119.118.17.242

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
119.118.174.150	attackspambots	Port Scan detected! ...	2020-08-10 04:49:24
119.118.17.27	attackbots	Unauthorized connection attempt detected from IP address 119.118.17.27 to port 8123 [J]	2020-03-02 17:43:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.118.17.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49924
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;119.118.17.242.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 14:04:41 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 242.17.118.119.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 242.17.118.119.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
197.156.67.251	attack	Oct 23 00:11:35 sso sshd[15110]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.67.251 Oct 23 00:11:36 sso sshd[15110]: Failed password for invalid user fahmed from 197.156.67.251 port 50368 ssh2 ...	2019-10-23 07:55:30
41.213.216.242	attackbots	Automatic report - Banned IP Access	2019-10-23 07:50:31
138.219.228.96	attack	Triggered by Fail2Ban at Vostok web server	2019-10-23 07:49:05
66.96.233.31	attackspam	Lines containing failures of 66.96.233.31 Oct 21 04:01:35 shared05 sshd[21158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.233.31 user=r.r Oct 21 04:01:38 shared05 sshd[21158]: Failed password for r.r from 66.96.233.31 port 42196 ssh2 Oct 21 04:01:38 shared05 sshd[21158]: Received disconnect from 66.96.233.31 port 42196:11: Bye Bye [preauth] Oct 21 04:01:38 shared05 sshd[21158]: Disconnected from authenticating user r.r 66.96.233.31 port 42196 [preauth] Oct 21 04:15:08 shared05 sshd[24556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.233.31 user=r.r Oct 21 04:15:10 shared05 sshd[24556]: Failed password for r.r from 66.96.233.31 port 38766 ssh2 Oct 21 04:15:10 shared05 sshd[24556]: Received disconnect from 66.96.233.31 port 38766:11: Bye Bye [preauth] Oct 21 04:15:10 shared05 sshd[24556]: Disconnected from authenticating user r.r 66.96.233.31 port 38766 [preauth] Oct 21 ........ ------------------------------	2019-10-23 07:37:52
118.25.14.19	attack	SSH-BruteForce	2019-10-23 07:50:13
77.42.104.157	attackbots	23/tcp [2019-10-22]1pkt	2019-10-23 07:37:30
51.68.71.129	attackbotsspam	techno.ws 51.68.71.129 \[22/Oct/2019:23:22:35 +0200\] "POST /wp-login.php HTTP/1.1" 200 5604 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" techno.ws 51.68.71.129 \[22/Oct/2019:23:22:35 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4070 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-10-23 07:22:28
106.13.11.195	attackbots	Lines containing failures of 106.13.11.195 Oct 21 04:41:37 nxxxxxxx sshd[21576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.11.195 user=r.r Oct 21 04:41:39 nxxxxxxx sshd[21576]: Failed password for r.r from 106.13.11.195 port 57988 ssh2 Oct 21 04:41:39 nxxxxxxx sshd[21576]: Received disconnect from 106.13.11.195 port 57988:11: Bye Bye [preauth] Oct 21 04:41:39 nxxxxxxx sshd[21576]: Disconnected from authenticating user r.r 106.13.11.195 port 57988 [preauth] Oct 21 04:49:47 nxxxxxxx sshd[22646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.11.195 user=r.r Oct 21 04:49:48 nxxxxxxx sshd[22646]: Failed password for r.r from 106.13.11.195 port 56696 ssh2 Oct 21 04:49:48 nxxxxxxx sshd[22646]: Received disconnect from 106.13.11.195 port 56696:11: Bye Bye [preauth] Oct 21 04:49:48 nxxxxxxx sshd[22646]: Disconnected from authenticating user r.r 106.13.11.195 port 56696 [preauth........ ------------------------------	2019-10-23 07:55:46
117.102.68.188	attackspam	Oct 22 22:03:54 tux-35-217 sshd\[26469\]: Invalid user 123456 from 117.102.68.188 port 35716 Oct 22 22:03:54 tux-35-217 sshd\[26469\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.102.68.188 Oct 22 22:03:57 tux-35-217 sshd\[26469\]: Failed password for invalid user 123456 from 117.102.68.188 port 35716 ssh2 Oct 22 22:08:08 tux-35-217 sshd\[26473\]: Invalid user omarxp from 117.102.68.188 port 47104 Oct 22 22:08:08 tux-35-217 sshd\[26473\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.102.68.188 ...	2019-10-23 07:29:12
121.7.25.96	attackbots	5432/tcp 8500/tcp [2019-10-18/22]2pkt	2019-10-23 07:25:30
139.168.209.176	attackbotsspam	Oct 21 12:30:18 our-server-hostname postfix/smtpd[21362]: connect from unknown[139.168.209.176] Oct 21 12:30:20 our-server-hostname sqlgrey: grey: new: 139.168.209.176(139.168.209.176), x@x -> x@x Oct 21 12:30:20 our-server-hostname postfix/policy-spf[32002]: : Policy action=550 Please see hxxp://www.openspf.org/Why?s=mfrom;id=pauldunn%40orac.net.au;ip=139.168.209.176;r=mx1.cbr.spam-filtering-appliance Oct x@x Oct 21 12:30:21 our-server-hostname postfix/smtpd[21362]: lost connection after DATA from unknown[139.168.209.176] Oct 21 12:30:21 our-server-hostname postfix/smtpd[21362]: disconnect from unknown[139.168.209.176] Oct 21 12:30:44 our-server-hostname postfix/smtpd[19351]: connect from unknown[139.168.209.176] Oct 21 12:30:45 our-server-hostname sqlgrey: grey: new: 139.168.209.176(139.168.209.176), x@x -> x@x Oct 21 12:30:45 our-server-hostname postfix/policy-spf[416]: : Policy action=550 Please see hxxp://www.openspf.org/Why?s=mfrom;id=pjg%40orac.net.au;ip=139.168........ -------------------------------	2019-10-23 07:21:50
211.64.67.48	attackspambots	Automatic report - Banned IP Access	2019-10-23 07:48:08
111.231.72.231	attack	Feb 15 16:29:59 microserver sshd[29790]: Invalid user scan from 111.231.72.231 port 45404 Feb 15 16:29:59 microserver sshd[29790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.72.231 Feb 15 16:30:00 microserver sshd[29790]: Failed password for invalid user scan from 111.231.72.231 port 45404 ssh2 Feb 15 16:34:38 microserver sshd[30233]: Invalid user isadmin from 111.231.72.231 port 35796 Feb 15 16:34:38 microserver sshd[30233]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.72.231 Feb 16 15:04:40 microserver sshd[27513]: Invalid user source from 111.231.72.231 port 57174 Feb 16 15:04:40 microserver sshd[27513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.72.231 Feb 16 15:04:41 microserver sshd[27513]: Failed password for invalid user source from 111.231.72.231 port 57174 ssh2 Feb 16 15:08:37 microserver sshd[27950]: Invalid user redmine from 111.231.72.231 por	2019-10-23 07:25:10
218.92.0.200	attackbots	Oct 23 01:28:24 vpn01 sshd[27571]: Failed password for root from 218.92.0.200 port 38912 ssh2 Oct 23 01:28:26 vpn01 sshd[27571]: Failed password for root from 218.92.0.200 port 38912 ssh2 ...	2019-10-23 07:43:58
86.190.32.78	attack	85/tcp 85/tcp [2019-10-22]2pkt	2019-10-23 07:33:50

Recently Reported IPs

119.118.17.225	119.118.17.207	119.118.17.36	119.118.17.133
119.118.18.158	119.118.18.171	119.118.17.235	119.118.19.160
119.118.19.222	119.118.19.191	119.118.18.63	119.118.17.25
119.118.2.246	119.118.2.60	119.118.2.39	119.118.20.225
119.118.20.164	119.118.2.33	119.118.20.176	119.118.22.181