119.42.68.210 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
119.42.68.155	attackbots	Aug 26 04:52:54 shivevps sshd[3965]: Bad protocol version identification '\024' from 119.42.68.155 port 58134 Aug 26 04:53:01 shivevps sshd[4632]: Bad protocol version identification '\024' from 119.42.68.155 port 58443 Aug 26 04:54:44 shivevps sshd[7837]: Bad protocol version identification '\024' from 119.42.68.155 port 34088 ...	2020-08-26 13:15:13
119.42.68.15	attackspambots	Automatic report - Port Scan Attack	2020-03-01 00:54:15

Type

Details

Datetime

119.42.68.155

attackbots

Aug 26 04:52:54 shivevps sshd[3965]: Bad protocol version identification '\024' from 119.42.68.155 port 58134
Aug 26 04:53:01 shivevps sshd[4632]: Bad protocol version identification '\024' from 119.42.68.155 port 58443
Aug 26 04:54:44 shivevps sshd[7837]: Bad protocol version identification '\024' from 119.42.68.155 port 34088
...

2020-08-26 13:15:13

119.42.68.15

attackspambots

Automatic report - Port Scan Attack

2020-03-01 00:54:15

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.42.68.210
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39774
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;119.42.68.210.			IN	A

;; AUTHORITY SECTION:
.			91	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030800 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 08 18:41:55 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 210.68.42.119.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 210.68.42.119.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
116.52.164.10	attackbots	2020-06-07T06:23:59.854137galaxy.wi.uni-potsdam.de sshd[31161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.52.164.10 user=root 2020-06-07T06:24:01.580956galaxy.wi.uni-potsdam.de sshd[31161]: Failed password for root from 116.52.164.10 port 34783 ssh2 2020-06-07T06:24:49.720801galaxy.wi.uni-potsdam.de sshd[31278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.52.164.10 user=root 2020-06-07T06:24:51.649397galaxy.wi.uni-potsdam.de sshd[31278]: Failed password for root from 116.52.164.10 port 39530 ssh2 2020-06-07T06:25:38.412783galaxy.wi.uni-potsdam.de sshd[31369]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.52.164.10 user=root 2020-06-07T06:25:40.065781galaxy.wi.uni-potsdam.de sshd[31369]: Failed password for root from 116.52.164.10 port 44271 ssh2 2020-06-07T06:26:29.393098galaxy.wi.uni-potsdam.de sshd[31447]: pam_unix(sshd:auth): authenticati ...	2020-06-07 15:00:03
96.69.151.105	attack	2020-06-06T21:54:51.323664linuxbox-skyline sshd[188380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.69.151.105 user=root 2020-06-06T21:54:53.082358linuxbox-skyline sshd[188380]: Failed password for root from 96.69.151.105 port 57830 ssh2 ...	2020-06-07 14:50:39
138.91.184.56	attackspambots	Brute forcing email accounts	2020-06-07 14:43:13
212.129.144.231	attackbots	Jun 6 20:47:58 pixelmemory sshd[521378]: Failed password for root from 212.129.144.231 port 56746 ssh2 Jun 6 20:51:36 pixelmemory sshd[533988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.144.231 user=root Jun 6 20:51:38 pixelmemory sshd[533988]: Failed password for root from 212.129.144.231 port 50786 ssh2 Jun 6 20:55:29 pixelmemory sshd[547444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.144.231 user=root Jun 6 20:55:31 pixelmemory sshd[547444]: Failed password for root from 212.129.144.231 port 44822 ssh2 ...	2020-06-07 14:31:00
106.13.207.113	attackbots	2020-06-07T05:51:01.959523sd-86998 sshd[34105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.207.113 user=root 2020-06-07T05:51:03.477330sd-86998 sshd[34105]: Failed password for root from 106.13.207.113 port 52100 ssh2 2020-06-07T05:53:02.890792sd-86998 sshd[34326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.207.113 user=root 2020-06-07T05:53:04.353301sd-86998 sshd[34326]: Failed password for root from 106.13.207.113 port 50850 ssh2 2020-06-07T05:55:02.192797sd-86998 sshd[34632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.207.113 user=root 2020-06-07T05:55:04.463059sd-86998 sshd[34632]: Failed password for root from 106.13.207.113 port 49600 ssh2 ...	2020-06-07 14:43:42
51.38.48.127	attackspam	Jun 6 23:48:45 NPSTNNYC01T sshd[4502]: Failed password for root from 51.38.48.127 port 48432 ssh2 Jun 6 23:52:01 NPSTNNYC01T sshd[4787]: Failed password for root from 51.38.48.127 port 47964 ssh2 ...	2020-06-07 14:37:58
89.187.178.173	attackspam	Multiple web server 500 error code (Internal Error).	2020-06-07 14:37:39
49.233.182.205	attack	2020-06-07T03:46:42.412601abusebot-7.cloudsearch.cf sshd[27690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.182.205 user=root 2020-06-07T03:46:44.708086abusebot-7.cloudsearch.cf sshd[27690]: Failed password for root from 49.233.182.205 port 45122 ssh2 2020-06-07T03:49:26.194339abusebot-7.cloudsearch.cf sshd[27993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.182.205 user=root 2020-06-07T03:49:28.003356abusebot-7.cloudsearch.cf sshd[27993]: Failed password for root from 49.233.182.205 port 55154 ssh2 2020-06-07T03:52:13.824899abusebot-7.cloudsearch.cf sshd[28143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.182.205 user=root 2020-06-07T03:52:14.891315abusebot-7.cloudsearch.cf sshd[28143]: Failed password for root from 49.233.182.205 port 36940 ssh2 2020-06-07T03:54:53.832869abusebot-7.cloudsearch.cf sshd[28340]: pam_unix(sshd:auth): ...	2020-06-07 14:49:34
106.54.251.179	attackspambots	Jun 7 09:30:05 ift sshd\[33737\]: Failed password for root from 106.54.251.179 port 47438 ssh2Jun 7 09:32:58 ift sshd\[33914\]: Failed password for root from 106.54.251.179 port 44284 ssh2Jun 7 09:34:28 ift sshd\[34012\]: Failed password for root from 106.54.251.179 port 58366 ssh2Jun 7 09:35:55 ift sshd\[34389\]: Failed password for root from 106.54.251.179 port 44214 ssh2Jun 7 09:37:28 ift sshd\[34485\]: Failed password for root from 106.54.251.179 port 58300 ssh2 ...	2020-06-07 14:44:27
151.69.170.146	attack	Jun 7 06:46:21 ift sshd\[11688\]: Failed password for root from 151.69.170.146 port 33856 ssh2Jun 7 06:48:29 ift sshd\[12463\]: Failed password for root from 151.69.170.146 port 51359 ssh2Jun 7 06:50:43 ift sshd\[12979\]: Failed password for root from 151.69.170.146 port 40629 ssh2Jun 7 06:52:51 ift sshd\[13067\]: Failed password for root from 151.69.170.146 port 58128 ssh2Jun 7 06:55:09 ift sshd\[13464\]: Failed password for root from 151.69.170.146 port 47398 ssh2 ...	2020-06-07 14:42:46
120.133.1.16	attack	Jun 7 08:07:49 server sshd[23316]: Failed password for root from 120.133.1.16 port 56124 ssh2 Jun 7 08:09:26 server sshd[23660]: Failed password for root from 120.133.1.16 port 42568 ssh2 ...	2020-06-07 15:07:09
129.204.15.121	attackbotsspam	DATE:2020-06-07 07:57:52, IP:129.204.15.121, PORT:ssh SSH brute force auth (docker-dc)	2020-06-07 14:36:00
156.96.156.130	attack	[2020-06-07 02:56:46] NOTICE[1288][C-000011c4] chan_sip.c: Call from '' (156.96.156.130:54158) to extension '01146406820596' rejected because extension not found in context 'public'. [2020-06-07 02:56:46] SECURITY[1303] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-06-07T02:56:46.229-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146406820596",SessionID="0x7f4d745af848",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/156.96.156.130/54158",ACLName="no_extension_match" [2020-06-07 02:58:09] NOTICE[1288][C-000011c6] chan_sip.c: Call from '' (156.96.156.130:65477) to extension '901146406820596' rejected because extension not found in context 'public'. ...	2020-06-07 14:58:29
45.95.168.84	attack	Telnet Honeypot -> Telnet Bruteforce / Login	2020-06-07 15:04:54
104.236.151.120	attackspam	Unauthorised connection attempt detected at AUO FR1 NODE2. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-06-07 15:00:49

Recently Reported IPs

119.42.68.220	119.42.68.216	119.42.68.21	119.42.68.221
119.42.68.222	119.42.68.225	119.42.68.227	117.152.231.176
119.42.68.228	119.42.68.230	119.42.68.232	119.42.68.23
119.42.68.235	119.42.68.236	119.42.68.238	119.42.68.240
119.42.68.242	119.42.68.24	119.42.68.244	119.42.68.246