 04/10/2020 14:03:36 Host: 42.114.12.240/42.114.12.240 Port: 445 TCP Blocked |
2020-04-11 04:08:58 |
| 42.114.12.119 | attackbots | 20/2/19@23:48:09: FAIL: Alarm-Network address from=42.114.12.119 20/2/19@23:48:09: FAIL: Alarm-Network address from=42.114.12.119 ... |
2020-02-20 21:32:02 |
| 42.114.12.208 | attack | IP blocked |
2020-02-14 21:50:43 |
| 42.114.125.53 | attackbots | Feb 7 18:55:17 sip sshd[12222]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.114.125.53 Feb 7 18:55:17 sip sshd[12224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.114.125.53 Feb 7 18:55:19 sip sshd[12222]: Failed password for invalid user pi from 42.114.125.53 port 60210 ssh2 Feb 7 18:55:19 sip sshd[12224]: Failed password for invalid user pi from 42.114.125.53 port 60218 ssh2 |
2020-02-08 05:16:07 |
| 42.114.12.172 | attack | unauthorized connection attempt |
2020-02-04 16:50:21 |
| 42.114.120.250 | attackspam | Unauthorized connection attempt detected from IP address 42.114.120.250 to port 23 [J] |
2020-01-07 04:17:37 |
| 42.114.12.91 | attack | 1576592404 - 12/17/2019 15:20:04 Host: 42.114.12.91/42.114.12.91 Port: 445 TCP Blocked |
2019-12-18 05:18:18 |
| 42.114.12.124 | attack | Attempt to attack host OS, exploiting network vulnerabilities, on 29-10-2019 11:40:31. |
2019-10-29 21:03:59 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.114.12.206
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14880
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.114.12.206. IN A
;; AUTHORITY SECTION:
. 367 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020010300 1800 900 604800 86400
;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 03 16:13:17 CST 2020
;; MSG SIZE rcvd: 117Host 206.12.114.42.in-addr.arpa not found: 2(SERVFAIL);; Got SERVFAIL reply from 183.60.83.19, trying next server
Server: 183.60.82.98
Address: 183.60.82.98#53
** server can't find 206.12.114.42.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 180.64.71.114 | attack | 2019-09-30T18:19:15.090352abusebot.cloudsearch.cf sshd\[26009\]: Invalid user oracle from 180.64.71.114 port 50653 |
2019-10-01 04:14:36 |
| 117.1.94.12 | attack | Honeypot attack, port: 23, PTR: localhost. |
2019-10-01 04:17:23 |
| 103.227.241.51 | attack | Honeypot attack, port: 445, PTR: smtp.usc-indonesia.co.id. |
2019-10-01 04:05:36 |
| 159.203.201.67 | attackbotsspam | 60312/tcp 55476/tcp 43589/tcp... [2019-09-11/30]21pkt,18pt.(tcp) |
2019-10-01 04:18:18 |
| 92.56.151.98 | attackspambots | 23/tcp [2019-09-30]1pkt |
2019-10-01 04:25:49 |
| 92.119.160.40 | attack | Sep 30 21:14:34 h2177944 kernel: \[2747084.070213\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.40 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=217 PROTO=TCP SPT=42969 DPT=32689 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 30 21:31:17 h2177944 kernel: \[2748086.363731\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.40 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=22909 PROTO=TCP SPT=42969 DPT=32289 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 30 21:33:21 h2177944 kernel: \[2748210.667814\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.40 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=53244 PROTO=TCP SPT=42969 DPT=33890 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 30 21:41:09 h2177944 kernel: \[2748678.860892\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.40 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=9216 PROTO=TCP SPT=42969 DPT=32389 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 30 21:44:21 h2177944 kernel: \[2748870.567983\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.40 DST=85.214.117. |
2019-10-01 03:57:53 |
| 92.247.169.248 | attack | 23/tcp [2019-09-30]1pkt |
2019-10-01 04:07:44 |
| 104.169.160.4 | attackbotsspam | firewall-block, port(s): 9200/tcp |
2019-10-01 04:30:42 |
| 222.186.173.180 | attack | Sep 30 19:58:06 marvibiene sshd[10121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.180 user=root Sep 30 19:58:08 marvibiene sshd[10121]: Failed password for root from 222.186.173.180 port 24230 ssh2 Sep 30 19:58:13 marvibiene sshd[10121]: Failed password for root from 222.186.173.180 port 24230 ssh2 Sep 30 19:58:06 marvibiene sshd[10121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.180 user=root Sep 30 19:58:08 marvibiene sshd[10121]: Failed password for root from 222.186.173.180 port 24230 ssh2 Sep 30 19:58:13 marvibiene sshd[10121]: Failed password for root from 222.186.173.180 port 24230 ssh2 ... |
2019-10-01 04:12:15 |
| 182.61.58.166 | attackspam | Sep 30 04:12:51 friendsofhawaii sshd\[20048\]: Invalid user intekhab from 182.61.58.166 Sep 30 04:12:51 friendsofhawaii sshd\[20048\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.58.166 Sep 30 04:12:54 friendsofhawaii sshd\[20048\]: Failed password for invalid user intekhab from 182.61.58.166 port 37520 ssh2 Sep 30 04:17:58 friendsofhawaii sshd\[20453\]: Invalid user n from 182.61.58.166 Sep 30 04:17:58 friendsofhawaii sshd\[20453\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.58.166 |
2019-10-01 04:06:47 |
| 110.88.25.101 | attackspambots | Automated reporting of FTP Brute Force |
2019-10-01 04:32:36 |
| 151.52.110.71 | attackbotsspam | Telnet/23 MH Probe, BF, Hack - |
2019-10-01 04:22:41 |
| 114.39.160.113 | attackbots | 23/tcp [2019-09-30]1pkt |
2019-10-01 04:31:34 |
| 109.232.106.169 | attackbots | firewall-block, port(s): 34567/tcp |
2019-10-01 04:27:27 |
| 71.72.12.0 | attackspam | 2019-09-30T14:11:30.101213ns525875 sshd\[27406\]: Invalid user http from 71.72.12.0 port 52056 2019-09-30T14:11:30.105089ns525875 sshd\[27406\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=cpe-71-72-12-0.neo.res.rr.com 2019-09-30T14:11:32.370674ns525875 sshd\[27406\]: Failed password for invalid user http from 71.72.12.0 port 52056 ssh2 2019-09-30T14:20:13.468505ns525875 sshd\[3043\]: Invalid user deploy from 71.72.12.0 port 34678 ... |
2019-10-01 04:06:13 |