42.115.52.139 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: FPT Telecom Company

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 42.115.52.139 to port 23 [T]	2020-02-01 18:37:27
attackspambots	Unauthorized connection attempt detected from IP address 42.115.52.139 to port 7574 [T]	2020-01-26 08:47:39

Comments on same subnet:

IP	Type	Details	Datetime
42.115.52.206	attackbots	Automatic report - Banned IP Access	2020-06-07 22:29:47
42.115.52.179	attack	DATE:2020-05-31 22:23:40, IP:42.115.52.179, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-06-01 07:21:06
42.115.52.206	attackspam	" "	2020-05-22 17:56:18
42.115.52.206	attackspambots	Automatic report - Banned IP Access	2019-11-18 04:29:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.115.52.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32549
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.115.52.139.			IN	A

;; AUTHORITY SECTION:
.			530	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012502 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 26 08:47:34 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 139.52.115.42.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 139.52.115.42.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
92.241.17.194	attackbots	Unauthorized connection attempt from IP address 92.241.17.194 on Port 445(SMB)	2020-07-04 03:08:03
51.83.75.97	attack	detected by Fail2Ban	2020-07-04 02:47:11
62.169.196.238	attackbots	Unauthorized connection attempt from IP address 62.169.196.238 on Port 445(SMB)	2020-07-04 03:14:33
103.106.211.126	attackbots	(sshd) Failed SSH login from 103.106.211.126 (SG/Singapore/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 3 20:25:43 amsweb01 sshd[10174]: Invalid user titan from 103.106.211.126 port 49072 Jul 3 20:25:45 amsweb01 sshd[10174]: Failed password for invalid user titan from 103.106.211.126 port 49072 ssh2 Jul 3 20:29:56 amsweb01 sshd[10954]: Invalid user postgre from 103.106.211.126 port 28244 Jul 3 20:29:58 amsweb01 sshd[10954]: Failed password for invalid user postgre from 103.106.211.126 port 28244 ssh2 Jul 3 20:31:22 amsweb01 sshd[11324]: Invalid user jerry from 103.106.211.126 port 46600	2020-07-04 03:11:58
113.172.127.154	attackspam	Jul 3 18:31:39 ws26vmsma01 sshd[90741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.172.127.154 Jul 3 18:31:41 ws26vmsma01 sshd[90741]: Failed password for invalid user admin from 113.172.127.154 port 35568 ssh2 ...	2020-07-04 02:50:57
190.145.254.138	attackbotsspam	Jul 3 14:45:52 ny01 sshd[27383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.145.254.138 Jul 3 14:45:54 ny01 sshd[27383]: Failed password for invalid user jk from 190.145.254.138 port 32191 ssh2 Jul 3 14:50:32 ny01 sshd[28019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.145.254.138	2020-07-04 02:53:14
159.69.88.101	attack	159.69.88.101 - - [03/Jul/2020:19:31:42 +0100] "POST /wp-login.php HTTP/1.1" 200 1792 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.69.88.101 - - [03/Jul/2020:19:31:43 +0100] "POST /wp-login.php HTTP/1.1" 200 1768 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.69.88.101 - - [03/Jul/2020:19:31:44 +0100] "POST /wp-login.php HTTP/1.1" 200 1772 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-04 02:49:24
187.189.24.234	attack	Jul 3 12:31:43 Host-KLAX-C dovecot: imap-login: Disconnected (auth failed, 1 attempts in 19 secs): user=, method=PLAIN, rip=187.189.24.234, lip=185.198.26.142, TLS, session= ...	2020-07-04 02:48:37
89.165.45.66	attackbotsspam	Unauthorized connection attempt from IP address 89.165.45.66 on Port 445(SMB)	2020-07-04 03:17:10
150.136.94.7	attack	Jul 3 18:27:01 rush sshd[21687]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.136.94.7 Jul 3 18:27:03 rush sshd[21687]: Failed password for invalid user xmr from 150.136.94.7 port 55288 ssh2 Jul 3 18:31:24 rush sshd[21942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.136.94.7 ...	2020-07-04 03:02:21
129.211.13.226	attackspam	Jul 3 20:31:48 ns41 sshd[12314]: Failed password for root from 129.211.13.226 port 38462 ssh2 Jul 3 20:31:48 ns41 sshd[12314]: Failed password for root from 129.211.13.226 port 38462 ssh2	2020-07-04 02:41:19
161.35.115.93	attackspam	Brute-force attempt banned	2020-07-04 03:05:51
95.217.228.34	attackbotsspam	21 attempts against mh_ha-misbehave-ban on cold	2020-07-04 02:55:20
51.91.250.49	attack	2020-07-03T20:32:54.684827n23.at sshd[1644551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.250.49 2020-07-03T20:32:54.677284n23.at sshd[1644551]: Invalid user volumio from 51.91.250.49 port 50262 2020-07-03T20:32:57.166253n23.at sshd[1644551]: Failed password for invalid user volumio from 51.91.250.49 port 50262 ssh2 ...	2020-07-04 03:02:47
36.67.223.67	attackbots	VNC brute force attack detected by fail2ban	2020-07-04 03:15:58

Recently Reported IPs

239.167.247.129	183.165.40.140	111.240.79.235	102.44.118.26
198.126.135.77	182.101.201.60	206.51.144.115	118.247.135.102
210.67.212.137	104.192.87.134	180.122.93.238	26.108.186.75
8.13.163.12	48.52.93.138	44.98.97.189	197.54.96.85
87.193.105.172	175.155.248.159	163.177.121.151	140.250.91.109