42.114.191.212

Basic Info

City: unknown

Region: unknown

Country: Vietnam

Internet Service Provider: FPT Telecom Company

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorised access (Nov 6) SRC=42.114.191.212 LEN=52 TTL=113 ID=9408 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-07 04:55:24

Comments on same subnet:

IP	Type	Details	Datetime
42.114.191.28	attack	Unauthorized connection attempt from IP address 42.114.191.28 on Port 445(SMB)	2020-03-05 21:20:59
42.114.191.239	attackbots	1583211523 - 03/03/2020 05:58:43 Host: 42.114.191.239/42.114.191.239 Port: 445 TCP Blocked	2020-03-03 13:45:18
42.114.191.63	attack	1433/tcp [2019-12-27]1pkt	2019-12-27 16:05:40
42.114.191.11	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 26-11-2019 06:25:46.	2019-11-26 17:59:55
42.114.191.186	attackbotsspam	Unauthorized connection attempt from IP address 42.114.191.186 on Port 445(SMB)	2019-11-15 05:56:34
42.114.191.3	attack	445/tcp [2019-11-01]1pkt	2019-11-01 14:30:07

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.114.191.212
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49778
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.114.191.212.			IN	A

;; AUTHORITY SECTION:
.			306	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110601 1800 900 604800 86400

;; Query time: 112 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Nov 07 04:55:20 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 212.191.114.42.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 212.191.114.42.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
95.13.90.141	attackspam	Automatic report - Port Scan Attack	2019-08-15 10:38:34
201.124.65.27	attack	Unauthorized connection attempt from IP address 201.124.65.27 on Port 445(SMB)	2019-08-15 11:13:31
103.67.240.10	attack	Unauthorized connection attempt from IP address 103.67.240.10 on Port 445(SMB)	2019-08-15 11:06:38
37.195.105.57	attack	Aug 15 04:37:41 vps691689 sshd[10826]: Failed password for root from 37.195.105.57 port 35551 ssh2 Aug 15 04:42:38 vps691689 sshd[11127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.195.105.57 ...	2019-08-15 10:43:53
113.160.149.94	attackspambots	Unauthorized connection attempt from IP address 113.160.149.94 on Port 445(SMB)	2019-08-15 10:55:52
154.8.232.205	attackbotsspam	Aug 15 03:31:07 debian sshd\[6095\]: Invalid user ssl from 154.8.232.205 port 56777 Aug 15 03:31:07 debian sshd\[6095\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.232.205 ...	2019-08-15 10:59:43
122.42.151.70	attack	Aug 15 10:15:20 webhost01 sshd[25107]: Failed password for mysql from 122.42.151.70 port 52926 ssh2 Aug 15 10:20:22 webhost01 sshd[25240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.42.151.70 ...	2019-08-15 11:26:33
95.58.194.148	attackspam	Aug 15 04:02:29 debian sshd\[7040\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.58.194.148 user=root Aug 15 04:02:30 debian sshd\[7040\]: Failed password for root from 95.58.194.148 port 39086 ssh2 ...	2019-08-15 11:19:03
211.25.209.66	attackspambots	Unauthorized connection attempt from IP address 211.25.209.66 on Port 445(SMB)	2019-08-15 10:59:17
47.92.31.50	attackspam	Aug 15 00:35:03 django sshd[37214]: Invalid user web from 47.92.31.50 Aug 15 00:35:03 django sshd[37214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.92.31.50 Aug 15 00:35:05 django sshd[37214]: Failed password for invalid user web from 47.92.31.50 port 49350 ssh2 Aug 15 00:35:05 django sshd[37215]: Received disconnect from 47.92.31.50: 11: Bye Bye Aug 15 00:47:13 django sshd[38688]: Invalid user tom from 47.92.31.50 Aug 15 00:47:13 django sshd[38688]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.92.31.50 Aug 15 00:47:15 django sshd[38688]: Failed password for invalid user tom from 47.92.31.50 port 39774 ssh2 Aug 15 00:47:15 django sshd[38689]: Received disconnect from 47.92.31.50: 11: Bye Bye Aug 15 00:48:14 django sshd[38931]: Invalid user cloud from 47.92.31.50 Aug 15 00:48:14 django sshd[38931]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh rus........ -------------------------------	2019-08-15 11:21:21
165.22.101.190	attack	" "	2019-08-15 10:45:28
216.244.66.237	attackbots	20 attempts against mh-misbehave-ban on pluto.magehost.pro	2019-08-15 11:22:37
81.169.138.56	attackbots	Aug 14 23:26:55 giraffe sshd[26680]: Invalid user uftp from 81.169.138.56 Aug 14 23:26:55 giraffe sshd[26680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.169.138.56 Aug 14 23:26:57 giraffe sshd[26680]: Failed password for invalid user uftp from 81.169.138.56 port 32948 ssh2 Aug 14 23:26:57 giraffe sshd[26680]: Received disconnect from 81.169.138.56 port 32948:11: Bye Bye [preauth] Aug 14 23:26:57 giraffe sshd[26680]: Disconnected from 81.169.138.56 port 32948 [preauth] Aug 14 23:38:17 giraffe sshd[26764]: Invalid user ruser from 81.169.138.56 Aug 14 23:38:17 giraffe sshd[26764]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.169.138.56 Aug 14 23:38:19 giraffe sshd[26764]: Failed password for invalid user ruser from 81.169.138.56 port 52398 ssh2 Aug 14 23:38:19 giraffe sshd[26764]: Received disconnect from 81.169.138.56 port 52398:11: Bye Bye [preauth] Aug 14 23:38:19 giraffe sshd........ -------------------------------	2019-08-15 10:58:48
164.77.119.18	attack	Aug 15 04:27:39 ArkNodeAT sshd\[17120\]: Invalid user ftpdata from 164.77.119.18 Aug 15 04:27:39 ArkNodeAT sshd\[17120\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.77.119.18 Aug 15 04:27:41 ArkNodeAT sshd\[17120\]: Failed password for invalid user ftpdata from 164.77.119.18 port 41626 ssh2	2019-08-15 10:41:25
91.99.75.10	attackspam	they are using alibaba china retailer name for an website with alibaba.ir address	2019-08-15 10:56:44

Recently Reported IPs

188.165.201.151	94.209.218.77	198.98.183.147	190.149.212.170
61.130.28.210	190.34.160.124	34.230.156.67	200.4.169.181
105.229.13.137	163.5.55.58	187.35.188.176	175.181.104.172
80.82.77.0	83.220.33.114	182.74.4.226	118.27.81.207
95.56.165.95	180.253.111.21	113.190.253.62	195.235.155.205