42.116.211.52 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Vietnam

Internet Service Provider: FPT Telecom Company

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-31 04:10:40

Comments on same subnet:

IP	Type	Details	Datetime
42.116.211.215	attackbotsspam	Unauthorised access (Feb 8) SRC=42.116.211.215 LEN=40 TTL=44 ID=34676 TCP DPT=23 WINDOW=32732 SYN	2020-02-08 09:02:01
42.116.211.162	attackspam	Unauthorized connection attempt detected from IP address 42.116.211.162 to port 23 [J]	2020-01-21 02:01:03
42.116.211.36	attack	unauthorized connection attempt	2020-01-09 15:41:17
42.116.211.36	attackspambots	Unauthorized connection attempt detected from IP address 42.116.211.36 to port 23 [T]	2020-01-09 00:59:39
42.116.211.223	attackbotsspam	Unauthorized connection attempt detected from IP address 42.116.211.223 to port 23 [T]	2020-01-05 04:21:30

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.116.211.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8008
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.116.211.52.			IN	A

;; AUTHORITY SECTION:
.			350	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019123001 1800 900 604800 86400

;; Query time: 511 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 31 04:10:37 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 52.211.116.42.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 52.211.116.42.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
111.72.195.83	attack	Jul 13 22:17:02 srv01 postfix/smtpd\[25264\]: warning: unknown\[111.72.195.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 13 22:17:14 srv01 postfix/smtpd\[25264\]: warning: unknown\[111.72.195.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 13 22:31:32 srv01 postfix/smtpd\[31184\]: warning: unknown\[111.72.195.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 13 22:31:44 srv01 postfix/smtpd\[31184\]: warning: unknown\[111.72.195.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 13 22:32:01 srv01 postfix/smtpd\[31184\]: warning: unknown\[111.72.195.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-14 04:56:19
217.11.74.126	attackspam	Unauthorized connection attempt from IP address 217.11.74.126 on Port 445(SMB)	2020-07-14 04:38:42
190.186.194.74	attackspambots	Unauthorized connection attempt from IP address 190.186.194.74 on Port 445(SMB)	2020-07-14 04:59:54
222.186.175.182	attack	Jul 13 20:56:22 ip-172-31-61-156 sshd[27617]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root Jul 13 20:56:24 ip-172-31-61-156 sshd[27617]: Failed password for root from 222.186.175.182 port 4860 ssh2 ...	2020-07-14 04:57:13
185.143.73.58	attackspambots	Jul 13 21:16:50 blackbee postfix/smtpd[9772]: warning: unknown[185.143.73.58]: SASL LOGIN authentication failed: authentication failure Jul 13 21:17:22 blackbee postfix/smtpd[9774]: warning: unknown[185.143.73.58]: SASL LOGIN authentication failed: authentication failure Jul 13 21:17:48 blackbee postfix/smtpd[9605]: warning: unknown[185.143.73.58]: SASL LOGIN authentication failed: authentication failure Jul 13 21:18:13 blackbee postfix/smtpd[9774]: warning: unknown[185.143.73.58]: SASL LOGIN authentication failed: authentication failure Jul 13 21:18:45 blackbee postfix/smtpd[9772]: warning: unknown[185.143.73.58]: SASL LOGIN authentication failed: authentication failure ...	2020-07-14 04:31:09
84.22.49.174	attackbots	Jul 13 20:26:48 ip-172-31-62-245 sshd\[3116\]: Invalid user heidi from 84.22.49.174\ Jul 13 20:26:50 ip-172-31-62-245 sshd\[3116\]: Failed password for invalid user heidi from 84.22.49.174 port 41880 ssh2\ Jul 13 20:30:38 ip-172-31-62-245 sshd\[3179\]: Invalid user admin from 84.22.49.174\ Jul 13 20:30:40 ip-172-31-62-245 sshd\[3179\]: Failed password for invalid user admin from 84.22.49.174 port 35310 ssh2\ Jul 13 20:32:09 ip-172-31-62-245 sshd\[3193\]: Invalid user credito from 84.22.49.174\	2020-07-14 04:50:15
211.108.69.103	attackbotsspam	2020-07-13T14:32:10.379146linuxbox-skyline sshd[945935]: Invalid user www from 211.108.69.103 port 35572 ...	2020-07-14 04:45:12
107.151.81.4	attackbots	Jul 13 22:44:44 abendstille sshd\[30435\]: Invalid user jeff from 107.151.81.4 Jul 13 22:44:44 abendstille sshd\[30435\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.151.81.4 Jul 13 22:44:45 abendstille sshd\[30435\]: Failed password for invalid user jeff from 107.151.81.4 port 44504 ssh2 Jul 13 22:48:02 abendstille sshd\[1220\]: Invalid user nat from 107.151.81.4 Jul 13 22:48:02 abendstille sshd\[1220\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.151.81.4 ...	2020-07-14 05:00:07
212.26.245.221	attackspam	Unauthorized connection attempt from IP address 212.26.245.221 on Port 445(SMB)	2020-07-14 04:44:48
177.153.19.188	attack	From bounce-35cd4d53be0cb40ec1d4b79cbb1257a1@smtplw-13.com Mon Jul 13 17:31:50 2020 Received: from smtp238t19f188.saaspmta0002.correio.biz ([177.153.19.188]:46481)	2020-07-14 05:04:25
92.118.161.17	attackspambots	srv02 Mass scanning activity detected Target: 161(snmp) ..	2020-07-14 04:47:53
119.28.21.55	attackbotsspam	Jul 13 14:26:52 server1 sshd\[5598\]: Invalid user zain from 119.28.21.55 Jul 13 14:26:52 server1 sshd\[5598\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.21.55 Jul 13 14:26:54 server1 sshd\[5598\]: Failed password for invalid user zain from 119.28.21.55 port 56752 ssh2 Jul 13 14:32:12 server1 sshd\[7272\]: Invalid user ac from 119.28.21.55 Jul 13 14:32:12 server1 sshd\[7272\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.21.55 ...	2020-07-14 04:40:52
112.194.117.49	attackbots	TCP (SYN) 112.194.117.49:31027 -> port 23, len 44	2020-07-14 04:29:55
37.144.112.187	attackspambots	Unauthorized connection attempt from IP address 37.144.112.187 on Port 445(SMB)	2020-07-14 04:56:58
46.46.42.160	attackspam	Unauthorized connection attempt from IP address 46.46.42.160 on Port 445(SMB)	2020-07-14 04:54:02

Recently Reported IPs

110.36.152.125	158.184.7.128	76.229.149.126	74.233.107.9
50.126.16.162	42.114.73.101	124.192.114.207	103.225.151.84
80.128.36.49	207.75.34.189	188.3.37.238	124.128.175.124
149.28.30.70	73.47.13.120	37.103.42.55	221.205.165.120
12.129.110.208	76.221.24.151	117.66.85.40	56.121.109.112