42.118.2.145 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: FPT Telecom Company

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt from IP address 42.118.2.145 on Port 445(SMB)	2019-08-28 08:01:31

Comments on same subnet:

IP	Type	Details	Datetime
42.118.242.189	attackbotsspam	Oct 11 18:42:13 v2202009116398126984 sshd[2503456]: Invalid user tc from 42.118.242.189 port 38456 ...	2020-10-12 03:26:02
42.118.242.189	attack	<6 unauthorized SSH connections	2020-10-11 19:19:43
42.118.242.189	attack	SSH Brute Force	2020-09-26 07:08:26
42.118.242.189	attackbots	[f2b] sshd bruteforce, retries: 1	2020-09-26 00:17:30
42.118.242.189	attack	Sep 24 20:07:29 eddieflores sshd\[727\]: Invalid user mongodb from 42.118.242.189 Sep 24 20:07:29 eddieflores sshd\[727\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 Sep 24 20:07:31 eddieflores sshd\[727\]: Failed password for invalid user mongodb from 42.118.242.189 port 54030 ssh2 Sep 24 20:11:56 eddieflores sshd\[1224\]: Invalid user ubuntu from 42.118.242.189 Sep 24 20:11:56 eddieflores sshd\[1224\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189	2020-09-25 15:53:24
42.118.242.189	attackspam	Sep 14 07:55:25 email sshd\[10982\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 user=root Sep 14 07:55:28 email sshd\[10982\]: Failed password for root from 42.118.242.189 port 45400 ssh2 Sep 14 07:58:19 email sshd\[11496\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 user=root Sep 14 07:58:21 email sshd\[11496\]: Failed password for root from 42.118.242.189 port 54410 ssh2 Sep 14 08:01:10 email sshd\[12020\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 user=root ...	2020-09-14 16:13:46
42.118.242.189	attackspambots	Sep 9 10:02:47 firewall sshd[22715]: Invalid user admin from 42.118.242.189 Sep 9 10:02:48 firewall sshd[22715]: Failed password for invalid user admin from 42.118.242.189 port 44148 ssh2 Sep 9 10:06:28 firewall sshd[22821]: Invalid user packer from 42.118.242.189 ...	2020-09-10 01:54:22
42.118.22.14	attackspambots	1599238064 - 09/04/2020 18:47:44 Host: 42.118.22.14/42.118.22.14 Port: 445 TCP Blocked	2020-09-06 01:39:02
42.118.242.189	attack	Invalid user test from 42.118.242.189 port 34510	2020-09-05 03:44:40
42.118.242.189	attackspam	Time: Fri Sep 4 07:01:04 2020 -0400 IP: 42.118.242.189 (VN/Vietnam/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 4 06:54:47 pv-11-ams1 sshd[18957]: Invalid user student from 42.118.242.189 port 60934 Sep 4 06:54:50 pv-11-ams1 sshd[18957]: Failed password for invalid user student from 42.118.242.189 port 60934 ssh2 Sep 4 06:58:28 pv-11-ams1 sshd[19186]: Invalid user website from 42.118.242.189 port 51436 Sep 4 06:58:30 pv-11-ams1 sshd[19186]: Failed password for invalid user website from 42.118.242.189 port 51436 ssh2 Sep 4 07:00:59 pv-11-ams1 sshd[19358]: Invalid user lixiang from 42.118.242.189 port 60026	2020-09-04 19:14:22
42.118.242.189	attackspambots	2020-08-22T16:57:08+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-08-23 00:10:04
42.118.242.189	attackspam	Aug 21 11:48:28 hosting sshd[24604]: Invalid user daniel from 42.118.242.189 port 54004 ...	2020-08-21 16:53:23
42.118.242.189	attackbots	Aug 17 16:11:53 sso sshd[8561]: Failed password for root from 42.118.242.189 port 58054 ssh2 Aug 17 16:16:35 sso sshd[9120]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 ...	2020-08-17 23:06:45
42.118.242.189	attackspambots	Aug 16 16:05:11 [host] sshd[12689]: pam_unix(sshd: Aug 16 16:05:13 [host] sshd[12689]: Failed passwor Aug 16 16:10:08 [host] sshd[13145]: Invalid user y	2020-08-16 22:55:11
42.118.234.70	attackbots	SSH invalid-user multiple login try	2020-08-15 08:00:57

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.118.2.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1984
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.118.2.145.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082701 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Aug 28 08:01:25 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 145.2.118.42.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 145.2.118.42.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
188.166.108.161	attackbotsspam	Jan 25 05:43:54 vserver sshd\[7419\]: Invalid user plex from 188.166.108.161Jan 25 05:43:56 vserver sshd\[7419\]: Failed password for invalid user plex from 188.166.108.161 port 45736 ssh2Jan 25 05:51:19 vserver sshd\[7475\]: Invalid user ext from 188.166.108.161Jan 25 05:51:21 vserver sshd\[7475\]: Failed password for invalid user ext from 188.166.108.161 port 42796 ssh2 ...	2020-01-25 16:44:20
165.22.144.147	attackspam	pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.144.147 Failed password for invalid user sysadmin from 165.22.144.147 port 37522 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.144.147	2020-01-25 17:11:05
134.209.97.228	attack	Unauthorized connection attempt detected from IP address 134.209.97.228 to port 2220 [J]	2020-01-25 16:48:57
5.196.72.11	attack	Jan 25 09:41:51 localhost sshd\[27298\]: Invalid user zqs from 5.196.72.11 port 57668 Jan 25 09:41:51 localhost sshd\[27298\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.72.11 Jan 25 09:41:54 localhost sshd\[27298\]: Failed password for invalid user zqs from 5.196.72.11 port 57668 ssh2	2020-01-25 16:46:53
222.223.32.228	attackbots	Unauthorized connection attempt detected from IP address 222.223.32.228 to port 2220 [J]	2020-01-25 16:32:42
106.13.144.102	attack	2020-01-25T09:32:05.811637scmdmz1 sshd[18504]: Invalid user yvonne from 106.13.144.102 port 57396 2020-01-25T09:32:05.814505scmdmz1 sshd[18504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.144.102 2020-01-25T09:32:05.811637scmdmz1 sshd[18504]: Invalid user yvonne from 106.13.144.102 port 57396 2020-01-25T09:32:08.297247scmdmz1 sshd[18504]: Failed password for invalid user yvonne from 106.13.144.102 port 57396 ssh2 2020-01-25T09:36:18.821200scmdmz1 sshd[19053]: Invalid user steam from 106.13.144.102 port 56162 ...	2020-01-25 16:50:41
50.79.200.107	attackspambots	RDP Bruteforce	2020-01-25 16:36:03
62.173.145.40	attackbotsspam	Port scan on 1 port(s): 98	2020-01-25 16:45:23
218.76.65.100	attackbotsspam	Jan 25 05:22:11 ovpn sshd\[16252\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.76.65.100 user=root Jan 25 05:22:12 ovpn sshd\[16252\]: Failed password for root from 218.76.65.100 port 5389 ssh2 Jan 25 05:51:38 ovpn sshd\[24235\]: Invalid user admin from 218.76.65.100 Jan 25 05:51:38 ovpn sshd\[24235\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.76.65.100 Jan 25 05:51:40 ovpn sshd\[24235\]: Failed password for invalid user admin from 218.76.65.100 port 13910 ssh2	2020-01-25 16:33:12
87.253.118.101	attack	Jan 25 02:16:25 raspberrypi sshd\[9641\]: Failed password for pi from 87.253.118.101 port 53318 ssh2Jan 25 05:44:46 raspberrypi sshd\[14033\]: Failed password for pi from 87.253.118.101 port 52480 ssh2Jan 25 06:52:18 raspberrypi sshd\[15864\]: Failed password for pi from 87.253.118.101 port 48756 ssh2 ...	2020-01-25 16:56:47
153.37.98.243	attack	Jan 25 15:23:54 webhost01 sshd[26343]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.37.98.243 Jan 25 15:23:56 webhost01 sshd[26343]: Failed password for invalid user develop from 153.37.98.243 port 49076 ssh2 ...	2020-01-25 16:51:05
129.28.97.252	attackbotsspam	Jan 25 09:58:55 pornomens sshd\[6397\]: Invalid user unturned from 129.28.97.252 port 50352 Jan 25 09:58:55 pornomens sshd\[6397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.97.252 Jan 25 09:58:57 pornomens sshd\[6397\]: Failed password for invalid user unturned from 129.28.97.252 port 50352 ssh2 ...	2020-01-25 17:00:10
200.76.37.48	attackspambots	firewall-block, port(s): 37215/tcp	2020-01-25 17:00:33
222.186.31.135	attackspam	Unauthorized connection attempt detected from IP address 222.186.31.135 to port 22 [T]	2020-01-25 17:08:24
125.70.244.61	attackbots	01/24/2020-23:50:29.594605 125.70.244.61 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-01-25 17:10:09

Recently Reported IPs

10.141.199.239	142.0.139.129	113.184.23.250	66.188.143.209
62.149.81.32	82.64.72.56	197.156.92.28	190.204.220.171
188.137.73.229	103.10.63.25	187.85.210.63	138.219.223.91
138.97.200.231	121.204.93.13	177.221.177.168	191.53.194.1
177.184.241.67	185.144.60.152	13.65.84.236	187.109.49.183