119.140.161.253

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
119.140.161.204	attack	Jul 6 05:39:17 lnxmail61 postfix/smtpd[5699]: lost connection after RCPT from unknown[119.140.161.204] Jul 6 05:39:20 lnxmail61 postfix/smtpd[1017]: warning: unknown[119.140.161.204]: SASL login authentication failed: UGFzc3dvcmQ6 Jul 6 05:39:20 lnxmail61 postfix/smtpd[1017]: lost connection after AUTH from unknown[119.140.161.204] Jul 6 05:39:29 lnxmail61 postfix/smtpd[5699]: warning: unknown[119.140.161.204]: SASL login authentication failed: UGFzc3dvcmQ6 Jul 6 05:39:29 lnxmail61 postfix/smtpd[5699]: lost connection after AUTH from unknown[119.140.161.204]	2019-07-06 18:48:35

Type

Details

Datetime

119.140.161.204

attack

Jul  6 05:39:17 lnxmail61 postfix/smtpd[5699]: lost connection after RCPT from unknown[119.140.161.204]
Jul  6 05:39:20 lnxmail61 postfix/smtpd[1017]: warning: unknown[119.140.161.204]: SASL login authentication failed: UGFzc3dvcmQ6
Jul  6 05:39:20 lnxmail61 postfix/smtpd[1017]: lost connection after AUTH from unknown[119.140.161.204]
Jul  6 05:39:29 lnxmail61 postfix/smtpd[5699]: warning: unknown[119.140.161.204]: SASL login authentication failed: UGFzc3dvcmQ6
Jul  6 05:39:29 lnxmail61 postfix/smtpd[5699]: lost connection after AUTH from unknown[119.140.161.204]

2019-07-06 18:48:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.140.161.253
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19890
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;119.140.161.253.		IN	A

;; AUTHORITY SECTION:
.			154	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 12:07:17 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 253.161.140.119.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 253.161.140.119.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
85.186.125.12	attack	Honeypot attack, port: 81, PTR: PTR record not found	2019-09-29 17:24:43
138.68.106.62	attackspambots	2019-09-29T10:18:10.560196centos sshd\[7928\]: Invalid user ci from 138.68.106.62 port 35526 2019-09-29T10:18:10.566198centos sshd\[7928\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.106.62 2019-09-29T10:18:13.023127centos sshd\[7928\]: Failed password for invalid user ci from 138.68.106.62 port 35526 ssh2	2019-09-29 17:24:10
106.13.48.157	attack	Sep 28 23:11:13 hpm sshd\[23216\]: Invalid user 123 from 106.13.48.157 Sep 28 23:11:13 hpm sshd\[23216\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.48.157 Sep 28 23:11:15 hpm sshd\[23216\]: Failed password for invalid user 123 from 106.13.48.157 port 50494 ssh2 Sep 28 23:16:45 hpm sshd\[23616\]: Invalid user Dmin from 106.13.48.157 Sep 28 23:16:45 hpm sshd\[23616\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.48.157	2019-09-29 17:24:28
23.129.64.155	attack	Sep 29 08:40:37 rotator sshd\[28306\]: Invalid user orajsd from 23.129.64.155Sep 29 08:40:39 rotator sshd\[28306\]: Failed password for invalid user orajsd from 23.129.64.155 port 47546 ssh2Sep 29 08:40:46 rotator sshd\[28309\]: Invalid user oratest from 23.129.64.155Sep 29 08:40:48 rotator sshd\[28309\]: Failed password for invalid user oratest from 23.129.64.155 port 21713 ssh2Sep 29 08:40:51 rotator sshd\[28309\]: Failed password for invalid user oratest from 23.129.64.155 port 21713 ssh2Sep 29 08:40:54 rotator sshd\[28309\]: Failed password for invalid user oratest from 23.129.64.155 port 21713 ssh2 ...	2019-09-29 18:01:28
81.241.235.191	attack	2019-09-29T10:10:05.094992lon01.zurich-datacenter.net sshd\[5457\]: Invalid user admin from 81.241.235.191 port 34082 2019-09-29T10:10:05.100332lon01.zurich-datacenter.net sshd\[5457\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.235-241-81.adsl-static.isp.belgacom.be 2019-09-29T10:10:06.980567lon01.zurich-datacenter.net sshd\[5457\]: Failed password for invalid user admin from 81.241.235.191 port 34082 ssh2 2019-09-29T10:13:23.031907lon01.zurich-datacenter.net sshd\[5521\]: Invalid user butter from 81.241.235.191 port 44322 2019-09-29T10:13:23.036989lon01.zurich-datacenter.net sshd\[5521\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.235-241-81.adsl-static.isp.belgacom.be ...	2019-09-29 17:33:18
130.61.88.225	attackbotsspam	Invalid user debian from 130.61.88.225 port 65380	2019-09-29 17:54:15
121.8.124.244	attack	Sep 29 08:30:51 icinga sshd[65500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.8.124.244 Sep 29 08:30:53 icinga sshd[65500]: Failed password for invalid user word from 121.8.124.244 port 18998 ssh2 Sep 29 09:10:32 icinga sshd[25971]: Failed password for root from 121.8.124.244 port 2469 ssh2 ...	2019-09-29 17:44:24
185.164.56.104	attackspambots	B: Magento admin pass test (wrong country)	2019-09-29 17:25:22
49.232.33.89	attack	Sep 29 11:13:49 OPSO sshd\[966\]: Invalid user user2 from 49.232.33.89 port 56985 Sep 29 11:13:49 OPSO sshd\[966\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.33.89 Sep 29 11:13:51 OPSO sshd\[966\]: Failed password for invalid user user2 from 49.232.33.89 port 56985 ssh2 Sep 29 11:19:05 OPSO sshd\[1979\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.33.89 user=apache Sep 29 11:19:07 OPSO sshd\[1979\]: Failed password for apache from 49.232.33.89 port 46269 ssh2	2019-09-29 17:47:58
187.32.120.215	attackspam	Sep 29 09:24:16 hcbbdb sshd\[9067\]: Invalid user ross from 187.32.120.215 Sep 29 09:24:16 hcbbdb sshd\[9067\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.32.120.215 Sep 29 09:24:18 hcbbdb sshd\[9067\]: Failed password for invalid user ross from 187.32.120.215 port 53886 ssh2 Sep 29 09:28:45 hcbbdb sshd\[9500\]: Invalid user user1 from 187.32.120.215 Sep 29 09:28:45 hcbbdb sshd\[9500\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.32.120.215	2019-09-29 17:48:21
111.231.239.143	attackspambots	Sep 29 04:33:28 ny01 sshd[5665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.239.143 Sep 29 04:33:30 ny01 sshd[5665]: Failed password for invalid user edbserv from 111.231.239.143 port 43364 ssh2 Sep 29 04:38:38 ny01 sshd[6642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.239.143	2019-09-29 17:51:41
58.21.23.4	attackspambots	Honeypot attack, port: 81, PTR: 4.23.21.58.adsl-pool.jlccptt.net.cn.	2019-09-29 17:23:26
5.135.223.35	attackbotsspam	Sep 29 09:58:54 tuxlinux sshd[1789]: Invalid user server from 5.135.223.35 port 43478 Sep 29 09:58:54 tuxlinux sshd[1789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.223.35 Sep 29 09:58:54 tuxlinux sshd[1789]: Invalid user server from 5.135.223.35 port 43478 Sep 29 09:58:54 tuxlinux sshd[1789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.223.35 Sep 29 09:58:54 tuxlinux sshd[1789]: Invalid user server from 5.135.223.35 port 43478 Sep 29 09:58:54 tuxlinux sshd[1789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.223.35 Sep 29 09:58:56 tuxlinux sshd[1789]: Failed password for invalid user server from 5.135.223.35 port 43478 ssh2 ...	2019-09-29 17:31:11
177.152.155.147	attack	Telnet Server BruteForce Attack	2019-09-29 18:02:44
223.202.201.220	attack	Sep 29 07:07:45 www sshd\[124358\]: Invalid user milton from 223.202.201.220 Sep 29 07:07:45 www sshd\[124358\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.202.201.220 Sep 29 07:07:47 www sshd\[124358\]: Failed password for invalid user milton from 223.202.201.220 port 42037 ssh2 ...	2019-09-29 17:55:03

Recently Reported IPs

119.140.161.248	119.140.161.41	119.140.161.43	119.140.161.54
119.140.161.60	119.140.161.67	119.140.161.7	119.140.161.77
119.140.161.82	119.140.162.104	119.140.162.109	119.140.162.115
119.140.162.125	119.140.162.139	119.140.162.150	119.140.162.152
119.140.162.155	119.140.162.156	119.140.162.17	119.140.162.173