119.115.54.139

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom Liaoning Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorised access (Oct 27) SRC=119.115.54.139 LEN=40 TTL=49 ID=33505 TCP DPT=8080 WINDOW=23754 SYN Unauthorised access (Oct 27) SRC=119.115.54.139 LEN=40 TTL=49 ID=24365 TCP DPT=8080 WINDOW=23754 SYN	2019-10-27 12:35:23

Type

Details

Datetime

attackbots

Unauthorised access (Oct 27) SRC=119.115.54.139 LEN=40 TTL=49 ID=33505 TCP DPT=8080 WINDOW=23754 SYN 
Unauthorised access (Oct 27) SRC=119.115.54.139 LEN=40 TTL=49 ID=24365 TCP DPT=8080 WINDOW=23754 SYN

2019-10-27 12:35:23

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.115.54.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47324
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;119.115.54.139.			IN	A

;; AUTHORITY SECTION:
.			530	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102601 1800 900 604800 86400

;; Query time: 92 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 27 12:35:19 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 139.54.115.119.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.54.115.119.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
109.110.52.77	attackbots	$f2bV_matches	2019-10-27 22:17:04
178.49.58.151	attack	Chat Spam	2019-10-27 22:07:29
159.89.13.0	attackspam	Oct 27 15:03:06 localhost sshd\[14720\]: Invalid user troy from 159.89.13.0 port 56176 Oct 27 15:03:06 localhost sshd\[14720\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.13.0 Oct 27 15:03:08 localhost sshd\[14720\]: Failed password for invalid user troy from 159.89.13.0 port 56176 ssh2	2019-10-27 22:14:40
178.128.86.48	attackspam	Oct 27 03:56:10 php1 sshd\[1818\]: Invalid user rochelle from 178.128.86.48 Oct 27 03:56:10 php1 sshd\[1818\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.86.48 Oct 27 03:56:12 php1 sshd\[1818\]: Failed password for invalid user rochelle from 178.128.86.48 port 39930 ssh2 Oct 27 04:00:41 php1 sshd\[2177\]: Invalid user oracle from 178.128.86.48 Oct 27 04:00:41 php1 sshd\[2177\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.86.48	2019-10-27 22:17:24
189.207.44.54	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/189.207.44.54/ MX - 1H : (57) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : MX NAME ASN : ASN6503 IP : 189.207.44.54 CIDR : 189.207.32.0/19 PREFIX COUNT : 2074 UNIQUE IP COUNT : 1522176 ATTACKS DETECTED ASN6503 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-27 13:07:06 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-27 22:13:30
193.32.160.153	attackbotsspam	Oct 27 14:37:03 relay postfix/smtpd\[17572\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.153\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[193.32.160.150\]\> Oct 27 14:37:03 relay postfix/smtpd\[17572\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.153\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[193.32.160.150\]\> Oct 27 14:37:03 relay postfix/smtpd\[17572\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.153\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[193.32.160.150\]\> Oct 27 14:37:03 relay postfix/smtpd\[17572\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.153\]: 554 5.7.1 \: Relay access denied\; fr ...	2019-10-27 22:35:29
139.210.136.188	attackbotsspam	Port Scan	2019-10-27 22:31:38
185.176.27.118	attackspambots	10/27/2019-09:48:35.336403 185.176.27.118 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-10-27 21:51:42
84.221.181.64	attackspam	Oct 27 14:54:30 XXX sshd[60647]: Invalid user ofsaa from 84.221.181.64 port 51510	2019-10-27 22:32:59
157.230.153.75	attackbots	Oct 27 14:39:43 vps691689 sshd[31115]: Failed password for root from 157.230.153.75 port 53494 ssh2 Oct 27 14:43:33 vps691689 sshd[31173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.153.75 ...	2019-10-27 21:49:23
111.231.66.135	attackspam	Oct 27 11:04:12 firewall sshd[21493]: Failed password for root from 111.231.66.135 port 45412 ssh2 Oct 27 11:08:55 firewall sshd[21574]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.66.135 user=root Oct 27 11:08:57 firewall sshd[21574]: Failed password for root from 111.231.66.135 port 51176 ssh2 ...	2019-10-27 22:09:50
152.136.125.210	attackspam	2019-10-27T12:07:21.900875abusebot-5.cloudsearch.cf sshd\[862\]: Invalid user brands from 152.136.125.210 port 49932	2019-10-27 21:57:12
190.41.110.221	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/190.41.110.221/ US - 1H : (271) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : US NAME ASN : ASN6147 IP : 190.41.110.221 CIDR : 190.41.110.0/24 PREFIX COUNT : 2296 UNIQUE IP COUNT : 1456128 ATTACKS DETECTED ASN6147 : 1H - 1 3H - 3 6H - 3 12H - 5 24H - 12 DateTime : 2019-10-27 13:06:42 INFO : Port SSH 22 Scan Detected and Blocked by ADMIN - data recovery	2019-10-27 22:34:43
49.234.233.164	attackspam	Oct 27 03:24:31 friendsofhawaii sshd\[9791\]: Invalid user a5211314 from 49.234.233.164 Oct 27 03:24:31 friendsofhawaii sshd\[9791\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.233.164 Oct 27 03:24:33 friendsofhawaii sshd\[9791\]: Failed password for invalid user a5211314 from 49.234.233.164 port 35542 ssh2 Oct 27 03:30:00 friendsofhawaii sshd\[10255\]: Invalid user general1 from 49.234.233.164 Oct 27 03:30:00 friendsofhawaii sshd\[10255\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.233.164	2019-10-27 22:09:23
171.244.129.66	attackspambots	WordPress login Brute force / Web App Attack on client site.	2019-10-27 22:14:26

Recently Reported IPs

46.126.53.160	76.8.123.210	44.239.156.142	216.222.216.27
187.142.104.230	182.253.235.84	186.39.64.221	217.76.40.82
208.8.221.198	172.104.183.254	76.169.193.138	45.136.111.65
182.135.65.186	87.165.169.134	105.127.33.79	64.52.172.212
154.229.109.98	167.71.124.10	189.163.182.99	61.223.3.93