119.45.55.247 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	6379/tcp 6379/tcp 6379/tcp [2020-08-04/11]3pkt	2020-08-12 07:34:18

Comments on same subnet:

IP	Type	Details	Datetime
119.45.55.249	attackspam	Found on Dark List de / proto=6 . srcport=52753 . dstport=3203 . (2302)	2020-09-20 22:54:36
119.45.55.249	attack	Found on Dark List de / proto=6 . srcport=52753 . dstport=3203 . (2302)	2020-09-20 14:44:53
119.45.55.249	attackspambots	Found on Dark List de / proto=6 . srcport=52753 . dstport=3203 . (2302)	2020-09-20 06:43:11
119.45.55.249	attack	Aug 27 16:58:36 vps647732 sshd[21291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.55.249 Aug 27 16:58:39 vps647732 sshd[21291]: Failed password for invalid user jmiguel from 119.45.55.249 port 40444 ssh2 ...	2020-08-27 23:16:15
119.45.55.249	attackspambots	Aug 23 14:24:55 marvibiene sshd[3877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.55.249 Aug 23 14:24:57 marvibiene sshd[3877]: Failed password for invalid user damian from 119.45.55.249 port 52590 ssh2	2020-08-23 21:13:30
119.45.55.249	attackbotsspam	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-19T03:45:30Z and 2020-08-19T03:56:12Z	2020-08-19 12:28:49
119.45.55.249	attackspam	Aug 14 14:05:34 rush sshd[14405]: Failed password for root from 119.45.55.249 port 44094 ssh2 Aug 14 14:08:39 rush sshd[14502]: Failed password for root from 119.45.55.249 port 49962 ssh2 ...	2020-08-14 23:49:29
119.45.55.249	attackbots	Aug 10 14:27:34 buvik sshd[17737]: Failed password for root from 119.45.55.249 port 53592 ssh2 Aug 10 14:33:39 buvik sshd[18498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.55.249 user=root Aug 10 14:33:42 buvik sshd[18498]: Failed password for root from 119.45.55.249 port 58960 ssh2 ...	2020-08-10 21:05:33
119.45.55.249	attackspam	$f2bV_matches	2020-08-10 14:21:25
119.45.55.249	attack	Bruteforce detected by fail2ban	2020-08-07 13:53:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.45.55.247
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38282
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;119.45.55.247.			IN	A

;; AUTHORITY SECTION:
.			201	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081101 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Aug 12 07:34:14 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 247.55.45.119.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 247.55.45.119.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.98.247.24	attackspam	Unauthorized connection attempt from IP address 190.98.247.24 on Port 445(SMB)	2019-09-04 10:56:33
77.107.41.199	attackbots	(Sep 3) LEN=40 TTL=56 ID=36425 TCP DPT=23 WINDOW=8346 SYN (Sep 3) LEN=40 TTL=56 ID=36425 TCP DPT=23 WINDOW=8346 SYN (Sep 3) LEN=40 TTL=56 ID=36425 TCP DPT=23 WINDOW=8346 SYN (Sep 3) LEN=40 TTL=56 ID=36425 TCP DPT=23 WINDOW=8346 SYN (Sep 3) LEN=40 TTL=56 ID=36425 TCP DPT=23 WINDOW=8346 SYN (Sep 3) LEN=40 TTL=56 ID=36425 TCP DPT=23 WINDOW=8346 SYN (Sep 2) LEN=40 TTL=56 ID=36425 TCP DPT=23 WINDOW=8346 SYN (Sep 2) LEN=40 TTL=56 ID=36425 TCP DPT=23 WINDOW=8346 SYN (Sep 2) LEN=40 TTL=56 ID=36425 TCP DPT=23 WINDOW=8346 SYN (Sep 2) LEN=40 TTL=56 ID=36425 TCP DPT=23 WINDOW=8346 SYN (Sep 2) LEN=40 TTL=56 ID=36425 TCP DPT=23 WINDOW=8346 SYN	2019-09-04 10:43:31
190.131.240.101	attackbots	Unauthorized connection attempt from IP address 190.131.240.101 on Port 445(SMB)	2019-09-04 10:58:49
176.56.236.21	attackspam	Sep 4 02:36:59 plex sshd[11904]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.56.236.21 user=root Sep 4 02:37:00 plex sshd[11904]: Failed password for root from 176.56.236.21 port 38460 ssh2	2019-09-04 10:54:52
103.221.252.46	attackbots	Sep 4 02:33:05 MK-Soft-Root2 sshd\[18174\]: Invalid user testftp from 103.221.252.46 port 47504 Sep 4 02:33:05 MK-Soft-Root2 sshd\[18174\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.221.252.46 Sep 4 02:33:07 MK-Soft-Root2 sshd\[18174\]: Failed password for invalid user testftp from 103.221.252.46 port 47504 ssh2 ...	2019-09-04 10:49:24
23.129.64.166	attackbots	Sep 3 16:37:05 php1 sshd\[4589\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=166.emeraldonion.org user=root Sep 3 16:37:07 php1 sshd\[4589\]: Failed password for root from 23.129.64.166 port 56729 ssh2 Sep 3 16:37:10 php1 sshd\[4589\]: Failed password for root from 23.129.64.166 port 56729 ssh2 Sep 3 16:37:20 php1 sshd\[4589\]: Failed password for root from 23.129.64.166 port 56729 ssh2 Sep 3 16:37:22 php1 sshd\[4589\]: Failed password for root from 23.129.64.166 port 56729 ssh2	2019-09-04 11:06:06
36.67.106.109	attackbotsspam	Sep 3 16:47:32 sachi sshd\[7441\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.67.106.109 user=root Sep 3 16:47:34 sachi sshd\[7441\]: Failed password for root from 36.67.106.109 port 59275 ssh2 Sep 3 16:53:45 sachi sshd\[7935\]: Invalid user dev from 36.67.106.109 Sep 3 16:53:45 sachi sshd\[7935\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.67.106.109 Sep 3 16:53:47 sachi sshd\[7935\]: Failed password for invalid user dev from 36.67.106.109 port 52438 ssh2	2019-09-04 11:01:37
149.90.16.250	attack	Sep 1 10:55:25 mail sshd[1899]: reveeclipse mapping checking getaddrinfo for 250.16.90.149.rev.vodafone.pt [149.90.16.250] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 1 10:55:25 mail sshd[1900]: reveeclipse mapping checking getaddrinfo for 250.16.90.149.rev.vodafone.pt [149.90.16.250] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 1 10:55:27 mail sshd[1899]: Failed password for invalid user pi from 149.90.16.250 port 19672 ssh2 Sep 1 10:55:27 mail sshd[1900]: Failed password for invalid user pi from 149.90.16.250 port 34624 ssh2 Sep 1 10:55:27 mail sshd[1900]: Connection closed by 149.90.16.250 [preauth] Sep 1 10:55:27 mail sshd[1899]: Connection closed by 149.90.16.250 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=149.90.16.250	2019-09-04 10:42:57
180.126.233.194	attack	SSH Brute-Force reported by Fail2Ban	2019-09-04 10:35:11
200.231.129.10	attackspambots	Unauthorized connection attempt from IP address 200.231.129.10 on Port 445(SMB)	2019-09-04 10:24:21
41.32.82.58	attackbots	Unauthorized connection attempt from IP address 41.32.82.58 on Port 445(SMB)	2019-09-04 11:11:08
62.133.174.247	attack	Unauthorized connection attempt from IP address 62.133.174.247 on Port 445(SMB)	2019-09-04 10:55:44
79.8.245.19	attackbotsspam	Automatic report - Banned IP Access	2019-09-04 10:38:55
180.76.242.171	attack	2019-09-04T02:36:22.656164abusebot-2.cloudsearch.cf sshd\[8987\]: Invalid user git from 180.76.242.171 port 34394	2019-09-04 11:04:56
187.0.221.222	attackspam	Sep 4 04:05:29 icinga sshd[9903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.0.221.222 Sep 4 04:05:31 icinga sshd[9903]: Failed password for invalid user nodeclient from 187.0.221.222 port 51922 ssh2 ...	2019-09-04 10:31:38

Recently Reported IPs

117.220.20.101	12.144.255.106	182.107.128.112	189.44.224.81
189.207.106.206	212.43.141.88	187.241.230.178	59.31.91.136
66.167.102.196	42.159.246.247	37.83.197.22	169.255.26.53
60.21.79.44	120.31.237.136	91.6.105.13	69.181.209.123
162.198.17.195	74.113.65.191	81.48.196.44	196.196.216.139