42.114.242.102

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: FPT Telecom Company

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 42.114.242.102 on Port 445(SMB)	2020-03-27 23:00:57

Comments on same subnet:

IP	Type	Details	Datetime
42.114.242.214	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 14-04-2020 13:15:09.	2020-04-14 21:21:47
42.114.242.40	attackbots	1578890811 - 01/13/2020 05:46:51 Host: 42.114.242.40/42.114.242.40 Port: 445 TCP Blocked	2020-01-13 19:57:52
42.114.242.111	attackspam	Jan 11 05:58:23 grey postfix/smtpd\[10798\]: NOQUEUE: reject: RCPT from unknown\[42.114.242.111\]: 554 5.7.1 Service unavailable\; Client host \[42.114.242.111\] blocked using dul.dnsbl.sorbs.net\; Dynamic IP Addresses See: http://www.sorbs.net/lookup.shtml\?42.114.242.111\; from=\ to=\ proto=ESMTP helo=\<\[42.114.242.111\]\> ...	2020-01-11 13:48:50
42.114.242.159	attack	1578632273 - 01/10/2020 05:57:53 Host: 42.114.242.159/42.114.242.159 Port: 445 TCP Blocked	2020-01-10 13:47:33
42.114.242.79	attackspambots	1576421603 - 12/15/2019 15:53:23 Host: 42.114.242.79/42.114.242.79 Port: 445 TCP Blocked	2019-12-16 00:09:08
42.114.242.49	attackbots	Unauthorized connection attempt from IP address 42.114.242.49 on Port 445(SMB)	2019-11-16 20:11:49
42.114.242.129	attack	Unauthorised access (Oct 22) SRC=42.114.242.129 LEN=52 TTL=113 ID=28629 DF TCP DPT=445 WINDOW=8192 SYN	2019-10-23 06:58:02

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.114.242.102
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49488
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.114.242.102.			IN	A

;; AUTHORITY SECTION:
.			174	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032700 1800 900 604800 86400

;; Query time: 99 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 27 23:00:48 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 102.242.114.42.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 100.100.2.138, trying next server
;; Got SERVFAIL reply from 100.100.2.138, trying next server
Server:		100.100.2.136
Address:	100.100.2.136#53

** server can't find 102.242.114.42.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.242.200.38	attackbots	Dec 2 16:15:05 server sshd\[4658\]: Invalid user ts from 103.242.200.38 Dec 2 16:15:05 server sshd\[4658\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.242.200.38 Dec 2 16:15:07 server sshd\[4658\]: Failed password for invalid user ts from 103.242.200.38 port 8981 ssh2 Dec 2 16:35:48 server sshd\[10798\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.242.200.38 user=root Dec 2 16:35:49 server sshd\[10798\]: Failed password for root from 103.242.200.38 port 49059 ssh2 ...	2019-12-02 23:17:35
185.143.223.152	attack	firewall-block, port(s): 10382/tcp, 10407/tcp, 10414/tcp, 10492/tcp, 10511/tcp, 10728/tcp, 10778/tcp	2019-12-02 22:58:41
14.0.145.85	attackspam	Automatic report - Port Scan Attack	2019-12-02 23:09:32
118.238.4.201	attack	WordPress login Brute force / Web App Attack on client site.	2019-12-02 23:23:31
161.132.184.3	attackbots	Unauthorised access (Dec 2) SRC=161.132.184.3 LEN=52 TOS=0x10 PREC=0x40 TTL=112 ID=19234 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-02 23:22:50
142.93.238.162	attackspambots	21 attempts against mh-ssh on cloud.magehost.pro	2019-12-02 23:17:22
218.92.0.184	attackbotsspam	Dec 2 16:19:19 legacy sshd[28164]: Failed password for root from 218.92.0.184 port 54370 ssh2 Dec 2 16:19:32 legacy sshd[28164]: Failed password for root from 218.92.0.184 port 54370 ssh2 Dec 2 16:19:32 legacy sshd[28164]: error: maximum authentication attempts exceeded for root from 218.92.0.184 port 54370 ssh2 [preauth] ...	2019-12-02 23:19:59
118.25.12.59	attackspambots	Dec 2 10:01:02 ny01 sshd[11909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.12.59 Dec 2 10:01:04 ny01 sshd[11909]: Failed password for invalid user morishita from 118.25.12.59 port 42348 ssh2 Dec 2 10:08:51 ny01 sshd[12707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.12.59	2019-12-02 23:13:52
182.61.108.215	attackbots	ssh brute force	2019-12-02 22:57:28
47.252.9.96	attackbots	RDP Bruteforce	2019-12-02 23:26:53
222.186.175.163	attack	Dec 2 15:58:01 vps691689 sshd[24242]: Failed password for root from 222.186.175.163 port 39338 ssh2 Dec 2 15:58:15 vps691689 sshd[24242]: error: maximum authentication attempts exceeded for root from 222.186.175.163 port 39338 ssh2 [preauth] ...	2019-12-02 23:05:23
49.235.100.66	attack	web-1 [ssh] SSH Attack	2019-12-02 22:59:31
81.18.66.4	attackbots	(Dec 2) LEN=52 TTL=117 ID=4214 DF TCP DPT=445 WINDOW=8192 SYN (Dec 2) LEN=52 TTL=117 ID=19217 DF TCP DPT=1433 WINDOW=8192 SYN (Dec 2) LEN=52 TTL=117 ID=17526 DF TCP DPT=445 WINDOW=8192 SYN (Dec 2) LEN=52 TTL=115 ID=20826 DF TCP DPT=445 WINDOW=8192 SYN (Dec 2) LEN=52 TTL=117 ID=32029 DF TCP DPT=1433 WINDOW=8192 SYN (Dec 1) LEN=52 TTL=115 ID=20372 DF TCP DPT=445 WINDOW=8192 SYN (Dec 1) LEN=52 TTL=115 ID=20636 DF TCP DPT=1433 WINDOW=8192 SYN (Dec 1) LEN=52 TTL=117 ID=24440 DF TCP DPT=445 WINDOW=8192 SYN (Dec 1) LEN=52 TTL=115 ID=28206 DF TCP DPT=445 WINDOW=8192 SYN (Dec 1) LEN=52 TTL=117 ID=9417 DF TCP DPT=445 WINDOW=8192 SYN (Dec 1) LEN=52 TTL=117 ID=21556 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-02 23:08:05
175.139.243.82	attack	Dec 2 15:37:52 ArkNodeAT sshd\[20084\]: Invalid user www@!@\# from 175.139.243.82 Dec 2 15:37:52 ArkNodeAT sshd\[20084\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.243.82 Dec 2 15:37:53 ArkNodeAT sshd\[20084\]: Failed password for invalid user www@!@\# from 175.139.243.82 port 63136 ssh2	2019-12-02 23:26:04
104.248.55.99	attackspam	Dec 2 15:41:03 sso sshd[4592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.55.99 Dec 2 15:41:05 sso sshd[4592]: Failed password for invalid user kewl from 104.248.55.99 port 42576 ssh2 ...	2019-12-02 23:30:34

Recently Reported IPs

30.32.151.70	4.45.96.176	213.80.252.90	208.91.197.127
141.196.121.123	183.83.86.130	166.62.41.239	45.83.64.241
213.59.137.83	160.153.136.3	87.27.20.201	37.144.33.99
213.180.142.217	136.232.16.194	77.47.165.98	65.94.175.79
47.93.159.143	162.255.119.105	201.236.150.141	125.69.76.138