42.119.13.246 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: FPT Telecom Company

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Attempt to attack host OS, exploiting network vulnerabilities, on 30-09-2019 04:50:15.	2019-09-30 19:25:56

Comments on same subnet:

IP	Type	Details	Datetime
42.119.130.16	attackspambots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-07 01:16:02
42.119.137.11	attackbots	Unauthorized connection attempt detected from IP address 42.119.137.11 to port 23 [J]	2020-02-06 04:36:37
42.119.132.51	attack	Unauthorized connection attempt detected from IP address 42.119.132.51 to port 23 [J]	2020-02-01 00:12:44
42.119.139.190	attack	Unauthorized connection attempt detected from IP address 42.119.139.190 to port 23 [J]	2020-01-17 06:46:13
42.119.139.190	attackbots	Telnetd brute force attack detected by fail2ban	2020-01-16 01:08:06
42.119.139.226	attack	Unauthorized connection attempt detected from IP address 42.119.139.226 to port 23 [T]	2020-01-09 02:47:00
42.119.138.122	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-31 00:09:28
42.119.133.161	attack	23/tcp [2019-11-01]1pkt	2019-11-02 06:16:46

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.119.13.246
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51930
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.119.13.246.			IN	A

;; AUTHORITY SECTION:
.			519	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019093000 1800 900 604800 86400

;; Query time: 319 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Sep 30 19:25:51 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 246.13.119.42.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 246.13.119.42.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.131.5	attackbotsspam	Dec 4 08:37:42 vmanager6029 sshd\[31875\]: Invalid user guest from 106.12.131.5 port 50734 Dec 4 08:37:42 vmanager6029 sshd\[31875\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.131.5 Dec 4 08:37:44 vmanager6029 sshd\[31875\]: Failed password for invalid user guest from 106.12.131.5 port 50734 ssh2	2019-12-04 15:53:58
119.146.145.104	attackspam	Dec 4 07:29:25 nextcloud sshd\[17021\]: Invalid user toshinori from 119.146.145.104 Dec 4 07:29:25 nextcloud sshd\[17021\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.146.145.104 Dec 4 07:29:27 nextcloud sshd\[17021\]: Failed password for invalid user toshinori from 119.146.145.104 port 2138 ssh2 ...	2019-12-04 15:45:51
81.4.111.189	attack	Dec 4 07:38:45 mail sshd[25260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.4.111.189 Dec 4 07:38:48 mail sshd[25260]: Failed password for invalid user 12345678 from 81.4.111.189 port 50686 ssh2 Dec 4 07:44:06 mail sshd[27893]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.4.111.189	2019-12-04 15:32:53
218.92.0.160	attack	Dec 4 09:01:03 tux-35-217 sshd\[31993\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.160 user=root Dec 4 09:01:05 tux-35-217 sshd\[31993\]: Failed password for root from 218.92.0.160 port 1706 ssh2 Dec 4 09:01:08 tux-35-217 sshd\[31993\]: Failed password for root from 218.92.0.160 port 1706 ssh2 Dec 4 09:01:11 tux-35-217 sshd\[31993\]: Failed password for root from 218.92.0.160 port 1706 ssh2 ...	2019-12-04 16:03:01
181.41.216.137	attack	Postfix Brute-Force reported by Fail2Ban	2019-12-04 15:36:03
171.250.128.160	attack	Host Scan	2019-12-04 15:59:38
69.244.198.97	attackbotsspam	Brute-force attempt banned	2019-12-04 15:53:16
106.51.3.214	attack	Dec 3 21:34:45 hanapaa sshd\[20249\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.3.214 user=root Dec 3 21:34:47 hanapaa sshd\[20249\]: Failed password for root from 106.51.3.214 port 48458 ssh2 Dec 3 21:41:14 hanapaa sshd\[20891\]: Invalid user test from 106.51.3.214 Dec 3 21:41:14 hanapaa sshd\[20891\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.3.214 Dec 3 21:41:16 hanapaa sshd\[20891\]: Failed password for invalid user test from 106.51.3.214 port 53895 ssh2	2019-12-04 15:50:43
62.234.141.187	attack	Dec 4 08:50:18 localhost sshd\[29613\]: Invalid user admin from 62.234.141.187 port 43312 Dec 4 08:50:18 localhost sshd\[29613\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.141.187 Dec 4 08:50:20 localhost sshd\[29613\]: Failed password for invalid user admin from 62.234.141.187 port 43312 ssh2	2019-12-04 16:08:25
162.243.5.51	attackbotsspam	Dec 4 08:30:47 tux-35-217 sshd\[31496\]: Invalid user sgnana from 162.243.5.51 port 43216 Dec 4 08:30:47 tux-35-217 sshd\[31496\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.5.51 Dec 4 08:30:49 tux-35-217 sshd\[31496\]: Failed password for invalid user sgnana from 162.243.5.51 port 43216 ssh2 Dec 4 08:37:24 tux-35-217 sshd\[31599\]: Invalid user coady from 162.243.5.51 port 53758 Dec 4 08:37:24 tux-35-217 sshd\[31599\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.5.51 ...	2019-12-04 15:40:46
175.204.91.168	attackbotsspam	Dec 3 21:23:03 hpm sshd\[3964\]: Invalid user rolande from 175.204.91.168 Dec 3 21:23:03 hpm sshd\[3964\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.204.91.168 Dec 3 21:23:05 hpm sshd\[3964\]: Failed password for invalid user rolande from 175.204.91.168 port 40586 ssh2 Dec 3 21:29:21 hpm sshd\[4535\]: Invalid user oskar from 175.204.91.168 Dec 3 21:29:21 hpm sshd\[4535\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.204.91.168	2019-12-04 15:37:51
54.37.151.239	attackbotsspam	Dec 4 02:31:49 linuxvps sshd\[677\]: Invalid user cn from 54.37.151.239 Dec 4 02:31:49 linuxvps sshd\[677\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.151.239 Dec 4 02:31:50 linuxvps sshd\[677\]: Failed password for invalid user cn from 54.37.151.239 port 33986 ssh2 Dec 4 02:37:31 linuxvps sshd\[4101\]: Invalid user qazwsx321 from 54.37.151.239 Dec 4 02:37:31 linuxvps sshd\[4101\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.151.239	2019-12-04 15:51:54
101.110.45.156	attackspambots	SSH brutforce	2019-12-04 15:44:22
218.55.154.21	attackbotsspam	10 attempts against mh-pma-try-ban on cold.magehost.pro	2019-12-04 15:45:18
203.172.66.216	attack	Dec 3 21:25:51 eddieflores sshd\[10153\]: Invalid user ident from 203.172.66.216 Dec 3 21:25:51 eddieflores sshd\[10153\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.172.66.216 Dec 3 21:25:53 eddieflores sshd\[10153\]: Failed password for invalid user ident from 203.172.66.216 port 40582 ssh2 Dec 3 21:32:56 eddieflores sshd\[10812\]: Invalid user ssh from 203.172.66.216 Dec 3 21:32:56 eddieflores sshd\[10812\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.172.66.216	2019-12-04 15:42:07

Recently Reported IPs

251.74.57.218	215.195.241.46	156.220.26.188	97.220.57.134
175.221.249.93	225.51.98.156	109.198.187.250	48.42.36.14
124.114.99.107	85.110.201.107	176.14.37.154	194.193.0.174
185.123.218.163	8.17.94.82	253.116.169.67	80.238.134.16
158.209.224.40	143.95.135.156	66.42.1.73	16.194.239.195