119.63.74.19 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: United Information Highway Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2019-11-12 22:09:07
attackbotsspam	Unauthorized connection attempt from IP address 119.63.74.19 on Port 445(SMB)	2019-09-13 17:53:53
attackspambots	445/tcp 445/tcp 445/tcp... [2019-07-06/09-02]5pkt,1pt.(tcp)	2019-09-02 11:58:11

Comments on same subnet:

IP	Type	Details	Datetime
119.63.74.25	attack	Honeypot attack, port: 445, PTR: relay1.2s1n.com.	2020-07-09 16:07:11
119.63.74.25	attackbotsspam	Honeypot attack, port: 445, PTR: relay1.2s1n.com.	2020-05-12 14:23:47
119.63.74.25	attack	Unauthorized connection attempt detected from IP address 119.63.74.25 to port 1433 [J]	2020-01-26 03:26:56
119.63.74.25	attack	01/01/2020-01:25:59.740422 119.63.74.25 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-01-01 16:59:39
119.63.74.25	attack	port scan and connect, tcp 1433 (ms-sql-s)	2019-12-15 06:49:03
119.63.74.25	attackbots	19/9/27@23:55:23: FAIL: Alarm-Intrusion address from=119.63.74.25 ...	2019-09-28 12:55:32

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.63.74.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55653
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;119.63.74.19.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue May 14 15:31:39 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 19.74.63.119.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 19.74.63.119.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.220.102.243	attackspambots	contact form abuse	2020-09-09 08:16:22
190.202.109.244	attack	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=root	2020-09-09 08:13:20
140.143.56.61	attackspambots	2020-09-08T12:41:28.865689morrigan.ad5gb.com sshd[2611175]: Failed password for root from 140.143.56.61 port 45160 ssh2 2020-09-08T12:41:31.289233morrigan.ad5gb.com sshd[2611175]: Disconnected from authenticating user root 140.143.56.61 port 45160 [preauth]	2020-09-09 07:48:26
5.105.147.4	attackspambots	20/9/8@13:14:22: FAIL: Alarm-Network address from=5.105.147.4 20/9/8@13:14:22: FAIL: Alarm-Network address from=5.105.147.4 ...	2020-09-09 07:57:18
39.109.127.91	attackspambots	Sep 8 19:21:54 vps639187 sshd\[19882\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.109.127.91 user=root Sep 8 19:21:57 vps639187 sshd\[19882\]: Failed password for root from 39.109.127.91 port 48792 ssh2 Sep 8 19:25:37 vps639187 sshd\[19931\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.109.127.91 user=root ...	2020-09-09 07:45:22
142.93.66.165	attackspambots	Automatic report - XMLRPC Attack	2020-09-09 08:12:08
157.230.163.6	attack	Failed password for invalid user tibero1 from 157.230.163.6 port 50956 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.163.6 user=root Failed password for root from 157.230.163.6 port 47368 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.163.6 user=root Failed password for root from 157.230.163.6 port 43724 ssh2	2020-09-09 08:16:38
60.212.191.66	attackspambots	Sep 8 14:14:51 firewall sshd[7491]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.212.191.66 user=root Sep 8 14:14:53 firewall sshd[7491]: Failed password for root from 60.212.191.66 port 36818 ssh2 Sep 8 14:19:04 firewall sshd[7592]: Invalid user neo from 60.212.191.66 ...	2020-09-09 07:44:23
216.218.206.115	attackspam	srv02 Mass scanning activity detected Target: 389(ldap) ..	2020-09-09 08:00:11
54.38.81.231	attackspambots	$f2bV_matches	2020-09-09 08:02:12
83.110.220.35	attack	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-09-09 08:00:40
82.165.159.130	attackbotsspam	Brute force attempt	2020-09-09 08:04:24
128.199.92.187	attackspambots	TCP (SYN) 128.199.92.187:47924 -> port 3436, len 44	2020-09-09 08:18:29
5.135.182.84	attackspam	SSH Invalid Login	2020-09-09 08:11:02
121.15.139.2	attack	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=root	2020-09-09 07:40:48

Recently Reported IPs

73.29.110.75	14.160.34.214	175.136.241.161	103.10.58.21
163.172.7.237	85.217.192.39	89.46.105.248	37.49.224.59
98.115.42.215	16.154.136.63	124.47.21.22	29.44.186.22
119.168.77.165	32.94.69.254	195.123.182.13	150.47.164.134
39.118.52.94	24.103.182.149	233.84.110.186	75.50.120.18