119.45.142.214

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Aug 28 16:35:35 ny01 sshd[1350]: Failed password for root from 119.45.142.214 port 35428 ssh2 Aug 28 16:40:53 ny01 sshd[2084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.142.214 Aug 28 16:40:55 ny01 sshd[2084]: Failed password for invalid user clark from 119.45.142.214 port 37606 ssh2	2020-08-29 04:41:46
attackbotsspam	k+ssh-bruteforce	2020-08-24 02:39:00
attack	Aug 21 09:09:23 sshgateway sshd\[30179\]: Invalid user dge from 119.45.142.214 Aug 21 09:09:23 sshgateway sshd\[30179\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.142.214 Aug 21 09:09:25 sshgateway sshd\[30179\]: Failed password for invalid user dge from 119.45.142.214 port 56196 ssh2	2020-08-21 17:56:46
attackspambots	Banned for a week because repeated abuses, for example SSH, but not only	2020-08-10 21:23:28

Comments on same subnet:

IP	Type	Details	Datetime
119.45.142.72	attack	Brute-force attempt banned	2020-10-12 06:03:54
119.45.142.38	attack	Oct 11 21:45:39 db sshd[21809]: User root from 119.45.142.38 not allowed because none of user's groups are listed in AllowGroups ...	2020-10-12 04:01:17
119.45.142.72	attackspambots	2020-10-11T09:30:14+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)	2020-10-11 22:12:35
119.45.142.38	attack	Brute%20Force%20SSH	2020-10-11 19:59:35
119.45.142.72	attack	$f2bV_matches	2020-10-11 14:09:46
119.45.142.72	attackspambots	Oct 10 16:53:16 mail sshd\[27184\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.142.72 user=root ...	2020-10-11 07:31:18
119.45.142.15	attack	Time: Sat Sep 12 13:34:22 2020 +0000 IP: 119.45.142.15 (-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 12 13:25:47 ca-18-ede1 sshd[36420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.142.15 user=root Sep 12 13:25:49 ca-18-ede1 sshd[36420]: Failed password for root from 119.45.142.15 port 58400 ssh2 Sep 12 13:31:34 ca-18-ede1 sshd[37090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.142.15 user=root Sep 12 13:31:36 ca-18-ede1 sshd[37090]: Failed password for root from 119.45.142.15 port 51990 ssh2 Sep 12 13:34:20 ca-18-ede1 sshd[37402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.142.15 user=root	2020-09-13 02:15:12
119.45.142.15	attackspam	Sep 12 04:49:02 vlre-nyc-1 sshd\[31415\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.142.15 user=root Sep 12 04:49:05 vlre-nyc-1 sshd\[31415\]: Failed password for root from 119.45.142.15 port 33872 ssh2 Sep 12 04:51:37 vlre-nyc-1 sshd\[31463\]: Invalid user kenny from 119.45.142.15 Sep 12 04:51:37 vlre-nyc-1 sshd\[31463\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.142.15 Sep 12 04:51:38 vlre-nyc-1 sshd\[31463\]: Failed password for invalid user kenny from 119.45.142.15 port 58984 ssh2 ...	2020-09-12 18:16:28
119.45.142.72	attack	Aug 30 00:56:42 web1 sshd\[12325\]: Invalid user linda from 119.45.142.72 Aug 30 00:56:42 web1 sshd\[12325\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.142.72 Aug 30 00:56:44 web1 sshd\[12325\]: Failed password for invalid user linda from 119.45.142.72 port 54978 ssh2 Aug 30 01:01:36 web1 sshd\[12795\]: Invalid user hf from 119.45.142.72 Aug 30 01:01:36 web1 sshd\[12795\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.142.72	2020-08-30 19:08:11
119.45.142.15	attackspambots	Aug 28 07:03:13 plg sshd[6276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.142.15 user=root Aug 28 07:03:15 plg sshd[6276]: Failed password for invalid user root from 119.45.142.15 port 46618 ssh2 Aug 28 07:05:05 plg sshd[6305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.142.15 Aug 28 07:05:07 plg sshd[6305]: Failed password for invalid user pratik from 119.45.142.15 port 39420 ssh2 Aug 28 07:07:08 plg sshd[6350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.142.15 user=root Aug 28 07:07:10 plg sshd[6350]: Failed password for invalid user root from 119.45.142.15 port 60454 ssh2 Aug 28 07:09:08 plg sshd[6430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.142.15 ...	2020-08-28 13:10:54
119.45.142.15	attack	SSH-BruteForce	2020-08-28 09:54:01
119.45.142.72	attackbots	Aug 21 17:49:39 firewall sshd[32002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.142.72 Aug 21 17:49:39 firewall sshd[32002]: Invalid user idp from 119.45.142.72 Aug 21 17:49:41 firewall sshd[32002]: Failed password for invalid user idp from 119.45.142.72 port 44602 ssh2 ...	2020-08-22 05:09:57
119.45.142.15	attackspambots	Invalid user shuchang from 119.45.142.15 port 41616	2020-08-20 07:02:04
119.45.142.15	attack	Aug 17 17:47:22 vmd17057 sshd[7515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.142.15 Aug 17 17:47:24 vmd17057 sshd[7515]: Failed password for invalid user cnm from 119.45.142.15 port 47572 ssh2 ...	2020-08-18 02:56:40
119.45.142.15	attackspambots	Aug 4 05:49:42 serwer sshd\[18799\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.142.15 user=root Aug 4 05:49:43 serwer sshd\[18799\]: Failed password for root from 119.45.142.15 port 52674 ssh2 Aug 4 05:55:11 serwer sshd\[19423\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.142.15 user=root ...	2020-08-04 15:00:22

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.45.142.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14678
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;119.45.142.214.			IN	A

;; AUTHORITY SECTION:
.			288	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081000 1800 900 604800 86400

;; Query time: 88 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Aug 10 21:23:22 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 214.142.45.119.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 214.142.45.119.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.107.100.13	attack	SSH auth scanning - multiple failed logins	2019-12-31 13:26:54
64.202.188.156	attack	Automatic report - XMLRPC Attack	2019-12-31 13:17:25
167.99.77.94	attack	Dec 31 05:49:29 minden010 sshd[31635]: Failed password for root from 167.99.77.94 port 47020 ssh2 Dec 31 05:52:59 minden010 sshd[351]: Failed password for root from 167.99.77.94 port 49364 ssh2 ...	2019-12-31 13:32:02
212.92.105.77	attack	3389BruteforceFW21	2019-12-31 13:29:42
222.186.175.220	attack	Dec 31 00:13:53 ast sshd[7269]: error: PAM: Authentication failure for root from 222.186.175.220 Dec 31 00:13:56 ast sshd[7269]: error: PAM: Authentication failure for root from 222.186.175.220 Dec 31 00:13:53 ast sshd[7269]: error: PAM: Authentication failure for root from 222.186.175.220 Dec 31 00:13:56 ast sshd[7269]: error: PAM: Authentication failure for root from 222.186.175.220 Dec 31 00:13:53 ast sshd[7269]: error: PAM: Authentication failure for root from 222.186.175.220 Dec 31 00:13:56 ast sshd[7269]: error: PAM: Authentication failure for root from 222.186.175.220 Dec 31 00:13:59 ast sshd[7269]: error: PAM: Authentication failure for root from 222.186.175.220 ...	2019-12-31 13:17:09
181.164.79.88	attackbotsspam	2019-12-31T05:55:06.521980vps751288.ovh.net sshd\[4468\]: Invalid user greifer from 181.164.79.88 port 39169 2019-12-31T05:55:06.533990vps751288.ovh.net sshd\[4468\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.164.79.88 2019-12-31T05:55:08.354889vps751288.ovh.net sshd\[4468\]: Failed password for invalid user greifer from 181.164.79.88 port 39169 ssh2 2019-12-31T05:56:02.095381vps751288.ovh.net sshd\[4470\]: Invalid user info from 181.164.79.88 port 27169 2019-12-31T05:56:02.103488vps751288.ovh.net sshd\[4470\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.164.79.88	2019-12-31 13:47:44
37.49.231.102	attack	SIP Server BruteForce Attack	2019-12-31 13:31:21
222.186.173.142	attack	2019-12-31T05:33:04.475584hub.schaetter.us sshd\[26691\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.142 user=root 2019-12-31T05:33:07.024407hub.schaetter.us sshd\[26691\]: Failed password for root from 222.186.173.142 port 38194 ssh2 2019-12-31T05:33:10.007242hub.schaetter.us sshd\[26691\]: Failed password for root from 222.186.173.142 port 38194 ssh2 2019-12-31T05:33:12.729708hub.schaetter.us sshd\[26691\]: Failed password for root from 222.186.173.142 port 38194 ssh2 2019-12-31T05:33:15.391160hub.schaetter.us sshd\[26691\]: Failed password for root from 222.186.173.142 port 38194 ssh2 ...	2019-12-31 13:34:11
222.186.175.155	attack	Dec 31 06:17:26 * sshd[17605]: Failed password for root from 222.186.175.155 port 23080 ssh2 Dec 31 06:17:39 * sshd[17605]: error: maximum authentication attempts exceeded for root from 222.186.175.155 port 23080 ssh2 [preauth]	2019-12-31 13:26:01
60.13.241.118	attack	Unauthorised access (Dec 31) SRC=60.13.241.118 LEN=52 TTL=112 ID=32073 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-31 13:46:30
222.186.175.151	attackspambots	Dec 31 06:30:19 ns381471 sshd[28565]: Failed password for root from 222.186.175.151 port 43448 ssh2 Dec 31 06:30:23 ns381471 sshd[28565]: Failed password for root from 222.186.175.151 port 43448 ssh2	2019-12-31 13:32:29
180.76.57.245	attackspam	19/12/30@23:56:32: FAIL: Alarm-Telnet address from=180.76.57.245 ...	2019-12-31 13:29:01
80.211.180.23	attackbots	Dec 31 06:19:54 silence02 sshd[10149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.180.23 Dec 31 06:19:56 silence02 sshd[10149]: Failed password for invalid user drayton from 80.211.180.23 port 41932 ssh2 Dec 31 06:21:37 silence02 sshd[10229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.180.23	2019-12-31 13:48:12
45.184.225.2	attackspam	Dec 30 18:53:36 web9 sshd\[15308\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.184.225.2 user=daemon Dec 30 18:53:38 web9 sshd\[15308\]: Failed password for daemon from 45.184.225.2 port 49297 ssh2 Dec 30 18:55:56 web9 sshd\[15625\]: Invalid user franceza from 45.184.225.2 Dec 30 18:55:56 web9 sshd\[15625\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.184.225.2 Dec 30 18:55:58 web9 sshd\[15625\]: Failed password for invalid user franceza from 45.184.225.2 port 59326 ssh2	2019-12-31 13:49:31
220.76.107.50	attackbotsspam	Invalid user stallcup from 220.76.107.50 port 46478	2019-12-31 13:45:39

Recently Reported IPs

178.27.254.213	122.161.205.6	47.205.182.171	41.75.111.147
178.79.32.26	218.232.46.83	219.85.118.220	178.170.154.112
23.82.28.122	151.231.86.19	122.26.8.21	42.117.147.166
28.145.177.226	189.160.123.243	178.170.153.241	174.219.7.116
176.254.6.112	220.76.173.53	176.122.155.153	201.220.153.218