42.114.151.134

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: FPT Telecom Company

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Attempt to attack host OS, exploiting network vulnerabilities, on 03-04-2020 04:50:11.	2020-04-03 17:17:59
attack	unauthorized connection attempt	2020-01-28 14:58:00

Comments on same subnet:

IP	Type	Details	Datetime
42.114.151.75	attack	1590983239 - 06/01/2020 05:47:19 Host: 42.114.151.75/42.114.151.75 Port: 445 TCP Blocked	2020-06-01 17:50:57
42.114.151.71	attackspam	Unauthorized connection attempt from IP address 42.114.151.71 on Port 445(SMB)	2020-03-07 01:55:28
42.114.151.204	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-18 06:32:08
42.114.151.195	attackspam	Unauthorized connection attempt detected from IP address 42.114.151.195 to port 445	2019-12-17 23:06:24
42.114.151.80	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 13-12-2019 15:55:11.	2019-12-14 05:12:43
42.114.151.66	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2019-11-05 02:22:51
42.114.151.28	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 04-11-2019 04:55:30.	2019-11-04 14:25:49

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.114.151.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1999
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.114.151.134.			IN	A

;; AUTHORITY SECTION:
.			447	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012800 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 28 14:57:52 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 134.151.114.42.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 134.151.114.42.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
152.136.133.70	attack	Jun 4 06:58:29 ns381471 sshd[7017]: Failed password for root from 152.136.133.70 port 45304 ssh2	2020-06-04 15:35:02
73.200.119.141	attackbots	Jun 4 07:59:08 vps647732 sshd[31859]: Failed password for root from 73.200.119.141 port 43304 ssh2 ...	2020-06-04 15:49:31
5.135.164.201	attackbots	$f2bV_matches	2020-06-04 15:52:08
120.131.3.144	attack	IP blocked	2020-06-04 16:12:12
111.231.54.28	attack	Jun 4 10:09:10 ift sshd\[41382\]: Failed password for root from 111.231.54.28 port 39196 ssh2Jun 4 10:10:40 ift sshd\[41842\]: Failed password for root from 111.231.54.28 port 34178 ssh2Jun 4 10:12:51 ift sshd\[42019\]: Failed password for root from 111.231.54.28 port 57380 ssh2Jun 4 10:14:48 ift sshd\[42151\]: Failed password for root from 111.231.54.28 port 52342 ssh2Jun 4 10:16:50 ift sshd\[42525\]: Failed password for root from 111.231.54.28 port 47310 ssh2 ...	2020-06-04 15:43:43
222.186.175.151	attack	Jun 4 04:21:01 firewall sshd[31862]: Failed password for root from 222.186.175.151 port 55334 ssh2 Jun 4 04:21:05 firewall sshd[31862]: Failed password for root from 222.186.175.151 port 55334 ssh2 Jun 4 04:21:08 firewall sshd[31862]: Failed password for root from 222.186.175.151 port 55334 ssh2 ...	2020-06-04 15:40:42
192.144.192.201	attackspam	Jun 4 11:22:45 gw1 sshd[26722]: Failed password for root from 192.144.192.201 port 47068 ssh2 ...	2020-06-04 15:39:42
222.239.28.178	attackspam	Jun 4 07:57:58 santamaria sshd\[819\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.239.28.178 user=root Jun 4 07:58:00 santamaria sshd\[819\]: Failed password for root from 222.239.28.178 port 32854 ssh2 Jun 4 08:00:32 santamaria sshd\[869\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.239.28.178 user=root ...	2020-06-04 15:33:55
185.176.27.210	attackbots	scans 12 times in preceeding hours on the ports (in chronological order) 9272 9126 9259 8845 8559 9491 8811 8593 9267 8537 8876 8522 resulting in total of 298 scans from 185.176.27.0/24 block.	2020-06-04 15:59:50
116.196.107.128	attackspam	Jun 3 20:15:09 php1 sshd\[24927\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.107.128 user=root Jun 3 20:15:12 php1 sshd\[24927\]: Failed password for root from 116.196.107.128 port 53652 ssh2 Jun 3 20:18:36 php1 sshd\[25230\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.107.128 user=root Jun 3 20:18:38 php1 sshd\[25230\]: Failed password for root from 116.196.107.128 port 45478 ssh2 Jun 3 20:22:07 php1 sshd\[25506\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.107.128 user=root	2020-06-04 16:02:34
212.129.38.177	attack	2020-06-04T05:46:30.341650sd-86998 sshd[29298]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.38.177 user=root 2020-06-04T05:46:32.011078sd-86998 sshd[29298]: Failed password for root from 212.129.38.177 port 39660 ssh2 2020-06-04T05:49:52.554940sd-86998 sshd[30339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.38.177 user=root 2020-06-04T05:49:55.286937sd-86998 sshd[30339]: Failed password for root from 212.129.38.177 port 42578 ssh2 2020-06-04T05:53:05.622151sd-86998 sshd[31338]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.38.177 user=root 2020-06-04T05:53:07.853585sd-86998 sshd[31338]: Failed password for root from 212.129.38.177 port 45492 ssh2 ...	2020-06-04 15:57:58
14.248.83.163	attackspam	"Unauthorized connection attempt on SSHD detected"	2020-06-04 16:10:58
222.82.253.106	attack	Jun 4 08:54:45 mellenthin sshd[9752]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.82.253.106 user=root Jun 4 08:54:47 mellenthin sshd[9752]: Failed password for invalid user root from 222.82.253.106 port 35964 ssh2	2020-06-04 15:42:40
113.88.138.69	attackspam	Lines containing failures of 113.88.138.69 Jun 2 18:17:01 mailserver sshd[31447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.88.138.69 user=r.r Jun 2 18:17:03 mailserver sshd[31447]: Failed password for r.r from 113.88.138.69 port 40715 ssh2 Jun 2 18:17:03 mailserver sshd[31447]: Received disconnect from 113.88.138.69 port 40715:11: Bye Bye [preauth] Jun 2 18:17:03 mailserver sshd[31447]: Disconnected from authenticating user r.r 113.88.138.69 port 40715 [preauth] Jun 2 18:24:11 mailserver sshd[32226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.88.138.69 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=113.88.138.69	2020-06-04 16:08:23
156.96.114.195	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-06-04 16:03:18

Recently Reported IPs

78.189.20.219	45.172.55.3	42.227.187.117	41.57.104.246
37.183.145.229	2.237.19.162	1.49.6.68	220.178.145.0
202.178.124.38	192.95.42.16	188.191.28.23	182.150.58.125
177.131.125.163	24.176.184.137	103.79.78.40	89.248.160.175
87.226.217.246	197.40.87.129	195.158.100.201	178.32.76.141