119.145.148.219

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Guangdong Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	B: /wp-login.php attack	2020-02-20 01:08:36
attackspam	michaelklotzbier.de 119.145.148.219 [13/Jan/2020:14:06:43 +0100] "POST /xmlrpc.php HTTP/1.1" 200 482 "-" "Apache-HttpClient/4.5.2 (Java/1.8.0_151)" michaelklotzbier.de 119.145.148.219 [13/Jan/2020:14:06:43 +0100] "POST /xmlrpc.php HTTP/1.1" 200 619 "-" "Apache-HttpClient/4.5.2 (Java/1.8.0_151)"	2020-01-14 00:34:42
attackspambots	"GET /?author=2 HTTP/1.1" 404 "GET /?author=3 HTTP/1.1" 404	2020-01-06 06:58:32
attack	Web-based SQL injection attempt	2019-07-27 00:40:27
attackbots	Scanning unused Default website or suspicious access to valid sites from IP marked as abusive	2019-07-05 10:49:06

Comments on same subnet:

IP	Type	Details	Datetime
119.145.148.141	attack	Wordpress XMLRPC attack	2019-07-25 19:42:16
119.145.148.141	attackbots	Attempted WordPress login: "GET /wp-login.php"	2019-07-24 09:02:35
119.145.148.141	attackbotsspam	SS5,WP GET /wp-login.php	2019-07-06 01:57:15

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.145.148.219
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36078
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;119.145.148.219.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061901 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 20 03:51:43 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 219.148.145.119.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 219.148.145.119.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
186.18.41.1	attack	Invalid user admin from 186.18.41.1 port 45736	2020-09-24 15:43:35
88.250.254.90	attackspambots	Automatic report - Port Scan Attack	2020-09-24 15:45:09
105.112.123.8	attack	1600880568 - 09/23/2020 19:02:48 Host: 105.112.123.8/105.112.123.8 Port: 445 TCP Blocked	2020-09-24 15:41:06
45.226.239.99	attackbotsspam	Email rejected due to spam filtering	2020-09-24 15:29:41
51.77.150.118	attack	s2.hscode.pl - SSH Attack	2020-09-24 15:44:38
106.13.197.159	attack	Ssh brute force	2020-09-24 15:57:13
54.37.17.21	attackspam	Attempt to hack Wordpress Login, XMLRPC or other login	2020-09-24 15:38:14
190.200.228.69	attack	Unauthorised access (Sep 23) SRC=190.200.228.69 LEN=52 TTL=113 ID=8078 DF TCP DPT=445 WINDOW=8192 SYN	2020-09-24 15:56:49
112.85.42.238	attackspam	Sep 24 09:32:21 abendstille sshd\[7364\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.238 user=root Sep 24 09:32:23 abendstille sshd\[7364\]: Failed password for root from 112.85.42.238 port 51635 ssh2 Sep 24 09:32:25 abendstille sshd\[7364\]: Failed password for root from 112.85.42.238 port 51635 ssh2 Sep 24 09:32:28 abendstille sshd\[7364\]: Failed password for root from 112.85.42.238 port 51635 ssh2 Sep 24 09:33:13 abendstille sshd\[7834\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.238 user=root ...	2020-09-24 15:44:22
27.128.244.13	attackspambots	Sep 24 09:31:22 host sshd[6078]: Invalid user nuxeo from 27.128.244.13 port 37022 ...	2020-09-24 16:02:21
93.193.132.29	attack	Unauthorized connection attempt from IP address 93.193.132.29 on Port 445(SMB)	2020-09-24 15:47:25
168.61.66.7	attack	<6 unauthorized SSH connections	2020-09-24 15:41:56
113.193.39.81	attack	Email rejected due to spam filtering	2020-09-24 15:27:15
153.232.8.201	attackspambots	10 attempts against mh-pma-try-ban on light	2020-09-24 15:48:20
212.70.149.20	attack	Sep 24 09:52:06 srv01 postfix/smtpd\[9548\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 24 09:52:27 srv01 postfix/smtpd\[5946\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 24 09:52:29 srv01 postfix/smtpd\[9684\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 24 09:52:31 srv01 postfix/smtpd\[5904\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 24 09:52:32 srv01 postfix/smtpd\[9548\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-24 15:53:30

Recently Reported IPs

219.155.9.231	244.195.223.143	91.80.241.29	53.95.0.188
110.49.95.146	181.0.12.76	91.30.149.44	145.6.175.216
69.153.14.199	174.117.75.194	215.62.184.12	5.190.141.165
104.0.143.234	92.246.76.145	74.91.50.99	74.91.50.78
77.243.191.27	95.163.215.137	190.2.149.28	151.250.242.208