219.145.1.166 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
219.145.117.2	attackspam	Invalid user operator from 219.145.117.2 port 33166	2020-08-31 08:40:04
219.145.117.2	attack	bruteforce detected	2020-08-27 15:59:47
219.145.104.203	attack	firewall-block, port(s): 1433/tcp	2020-05-10 16:50:52
219.145.104.203	attackspam	Unauthorized connection attempt detected from IP address 219.145.104.203 to port 1433 [T]	2020-04-15 00:57:36
219.145.195.240	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-07 17:07:26
219.145.104.203	attack	02/18/2020-22:59:47.098368 219.145.104.203 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-02-19 09:36:39
219.145.104.203	attackspam	Unauthorized connection attempt detected from IP address 219.145.104.203 to port 1433 [T]	2020-02-01 17:06:44
219.145.105.40	attackbotsspam	Unauthorized connection attempt detected from IP address 219.145.105.40 to port 2222 [T]	2020-01-15 22:30:22
219.145.104.203	attack	Unauthorized connection attempt detected from IP address 219.145.104.203 to port 1433	2020-01-01 19:17:56
219.145.186.11	attackbotsspam	firewall-block, port(s): 23/tcp	2019-12-25 23:16:42
219.145.105.40	attackbotsspam	Dec 23 02:07:06 ntp sshd[4780]: Invalid user admin from 219.145.105.40 Dec 23 02:07:06 ntp sshd[4780]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.145.105.40 Dec 23 02:07:08 ntp sshd[4780]: Failed password for invalid user admin from 219.145.105.40 port 39844 ssh2 Dec 23 02:07:10 ntp sshd[4782]: Invalid user admin from 219.145.105.40 Dec 23 02:07:11 ntp sshd[4782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.145.105.40 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=219.145.105.40	2019-12-25 06:17:20
219.145.103.126	attackspambots	Unauthorized connection attempt from IP address 219.145.103.126 on Port 445(SMB)	2019-12-21 08:23:36
219.145.186.11	attackspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-15 21:37:27
219.145.195.44	attackbotsspam	B: Magento admin pass test (wrong country)	2019-11-13 18:31:55
219.145.144.33	attack	CN - 1H : (309) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4134 IP : 219.145.144.33 CIDR : 219.145.0.0/16 PREFIX COUNT : 5430 UNIQUE IP COUNT : 106919680 WYKRYTE ATAKI Z ASN4134 : 1H - 5 3H - 12 6H - 28 12H - 61 24H - 111 INFO : SYN Flood DDoS Attack Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-09-16 00:55:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 219.145.1.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21625
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;219.145.1.166.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 02:56:46 CST 2022
;; MSG SIZE  rcvd: 106

Host info

b';; connection timed out; no servers could be reached
'

Nslookup info:

server can't find 219.145.1.166.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
39.53.176.110	attack	Automatic report - Port Scan	2019-12-09 19:58:58
117.71.51.145	attackspam	Dec 9 11:59:09 markkoudstaal sshd[23194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.71.51.145 Dec 9 11:59:12 markkoudstaal sshd[23194]: Failed password for invalid user remote from 117.71.51.145 port 13081 ssh2 Dec 9 12:06:08 markkoudstaal sshd[23929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.71.51.145	2019-12-09 19:56:58
121.182.166.81	attackspam	SSH bruteforce	2019-12-09 19:28:49
36.155.113.223	attackbotsspam	Dec 9 02:58:40 ny01 sshd[19107]: Failed password for sync from 36.155.113.223 port 37000 ssh2 Dec 9 03:06:45 ny01 sshd[20096]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.113.223 Dec 9 03:06:46 ny01 sshd[20096]: Failed password for invalid user ssh from 36.155.113.223 port 35550 ssh2	2019-12-09 19:41:23
54.39.104.30	attackbots	Dec 9 13:42:50 server sshd\[18704\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns558643.ip-54-39-104.net user=root Dec 9 13:42:52 server sshd\[18704\]: Failed password for root from 54.39.104.30 port 52682 ssh2 Dec 9 13:51:45 server sshd\[21390\]: Invalid user alphabet from 54.39.104.30 Dec 9 13:51:45 server sshd\[21390\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns558643.ip-54-39-104.net Dec 9 13:51:47 server sshd\[21390\]: Failed password for invalid user alphabet from 54.39.104.30 port 51538 ssh2 ...	2019-12-09 19:55:38
185.200.118.50	attackbotsspam	firewall-block, port(s): 1080/tcp	2019-12-09 19:41:50
133.130.89.115	attackbots	sshd jail - ssh hack attempt	2019-12-09 19:39:42
60.29.241.2	attack	Dec 8 23:23:57 hpm sshd\[4158\]: Invalid user admin12345 from 60.29.241.2 Dec 8 23:23:57 hpm sshd\[4158\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.29.241.2 Dec 8 23:23:59 hpm sshd\[4158\]: Failed password for invalid user admin12345 from 60.29.241.2 port 28419 ssh2 Dec 8 23:28:47 hpm sshd\[4711\]: Invalid user wwwwwwww from 60.29.241.2 Dec 8 23:28:47 hpm sshd\[4711\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.29.241.2	2019-12-09 19:53:47
125.82.36.52	attack	Host Scan	2019-12-09 19:36:52
84.91.128.47	attack	fail2ban	2019-12-09 19:37:44
74.82.47.33	attack	3389BruteforceFW21	2019-12-09 20:04:40
103.21.218.242	attackbots	Dec 9 06:27:47 l02a sshd[4328]: Invalid user backup from 103.21.218.242 Dec 9 06:27:47 l02a sshd[4328]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.218.242 Dec 9 06:27:47 l02a sshd[4328]: Invalid user backup from 103.21.218.242 Dec 9 06:27:49 l02a sshd[4328]: Failed password for invalid user backup from 103.21.218.242 port 36032 ssh2	2019-12-09 19:25:11
51.77.147.51	attackspam	Dec 9 10:32:07 ncomp sshd[26981]: Invalid user ching from 51.77.147.51 Dec 9 10:32:07 ncomp sshd[26981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.147.51 Dec 9 10:32:07 ncomp sshd[26981]: Invalid user ching from 51.77.147.51 Dec 9 10:32:09 ncomp sshd[26981]: Failed password for invalid user ching from 51.77.147.51 port 42926 ssh2	2019-12-09 19:30:43
211.151.95.139	attack	Dec 9 12:22:49 DAAP sshd[15370]: Invalid user normans from 211.151.95.139 port 44510 Dec 9 12:22:49 DAAP sshd[15370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.151.95.139 Dec 9 12:22:49 DAAP sshd[15370]: Invalid user normans from 211.151.95.139 port 44510 Dec 9 12:22:52 DAAP sshd[15370]: Failed password for invalid user normans from 211.151.95.139 port 44510 ssh2 ...	2019-12-09 19:29:12
129.211.125.167	attackspam	Dec 9 08:01:01 root sshd[15530]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.125.167 Dec 9 08:01:02 root sshd[15530]: Failed password for invalid user named from 129.211.125.167 port 39520 ssh2 Dec 9 08:09:53 root sshd[15752]: Failed password for root from 129.211.125.167 port 43394 ssh2 ...	2019-12-09 20:00:17

Recently Reported IPs

193.203.90.13	27.46.17.2	121.154.93.44	149.200.204.214
118.151.221.230	120.85.99.123	35.186.227.140	104.237.144.142
107.185.191.177	58.186.99.132	54.172.219.141	5.183.101.101
190.185.228.234	220.76.77.52	192.241.208.241	92.255.85.30
91.126.204.95	90.107.10.205	35.185.117.31	177.37.240.91