42.117.11.218 - IPInfo

Basic Info

City: Ho Chi Minh City

Region: Ho Chi Minh

Country: Vietnam

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
42.117.110.69	attackspambots	Unauthorized connection attempt from IP address 42.117.110.69 on Port 445(SMB)	2020-02-08 04:55:28
42.117.110.152	attack	Absender hat Spam-Falle ausgel?st	2019-12-17 16:12:46
42.117.113.159	attackbots	firewall-block, port(s): 23/tcp	2019-08-30 12:03:04

Whois info:

Dig info:

b'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 42.117.11.218
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16342
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;42.117.11.218.			IN	A

;; Query time: 1 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Sat Jun 26 18:13:48 CST 2021
;; MSG SIZE  rcvd: 42

'

Host info

Host 218.11.117.42.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 218.11.117.42.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.29.219.2	attackspam	Apr 6 05:53:40 ewelt sshd[9332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.219.2 user=root Apr 6 05:53:43 ewelt sshd[9332]: Failed password for root from 14.29.219.2 port 49279 ssh2 Apr 6 05:56:12 ewelt sshd[9464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.219.2 user=root Apr 6 05:56:13 ewelt sshd[9464]: Failed password for root from 14.29.219.2 port 33871 ssh2 ...	2020-04-06 12:28:30
112.85.42.173	attackspam	Apr 6 00:10:21 plusreed sshd[5791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.173 user=root Apr 6 00:10:23 plusreed sshd[5791]: Failed password for root from 112.85.42.173 port 56528 ssh2 ...	2020-04-06 12:18:11
122.51.45.240	attackspambots	Apr 6 05:46:04 srv01 sshd[19145]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.45.240 user=root Apr 6 05:46:06 srv01 sshd[19145]: Failed password for root from 122.51.45.240 port 55924 ssh2 Apr 6 05:51:05 srv01 sshd[19388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.45.240 user=root Apr 6 05:51:07 srv01 sshd[19388]: Failed password for root from 122.51.45.240 port 53410 ssh2 Apr 6 05:56:03 srv01 sshd[19617]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.45.240 user=root Apr 6 05:56:04 srv01 sshd[19617]: Failed password for root from 122.51.45.240 port 50884 ssh2 ...	2020-04-06 12:40:15
222.186.180.41	attackbotsspam	Apr 6 06:06:17 vps sshd[784565]: Failed password for root from 222.186.180.41 port 49304 ssh2 Apr 6 06:06:20 vps sshd[784565]: Failed password for root from 222.186.180.41 port 49304 ssh2 Apr 6 06:06:24 vps sshd[784565]: Failed password for root from 222.186.180.41 port 49304 ssh2 Apr 6 06:06:27 vps sshd[784565]: Failed password for root from 222.186.180.41 port 49304 ssh2 Apr 6 06:06:30 vps sshd[784565]: Failed password for root from 222.186.180.41 port 49304 ssh2 ...	2020-04-06 12:18:50
183.89.214.82	attackspambots	(imapd) Failed IMAP login from 183.89.214.82 (TH/Thailand/mx-ll-183.89.214-82.dynamic.3bb.in.th): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Apr 6 08:25:53 ir1 dovecot[566034]: imap-login: Disconnected (auth failed, 1 attempts in 9 secs): user=, method=PLAIN, rip=183.89.214.82, lip=5.63.12.44, session=	2020-04-06 12:44:07
222.186.175.23	attackbotsspam	SSH authentication failure x 6 reported by Fail2Ban ...	2020-04-06 12:31:11
222.186.42.136	attack	Apr 6 09:24:57 gw1 sshd[10941]: Failed password for root from 222.186.42.136 port 42377 ssh2 Apr 6 09:25:00 gw1 sshd[10941]: Failed password for root from 222.186.42.136 port 42377 ssh2 ...	2020-04-06 12:26:43
51.89.238.198	attackspambots	Brute force attack against VPN service	2020-04-06 12:25:53
202.137.18.40	attackspambots	[Mon Apr 06 10:56:08.801201 2020] [:error] [pid 22064:tid 140022813370112] [client 202.137.18.40:34454] [client 202.137.18.40] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "python-requests" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-913-SCANNER-DETECTION.conf"] [line "147"] [id "913101"] [msg "Found User-Agent associated with scripting/generic HTTP client"] [data "Matched Data: python-requests found within REQUEST_HEADERS:User-Agent: python-requests/2.22.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-reputation-scripting"] [tag "OWASP_CRS"] [tag "OWASP_CRS/AUTOMATION/SCRIPTING"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [tag "paranoia-level/2"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/admin/config.php"] [unique_id "XoqoWP198pQqCvxLDH3hWQAAAv0"] ...	2020-04-06 12:33:00
61.187.87.140	attackspambots	Apr 6 05:47:36 silence02 sshd[3143]: Failed password for root from 61.187.87.140 port 34313 ssh2 Apr 6 05:50:21 silence02 sshd[3367]: Failed password for root from 61.187.87.140 port 52810 ssh2	2020-04-06 12:34:32
222.186.30.218	attackbots	06.04.2020 04:37:42 SSH access blocked by firewall	2020-04-06 12:39:02
14.244.218.192	attackspambots	1586145386 - 04/06/2020 05:56:26 Host: 14.244.218.192/14.244.218.192 Port: 445 TCP Blocked	2020-04-06 12:17:09
185.176.27.34	attackbots	Fail2Ban Ban Triggered	2020-04-06 12:48:06
183.107.101.120	attack	$f2bV_matches	2020-04-06 12:33:32
58.33.31.82	attackspambots	Brute-force attempt banned	2020-04-06 12:16:36

Recently Reported IPs

188.254.55.218	124.234.62.41	124.234.62.42	34.104.35.123
216.58.214.234	91.221.127.108	81.0.120.91	54.225.217.169
203.177.121.79	149.62.204.22	140.82.17.252	186.33.111.92
3.231.164.203	13.231.130.207	76.45.33.130	103.135.91.26
103.55.145.84	167.71.228.197	172.93.167.151	185.11.69.117