119.118.19.125

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom Liaoning Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 5437e89edc6fe7a4 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.077692140 Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 01:54:05

Type

Details

Datetime

attackspambots

The IP has triggered Cloudflare WAF. CF-Ray: 5437e89edc6fe7a4 | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: api.skk.moe | User-Agent: Mozilla/5.077692140 Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-12 01:54:05

Comments on same subnet:

IP	Type	Details	Datetime
119.118.191.67	attackspambots	Unauthorized connection attempt detected from IP address 119.118.191.67 to port 5555 [J]	2020-02-06 06:24:26
119.118.19.185	attack	Unauthorized connection attempt detected from IP address 119.118.19.185 to port 1133 [J]	2020-01-21 14:04:14
119.118.191.65	attackbotsspam	11/06/2019-01:20:04.589825 119.118.191.65 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-11-06 22:19:25

Type

Details

Datetime

119.118.191.67

attackspambots

Unauthorized connection attempt detected from IP address 119.118.191.67 to port 5555 [J]

2020-02-06 06:24:26

119.118.19.185

attack

Unauthorized connection attempt detected from IP address 119.118.19.185 to port 1133 [J]

2020-01-21 14:04:14

119.118.191.65

attackbotsspam

11/06/2019-01:20:04.589825 119.118.191.65 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433

2019-11-06 22:19:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.118.19.125
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34057
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;119.118.19.125.			IN	A

;; AUTHORITY SECTION:
.			429	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121101 1800 900 604800 86400

;; Query time: 449 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 12 01:54:02 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 125.19.118.119.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 125.19.118.119.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
114.67.110.126	attackbots	Mar 21 19:27:37 SilenceServices sshd[10668]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.110.126 Mar 21 19:27:39 SilenceServices sshd[10668]: Failed password for invalid user ok from 114.67.110.126 port 59402 ssh2 Mar 21 19:36:14 SilenceServices sshd[10939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.110.126	2020-03-22 03:25:39
198.55.96.147	attack	Invalid user youtube from 198.55.96.147 port 37616	2020-03-22 03:01:02
125.124.143.182	attack	2020-03-21T19:06:16.753731shield sshd\[15360\]: Invalid user export from 125.124.143.182 port 34482 2020-03-21T19:06:16.761247shield sshd\[15360\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.143.182 2020-03-21T19:06:18.701632shield sshd\[15360\]: Failed password for invalid user export from 125.124.143.182 port 34482 ssh2 2020-03-21T19:08:26.454911shield sshd\[15694\]: Invalid user trung from 125.124.143.182 port 41842 2020-03-21T19:08:26.462336shield sshd\[15694\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.143.182	2020-03-22 03:19:03
190.186.107.59	attackspam	Invalid user ag from 190.186.107.59 port 46826	2020-03-22 03:02:43
177.1.214.84	attackspam	Mar 21 19:37:39 minden010 sshd[6752]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.1.214.84 Mar 21 19:37:41 minden010 sshd[6752]: Failed password for invalid user customerservice from 177.1.214.84 port 61138 ssh2 Mar 21 19:41:32 minden010 sshd[8385]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.1.214.84 ...	2020-03-22 03:09:16
132.255.54.6	attackbots	Invalid user miolo from 132.255.54.6 port 46176	2020-03-22 03:17:23
123.49.47.26	attackspam	5x Failed Password	2020-03-22 03:21:52
122.51.179.14	attack	Mar 21 20:12:25 localhost sshd\[29916\]: Invalid user dasusr1 from 122.51.179.14 port 56206 Mar 21 20:12:25 localhost sshd\[29916\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.179.14 Mar 21 20:12:27 localhost sshd\[29916\]: Failed password for invalid user dasusr1 from 122.51.179.14 port 56206 ssh2	2020-03-22 03:22:42
111.67.207.174	attackspam	Invalid user p from 111.67.207.174 port 34908	2020-03-22 03:28:01
178.34.156.249	attack	Mar 21 20:54:41 pkdns2 sshd\[2380\]: Invalid user gpadmin from 178.34.156.249Mar 21 20:54:44 pkdns2 sshd\[2380\]: Failed password for invalid user gpadmin from 178.34.156.249 port 39572 ssh2Mar 21 20:59:18 pkdns2 sshd\[2608\]: Invalid user nydia from 178.34.156.249Mar 21 20:59:20 pkdns2 sshd\[2608\]: Failed password for invalid user nydia from 178.34.156.249 port 55390 ssh2Mar 21 21:03:51 pkdns2 sshd\[2843\]: Invalid user fabrina from 178.34.156.249Mar 21 21:03:52 pkdns2 sshd\[2843\]: Failed password for invalid user fabrina from 178.34.156.249 port 42976 ssh2 ...	2020-03-22 03:08:19
106.13.230.238	attackspam	2020-03-21T10:33:59.255026xentho-1 sshd[572746]: Invalid user not from 106.13.230.238 port 36350 2020-03-21T10:34:01.418486xentho-1 sshd[572746]: Failed password for invalid user not from 106.13.230.238 port 36350 ssh2 2020-03-21T10:35:39.209857xentho-1 sshd[572768]: Invalid user tf from 106.13.230.238 port 57252 2020-03-21T10:35:39.216450xentho-1 sshd[572768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.230.238 2020-03-21T10:35:39.209857xentho-1 sshd[572768]: Invalid user tf from 106.13.230.238 port 57252 2020-03-21T10:35:40.764609xentho-1 sshd[572768]: Failed password for invalid user tf from 106.13.230.238 port 57252 ssh2 2020-03-21T10:37:18.810427xentho-1 sshd[572813]: Invalid user stafke from 106.13.230.238 port 49922 2020-03-21T10:37:18.816337xentho-1 sshd[572813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.230.238 2020-03-21T10:37:18.810427xentho-1 sshd[572813]: Invalid user st ...	2020-03-22 03:32:07
125.124.91.206	attackbotsspam	[ssh] SSH attack	2020-03-22 03:19:28
181.48.28.13	attackbots	$f2bV_matches	2020-03-22 03:06:00
114.251.154.126	attackspambots	Invalid user ea from 114.251.154.126 port 42462	2020-03-22 03:25:24
111.231.220.177	attack	SSH login attempts @ 2020-03-09 08:06:54	2020-03-22 03:25:58

Recently Reported IPs

70.144.224.185	111.224.234.178	111.206.222.33	111.175.57.89
111.162.156.94	110.177.82.186	66.249.82.82	66.102.6.55
58.248.201.198	2a01:4f8:171:392d::e3a:d47d	36.110.171.104	2408:8648:1300:40:6353:6a6e:2b93:6407
2408:8648:1300:40:4aa9:170d:29b5:145	2408:8221:9e10:c480:64a1:73e9:e40e:2e22	2400:dd0d:2000:0:7fed:c2e6:668a:96b9	27.224.136.218
23.105.157.184	223.166.74.234	222.82.62.218	221.197.97.77