109.124.145.69

Basic Info

City: Lund

Region: Skåne

Country: Sweden

Internet Service Provider: A3 Sverige AB

Hostname: unknown

Organization: A3 Sverige AB

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Jul 18 23:09:21 [host] sshd[13887]: Invalid user git from 109.124.145.69 Jul 18 23:09:21 [host] sshd[13887]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.124.145.69 Jul 18 23:09:23 [host] sshd[13887]: Failed password for invalid user git from 109.124.145.69 port 30993 ssh2	2019-07-19 05:19:04
attackspam	SSH Brute Force	2019-07-08 01:35:02

Type

Details

Datetime

attack

Jul 18 23:09:21 [host] sshd[13887]: Invalid user git from 109.124.145.69
Jul 18 23:09:21 [host] sshd[13887]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.124.145.69
Jul 18 23:09:23 [host] sshd[13887]: Failed password for invalid user git from 109.124.145.69 port 30993 ssh2

2019-07-19 05:19:04

attackspam

SSH Brute Force

2019-07-08 01:35:02

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.124.145.69
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37046
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;109.124.145.69.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 08 01:34:52 CST 2019
;; MSG SIZE  rcvd: 118

Host info

69.145.124.109.in-addr.arpa domain name pointer h109-124-145-69.cust.a3fiber.se.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
69.145.124.109.in-addr.arpa	name = h109-124-145-69.cust.a3fiber.se.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
217.165.23.53	attack	failed login: Wed Sep 2 09:21:21 CEST 2020 from 217.165.23.53 on ssh:notty	2020-09-03 02:47:26
198.71.239.50	attackspam	198.71.239.50 - - [01/Sep/2020:18:41:06 +0200] "POST /xmlrpc.php HTTP/1.1" 403 38248 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36" 198.71.239.50 - - [01/Sep/2020:18:41:06 +0200] "POST /xmlrpc.php HTTP/1.1" 403 38248 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36" ...	2020-09-03 03:07:59
80.82.70.178	attackspam	Unauthorized connection attempt detected from IP address 80.82.70.178 to port 80 [T]	2020-09-03 02:53:43
108.190.190.48	attackspambots	2020-09-02T10:33:52.022877dmca.cloudsearch.cf sshd[20925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=108.190.190.48 user=root 2020-09-02T10:33:54.187130dmca.cloudsearch.cf sshd[20925]: Failed password for root from 108.190.190.48 port 49466 ssh2 2020-09-02T10:37:30.333221dmca.cloudsearch.cf sshd[21077]: Invalid user ela from 108.190.190.48 port 55684 2020-09-02T10:37:30.339843dmca.cloudsearch.cf sshd[21077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=108.190.190.48 2020-09-02T10:37:30.333221dmca.cloudsearch.cf sshd[21077]: Invalid user ela from 108.190.190.48 port 55684 2020-09-02T10:37:32.765027dmca.cloudsearch.cf sshd[21077]: Failed password for invalid user ela from 108.190.190.48 port 55684 ssh2 2020-09-02T10:41:11.218435dmca.cloudsearch.cf sshd[21169]: Invalid user matthew from 108.190.190.48 port 33682 ...	2020-09-03 03:21:36
45.142.120.179	attack	2020-09-02T12:37:57.832060linuxbox-skyline auth[35642]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=wpadmin rhost=45.142.120.179 ...	2020-09-03 02:52:54
157.245.211.180	attack	Cluster member 67.227.229.95 (US/United States/host.cjthedj97.me) said, DENY 157.245.211.180, Reason:[(sshd) Failed SSH login from 157.245.211.180 (US/United States/-): 1 in the last 3600 secs]; Ports: *; Direction: inout; Trigger: LF_CLUSTER	2020-09-03 03:10:02
175.24.17.53	attackbots	Invalid user atul from 175.24.17.53 port 54270	2020-09-03 03:01:09
113.110.42.23	attack	(ftpd) Failed FTP login from 113.110.42.23 (CN/China/-): 10 in the last 3600 secs	2020-09-03 03:16:56
195.54.160.180	attackspambots	Sep 2 20:46:11 web-main sshd[283002]: Invalid user test123 from 195.54.160.180 port 28502 Sep 2 20:46:13 web-main sshd[283002]: Failed password for invalid user test123 from 195.54.160.180 port 28502 ssh2 Sep 2 20:46:14 web-main sshd[283012]: Invalid user zabbix from 195.54.160.180 port 38651	2020-09-03 02:51:55
39.42.30.215	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-03 03:12:52
45.142.120.61	attack	2020-09-02 21:37:34 dovecot_login authenticator failed for \(User\) \[45.142.120.61\]: 535 Incorrect authentication data \(set_id=copier@org.ua\)2020-09-02 21:38:10 dovecot_login authenticator failed for \(User\) \[45.142.120.61\]: 535 Incorrect authentication data \(set_id=md-1@org.ua\)2020-09-02 21:38:45 dovecot_login authenticator failed for \(User\) \[45.142.120.61\]: 535 Incorrect authentication data \(set_id=ntp2@org.ua\) ...	2020-09-03 02:46:22
212.95.137.19	attack	Sep 2 13:33:46 george sshd[21070]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.95.137.19 Sep 2 13:33:49 george sshd[21070]: Failed password for invalid user git from 212.95.137.19 port 57546 ssh2 Sep 2 13:38:41 george sshd[21116]: Invalid user ubnt from 212.95.137.19 port 35420 Sep 2 13:38:41 george sshd[21116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.95.137.19 Sep 2 13:38:43 george sshd[21116]: Failed password for invalid user ubnt from 212.95.137.19 port 35420 ssh2 ...	2020-09-03 02:47:53
195.54.160.101	attack	RDP Brute-Froce 감사 실패 2020-09-03 오전 1:42:04 Microsoft Windows security auditing. 4625 Logon 감사 실패 2020-09-03 오전 1:41:50 Microsoft Windows security auditing. 4625 Logon 감사 실패 2020-09-03 오전 1:41:50 Microsoft Windows security auditing. 4625 Logon	2020-09-03 03:05:45
123.59.155.63	attackbotsspam	Port Scan ...	2020-09-03 02:57:30
106.13.99.107	attackspam	Sep 3 00:08:01 itv-usvr-01 sshd[15170]: Invalid user biadmin from 106.13.99.107 Sep 3 00:08:01 itv-usvr-01 sshd[15170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.99.107 Sep 3 00:08:01 itv-usvr-01 sshd[15170]: Invalid user biadmin from 106.13.99.107 Sep 3 00:08:04 itv-usvr-01 sshd[15170]: Failed password for invalid user biadmin from 106.13.99.107 port 40956 ssh2 Sep 3 00:17:02 itv-usvr-01 sshd[15710]: Invalid user back from 106.13.99.107	2020-09-03 02:43:17

Recently Reported IPs

31.188.251.40	26.172.155.42	223.97.206.72	30.198.250.220
0.161.27.2	228.85.96.67	16.183.33.71	186.89.21.145
138.198.40.182	21.154.55.29	35.131.116.126	53.5.45.22
32.237.196.203	185.92.88.101	180.88.221.232	1.165.181.6
197.108.143.193	11.146.113.26	157.193.155.175	195.111.214.39