119.42.119.154

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
119.42.119.172	attack	Unauthorized connection attempt from IP address 119.42.119.172 on Port 445(SMB)	2020-04-02 23:27:55
119.42.119.231	attackbots	1583470131 - 03/06/2020 05:48:51 Host: 119.42.119.231/119.42.119.231 Port: 445 TCP Blocked	2020-03-06 20:22:18
119.42.119.98	attackspam	1576823206 - 12/20/2019 07:26:46 Host: 119.42.119.98/119.42.119.98 Port: 445 TCP Blocked	2019-12-20 18:33:06
119.42.119.250	attackbots	Chat Spam	2019-09-20 17:27:23
119.42.119.49	attack	Scanning random ports - tries to find possible vulnerable services	2019-09-01 17:07:16

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.42.119.154
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45666
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;119.42.119.154.			IN	A

;; AUTHORITY SECTION:
.			311	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030800 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 08 18:38:00 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 154.119.42.119.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 154.119.42.119.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
62.133.171.79	attackspambots	2019-08-29T01:45:48.104247MailD postfix/smtpd[15899]: NOQUEUE: reject: RCPT from h62-133-171-79.dyn.bashtel.ru[62.133.171.79]: 554 5.7.1 Service unavailable; Client host [62.133.171.79] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?62.133.171.79; from= to= proto=ESMTP helo= 2019-08-29T01:45:48.259927MailD postfix/smtpd[15899]: NOQUEUE: reject: RCPT from h62-133-171-79.dyn.bashtel.ru[62.133.171.79]: 554 5.7.1 Service unavailable; Client host [62.133.171.79] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?62.133.171.79; from= to= proto=ESMTP helo= 2019-08-29T01:45:48.451603MailD postfix/smtpd[15899]: NOQUEUE: reject: RCPT from h62-133-171-79.dyn.bashtel.ru[62.133.171.79]: 554 5.7.1 Service unavailable; Client host [62.133.171.79] blocked using bl.spamcop.net; Blocked - see https://www.s	2019-08-29 15:39:42
190.233.222.240	attack	Aug 28 23:27:35 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 190.233.222.240 port 51311 ssh2 (target: 158.69.100.142:22, password: r.r) Aug 28 23:27:35 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 190.233.222.240 port 51311 ssh2 (target: 158.69.100.142:22, password: admin) Aug 28 23:27:35 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 190.233.222.240 port 51311 ssh2 (target: 158.69.100.142:22, password: 12345) Aug 28 23:27:35 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 190.233.222.240 port 51311 ssh2 (target: 158.69.100.142:22, password: guest) Aug 28 23:27:35 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 190.233.222.240 port 51311 ssh2 (target: 158.69.100.142:22, password: 123456) Aug 28 23:27:35 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 190.233.222.240 port 51311 ssh2 (target: 158.69.100.142:22, password: 1234) Aug 28 23:27:35 wildwolf ssh-honeypotd[26164]: Failed password for r......... ------------------------------	2019-08-29 15:08:09
76.8.60.155	attackbots	Aug 29 01:45:48 vpn01 sshd\[5586\]: Invalid user ting from 76.8.60.155 Aug 29 01:45:48 vpn01 sshd\[5586\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.8.60.155 Aug 29 01:45:50 vpn01 sshd\[5586\]: Failed password for invalid user ting from 76.8.60.155 port 46616 ssh2	2019-08-29 15:38:15
115.84.112.98	attackbotsspam	Aug 29 06:33:50 hcbbdb sshd\[12092\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ftth.laotel.com user=root Aug 29 06:33:52 hcbbdb sshd\[12092\]: Failed password for root from 115.84.112.98 port 34596 ssh2 Aug 29 06:38:51 hcbbdb sshd\[12596\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ftth.laotel.com user=root Aug 29 06:38:52 hcbbdb sshd\[12596\]: Failed password for root from 115.84.112.98 port 50560 ssh2 Aug 29 06:43:42 hcbbdb sshd\[13132\]: Invalid user mvts from 115.84.112.98	2019-08-29 14:59:37
203.195.195.106	attackspambots	SSH/22 MH Probe, BF, Hack -	2019-08-29 15:59:49
143.208.181.34	attack	Aug 29 07:02:20 SilenceServices sshd[24709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.208.181.34 Aug 29 07:02:22 SilenceServices sshd[24709]: Failed password for invalid user payment from 143.208.181.34 port 56682 ssh2 Aug 29 07:06:59 SilenceServices sshd[26497]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.208.181.34	2019-08-29 16:00:15
14.192.17.145	attackbots	2019-08-29T06:59:50.765175abusebot-3.cloudsearch.cf sshd\[2632\]: Invalid user danikar from 14.192.17.145 port 37992	2019-08-29 15:00:42
115.52.169.62	attack	Aug 29 01:37:16 h2065291 sshd[18223]: reveeclipse mapping checking getaddrinfo for hn.kd.ny.adsl [115.52.169.62] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 29 01:37:16 h2065291 sshd[18223]: Invalid user admin from 115.52.169.62 Aug 29 01:37:16 h2065291 sshd[18223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.52.169.62 Aug 29 01:37:19 h2065291 sshd[18223]: Failed password for invalid user admin from 115.52.169.62 port 32460 ssh2 Aug 29 01:37:21 h2065291 sshd[18223]: Failed password for invalid user admin from 115.52.169.62 port 32460 ssh2 Aug 29 01:37:23 h2065291 sshd[18223]: Failed password for invalid user admin from 115.52.169.62 port 32460 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=115.52.169.62	2019-08-29 15:59:25
46.45.160.75	attack	WordPress XMLRPC scan :: 46.45.160.75 0.052 BYPASS [29/Aug/2019:14:21:00 1000] [censored_2] "POST /xmlrpc.php HTTP/1.1" 200 413 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-08-29 16:00:43
139.165.121.244	attackspambots	Aug 29 03:10:37 debian sshd[4481]: Unable to negotiate with 139.165.121.244 port 55086: no matching key exchange method found. Their offer: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] Aug 29 03:16:34 debian sshd[4834]: Unable to negotiate with 139.165.121.244 port 42514: no matching key exchange method found. Their offer: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] ...	2019-08-29 15:17:04
115.219.111.27	attackbots	Brute force attempt	2019-08-29 15:12:08
159.65.112.93	attack	Aug 29 09:19:29 dedicated sshd[8202]: Invalid user serge from 159.65.112.93 port 56602	2019-08-29 15:28:30
51.15.178.114	attack	2019-08-29T00:46:22.293980+01:00 suse sshd[1147]: Invalid user admin from 51.15.178.114 port 48902 2019-08-29T00:46:24.244247+01:00 suse sshd[1147]: error: PAM: User not known to the underlying authentication module for illegal user admin from 51.15.178.114 2019-08-29T00:46:22.293980+01:00 suse sshd[1147]: Invalid user admin from 51.15.178.114 port 48902 2019-08-29T00:46:24.244247+01:00 suse sshd[1147]: error: PAM: User not known to the underlying authentication module for illegal user admin from 51.15.178.114 2019-08-29T00:46:22.293980+01:00 suse sshd[1147]: Invalid user admin from 51.15.178.114 port 48902 2019-08-29T00:46:24.244247+01:00 suse sshd[1147]: error: PAM: User not known to the underlying authentication module for illegal user admin from 51.15.178.114 2019-08-29T00:46:24.261278+01:00 suse sshd[1147]: Failed keyboard-interactive/pam for invalid user admin from 51.15.178.114 port 48902 ssh2 ...	2019-08-29 15:05:59
92.42.46.52	attackbots	Aug 29 09:41:19 www sshd\[11578\]: Invalid user vincent from 92.42.46.52 Aug 29 09:41:19 www sshd\[11578\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.42.46.52 Aug 29 09:41:22 www sshd\[11578\]: Failed password for invalid user vincent from 92.42.46.52 port 35242 ssh2 ...	2019-08-29 15:02:51
92.62.139.103	attackspambots	Invalid user ubnt from 92.62.139.103 port 55760	2019-08-29 15:14:30

Recently Reported IPs

119.42.119.158	119.42.119.142	119.42.119.164	119.42.119.152
119.42.119.162	119.42.119.151	119.42.119.160	119.42.119.156
119.42.119.146	117.147.19.239	119.42.119.168	119.42.119.17
119.42.119.171	119.42.119.179	119.42.119.176	119.42.119.174
119.42.119.180	119.42.119.184	119.42.119.182	119.42.119.185