42.114.30.13 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: FPT Telecom Company

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 20-03-2020 03:50:17.	2020-03-20 20:23:52

Comments on same subnet:

IP	Type	Details	Datetime
42.114.30.40	attack	20/3/25@08:50:13: FAIL: Alarm-Network address from=42.114.30.40 ...	2020-03-25 22:14:49
42.114.30.237	attackbots	B: Magento admin pass test (wrong country)	2019-11-13 06:17:07
42.114.30.19	attack	Unauthorized connection attempt from IP address 42.114.30.19 on Port 445(SMB)	2019-09-17 19:16:42
42.114.30.227	attackspam	Autoban 42.114.30.227 AUTH/CONNECT	2019-08-02 04:57:19
42.114.30.237	attack	Lines containing failures of 42.114.30.237 Jul 13 16:57:10 mellenthin postfix/smtpd[31568]: connect from unknown[42.114.30.237] Jul x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=42.114.30.237	2019-07-14 07:46:07
42.114.30.208	attackspam	Unauthorized connection attempt from IP address 42.114.30.208 on Port 445(SMB)	2019-07-03 00:09:02

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.114.30.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64298
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.114.30.13.			IN	A

;; AUTHORITY SECTION:
.			376	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032000 1800 900 604800 86400

;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 20 20:23:47 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 13.30.114.42.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 13.30.114.42.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
152.136.45.81	attackspambots	2020-06-28T14:43:10.182418hostname sshd[7524]: Invalid user steve from 152.136.45.81 port 38950 2020-06-28T14:43:12.462775hostname sshd[7524]: Failed password for invalid user steve from 152.136.45.81 port 38950 ssh2 2020-06-28T14:47:45.040399hostname sshd[9592]: Invalid user yong from 152.136.45.81 port 51654 ...	2020-06-28 18:03:43
163.172.127.251	attackspambots	Jun 28 08:39:27 localhost sshd[128793]: Invalid user cyl from 163.172.127.251 port 50220 Jun 28 08:39:27 localhost sshd[128793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.127.251 Jun 28 08:39:27 localhost sshd[128793]: Invalid user cyl from 163.172.127.251 port 50220 Jun 28 08:39:28 localhost sshd[128793]: Failed password for invalid user cyl from 163.172.127.251 port 50220 ssh2 Jun 28 08:46:47 localhost sshd[129404]: Invalid user admin from 163.172.127.251 port 48732 ...	2020-06-28 17:28:29
113.169.127.67	attackspambots	06/27/2020-23:49:44.507450 113.169.127.67 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-06-28 18:04:36
192.241.228.58	attackspambots	firewall-block, port(s): 1911/tcp	2020-06-28 17:30:27
95.85.60.251	attackbots	Jun 28 09:35:55 vpn01 sshd[17637]: Failed password for root from 95.85.60.251 port 48228 ssh2 ...	2020-06-28 17:34:07
216.16.64.245	attackbots	Brute forcing email accounts	2020-06-28 17:58:11
46.100.101.35	attackspam	Unauthorized connection attempt from IP address 46.100.101.35 on Port 445(SMB)	2020-06-28 17:42:37
138.185.37.218	attackbots	firewall-block, port(s): 23/tcp	2020-06-28 17:37:54
221.195.189.154	attackspambots	Jun 28 05:49:55 serwer sshd\[26738\]: Invalid user janis from 221.195.189.154 port 57692 Jun 28 05:49:55 serwer sshd\[26738\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.195.189.154 Jun 28 05:49:57 serwer sshd\[26738\]: Failed password for invalid user janis from 221.195.189.154 port 57692 ssh2 ...	2020-06-28 17:51:11
47.241.7.235	attackspam	Jun 28 05:49:54 debian-2gb-nbg1-2 kernel: \[15574844.026884\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=47.241.7.235 DST=195.201.40.59 LEN=40 TOS=0x14 PREC=0x00 TTL=237 ID=30534 PROTO=TCP SPT=47809 DPT=20744 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-28 17:57:41
185.234.217.66	attackbotsspam	Jun 28 08:27:47 mail postfix/smtpd\[9229\]: warning: unknown\[185.234.217.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 28 08:41:54 mail postfix/smtpd\[9229\]: warning: unknown\[185.234.217.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 28 08:56:23 mail postfix/smtpd\[12255\]: warning: unknown\[185.234.217.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 28 09:39:15 mail postfix/smtpd\[12901\]: warning: unknown\[185.234.217.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-06-28 17:29:11
66.70.130.153	attackspambots	Jun 28 05:50:07 zulu412 sshd\[11567\]: Invalid user zph from 66.70.130.153 port 60598 Jun 28 05:50:07 zulu412 sshd\[11567\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.130.153 Jun 28 05:50:09 zulu412 sshd\[11567\]: Failed password for invalid user zph from 66.70.130.153 port 60598 ssh2 ...	2020-06-28 17:42:25
185.39.11.39	attackbotsspam	TCP (SYN) 185.39.11.39:56229 -> port 9030, len 44	2020-06-28 17:55:04
121.204.156.32	attackspambots	SSH Login Bruteforce	2020-06-28 17:34:50
94.101.92.192	attackspam	Automatic report - XMLRPC Attack	2020-06-28 18:05:06

Recently Reported IPs

115.214.239.206	103.233.79.17	67.221.212.90	163.172.26.162
41.210.1.100	14.186.209.252	89.244.162.171	101.109.176.38
51.140.31.53	192.241.202.251	197.43.59.205	94.191.60.71
48.25.149.67	194.9.87.32	119.192.187.75	102.114.127.15
187.189.198.207	94.242.54.58	118.100.178.160	197.36.112.33