42.117.14.228 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: FPT Telecom Company

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	TCP (SYN) 42.117.14.228:61866 -> port 445, len 52	2020-08-29 17:11:28

Comments on same subnet:

IP	Type	Details	Datetime
42.117.147.166	attackspam	Icarus honeypot on github	2020-08-10 22:04:15
42.117.141.179	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 00:52:10
42.117.141.50	attackspambots	Unauthorized connection attempt detected from IP address 42.117.141.50 to port 23 [J]	2020-01-31 04:10:33
42.117.149.55	attack	Unauthorized connection attempt detected from IP address 42.117.149.55 to port 23 [J]	2020-01-29 20:30:15
42.117.145.190	attackbots	Unauthorized connection attempt detected from IP address 42.117.145.190 to port 23 [T]	2020-01-20 18:16:12
42.117.144.75	attackspambots	Unauthorized connection attempt detected from IP address 42.117.144.75 to port 23 [J]	2020-01-20 09:01:57
42.117.145.190	attack	Unauthorized connection attempt detected from IP address 42.117.145.190 to port 23 [J]	2020-01-20 07:54:50
42.117.146.161	attackspambots	Unauthorized connection attempt detected from IP address 42.117.146.161 to port 23 [T]	2020-01-10 09:27:38
42.117.148.68	attackbotsspam	Telnet/23 MH Probe, BF, Hack -	2020-01-09 23:49:23
42.117.148.23	attackspambots	Telnet/23 MH Probe, BF, Hack -	2020-01-09 23:48:45
42.117.148.43	attack	Unauthorized connection attempt detected from IP address 42.117.148.43 to port 23 [J]	2020-01-06 13:58:35
42.117.148.49	attack	Automatic report - Port Scan Attack	2019-12-30 22:34:13
42.117.148.115	attack	Automatic report - Port Scan	2019-11-27 06:07:41

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.117.14.228
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5699
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.117.14.228.			IN	A

;; AUTHORITY SECTION:
.			136	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082900 1800 900 604800 86400

;; Query time: 124 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Aug 29 17:11:21 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 228.14.117.42.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.82.98, trying next server
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 228.14.117.42.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
92.118.37.55	attack	12/09/2019-03:55:51.276422 92.118.37.55 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-12-09 17:00:54
64.107.80.14	attackbots	Dec 9 09:40:15 nextcloud sshd\[6285\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.107.80.14 user=root Dec 9 09:40:16 nextcloud sshd\[6285\]: Failed password for root from 64.107.80.14 port 50002 ssh2 Dec 9 09:48:32 nextcloud sshd\[25033\]: Invalid user ileana from 64.107.80.14 Dec 9 09:48:32 nextcloud sshd\[25033\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.107.80.14 ...	2019-12-09 17:03:49
192.241.165.27	attack	Dec 9 09:17:20 server2 sshd\[29784\]: User root from dbsip.ligou.me not allowed because not listed in AllowUsers Dec 9 09:17:21 server2 sshd\[29786\]: Invalid user DUP from 192.241.165.27 Dec 9 09:17:22 server2 sshd\[29788\]: User root from dbsip.ligou.me not allowed because not listed in AllowUsers Dec 9 09:17:23 server2 sshd\[29790\]: User root from dbsip.ligou.me not allowed because not listed in AllowUsers Dec 9 09:17:23 server2 sshd\[29792\]: User root from dbsip.ligou.me not allowed because not listed in AllowUsers Dec 9 09:17:24 server2 sshd\[29794\]: User root from dbsip.ligou.me not allowed because not listed in AllowUsers	2019-12-09 16:59:19
134.73.51.75	attackspambots	2019-12-09 1ieCSQ-0000PS-IW H=announce.superacrepair.com \(announce.abrdindia.co\) \[134.73.51.75\] rejected REMOVED : REJECTED - You seem to be a spammer! 2019-12-09 1ieCYO-0000Pm-J9 H=announce.superacrepair.com \(announce.abrdindia.co\) \[134.73.51.75\] rejected REMOVED : REJECTED - You seem to be a spammer! 2019-12-09 1ieCYO-0000Pn-JQ H=announce.superacrepair.com \(announce.abrdindia.co\) \[134.73.51.75\] rejected REMOVED : REJECTED - You seem to be a spammer!	2019-12-09 16:52:28
218.92.0.165	attack	Dec 9 10:16:42 root sshd[18461]: Failed password for root from 218.92.0.165 port 43554 ssh2 Dec 9 10:16:45 root sshd[18461]: Failed password for root from 218.92.0.165 port 43554 ssh2 Dec 9 10:16:50 root sshd[18461]: Failed password for root from 218.92.0.165 port 43554 ssh2 Dec 9 10:16:55 root sshd[18461]: Failed password for root from 218.92.0.165 port 43554 ssh2 ...	2019-12-09 17:20:19
182.254.172.63	attackspam	Invalid user pit from 182.254.172.63 port 34416 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.254.172.63 Failed password for invalid user pit from 182.254.172.63 port 34416 ssh2 Invalid user matilda from 182.254.172.63 port 38954 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.254.172.63	2019-12-09 16:49:25
194.5.176.37	attackspam	Dec 9 09:45:28 ns381471 sshd[31585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.5.176.37 Dec 9 09:45:30 ns381471 sshd[31585]: Failed password for invalid user teste from 194.5.176.37 port 57770 ssh2	2019-12-09 17:02:13
178.62.33.138	attack	Dec 9 04:09:05 ny01 sshd[28707]: Failed password for bin from 178.62.33.138 port 41204 ssh2 Dec 9 04:14:02 ny01 sshd[29273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.33.138 Dec 9 04:14:04 ny01 sshd[29273]: Failed password for invalid user test from 178.62.33.138 port 49624 ssh2	2019-12-09 17:19:28
5.18.163.58	attackbotsspam	firewall-block, port(s): 9001/tcp	2019-12-09 16:46:57
182.61.42.224	attackbots	Dec 9 09:46:08 loxhost sshd\[4396\]: Invalid user willia from 182.61.42.224 port 37936 Dec 9 09:46:08 loxhost sshd\[4396\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.42.224 Dec 9 09:46:10 loxhost sshd\[4396\]: Failed password for invalid user willia from 182.61.42.224 port 37936 ssh2 Dec 9 09:53:24 loxhost sshd\[4599\]: Invalid user ejunky from 182.61.42.224 port 42154 Dec 9 09:53:24 loxhost sshd\[4599\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.42.224 ...	2019-12-09 17:17:11
77.91.81.17	attackbotsspam	12/09/2019-08:53:01.667791 77.91.81.17 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-12-09 16:54:31
77.60.82.27	attack	Dec 9 09:39:35 ArkNodeAT sshd\[7702\]: Invalid user admin from 77.60.82.27 Dec 9 09:39:35 ArkNodeAT sshd\[7702\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.60.82.27 Dec 9 09:39:37 ArkNodeAT sshd\[7702\]: Failed password for invalid user admin from 77.60.82.27 port 52314 ssh2	2019-12-09 17:09:10
144.217.93.130	attack	2019-12-09T08:34:46.101360shield sshd\[28799\]: Invalid user pro1 from 144.217.93.130 port 34816 2019-12-09T08:34:46.105975shield sshd\[28799\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.ip-144-217-93.net 2019-12-09T08:34:47.914423shield sshd\[28799\]: Failed password for invalid user pro1 from 144.217.93.130 port 34816 ssh2 2019-12-09T08:40:16.362565shield sshd\[31271\]: Invalid user jira from 144.217.93.130 port 43940 2019-12-09T08:40:16.366996shield sshd\[31271\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.ip-144-217-93.net	2019-12-09 16:52:03
59.52.97.130	attack	445/tcp 445/tcp 445/tcp... [2019-10-09/12-09]21pkt,1pt.(tcp)	2019-12-09 16:56:14
106.54.155.35	attackspambots	Dec 9 09:39:31 sso sshd[15785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.155.35 Dec 9 09:39:33 sso sshd[15785]: Failed password for invalid user host111 from 106.54.155.35 port 43768 ssh2 ...	2019-12-09 17:12:38

Recently Reported IPs

49.151.178.224	90.197.252.69	115.205.253.88	87.78.108.76
26.106.57.140	200.87.94.34	217.65.36.157	17.57.154.23
212.67.79.224	126.205.191.248	186.234.80.155	180.115.232.13
118.3.152.200	45.63.34.92	116.111.233.217	27.5.101.42
212.80.219.138	212.12.8.78	89.34.27.16	46.146.234.160