119.252.242.158

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.252.242.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21862
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;119.252.242.158.		IN	A

;; AUTHORITY SECTION:
.			45	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030800 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 08 18:25:49 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 158.242.252.119.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 158.242.252.119.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
197.166.154.58	attackspambots	Port 1433 Scan	2019-10-10 06:51:13
222.186.173.238	attackbots	Oct 10 00:38:47 mail sshd[29300]: Failed password for root from 222.186.173.238 port 34420 ssh2 Oct 10 00:38:52 mail sshd[29300]: Failed password for root from 222.186.173.238 port 34420 ssh2 Oct 10 00:38:57 mail sshd[29300]: Failed password for root from 222.186.173.238 port 34420 ssh2 Oct 10 00:39:02 mail sshd[29300]: Failed password for root from 222.186.173.238 port 34420 ssh2	2019-10-10 06:43:59
222.186.42.15	attackspam	Oct 9 21:21:51 [HOSTNAME] sshd[13313]: User removed from 222.186.42.15 not allowed because not listed in AllowUsers Oct 9 21:32:14 [HOSTNAME] sshd[14522]: User removed from 222.186.42.15 not allowed because not listed in AllowUsers Oct 9 23:31:55 [HOSTNAME] sshd[28518]: User removed from 222.186.42.15 not allowed because not listed in AllowUsers ...	2019-10-10 06:34:09
213.32.67.160	attackspambots	Oct 9 11:49:41 wbs sshd\[17285\]: Invalid user Eagle@2017 from 213.32.67.160 Oct 9 11:49:41 wbs sshd\[17285\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.ip-213-32-67.eu Oct 9 11:49:43 wbs sshd\[17285\]: Failed password for invalid user Eagle@2017 from 213.32.67.160 port 54394 ssh2 Oct 9 11:53:20 wbs sshd\[17587\]: Invalid user China@123 from 213.32.67.160 Oct 9 11:53:20 wbs sshd\[17587\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.ip-213-32-67.eu	2019-10-10 06:57:52
111.230.166.91	attackbots	Oct 9 18:45:15 plusreed sshd[31979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.166.91 user=root Oct 9 18:45:17 plusreed sshd[31979]: Failed password for root from 111.230.166.91 port 40602 ssh2 ...	2019-10-10 06:54:51
149.202.55.18	attackspam	Oct 9 11:35:13 php1 sshd\[2140\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.ip-149-202-55.eu user=root Oct 9 11:35:16 php1 sshd\[2140\]: Failed password for root from 149.202.55.18 port 55420 ssh2 Oct 9 11:39:07 php1 sshd\[2580\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.ip-149-202-55.eu user=root Oct 9 11:39:09 php1 sshd\[2580\]: Failed password for root from 149.202.55.18 port 37986 ssh2 Oct 9 11:42:52 php1 sshd\[3074\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.ip-149-202-55.eu user=root	2019-10-10 06:45:14
76.24.160.205	attackspam	Oct 9 10:44:03 hpm sshd\[11901\]: Invalid user abc!@ from 76.24.160.205 Oct 9 10:44:03 hpm sshd\[11901\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-76-24-160-205.hsd1.ma.comcast.net Oct 9 10:44:05 hpm sshd\[11901\]: Failed password for invalid user abc!@ from 76.24.160.205 port 37688 ssh2 Oct 9 10:48:10 hpm sshd\[12248\]: Invalid user 3edc\$RFV5tgb from 76.24.160.205 Oct 9 10:48:10 hpm sshd\[12248\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-76-24-160-205.hsd1.ma.comcast.net	2019-10-10 07:06:55
51.68.189.69	attack	Oct 10 00:11:48 nextcloud sshd\[13995\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.189.69 user=root Oct 10 00:11:50 nextcloud sshd\[13995\]: Failed password for root from 51.68.189.69 port 42630 ssh2 Oct 10 00:25:14 nextcloud sshd\[32750\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.189.69 user=root ...	2019-10-10 07:02:29
171.235.84.8	attackspam	Oct 10 00:51:49 mail sshd\[23227\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.235.84.8 user=root Oct 10 00:51:51 mail sshd\[23227\]: Failed password for root from 171.235.84.8 port 59198 ssh2 Oct 10 00:51:53 mail sshd\[23252\]: Invalid user admin from 171.235.84.8 ...	2019-10-10 06:59:02
23.129.64.169	attackspambots	2019-10-09T21:59:45.970020abusebot.cloudsearch.cf sshd\[30915\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.129.64.169 user=root	2019-10-10 06:36:11
51.79.71.142	attackspambots	Oct 9 23:25:51 SilenceServices sshd[24473]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.71.142 Oct 9 23:25:53 SilenceServices sshd[24473]: Failed password for invalid user P4SS2020 from 51.79.71.142 port 58202 ssh2 Oct 9 23:29:36 SilenceServices sshd[26151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.71.142	2019-10-10 06:46:28
106.12.17.243	attackbots	2019-10-09T22:25:06.300787abusebot-7.cloudsearch.cf sshd\[27006\]: Invalid user 6tfc7ygv from 106.12.17.243 port 57748	2019-10-10 06:57:32
196.41.122.97	attack	196.41.122.97 - - [09/Oct/2019:21:41:49 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 196.41.122.97 - - [09/Oct/2019:21:41:50 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 196.41.122.97 - - [09/Oct/2019:21:41:50 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 196.41.122.97 - - [09/Oct/2019:21:41:51 +0200] "POST /wp-login.php HTTP/1.1" 200 1486 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 196.41.122.97 - - [09/Oct/2019:21:41:51 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 196.41.122.97 - - [09/Oct/2019:21:41:52 +0200] "POST /wp-login.php HTTP/1.1" 200 1486 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-10-10 07:08:14
182.23.20.131	attackbots	port scan and connect, tcp 1433 (ms-sql-s)	2019-10-10 07:03:05
2001:41d0:602:15f::	attackspam	LGS,DEF GET /wp-login.php	2019-10-10 06:51:40

Recently Reported IPs

116.75.213.110	119.254.11.1	119.254.11.50	119.254.116.52
119.254.108.117	119.254.119.51	119.254.155.96	119.254.155.221
116.75.213.219	119.254.154.100	119.254.119.53	119.254.155.104
119.254.17.112	119.254.154.99	119.254.229.66	119.254.196.77
119.254.64.11	116.75.214.158	119.254.66.132	119.254.5.51