119.42.107.32 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
119.42.107.24	attackbots	Feb 12 06:49:35 ncomp sshd[27495]: Invalid user system from 119.42.107.24 Feb 12 06:49:36 ncomp sshd[27495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.42.107.24 Feb 12 06:49:35 ncomp sshd[27495]: Invalid user system from 119.42.107.24 Feb 12 06:49:37 ncomp sshd[27495]: Failed password for invalid user system from 119.42.107.24 port 63193 ssh2	2020-02-12 20:17:33
119.42.107.211	attack	Attacks websites by trying to access known vulnerables of plugins, brute-force of backends or probing of administrative tools	2020-01-31 13:37:03

Type

Details

Datetime

119.42.107.24

attackbots

Feb 12 06:49:35 ncomp sshd[27495]: Invalid user system from 119.42.107.24
Feb 12 06:49:36 ncomp sshd[27495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.42.107.24
Feb 12 06:49:35 ncomp sshd[27495]: Invalid user system from 119.42.107.24
Feb 12 06:49:37 ncomp sshd[27495]: Failed password for invalid user system from 119.42.107.24 port 63193 ssh2

2020-02-12 20:17:33

119.42.107.211

attack

Attacks websites by trying to access known vulnerables of plugins, brute-force of backends or probing of administrative tools

2020-01-31 13:37:03

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.42.107.32
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43459
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;119.42.107.32.			IN	A

;; AUTHORITY SECTION:
.			531	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030800 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 08 18:35:31 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 32.107.42.119.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 32.107.42.119.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
77.81.166.107	attackbots	Automatic report - Port Scan Attack	2020-08-13 00:06:04
94.102.51.28	attackbots	[MK-VM1] Blocked by UFW	2020-08-12 23:34:54
14.1.124.83	attackbots	Email rejected due to spam filtering	2020-08-13 00:04:41
222.186.169.194	attackspambots	Aug 12 10:13:37 HPCompaq6200-Xubuntu sshd[485657]: Unable to negotiate with 222.186.169.194 port 52786: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] Aug 12 10:29:34 HPCompaq6200-Xubuntu sshd[487783]: Unable to negotiate with 222.186.169.194 port 3270: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] Aug 12 10:36:04 HPCompaq6200-Xubuntu sshd[488642]: Unable to negotiate with 222.186.169.194 port 28448: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] ...	2020-08-12 23:37:30
37.49.230.229	attackspam	Aug 12 16:11:20 django-0 sshd[9423]: Failed password for root from 37.49.230.229 port 60388 ssh2 Aug 12 16:11:35 django-0 sshd[9425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.49.230.229 user=root Aug 12 16:11:37 django-0 sshd[9425]: Failed password for root from 37.49.230.229 port 34466 ssh2 ...	2020-08-13 00:09:09
113.190.11.47	attack	1597236066 - 08/12/2020 14:41:06 Host: 113.190.11.47/113.190.11.47 Port: 445 TCP Blocked	2020-08-12 23:47:27
49.235.213.170	attackbots	Brute-force attempt banned	2020-08-12 23:55:48
167.172.139.65	attackbots	167.172.139.65 - - [12/Aug/2020:13:40:37 +0100] "POST /wp-login.php HTTP/1.1" 200 1875 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.172.139.65 - - [12/Aug/2020:13:40:43 +0100] "POST /wp-login.php HTTP/1.1" 200 1860 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.172.139.65 - - [12/Aug/2020:13:40:43 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-13 00:06:16
87.9.163.228	attackbotsspam	Automatic report - Port Scan Attack	2020-08-12 23:33:58
95.163.150.11	attackbotsspam	Fail2Ban Ban Triggered HTTP SQL Injection Attempt	2020-08-12 23:22:27
152.136.210.84	attackspam	2020-08-12T12:32:42.902272abusebot-8.cloudsearch.cf sshd[27963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.210.84 user=root 2020-08-12T12:32:45.037603abusebot-8.cloudsearch.cf sshd[27963]: Failed password for root from 152.136.210.84 port 37502 ssh2 2020-08-12T12:38:16.623854abusebot-8.cloudsearch.cf sshd[28005]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.210.84 user=root 2020-08-12T12:38:18.944677abusebot-8.cloudsearch.cf sshd[28005]: Failed password for root from 152.136.210.84 port 57380 ssh2 2020-08-12T12:39:42.692029abusebot-8.cloudsearch.cf sshd[28011]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.210.84 user=root 2020-08-12T12:39:44.485794abusebot-8.cloudsearch.cf sshd[28011]: Failed password for root from 152.136.210.84 port 42016 ssh2 2020-08-12T12:41:03.427134abusebot-8.cloudsearch.cf sshd[28014]: pam_unix(sshd:auth): ...	2020-08-12 23:48:45
138.255.148.35	attackbots	Aug 12 18:46:47 dhoomketu sshd[2316810]: Failed password for root from 138.255.148.35 port 46620 ssh2 Aug 12 18:47:28 dhoomketu sshd[2316816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.255.148.35 user=root Aug 12 18:47:31 dhoomketu sshd[2316816]: Failed password for root from 138.255.148.35 port 50363 ssh2 Aug 12 18:48:12 dhoomketu sshd[2316826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.255.148.35 user=root Aug 12 18:48:14 dhoomketu sshd[2316826]: Failed password for root from 138.255.148.35 port 54105 ssh2 ...	2020-08-12 23:36:41
192.99.70.208	attackspam	SSH brute-force attempt	2020-08-13 00:04:04
179.99.30.192	attackbots	Aug 12 12:27:25 marvibiene sshd[1843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.99.30.192 user=root Aug 12 12:27:27 marvibiene sshd[1843]: Failed password for root from 179.99.30.192 port 36472 ssh2 Aug 12 12:41:13 marvibiene sshd[2015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.99.30.192 user=root Aug 12 12:41:16 marvibiene sshd[2015]: Failed password for root from 179.99.30.192 port 37026 ssh2	2020-08-12 23:34:24
61.177.172.61	attackbots	Aug 12 17:30:23 eventyay sshd[24552]: Failed password for root from 61.177.172.61 port 52673 ssh2 Aug 12 17:30:26 eventyay sshd[24552]: Failed password for root from 61.177.172.61 port 52673 ssh2 Aug 12 17:30:30 eventyay sshd[24552]: Failed password for root from 61.177.172.61 port 52673 ssh2 Aug 12 17:30:37 eventyay sshd[24552]: error: maximum authentication attempts exceeded for root from 61.177.172.61 port 52673 ssh2 [preauth] ...	2020-08-12 23:32:10

Recently Reported IPs

119.42.107.26	119.42.107.4	119.42.107.39	117.14.147.153
119.42.107.41	119.42.107.5	119.42.107.46	119.42.107.50
119.42.107.54	119.42.107.45	119.42.107.57	119.42.107.58
119.42.107.66	119.42.107.6	119.42.107.68	117.14.147.163
119.42.107.76	119.42.107.78	119.42.107.81	119.42.107.82