119.42.90.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: CAT Telecom Public Company Ltd

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 119.42.90.2 on Port 445(SMB)	2020-02-13 19:16:51

Comments on same subnet:

IP	Type	Details	Datetime
119.42.90.233	attackbots	1594778676 - 07/15/2020 04:04:36 Host: 119.42.90.233/119.42.90.233 Port: 445 TCP Blocked	2020-07-15 11:08:42

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.42.90.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41515
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;119.42.90.2.			IN	A

;; AUTHORITY SECTION:
.			166	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021300 1800 900 604800 86400

;; Query time: 495 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 13 19:16:44 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 2.90.42.119.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.90.42.119.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
107.170.76.170	attackbots	Aug 27 03:26:38 auw2 sshd\[11332\]: Invalid user redmine from 107.170.76.170 Aug 27 03:26:38 auw2 sshd\[11332\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.76.170 Aug 27 03:26:40 auw2 sshd\[11332\]: Failed password for invalid user redmine from 107.170.76.170 port 45852 ssh2 Aug 27 03:31:52 auw2 sshd\[11748\]: Invalid user trash from 107.170.76.170 Aug 27 03:31:52 auw2 sshd\[11748\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.76.170	2019-08-27 21:42:44
162.247.74.201	attackbotsspam	Aug 27 03:21:55 aiointranet sshd\[18772\]: Invalid user user from 162.247.74.201 Aug 27 03:21:55 aiointranet sshd\[18772\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=kunstler.tor-exit.calyxinstitute.org Aug 27 03:21:58 aiointranet sshd\[18772\]: Failed password for invalid user user from 162.247.74.201 port 44328 ssh2 Aug 27 03:22:01 aiointranet sshd\[18772\]: Failed password for invalid user user from 162.247.74.201 port 44328 ssh2 Aug 27 03:22:03 aiointranet sshd\[18772\]: Failed password for invalid user user from 162.247.74.201 port 44328 ssh2	2019-08-27 21:29:24
106.248.41.245	attackbots	Aug 27 09:57:11 hcbbdb sshd\[5928\]: Invalid user postgres from 106.248.41.245 Aug 27 09:57:11 hcbbdb sshd\[5928\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.248.41.245 Aug 27 09:57:13 hcbbdb sshd\[5928\]: Failed password for invalid user postgres from 106.248.41.245 port 47836 ssh2 Aug 27 10:01:59 hcbbdb sshd\[6578\]: Invalid user claudio from 106.248.41.245 Aug 27 10:01:59 hcbbdb sshd\[6578\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.248.41.245	2019-08-27 21:53:49
68.183.227.96	attackbotsspam	Aug 27 14:40:10 vps691689 sshd[3026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.227.96 Aug 27 14:40:12 vps691689 sshd[3026]: Failed password for invalid user mythtv from 68.183.227.96 port 47294 ssh2 ...	2019-08-27 20:48:10
200.111.175.252	attackbotsspam	Aug 27 16:49:24 lcl-usvr-02 sshd[2810]: Invalid user china from 200.111.175.252 port 45704 Aug 27 16:49:24 lcl-usvr-02 sshd[2810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.111.175.252 Aug 27 16:49:24 lcl-usvr-02 sshd[2810]: Invalid user china from 200.111.175.252 port 45704 Aug 27 16:49:26 lcl-usvr-02 sshd[2810]: Failed password for invalid user china from 200.111.175.252 port 45704 ssh2 Aug 27 16:53:52 lcl-usvr-02 sshd[3757]: Invalid user admin from 200.111.175.252 port 56118 ...	2019-08-27 21:26:24
202.51.98.131	attack	Aug 27 12:41:11 lnxmail61 sshd[2620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.51.98.131	2019-08-27 21:21:37
165.227.97.108	attackspambots	leo_www	2019-08-27 21:43:34
61.175.121.76	attackspam	Aug 27 13:09:26 nextcloud sshd\[6878\]: Invalid user agustin from 61.175.121.76 Aug 27 13:09:26 nextcloud sshd\[6878\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.175.121.76 Aug 27 13:09:28 nextcloud sshd\[6878\]: Failed password for invalid user agustin from 61.175.121.76 port 54562 ssh2 ...	2019-08-27 21:19:36
103.208.220.226	attack	[ssh] SSH attack	2019-08-27 20:53:23
109.184.211.245	attack	fell into ViewStateTrap:wien2018	2019-08-27 20:54:40
121.67.184.228	attackspam	Aug 27 15:03:08 ArkNodeAT sshd\[1708\]: Invalid user hahn from 121.67.184.228 Aug 27 15:03:08 ArkNodeAT sshd\[1708\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.67.184.228 Aug 27 15:03:10 ArkNodeAT sshd\[1708\]: Failed password for invalid user hahn from 121.67.184.228 port 44646 ssh2	2019-08-27 21:25:11
212.92.105.127	attack	RDP Bruteforce	2019-08-27 21:23:54
46.165.254.160	attack	Aug 27 14:52:00 SilenceServices sshd[7047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.165.254.160 Aug 27 14:52:02 SilenceServices sshd[7047]: Failed password for invalid user user from 46.165.254.160 port 40139 ssh2 Aug 27 14:52:03 SilenceServices sshd[7047]: Failed password for invalid user user from 46.165.254.160 port 40139 ssh2 Aug 27 14:52:05 SilenceServices sshd[7047]: Failed password for invalid user user from 46.165.254.160 port 40139 ssh2	2019-08-27 21:03:21
113.231.186.188	attack	Unauthorised access (Aug 27) SRC=113.231.186.188 LEN=40 TTL=49 ID=56870 TCP DPT=8080 WINDOW=10427 SYN	2019-08-27 21:31:12
132.232.39.15	attackspam	Aug 27 03:02:30 web9 sshd\[15994\]: Invalid user michi from 132.232.39.15 Aug 27 03:02:30 web9 sshd\[15994\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.39.15 Aug 27 03:02:32 web9 sshd\[15994\]: Failed password for invalid user michi from 132.232.39.15 port 57212 ssh2 Aug 27 03:09:17 web9 sshd\[17243\]: Invalid user password from 132.232.39.15 Aug 27 03:09:17 web9 sshd\[17243\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.39.15	2019-08-27 21:16:57

Recently Reported IPs

93.157.204.156	117.102.66.187	106.120.127.15	180.252.252.191
46.182.19.49	124.46.249.196	125.33.80.128	123.205.58.221
103.103.212.191	1.2.237.225	133.203.58.185	183.91.4.208
2607:f298:5:100f::2de:63f6	171.242.112.177	110.137.82.209	50.239.145.20
186.72.199.180	192.241.227.75	5.101.59.70	93.40.3.134