JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 42.116.108.34

42.116.108.34 was found in our database!

This IP was reported 246 times. Confidence of Abuse is 8%: ?

ISP	FPT Telecom Company
Usage Type	Fixed Line ISP
ASN	AS18403
Domain Name	fpt.com
Country	🇻🇳 Viet Nam
City	Hanoi, Hanoi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 42.116.108.34

Whois 42.116.108.34

IP Abuse Reports for 42.116.108.34:

This IP address has been reported a total of 246 times from 97 distinct sources. 42.116.108.34 was first reported on April 13th 2026, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 evicky2002	2026-05-29 06:52:29 (3 weeks ago)	Confirmed malicious by STILWaters CTI platform (score=100, sources=1)	Hacking Brute-Force SSH
🇩🇪 ecs.ge	2026-04-28 23:03:19 (1 month ago)	Automatic Fail2Ban report from jail ssh: multiple matching events detected.	Brute-Force SSH
🇫🇷 SpaceHost-Server	2026-04-22 22:34:55 (2 months ago)		Brute-Force Web App Attack
🇩🇪 ecs.ge	2026-04-20 23:31:29 (2 months ago)	Automatic Fail2Ban report from jail ssh: multiple matching events detected.	Brute-Force SSH
🇫🇷 SpaceHost-Server	2026-04-20 22:36:25 (2 months ago)		Brute-Force Web App Attack
🇸🇪 adaml1324	2026-04-20 18:04:58 (2 months ago)	Web application exploit probing From server logs: 2026-04-20 05:36:10 (direkt-IP) POST /cgi-bin/. ... show more Web application exploit probing From server logs: 2026-04-20 05:36:10 (direkt-IP) POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1 [400 Bad Request] show less	Web App Attack
🇩🇪 ghostwarriors	2026-04-20 15:20:21 (2 months ago)	Unauthorized connection attempt detected, SSH Brute-Force	Brute-Force Port Scan SSH
🇺🇸 SANYALnet Labs	2026-04-20 15:11:59 (2 months ago)	Apr 20 15:11:54 sanyalnet-oracle-vps2 sshd[3551586]: pam_unix(sshd:auth): authentication failure; lo ... show more Apr 20 15:11:54 sanyalnet-oracle-vps2 sshd[3551586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.108.34 Apr 20 15:11:56 sanyalnet-oracle-vps2 sshd[3551586]: Failed password for invalid user orangepi from 42.116.108.34 port 1627 ssh2 Apr 20 15:11:58 sanyalnet-oracle-vps2 sshd[3551586]: Connection closed by invalid user orangepi 42.116.108.34 port 1627 [preauth] ... show less	Brute-Force
🇺🇸 RAP	2026-04-20 14:56:16 (2 months ago)	2026-04-20 14:56:16 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇩🇪 ipcop.net	2026-04-20 14:37:19 (2 months ago)	2026-04-20T16:27:05.946233+02:00 router01.dreibaeumen.de sshd[1651901]: Connection closed by authent ... show more 2026-04-20T16:27:05.946233+02:00 router01.dreibaeumen.de sshd[1651901]: Connection closed by authenticating user root 42.116.108.34 port 9867 [preauth] 2026-04-20T16:32:12.948326+02:00 router01.dreibaeumen.de sshd[1652694]: Invalid user alex from 42.116.108.34 port 8333 2026-04-20T16:32:13.816558+02:00 router01.dreibaeumen.de sshd[1652694]: Connection closed by invalid user alex 42.116.108.34 port 8333 [preauth] 2026-04-20T16:37:17.872649+02:00 router01.dreibaeumen.de sshd[1653384]: Invalid user sammy from 42.116.108.34 port 8190 2026-04-20T16:37:18.704613+02:00 router01.dreibaeumen.de sshd[1653384]: Connection closed by invalid user sammy 42.116.108.34 port 8190 [preauth] show less	Brute-Force
🇺🇸 lnklnx	2026-04-20 10:50:30 (2 months ago)	www.lnklnx.com:443 42.116.108.34 - - [20/Apr/2026:05:50:28 -0500] "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e ... show more www.lnklnx.com:443 42.116.108.34 - - [20/Apr/2026:05:50:28 -0500] "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1" 400 3838 "-" "libredtail-http" ... show less	Web App Attack
🇯🇵 VXG-NET	2026-04-20 10:41:16 (2 months ago)	port=80, indicator_type=code-execution	Hacking
🇦🇹 begou.dev	2026-04-20 09:18:37 (2 months ago)	[Threat Intelligence] Port Scanning and/or Unauthorized access -> TCP/23	Port Scan
🇩🇪 ipcop.net	2026-04-20 06:25:40 (2 months ago)	2026-04-20T08:10:19.494914+02:00 router01.dreibaeumen.de sshd[1515916]: Connection closed by authent ... show more 2026-04-20T08:10:19.494914+02:00 router01.dreibaeumen.de sshd[1515916]: Connection closed by authenticating user root 42.116.108.34 port 24654 [preauth] 2026-04-20T08:20:35.580559+02:00 router01.dreibaeumen.de sshd[1517330]: Invalid user postgres from 42.116.108.34 port 29798 2026-04-20T08:20:36.469991+02:00 router01.dreibaeumen.de sshd[1517330]: Connection closed by invalid user postgres 42.116.108.34 port 29798 [preauth] 2026-04-20T08:25:39.140415+02:00 router01.dreibaeumen.de sshd[1518068]: Invalid user jenkins from 42.116.108.34 port 28418 2026-04-20T08:25:40.154607+02:00 router01.dreibaeumen.de sshd[1518068]: Connection closed by invalid user jenkins 42.116.108.34 port 28418 [preauth] show less	Brute-Force
🇺🇸 MPL	2026-04-20 04:07:14 (2 months ago)	tcp/443 (2 or more attempts)	Port Scan

Showing 1 to 15 of 246 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.241

🇫🇷 151.80.141.196

🇺🇸 147.185.132.187

🇳🇱 81.19.216.122

🇺🇸 54.176.136.204

🇰🇷 222.239.251.12

🇰🇷 211.253.9.49

🇧🇷 200.169.2.113

🇫🇮 188.126.89.80

🇺🇸 185.180.141.32

🇺🇸 170.39.225.147

🇭🇰 152.32.212.41

🇺🇸 104.234.53.36

🇺🇸 66.132.172.141

🇫🇷 51.210.104.134

🇧🇷 45.180.178.141

🇭🇰 223.197.248.209

🇳🇱 194.120.230.72

🇨🇳 183.246.106.16

🇮🇳 182.95.226.138