42.115.4.53 - IPInfo

Basic Info

City: Hanoi

Region: Ha Noi

Country: Vietnam

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
42.115.49.238	attackbots	Unauthorized connection attempt from IP address 42.115.49.238 on Port 445(SMB)	2020-06-21 21:43:37
42.115.4.148	attack	Unauthorized connection attempt from IP address 42.115.4.148 on Port 445(SMB)	2020-06-10 02:43:15
42.115.43.47	attackbots	Email rejected due to spam filtering	2020-05-30 15:17:55
42.115.4.38	attackspambots	Email rejected due to spam filtering	2020-04-23 22:59:55
42.115.4.68	attack	Unauthorized connection attempt detected from IP address 42.115.4.68 to port 8080 [T]	2020-04-23 22:15:19
42.115.49.223	attack	Fail2Ban Ban Triggered	2020-04-16 14:17:43
42.115.43.89	attack	unauthorized connection attempt	2020-02-07 14:15:49
42.115.46.254	attack	Unauthorized connection attempt detected from IP address 42.115.46.254 to port 8080 [J]	2020-01-07 01:37:29
42.115.43.42	attack	Unauthorized connection attempt detected from IP address 42.115.43.42 to port 80	2019-12-31 02:16:28

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.115.4.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17378
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.115.4.53.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021300 1800 900 604800 86400

;; Query time: 43 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 13 21:21:15 CST 2025
;; MSG SIZE  rcvd: 104

Host info

b'Host 53.4.115.42.in-addr.arpa not found: 2(SERVFAIL)
'

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 53.4.115.42.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.249.134.58	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 24-11-2019 14:45:22.	2019-11-25 05:47:57
192.241.246.50	attackbots	2019-11-24T15:15:42.122295ns386461 sshd\[26473\]: Invalid user administrator from 192.241.246.50 port 59044 2019-11-24T15:15:42.127006ns386461 sshd\[26473\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.246.50 2019-11-24T15:15:44.290183ns386461 sshd\[26473\]: Failed password for invalid user administrator from 192.241.246.50 port 59044 ssh2 2019-11-24T15:44:36.016244ns386461 sshd\[19832\]: Invalid user borris from 192.241.246.50 port 48968 2019-11-24T15:44:36.020962ns386461 sshd\[19832\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.246.50 ...	2019-11-25 06:19:02
178.128.21.32	attackbots	Repeated brute force against a port	2019-11-25 06:15:38
92.119.160.15	attackbots	Nov 24 16:45:43 h2177944 kernel: \[7485695.745920\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.15 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=30983 PROTO=TCP SPT=43852 DPT=3337 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 24 16:46:38 h2177944 kernel: \[7485750.495109\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.15 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=52118 PROTO=TCP SPT=43852 DPT=7000 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 24 16:47:06 h2177944 kernel: \[7485779.116096\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.15 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=45889 PROTO=TCP SPT=43852 DPT=1002 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 24 16:49:12 h2177944 kernel: \[7485904.262583\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.15 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=50607 PROTO=TCP SPT=43852 DPT=3308 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 24 16:49:14 h2177944 kernel: \[7485906.393151\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.15 DST=85.214.117.9	2019-11-25 06:07:46
77.247.110.58	attackbotsspam	ET SCAN Sipvicious Scan - port: 5060 proto: UDP cat: Attempted Information Leak	2019-11-25 05:52:23
46.101.48.191	attackspambots	Nov 24 18:50:27 [host] sshd[19748]: Invalid user ljm7206 from 46.101.48.191 Nov 24 18:50:27 [host] sshd[19748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.48.191 Nov 24 18:50:29 [host] sshd[19748]: Failed password for invalid user ljm7206 from 46.101.48.191 port 44608 ssh2	2019-11-25 06:24:30
177.21.133.81	attackspam	Automatic report - Port Scan Attack	2019-11-25 05:53:13
1.54.206.54	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 24-11-2019 14:45:22.	2019-11-25 05:50:22
14.161.123.103	attackbotsspam	Nov 24 15:31:46 mxgate1 postfix/postscreen[31810]: CONNECT from [14.161.123.103]:34604 to [176.31.12.44]:25 Nov 24 15:31:47 mxgate1 postfix/dnsblog[31995]: addr 14.161.123.103 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 24 15:31:47 mxgate1 postfix/dnsblog[31994]: addr 14.161.123.103 listed by domain zen.spamhaus.org as 127.0.0.11 Nov 24 15:31:47 mxgate1 postfix/dnsblog[31994]: addr 14.161.123.103 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 24 15:31:47 mxgate1 postfix/dnsblog[31996]: addr 14.161.123.103 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 24 15:31:52 mxgate1 postfix/postscreen[31810]: DNSBL rank 4 for [14.161.123.103]:34604 Nov x@x Nov 24 15:31:53 mxgate1 postfix/postscreen[31810]: HANGUP after 1.3 from [14.161.123.103]:34604 in tests after SMTP handshake Nov 24 15:31:53 mxgate1 postfix/postscreen[31810]: DISCONNECT [14.161.123.103]:34604 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.161.123.103	2019-11-25 05:57:11
52.232.31.246	attackbotsspam	SSH Brute-Force reported by Fail2Ban	2019-11-25 06:08:00
188.190.195.156	attackspam	Automatic report - Port Scan Attack	2019-11-25 06:10:10
117.2.166.67	attackbotsspam	Unauthorized connection attempt from IP address 117.2.166.67 on Port 445(SMB)	2019-11-25 05:53:52
171.224.181.229	attackspam	Unauthorized connection attempt from IP address 171.224.181.229 on Port 445(SMB)	2019-11-25 06:03:39
117.150.1.31	attack	Unauthorized connection attempt from IP address 117.150.1.31 on Port 3389(RDP)	2019-11-25 05:55:39
154.8.185.122	attackspam	2019-11-24T12:28:08.326641ns547587 sshd\[8948\]: Invalid user glenrose from 154.8.185.122 port 40558 2019-11-24T12:28:08.331775ns547587 sshd\[8948\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.185.122 2019-11-24T12:28:10.223074ns547587 sshd\[8948\]: Failed password for invalid user glenrose from 154.8.185.122 port 40558 ssh2 2019-11-24T12:35:41.925508ns547587 sshd\[11895\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.185.122 user=root ...	2019-11-25 06:00:27

Recently Reported IPs

20.72.217.132	77.16.64.81	79.52.173.167	174.234.44.119
75.185.53.107	223.222.0.240	83.116.109.204	43.11.222.179
186.189.165.123	56.19.181.69	169.167.235.146	219.242.196.23
107.79.1.22	195.112.139.113	12.193.172.75	152.153.173.111
127.160.11.236	226.166.88.243	198.226.57.21	219.129.15.129