119.42.70.7 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
119.42.70.236	attack	xmlrpc attack	2020-07-27 15:22:26
119.42.70.75	attack	IP 119.42.70.75 attacked honeypot on port: 8080 at 6/27/2020 8:56:37 PM	2020-06-28 12:29:38
119.42.70.174	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-16 17:02:31,574 INFO [amun_request_handler] PortScan Detected on Port: 445 (119.42.70.174)	2019-09-17 10:00:51

Type

Details

Datetime

119.42.70.236

attack

xmlrpc attack

2020-07-27 15:22:26

119.42.70.75

attack

IP 119.42.70.75 attacked honeypot on port: 8080 at 6/27/2020 8:56:37 PM

2020-06-28 12:29:38

119.42.70.174

attack

@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-16 17:02:31,574 INFO [amun_request_handler] PortScan Detected on Port: 445 (119.42.70.174)

2019-09-17 10:00:51

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.42.70.7
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60003
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;119.42.70.7.			IN	A

;; AUTHORITY SECTION:
.			82	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030800 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 08 18:42:44 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 7.70.42.119.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 7.70.42.119.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.89.190	attack	detected by Fail2Ban	2019-12-01 17:48:54
40.117.135.57	attackbotsspam	Dec 1 06:45:49 localhost sshd\[127680\]: Invalid user edu from 40.117.135.57 port 45394 Dec 1 06:45:49 localhost sshd\[127680\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.117.135.57 Dec 1 06:45:52 localhost sshd\[127680\]: Failed password for invalid user edu from 40.117.135.57 port 45394 ssh2 Dec 1 06:49:27 localhost sshd\[127771\]: Invalid user 77777777 from 40.117.135.57 port 52940 Dec 1 06:49:27 localhost sshd\[127771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.117.135.57 ...	2019-12-01 17:27:32
31.46.16.95	attackspambots	Dec 1 12:08:50 vibhu-HP-Z238-Microtower-Workstation sshd\[22836\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.46.16.95 user=root Dec 1 12:08:52 vibhu-HP-Z238-Microtower-Workstation sshd\[22836\]: Failed password for root from 31.46.16.95 port 34242 ssh2 Dec 1 12:11:48 vibhu-HP-Z238-Microtower-Workstation sshd\[23048\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.46.16.95 user=mysql Dec 1 12:11:50 vibhu-HP-Z238-Microtower-Workstation sshd\[23048\]: Failed password for mysql from 31.46.16.95 port 40440 ssh2 Dec 1 12:14:49 vibhu-HP-Z238-Microtower-Workstation sshd\[23238\]: Invalid user rpc from 31.46.16.95 Dec 1 12:14:49 vibhu-HP-Z238-Microtower-Workstation sshd\[23238\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.46.16.95 ...	2019-12-01 17:38:12
180.101.221.152	attackspambots	Dec 1 08:00:14 ns382633 sshd\[7153\]: Invalid user sekhar from 180.101.221.152 port 57538 Dec 1 08:00:14 ns382633 sshd\[7153\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.101.221.152 Dec 1 08:00:16 ns382633 sshd\[7153\]: Failed password for invalid user sekhar from 180.101.221.152 port 57538 ssh2 Dec 1 08:24:16 ns382633 sshd\[11585\]: Invalid user admin from 180.101.221.152 port 55650 Dec 1 08:24:16 ns382633 sshd\[11585\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.101.221.152	2019-12-01 17:21:01
83.4.129.242	attackspambots	Automatic report - Port Scan Attack	2019-12-01 17:39:03
31.207.130.207	attackbots	12/01/2019-07:27:41.066202 31.207.130.207 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-12-01 17:17:51
218.92.0.138	attackbotsspam	2019-12-01T09:52:11.585262shield sshd\[26838\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.138 user=root 2019-12-01T09:52:13.679529shield sshd\[26838\]: Failed password for root from 218.92.0.138 port 57959 ssh2 2019-12-01T09:52:16.784585shield sshd\[26838\]: Failed password for root from 218.92.0.138 port 57959 ssh2 2019-12-01T09:52:20.434091shield sshd\[26838\]: Failed password for root from 218.92.0.138 port 57959 ssh2 2019-12-01T09:52:23.161543shield sshd\[26838\]: Failed password for root from 218.92.0.138 port 57959 ssh2	2019-12-01 17:56:28
14.160.26.61	attack	Dec 1 07:27:37 andromeda sshd\[37542\]: Invalid user admin from 14.160.26.61 port 59078 Dec 1 07:27:37 andromeda sshd\[37542\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.160.26.61 Dec 1 07:27:38 andromeda sshd\[37542\]: Failed password for invalid user admin from 14.160.26.61 port 59078 ssh2	2019-12-01 17:18:18
111.85.182.30	attack	Dec 1 10:19:41 meumeu sshd[6628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.85.182.30 Dec 1 10:19:43 meumeu sshd[6628]: Failed password for invalid user ag from 111.85.182.30 port 11559 ssh2 Dec 1 10:25:14 meumeu sshd[7370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.85.182.30 ...	2019-12-01 17:37:53
42.51.191.202	attackspam	5x Failed Password	2019-12-01 17:26:07
134.175.154.93	attackspambots	Automatic report - Banned IP Access	2019-12-01 17:57:02
46.105.124.52	attackbots	Dec 1 07:24:14 h2177944 sshd\[21017\]: Invalid user blockoff from 46.105.124.52 port 40876 Dec 1 07:24:14 h2177944 sshd\[21017\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.124.52 Dec 1 07:24:16 h2177944 sshd\[21017\]: Failed password for invalid user blockoff from 46.105.124.52 port 40876 ssh2 Dec 1 07:27:34 h2177944 sshd\[21176\]: Invalid user adamek from 46.105.124.52 port 58921 ...	2019-12-01 17:17:34
183.150.139.62	attackspambots	POST /xmlrpc.php HTTP/1.1 200 439 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36	2019-12-01 17:46:12
104.160.41.215	attackbots	Dec 1 09:51:35 h2177944 sshd\[26827\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.160.41.215 user=mysql Dec 1 09:51:37 h2177944 sshd\[26827\]: Failed password for mysql from 104.160.41.215 port 38612 ssh2 Dec 1 09:59:25 h2177944 sshd\[27072\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.160.41.215 user=news Dec 1 09:59:27 h2177944 sshd\[27072\]: Failed password for news from 104.160.41.215 port 46690 ssh2 ...	2019-12-01 17:30:57
181.41.216.137	attackspambots	2019-12-01 01:49:22 H=([181.41.216.131]) [181.41.216.137]:14272 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in all.usa.bl.blocklist.de (127.0.0.13) (Infected System (Service: sasl, Last-Attack: 1575181508), see http://www.blocklist.de/en/view.html?ip=181.41.216.137) 2019-12-01 01:49:22 H=([181.41.216.131]) [181.41.216.137]:14272 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in all.usa.bl.blocklist.de (127.0.0.13) (Infected System (Service: sasl, Last-Attack: 1575181508), see http://www.blocklist.de/en/view.html?ip=181.41.216.137) 2019-12-01 01:49:22 H=([181.41.216.131]) [181.41.216.137]:14272 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in all.usa.bl.blocklist.de (127.0.0.13) (Infected System (Service: sasl, Last-Attack: 1575181508), see http://www.blocklist.de/en/view.html?ip=181.41.216.137) 2019-12-01 01:49:22 H=([181.41.216.131]) [181.41 ...	2019-12-01 17:29:12

Recently Reported IPs

119.42.70.72	119.42.70.74	119.42.70.78	119.42.70.76
119.42.70.8	119.42.70.80	119.42.70.82	119.42.70.86
119.42.70.89	119.42.70.90	117.152.99.144	119.42.70.92
119.42.70.95	119.42.70.96	119.42.71.104	119.42.70.98
119.42.71.106	119.42.71.114	119.42.71.116	119.42.71.120