168.78.42.107 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Korea (the Republic of)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 168.78.42.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46157
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;168.78.42.107.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012201 1800 900 604800 86400

;; Query time: 39 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 23 05:21:26 CST 2025
;; MSG SIZE  rcvd: 106

Host info

Host 107.42.78.168.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

server can't find 168.78.42.107.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
92.118.161.9	attack	TCP (SYN) 92.118.161.9:56125 -> port 50070, len 44	2020-07-05 04:21:07
217.115.213.186	attackspam	VNC brute force attack detected by fail2ban	2020-07-05 04:22:32
178.128.216.246	attackspam	178.128.216.246 - - [04/Jul/2020:22:23:33 +0200] "POST /xmlrpc.php HTTP/1.1" 403 461 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.128.216.246 - - [04/Jul/2020:22:41:58 +0200] "POST /xmlrpc.php HTTP/1.1" 403 611 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-05 04:48:56
218.92.0.219	attackbotsspam	Jul 4 22:28:53 piServer sshd[4548]: Failed password for root from 218.92.0.219 port 45319 ssh2 Jul 4 22:28:56 piServer sshd[4548]: Failed password for root from 218.92.0.219 port 45319 ssh2 Jul 4 22:29:01 piServer sshd[4548]: Failed password for root from 218.92.0.219 port 45319 ssh2 ...	2020-07-05 04:32:39
176.31.102.37	attackspam	Jul 4 22:28:47 lnxweb61 sshd[759]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.102.37 Jul 4 22:28:47 lnxweb61 sshd[759]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.102.37	2020-07-05 04:43:23
218.92.0.165	attackspam	Jul 4 22:31:55 nextcloud sshd\[14290\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.165 user=root Jul 4 22:31:57 nextcloud sshd\[14290\]: Failed password for root from 218.92.0.165 port 56310 ssh2 Jul 4 22:32:00 nextcloud sshd\[14290\]: Failed password for root from 218.92.0.165 port 56310 ssh2	2020-07-05 04:35:47
119.97.236.4	attackspambots	Jul 4 22:28:30 nextcloud sshd\[9473\]: Invalid user neelima from 119.97.236.4 Jul 4 22:28:30 nextcloud sshd\[9473\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.97.236.4 Jul 4 22:28:32 nextcloud sshd\[9473\]: Failed password for invalid user neelima from 119.97.236.4 port 41033 ssh2	2020-07-05 04:58:12
185.220.100.245	attackspambots	goldgier.de:80 185.220.100.245 - - [04/Jul/2020:22:28:57 +0200] "POST /xmlrpc.php HTTP/1.0" 301 497 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" www.goldgier.de 185.220.100.245 [04/Jul/2020:22:28:58 +0200] "POST /xmlrpc.php HTTP/1.0" 200 3899 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36"	2020-07-05 04:32:52
148.70.125.42	attack	Unauthorized connection attempt detected from IP address 148.70.125.42 to port 788	2020-07-05 04:25:25
104.248.160.58	attackbotsspam	Jul 4 14:26:17 Tower sshd[3801]: Connection from 103.47.13.58 port 32864 on 192.168.10.220 port 22 rdomain "" Jul 4 14:26:20 Tower sshd[3801]: Invalid user bt from 103.47.13.58 port 32864 Jul 4 14:26:20 Tower sshd[3801]: error: Could not get shadow information for NOUSER Jul 4 14:26:20 Tower sshd[3801]: Failed password for invalid user bt from 103.47.13.58 port 32864 ssh2 Jul 4 14:26:21 Tower sshd[3801]: Received disconnect from 103.47.13.58 port 32864:11: Bye Bye [preauth] Jul 4 14:26:21 Tower sshd[3801]: Disconnected from invalid user bt 103.47.13.58 port 32864 [preauth] Jul 4 14:49:30 Tower sshd[3801]: Connection from 104.248.160.58 port 47770 on 192.168.10.220 port 22 rdomain "" Jul 4 14:49:31 Tower sshd[3801]: Failed password for root from 104.248.160.58 port 47770 ssh2 Jul 4 14:49:31 Tower sshd[3801]: Received disconnect from 104.248.160.58 port 47770:11: Bye Bye [preauth] Jul 4 14:49:31 Tower sshd[3801]: Disconnected from authenticating user root 104.248.160.58 port 47770 [preauth]	2020-07-05 04:27:02
34.70.53.164	attackspambots	21 attempts against mh-ssh on crop	2020-07-05 04:44:13
149.56.129.68	attackbotsspam	Jul 5 01:28:58 gw1 sshd[4839]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.129.68 Jul 5 01:29:01 gw1 sshd[4839]: Failed password for invalid user tara from 149.56.129.68 port 60642 ssh2 ...	2020-07-05 04:30:29
144.48.112.126	attackspam	Jul 3 15:27:54 mxgate1 postfix/postscreen[14701]: CONNECT from [144.48.112.126]:56489 to [176.31.12.44]:25 Jul 3 15:27:54 mxgate1 postfix/dnsblog[14776]: addr 144.48.112.126 listed by domain zen.spamhaus.org as 127.0.0.4 Jul 3 15:27:54 mxgate1 postfix/dnsblog[14776]: addr 144.48.112.126 listed by domain zen.spamhaus.org as 127.0.0.11 Jul 3 15:27:54 mxgate1 postfix/dnsblog[14776]: addr 144.48.112.126 listed by domain zen.spamhaus.org as 127.0.0.3 Jul 3 15:27:54 mxgate1 postfix/dnsblog[14779]: addr 144.48.112.126 listed by domain cbl.abuseat.org as 127.0.0.2 Jul 3 15:27:54 mxgate1 postfix/dnsblog[14778]: addr 144.48.112.126 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Jul 3 15:27:54 mxgate1 postfix/dnsblog[14780]: addr 144.48.112.126 listed by domain b.barracudacentral.org as 127.0.0.2 Jul 3 15:27:54 mxgate1 postfix/postscreen[14701]: PREGREET 23 after 0.3 from [144.48.112.126]:56489: EHLO [144.48.112.126] Jul 3 15:27:54 mxgate1 postfix/postscreen[14701]: D........ -------------------------------	2020-07-05 04:24:00
218.94.57.147	attack	Jul 4 22:23:02 localhost sshd\[18721\]: Invalid user openerp from 218.94.57.147 Jul 4 22:23:02 localhost sshd\[18721\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.94.57.147 Jul 4 22:23:04 localhost sshd\[18721\]: Failed password for invalid user openerp from 218.94.57.147 port 41812 ssh2 Jul 4 22:28:38 localhost sshd\[19041\]: Invalid user vanessa from 218.94.57.147 Jul 4 22:28:38 localhost sshd\[19041\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.94.57.147 ...	2020-07-05 04:51:46
112.85.42.188	attack	07/04/2020-16:33:55.435066 112.85.42.188 Protocol: 6 ET SCAN Potential SSH Scan	2020-07-05 04:36:10

Recently Reported IPs

139.113.245.191	219.118.221.145	95.96.237.21	118.98.136.193
253.27.215.251	86.138.155.166	85.205.86.170	149.113.114.40
103.202.118.87	126.20.130.39	198.173.247.28	31.201.21.194
3.30.107.34	75.98.34.46	94.170.143.143	230.164.95.237
49.60.168.216	92.254.35.134	134.237.181.230	12.96.250.122