119.42.145.109

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Infomove Limited

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	$f2bV_matches	2020-04-10 04:36:30

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.42.145.109
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62842
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;119.42.145.109.			IN	A

;; AUTHORITY SECTION:
.			196	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040902 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 10 04:36:25 CST 2020
;; MSG SIZE  rcvd: 118

Host info

;; connection timed out; no servers could be reached

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 109.145.42.119.in-addr.arpa.: No answer

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
83.220.172.181	attackspam	Unauthorized connection attempt from IP address 83.220.172.181 on Port 445(SMB)	2019-12-13 18:39:32
60.168.244.39	attackbotsspam	SSH invalid-user multiple login try	2019-12-13 19:13:32
203.69.87.157	attack	DATE:2019-12-13 08:45:36, IP:203.69.87.157, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc)	2019-12-13 19:03:11
109.102.158.14	attackbots	$f2bV_matches	2019-12-13 18:44:42
106.12.132.187	attackspam	[Aegis] @ 2019-12-13 08:45:42 0000 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-12-13 18:41:37
180.76.233.148	attackbots	Dec 13 09:44:34 localhost sshd\[19896\]: Invalid user server from 180.76.233.148 Dec 13 09:44:34 localhost sshd\[19896\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.233.148 Dec 13 09:44:35 localhost sshd\[19896\]: Failed password for invalid user server from 180.76.233.148 port 54800 ssh2 Dec 13 09:50:17 localhost sshd\[20453\]: Invalid user jcrown from 180.76.233.148 Dec 13 09:50:17 localhost sshd\[20453\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.233.148 ...	2019-12-13 18:41:06
84.227.174.49	attackspam	Scanning	2019-12-13 18:49:18
218.92.0.178	attackbots	2019-12-12 UTC: 3x - (3x)	2019-12-13 18:55:31
14.161.71.10	attackbotsspam	Unauthorized connection attempt from IP address 14.161.71.10 on Port 445(SMB)	2019-12-13 19:15:03
193.32.161.60	attackbotsspam	Dec 13 12:55:50 debian-2gb-vpn-nbg1-1 kernel: [609328.368896] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=193.32.161.60 DST=78.46.192.101 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=31485 PROTO=TCP SPT=47020 DPT=4070 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-13 19:05:51
106.13.110.74	attack	2019-12-08 16:09:46,916 fail2ban.actions \[3073\]: NOTICE \[ssh\] Ban 106.13.110.74 2019-12-08 16:30:36,787 fail2ban.actions \[3073\]: NOTICE \[ssh\] Ban 106.13.110.74 2019-12-08 16:50:51,551 fail2ban.actions \[3073\]: NOTICE \[ssh\] Ban 106.13.110.74 2019-12-08 17:10:47,331 fail2ban.actions \[3073\]: NOTICE \[ssh\] Ban 106.13.110.74 2019-12-08 17:30:05,424 fail2ban.actions \[3073\]: NOTICE \[ssh\] Ban 106.13.110.74 ...	2019-12-13 19:13:13
222.186.175.163	attack	SSH auth scanning - multiple failed logins	2019-12-13 19:07:21
180.180.34.44	attack	Unauthorized connection attempt from IP address 180.180.34.44 on Port 445(SMB)	2019-12-13 19:15:39
218.92.0.184	attack	Dec 13 07:49:19 firewall sshd[22386]: Failed password for root from 218.92.0.184 port 24396 ssh2 Dec 13 07:49:34 firewall sshd[22386]: error: maximum authentication attempts exceeded for root from 218.92.0.184 port 24396 ssh2 [preauth] Dec 13 07:49:34 firewall sshd[22386]: Disconnecting: Too many authentication failures [preauth] ...	2019-12-13 18:49:53
185.43.108.138	attack	Dec 13 11:39:25 localhost sshd\[12178\]: Invalid user nirwan from 185.43.108.138 port 48867 Dec 13 11:39:25 localhost sshd\[12178\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.43.108.138 Dec 13 11:39:27 localhost sshd\[12178\]: Failed password for invalid user nirwan from 185.43.108.138 port 48867 ssh2	2019-12-13 18:56:14

Recently Reported IPs

152.223.153.192	207.106.72.178	241.192.208.228	15.2.250.44
52.14.38.182	167.172.125.234	183.88.243.46	159.192.98.186
178.173.195.75	106.13.101.175	5.254.155.68	97.130.12.158
200.79.85.61	90.117.207.133	184.82.17.86	81.147.1.14
62.45.148.184	177.3.151.192	139.129.146.48	189.234.187.156