119.42.70.71 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
119.42.70.236	attack	xmlrpc attack	2020-07-27 15:22:26
119.42.70.75	attack	IP 119.42.70.75 attacked honeypot on port: 8080 at 6/27/2020 8:56:37 PM	2020-06-28 12:29:38
119.42.70.174	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-16 17:02:31,574 INFO [amun_request_handler] PortScan Detected on Port: 445 (119.42.70.174)	2019-09-17 10:00:51

Type

Details

Datetime

119.42.70.236

attack

xmlrpc attack

2020-07-27 15:22:26

119.42.70.75

attack

IP 119.42.70.75 attacked honeypot on port: 8080 at 6/27/2020 8:56:37 PM

2020-06-28 12:29:38

119.42.70.174

attack

@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-16 17:02:31,574 INFO [amun_request_handler] PortScan Detected on Port: 445 (119.42.70.174)

2019-09-17 10:00:51

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.42.70.71
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9689
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;119.42.70.71.			IN	A

;; AUTHORITY SECTION:
.			77	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030800 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 08 18:42:44 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 71.70.42.119.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 71.70.42.119.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
182.184.44.6	attackspam	Aug 21 07:47:24 auw2 sshd\[30203\]: Invalid user cxh from 182.184.44.6 Aug 21 07:47:24 auw2 sshd\[30203\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.184.44.6 Aug 21 07:47:26 auw2 sshd\[30203\]: Failed password for invalid user cxh from 182.184.44.6 port 38810 ssh2 Aug 21 07:54:35 auw2 sshd\[30867\]: Invalid user dal from 182.184.44.6 Aug 21 07:54:35 auw2 sshd\[30867\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.184.44.6	2019-08-22 05:30:12
41.212.47.175	attackbots	[ER hit] Tried to deliver spam. Already well known.	2019-08-22 05:50:00
187.17.145.237	attackbots	Brute force attempt	2019-08-22 05:23:51
203.143.12.26	attackspambots	Aug 21 21:06:39 server sshd\[7516\]: Invalid user oracle from 203.143.12.26 port 53834 Aug 21 21:06:39 server sshd\[7516\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.143.12.26 Aug 21 21:06:42 server sshd\[7516\]: Failed password for invalid user oracle from 203.143.12.26 port 53834 ssh2 Aug 21 21:11:29 server sshd\[13919\]: Invalid user tomek from 203.143.12.26 port 21475 Aug 21 21:11:29 server sshd\[13919\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.143.12.26	2019-08-22 05:39:33
103.220.31.132	attackspambots	Unauthorized connection attempt from IP address 103.220.31.132 on Port 445(SMB)	2019-08-22 05:52:15
14.98.87.110	attack	Unauthorized connection attempt from IP address 14.98.87.110 on Port 445(SMB)	2019-08-22 05:53:16
51.38.186.200	attackspambots	Aug 21 23:14:13 ubuntu-2gb-nbg1-dc3-1 sshd[11586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.186.200 Aug 21 23:14:15 ubuntu-2gb-nbg1-dc3-1 sshd[11586]: Failed password for invalid user deborah from 51.38.186.200 port 56660 ssh2 ...	2019-08-22 05:49:41
134.209.77.161	attackbots	Aug 21 16:06:26 web8 sshd\[12965\]: Invalid user sn from 134.209.77.161 Aug 21 16:06:26 web8 sshd\[12965\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.77.161 Aug 21 16:06:27 web8 sshd\[12965\]: Failed password for invalid user sn from 134.209.77.161 port 41482 ssh2 Aug 21 16:10:54 web8 sshd\[15093\]: Invalid user gq from 134.209.77.161 Aug 21 16:10:54 web8 sshd\[15093\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.77.161	2019-08-22 05:56:22
137.74.94.113	attackspambots	Aug 21 20:37:11 srv-4 sshd\[30137\]: Invalid user inputws from 137.74.94.113 Aug 21 20:37:11 srv-4 sshd\[30137\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.94.113 Aug 21 20:37:13 srv-4 sshd\[30137\]: Failed password for invalid user inputws from 137.74.94.113 port 24693 ssh2 ...	2019-08-22 05:18:23
62.97.242.146	attack	scan r	2019-08-22 05:45:57
173.45.164.2	attackspam	Aug 21 11:01:44 lcdev sshd\[7728\]: Invalid user user from 173.45.164.2 Aug 21 11:01:44 lcdev sshd\[7728\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=br1.atl5-vlan34.as22384.net Aug 21 11:01:46 lcdev sshd\[7728\]: Failed password for invalid user user from 173.45.164.2 port 53818 ssh2 Aug 21 11:05:21 lcdev sshd\[8120\]: Invalid user feng from 173.45.164.2 Aug 21 11:05:21 lcdev sshd\[8120\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=br1.atl5-vlan34.as22384.net	2019-08-22 05:13:15
60.189.150.250	attackspambots	Aug 21 13:12:32 xxxxxxx0 sshd[16244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.189.150.250 user=r.r Aug 21 13:12:34 xxxxxxx0 sshd[16244]: Failed password for r.r from 60.189.150.250 port 51598 ssh2 Aug 21 13:12:36 xxxxxxx0 sshd[16244]: Failed password for r.r from 60.189.150.250 port 51598 ssh2 Aug 21 13:12:38 xxxxxxx0 sshd[16244]: Failed password for r.r from 60.189.150.250 port 51598 ssh2 Aug 21 13:12:40 xxxxxxx0 sshd[16244]: Failed password for r.r from 60.189.150.250 port 51598 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=60.189.150.250	2019-08-22 05:38:41
222.122.31.133	attackspambots	Aug 21 15:13:01 work-partkepr sshd\[3490\]: Invalid user dorothy from 222.122.31.133 port 52502 Aug 21 15:13:01 work-partkepr sshd\[3490\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.122.31.133 ...	2019-08-22 05:26:27
137.63.184.100	attackbotsspam	Aug 21 13:55:58 * sshd[11638]: Failed password for invalid user gisele from 137.63.184.100 port 51120 ssh2 Aug 21 14:07:39 * sshd[11988]: Failed password for invalid user ales from 137.63.184.100 port 57702 ssh2 Aug 21 14:12:54 * sshd[12162]: Failed password for invalid user lihui from 137.63.184.100 port 45106 ssh2 Aug 21 14:17:54 * sshd[12284]: Failed password for invalid user mb from 137.63.184.100 port 60724 ssh2 Aug 21 14:22:51 * sshd[12450]: Failed password for invalid user itadmin from 137.63.184.100 port 48120 ssh2 Aug 21 14:27:56 * sshd[12593]: Failed password for invalid user mysql from 137.63.184.100 port 35514 ssh2 Aug 21 14:33:05 * sshd[12704]: Failed password for invalid user devel from 137.63.184.100 port 51144 ssh2 Aug 21 14:38:13 * sshd[12824]: Failed password for invalid user rabbitmq from 137.63.184.100 port 38534 ssh2 Aug 21 14:43:24 * sshd[13064]: Failed password for invalid user martin from 137.63.184.100 port 54170 ssh2 Aug 21 14:48:26 * sshd[13215]: Failed password	2019-08-22 05:55:35
84.17.58.14	attack	(From sekreti1@mail.ru) Hy there, courteousoffers http://thompconsconfbut.tk/yrew3	2019-08-22 05:35:09

Recently Reported IPs

119.42.70.67	119.42.70.72	119.42.70.7	119.42.70.74
119.42.70.78	119.42.70.76	119.42.70.8	119.42.70.80
119.42.70.82	119.42.70.86	119.42.70.89	119.42.70.90
117.152.99.144	119.42.70.92	119.42.70.95	119.42.70.96
119.42.71.104	119.42.70.98	119.42.71.106	119.42.71.114