42.116.253.249

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: FPT Telecom Company

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Dec 14 16:10:39 microserver sshd[23148]: Invalid user schwotzer from 42.116.253.249 port 41464 Dec 14 16:10:39 microserver sshd[23148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.253.249 Dec 14 16:10:41 microserver sshd[23148]: Failed password for invalid user schwotzer from 42.116.253.249 port 41464 ssh2 Dec 14 16:17:50 microserver sshd[24093]: Invalid user esadmin from 42.116.253.249 port 49582 Dec 14 16:17:50 microserver sshd[24093]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.253.249 Dec 14 16:32:04 microserver sshd[26362]: Invalid user hide from 42.116.253.249 port 37676 Dec 14 16:32:04 microserver sshd[26362]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.253.249 Dec 14 16:32:06 microserver sshd[26362]: Failed password for invalid user hide from 42.116.253.249 port 37676 ssh2 Dec 14 16:39:20 microserver sshd[27309]: Invalid user rlshen from 42.116.253.24	2019-12-20 07:34:39
attackbots	Dec 17 20:28:22 cvbnet sshd[28181]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.253.249 Dec 17 20:28:23 cvbnet sshd[28181]: Failed password for invalid user keirn from 42.116.253.249 port 42150 ssh2 ...	2019-12-18 03:43:07
attackspambots	2019-12-15T07:58:00.928356scmdmz1 sshd\[19976\]: Invalid user mysql from 42.116.253.249 port 55918 2019-12-15T07:58:00.931115scmdmz1 sshd\[19976\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.253.249 2019-12-15T07:58:02.297905scmdmz1 sshd\[19976\]: Failed password for invalid user mysql from 42.116.253.249 port 55918 ssh2 ...	2019-12-15 15:22:21
attackspambots	$f2bV_matches	2019-12-12 20:21:11
attackspam	Dec 11 15:04:08 game-panel sshd[18233]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.253.249 Dec 11 15:04:10 game-panel sshd[18233]: Failed password for invalid user skazzi from 42.116.253.249 port 57352 ssh2 Dec 11 15:11:12 game-panel sshd[18605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.253.249	2019-12-11 23:28:06
attackbotsspam	Dec 10 19:10:20 OPSO sshd\[31030\]: Invalid user nobody7777 from 42.116.253.249 port 39420 Dec 10 19:10:20 OPSO sshd\[31030\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.253.249 Dec 10 19:10:22 OPSO sshd\[31030\]: Failed password for invalid user nobody7777 from 42.116.253.249 port 39420 ssh2 Dec 10 19:17:21 OPSO sshd\[451\]: Invalid user password777 from 42.116.253.249 port 48044 Dec 10 19:17:21 OPSO sshd\[451\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.253.249	2019-12-11 02:34:37
attack	Aug 13 10:37:20 nextcloud sshd\[18124\]: Invalid user mc from 42.116.253.249 Aug 13 10:37:20 nextcloud sshd\[18124\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.253.249 Aug 13 10:37:22 nextcloud sshd\[18124\]: Failed password for invalid user mc from 42.116.253.249 port 44344 ssh2 ...	2019-08-13 17:06:51

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.116.253.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9142
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.116.253.249.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081300 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Aug 13 17:06:34 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 249.253.116.42.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 249.253.116.42.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.214.236.148	attackspam	May 22 12:43:15 mout postfix/smtpd[3383]: disconnect from unknown[180.214.236.148] ehlo=1 auth=0/1 rset=1 quit=1 commands=3/4 May 22 19:29:16 mout postfix/smtpd[32739]: disconnect from unknown[180.214.236.148] ehlo=1 auth=0/1 rset=1 quit=1 commands=3/4 May 23 01:59:18 mout postfix/smtpd[25737]: disconnect from unknown[180.214.236.148] ehlo=1 auth=0/1 rset=1 quit=1 commands=3/4 May 23 08:38:40 mout postfix/smtpd[19814]: disconnect from unknown[180.214.236.148] ehlo=1 auth=0/1 rset=1 quit=1 commands=3/4 May 23 15:23:48 mout postfix/smtpd[17087]: disconnect from unknown[180.214.236.148] ehlo=1 auth=0/1 rset=1 quit=1 commands=3/4	2020-05-23 23:29:17
213.234.6.182	attackspam	Unauthorized connection attempt from IP address 213.234.6.182 on Port 445(SMB)	2020-05-23 23:37:58
129.211.51.65	attackspambots	May 24 00:46:00 localhost sshd[2628836]: Invalid user hey from 129.211.51.65 port 44202 ...	2020-05-23 23:38:54
218.241.206.66	attackspambots	May 23 15:40:31 dev0-dcde-rnet sshd[2636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.241.206.66 May 23 15:40:33 dev0-dcde-rnet sshd[2636]: Failed password for invalid user odoo from 218.241.206.66 port 2143 ssh2 May 23 16:05:07 dev0-dcde-rnet sshd[2847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.241.206.66	2020-05-23 23:54:40
129.205.112.244	attackspambots	Automatic report - XMLRPC Attack	2020-05-23 23:26:27
118.185.161.227	attack	118.185.161.227 - - [23/May/2020:04:13:59 +0300] "POST /cgi-bin/mainfunction.cgi HTTP/1.1" 404 196 "-" "XTC"	2020-05-23 23:42:01
118.69.71.182	attack	2020-05-23T17:33:00.674266afi-git.jinr.ru sshd[20146]: Invalid user zzw from 118.69.71.182 port 24102 2020-05-23T17:33:00.677455afi-git.jinr.ru sshd[20146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.69.71.182 2020-05-23T17:33:00.674266afi-git.jinr.ru sshd[20146]: Invalid user zzw from 118.69.71.182 port 24102 2020-05-23T17:33:02.956320afi-git.jinr.ru sshd[20146]: Failed password for invalid user zzw from 118.69.71.182 port 24102 ssh2 2020-05-23T17:36:42.174529afi-git.jinr.ru sshd[21081]: Invalid user hqo from 118.69.71.182 port 24590 ...	2020-05-23 23:58:45
120.92.45.102	attackbots	May 23 14:51:58 ip-172-31-62-245 sshd\[3767\]: Invalid user nwx from 120.92.45.102\ May 23 14:52:00 ip-172-31-62-245 sshd\[3767\]: Failed password for invalid user nwx from 120.92.45.102 port 15937 ssh2\ May 23 14:55:37 ip-172-31-62-245 sshd\[3793\]: Invalid user jpz from 120.92.45.102\ May 23 14:55:39 ip-172-31-62-245 sshd\[3793\]: Failed password for invalid user jpz from 120.92.45.102 port 33498 ssh2\ May 23 14:59:25 ip-172-31-62-245 sshd\[3827\]: Invalid user jfv from 120.92.45.102\	2020-05-24 00:00:49
85.239.35.161	attackbotsspam	May 23 18:10:52 server2 sshd\[17741\]: Invalid user user from 85.239.35.161 May 23 18:10:52 server2 sshd\[17743\]: Invalid user user from 85.239.35.161 May 23 18:10:53 server2 sshd\[17742\]: Invalid user user from 85.239.35.161 May 23 18:10:54 server2 sshd\[17747\]: User root from 85.239.35.161 not allowed because not listed in AllowUsers May 23 18:10:55 server2 sshd\[17745\]: User root from 85.239.35.161 not allowed because not listed in AllowUsers May 23 18:10:56 server2 sshd\[17744\]: User root from 85.239.35.161 not allowed because not listed in AllowUsers	2020-05-23 23:25:53
106.12.210.166	attackbotsspam	2020-05-23 16:41:15,843 fail2ban.actions: WARNING [ssh] Ban 106.12.210.166	2020-05-23 23:24:17
223.155.83.29	attackspam	Automatic report - Port Scan Attack	2020-05-23 23:12:36
1.54.203.8	attackspam	Unauthorized connection attempt from IP address 1.54.203.8 on Port 445(SMB)	2020-05-23 23:34:20
122.162.160.186	attackspam	Unauthorized connection attempt from IP address 122.162.160.186 on Port 445(SMB)	2020-05-23 23:15:26
103.41.24.92	attackbots	1590235241 - 05/23/2020 14:00:41 Host: 103.41.24.92/103.41.24.92 Port: 445 TCP Blocked	2020-05-23 23:20:18
43.226.147.219	attack	May 23 17:39:59 srv-ubuntu-dev3 sshd[91954]: Invalid user dcw from 43.226.147.219 May 23 17:39:59 srv-ubuntu-dev3 sshd[91954]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.226.147.219 May 23 17:39:59 srv-ubuntu-dev3 sshd[91954]: Invalid user dcw from 43.226.147.219 May 23 17:40:01 srv-ubuntu-dev3 sshd[91954]: Failed password for invalid user dcw from 43.226.147.219 port 46662 ssh2 May 23 17:42:06 srv-ubuntu-dev3 sshd[92308]: Invalid user wubin from 43.226.147.219 May 23 17:42:06 srv-ubuntu-dev3 sshd[92308]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.226.147.219 May 23 17:42:06 srv-ubuntu-dev3 sshd[92308]: Invalid user wubin from 43.226.147.219 May 23 17:42:08 srv-ubuntu-dev3 sshd[92308]: Failed password for invalid user wubin from 43.226.147.219 port 40632 ssh2 May 23 17:44:30 srv-ubuntu-dev3 sshd[92687]: Invalid user guyihong from 43.226.147.219 ...	2020-05-23 23:58:19

Recently Reported IPs

113.193.187.74	52.230.68.68	41.72.18.60	36.80.146.68
200.84.100.213	163.35.240.75	119.163.61.231	113.186.114.213
60.250.216.168	180.126.63.15	41.39.165.81	219.94.155.15
118.179.223.38	46.185.246.93	182.72.33.166	156.216.188.13
157.230.249.148	41.235.46.183	201.235.61.59	122.201.19.99