118.149.120.245

Basic Info

City: unknown

Region: unknown

Country: New Zealand

Internet Service Provider: 2Degrees

Hostname: unknown

Organization: unknown

Usage Type: Mobile ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	[ssh] SSH attack	2020-01-11 16:53:06

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 118.149.120.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21634
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;118.149.120.245.		IN	A

;; AUTHORITY SECTION:
.			313	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011002 1800 900 604800 86400

;; Query time: 98 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 11 16:53:02 CST 2020
;; MSG SIZE  rcvd: 119

Host info

245.120.149.118.in-addr.arpa domain name pointer 245-120-149-118.nzcomms.co.nz.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
245.120.149.118.in-addr.arpa	name = 245-120-149-118.nzcomms.co.nz.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
91.121.183.9	attackbotsspam	91.121.183.9 - - [07/Aug/2020:12:18:04 +0100] "POST /wp-login.php HTTP/1.1" 200 5881 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 91.121.183.9 - - [07/Aug/2020:12:19:04 +0100] "POST /wp-login.php HTTP/1.1" 200 5874 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 91.121.183.9 - - [07/Aug/2020:12:20:25 +0100] "POST /wp-login.php HTTP/1.1" 200 5874 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" ...	2020-08-07 19:28:08
192.99.34.42	attackspam	192.99.34.42 - - [07/Aug/2020:12:35:40 +0100] "POST /wp-login.php HTTP/1.1" 200 5603 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.99.34.42 - - [07/Aug/2020:12:36:43 +0100] "POST /wp-login.php HTTP/1.1" 200 5603 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.99.34.42 - - [07/Aug/2020:12:37:50 +0100] "POST /wp-login.php HTTP/1.1" 200 5603 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" ...	2020-08-07 19:44:50
45.95.168.230	attackspambots	2020-08-03T13:46:31.731550ts3.arvenenaske.de sshd[7380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.95.168.230 user=r.r 2020-08-03T13:46:34.291353ts3.arvenenaske.de sshd[7380]: Failed password for r.r from 45.95.168.230 port 55670 ssh2 2020-08-03T13:46:46.238563ts3.arvenenaske.de sshd[7382]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.95.168.230 user=r.r 2020-08-03T13:46:48.523119ts3.arvenenaske.de sshd[7382]: Failed password for r.r from 45.95.168.230 port 47376 ssh2 2020-08-03T13:46:59.667528ts3.arvenenaske.de sshd[7384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.95.168.230 user=r.r 2020-08-03T13:47:01.736464ts3.arvenenaske.de sshd[7384]: Failed password for r.r from 45.95.168.230 port 39138 ssh2 2020-08-03T13:47:10.846234ts3.arvenenaske.de sshd[7386]: Invalid user admin from 45.95.168.230 port 59178 2020-08-03T13:47:10.8529........ ------------------------------	2020-08-07 19:46:24
51.77.149.232	attack	Aug 7 11:37:12 ovpn sshd\[6043\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.149.232 user=root Aug 7 11:37:14 ovpn sshd\[6043\]: Failed password for root from 51.77.149.232 port 41012 ssh2 Aug 7 11:42:27 ovpn sshd\[8231\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.149.232 user=root Aug 7 11:42:30 ovpn sshd\[8231\]: Failed password for root from 51.77.149.232 port 38550 ssh2 Aug 7 11:44:15 ovpn sshd\[9000\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.149.232 user=root	2020-08-07 19:55:13
34.93.218.177	attackspambots	SSH bruteforce	2020-08-07 19:33:33
220.86.227.220	attack	Aug 6 18:25:24 h1946882 sshd[22172]: pam_unix(sshd:auth): authenticati= on failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D220.= 86.227.220 user=3Dr.r Aug 6 18:25:25 h1946882 sshd[22172]: Failed password for r.r from 220= .86.227.220 port 35932 ssh2 Aug 6 18:25:26 h1946882 sshd[22172]: Received disconnect from 220.86.2= 27.220: 11: Bye Bye [preauth] Aug 6 18:32:41 h1946882 sshd[22255]: pam_unix(sshd:auth): authenticati= on failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D220.= 86.227.220 user=3Dr.r Aug 6 18:32:44 h1946882 sshd[22255]: Failed password for r.r from 220= .86.227.220 port 41880 ssh2 Aug 6 18:32:44 h1946882 sshd[22255]: Received disconnect from 220.86.2= 27.220: 11: Bye Bye [preauth] Aug 6 18:36:20 h1946882 sshd[22280]: pam_unix(sshd:auth): authenticati= on failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D220.= 86.227.220 user=3Dr.r Aug 6 18:36:22 h1946882 sshd[22280]: Failed password for r.r from 220=........ -------------------------------	2020-08-07 19:23:27
112.85.42.227	attackspam	Aug 7 07:01:14 NPSTNNYC01T sshd[25811]: Failed password for root from 112.85.42.227 port 60232 ssh2 Aug 7 07:02:22 NPSTNNYC01T sshd[25889]: Failed password for root from 112.85.42.227 port 61424 ssh2 Aug 7 07:02:24 NPSTNNYC01T sshd[25889]: Failed password for root from 112.85.42.227 port 61424 ssh2 ...	2020-08-07 19:32:34
152.67.12.90	attackspam	Aug 7 10:35:52 inter-technics sshd[32115]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.67.12.90 user=root Aug 7 10:35:54 inter-technics sshd[32115]: Failed password for root from 152.67.12.90 port 41734 ssh2 Aug 7 10:39:46 inter-technics sshd[32418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.67.12.90 user=root Aug 7 10:39:48 inter-technics sshd[32418]: Failed password for root from 152.67.12.90 port 49724 ssh2 Aug 7 10:43:40 inter-technics sshd[32698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.67.12.90 user=root Aug 7 10:43:42 inter-technics sshd[32698]: Failed password for root from 152.67.12.90 port 57256 ssh2 ...	2020-08-07 19:36:33
178.62.37.78	attackbotsspam	Aug 7 07:04:59 lanister sshd[5544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.37.78 user=root Aug 7 07:05:01 lanister sshd[5544]: Failed password for root from 178.62.37.78 port 47884 ssh2 Aug 7 07:13:34 lanister sshd[5685]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.37.78 user=root Aug 7 07:13:36 lanister sshd[5685]: Failed password for root from 178.62.37.78 port 60120 ssh2	2020-08-07 19:35:52
138.68.95.204	attackspambots	SSH Brute Force	2020-08-07 19:26:13
187.217.79.94	attackbots	k+ssh-bruteforce	2020-08-07 19:45:14
82.235.11.195	attack	5 failures	2020-08-07 19:34:20
94.102.53.112	attackspam	[MK-VM4] Blocked by UFW	2020-08-07 19:42:53
218.92.0.205	attack	Aug 7 07:41:54 marvibiene sshd[12154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.205 user=root Aug 7 07:41:55 marvibiene sshd[12154]: Failed password for root from 218.92.0.205 port 37715 ssh2 Aug 7 07:41:58 marvibiene sshd[12154]: Failed password for root from 218.92.0.205 port 37715 ssh2 Aug 7 07:41:54 marvibiene sshd[12154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.205 user=root Aug 7 07:41:55 marvibiene sshd[12154]: Failed password for root from 218.92.0.205 port 37715 ssh2 Aug 7 07:41:58 marvibiene sshd[12154]: Failed password for root from 218.92.0.205 port 37715 ssh2	2020-08-07 19:51:16
177.81.27.78	attackbots	Aug 7 11:07:56 sshgateway sshd\[3244\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.81.27.78 user=root Aug 7 11:07:58 sshgateway sshd\[3244\]: Failed password for root from 177.81.27.78 port 25654 ssh2 Aug 7 11:14:43 sshgateway sshd\[3318\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.81.27.78 user=root	2020-08-07 19:59:10

Recently Reported IPs

45.6.162.116	203.113.121.2	184.168.152.165	177.94.222.21
157.51.252.195	116.105.156.92	188.17.29.220	52.146.34.147
206.189.47.55	113.190.233.42	158.69.158.101	180.149.126.155
54.190.163.254	37.45.69.77	43.247.38.162	220.179.214.128
181.44.244.242	121.235.22.116	103.26.111.146	52.89.162.95