139.219.0.29 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Microsoft (China) Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	SSH brute force	2020-03-17 15:06:11
attackbotsspam	Invalid user andoria from 139.219.0.29 port 57020	2020-03-14 04:43:01
attackspambots	$f2bV_matches	2020-02-13 16:08:41
attackbots	Automatic report - Banned IP Access	2020-02-09 15:59:20
attack	Feb 9 01:41:05 ovpn sshd\[15370\]: Invalid user jce from 139.219.0.29 Feb 9 01:41:05 ovpn sshd\[15370\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.29 Feb 9 01:41:07 ovpn sshd\[15370\]: Failed password for invalid user jce from 139.219.0.29 port 36204 ssh2 Feb 9 01:45:14 ovpn sshd\[16497\]: Invalid user qvv from 139.219.0.29 Feb 9 01:45:14 ovpn sshd\[16497\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.29	2020-02-09 11:02:01
attackspambots	Unauthorized connection attempt detected from IP address 139.219.0.29 to port 2220 [J]	2020-01-12 02:28:39
attackbotsspam	Invalid user mj from 139.219.0.29 port 54058	2020-01-04 04:33:45
attackbots	Dec 14 05:45:50 mail sshd[30184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.29 Dec 14 05:45:52 mail sshd[30184]: Failed password for invalid user net123!@# from 139.219.0.29 port 33568 ssh2 Dec 14 05:52:58 mail sshd[31787]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.29	2019-12-14 13:03:29
attackbots	ssh failed login	2019-12-10 18:31:48
attackbotsspam	$f2bV_matches	2019-12-09 07:00:49
attackbotsspam	Nov 14 05:55:54 jane sshd[30999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.29 Nov 14 05:55:56 jane sshd[30999]: Failed password for invalid user yoyo from 139.219.0.29 port 33728 ssh2 ...	2019-11-14 13:55:48
attackspam	Nov 11 06:45:51 wbs sshd\[19523\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.29 user=root Nov 11 06:45:54 wbs sshd\[19523\]: Failed password for root from 139.219.0.29 port 37160 ssh2 Nov 11 06:50:22 wbs sshd\[19892\]: Invalid user ubuntu from 139.219.0.29 Nov 11 06:50:22 wbs sshd\[19892\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.29 Nov 11 06:50:24 wbs sshd\[19892\]: Failed password for invalid user ubuntu from 139.219.0.29 port 45928 ssh2	2019-11-12 04:43:07
attackspam	2019-11-09T05:52:34.314404lon01.zurich-datacenter.net sshd\[3074\]: Invalid user user from 139.219.0.29 port 44340 2019-11-09T05:52:34.320033lon01.zurich-datacenter.net sshd\[3074\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.29 2019-11-09T05:52:36.415524lon01.zurich-datacenter.net sshd\[3074\]: Failed password for invalid user user from 139.219.0.29 port 44340 ssh2 2019-11-09T05:57:17.094478lon01.zurich-datacenter.net sshd\[3150\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.29 user=root 2019-11-09T05:57:19.375474lon01.zurich-datacenter.net sshd\[3150\]: Failed password for root from 139.219.0.29 port 53476 ssh2 ...	2019-11-09 13:08:51
attackbotsspam	Oct 13 07:15:22 dedicated sshd[18812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.29 user=root Oct 13 07:15:24 dedicated sshd[18812]: Failed password for root from 139.219.0.29 port 38298 ssh2	2019-10-13 13:42:29
attackspam	Oct 4 17:24:57 legacy sshd[17092]: Failed password for root from 139.219.0.29 port 49772 ssh2 Oct 4 17:29:46 legacy sshd[17168]: Failed password for root from 139.219.0.29 port 57754 ssh2 ...	2019-10-04 23:59:45
attackspam	2019-09-30T14:25:10.330316abusebot-3.cloudsearch.cf sshd\[24607\]: Invalid user brenden from 139.219.0.29 port 58252	2019-10-01 01:51:46
attackbotsspam	Sep 16 15:13:51 ny01 sshd[10648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.29 Sep 16 15:13:53 ny01 sshd[10648]: Failed password for invalid user pu from 139.219.0.29 port 47424 ssh2 Sep 16 15:18:34 ny01 sshd[11488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.29	2019-09-17 03:25:17
attack	ssh failed login	2019-09-09 07:23:09
attack	Aug 22 00:18:55 sachi sshd\[8143\]: Invalid user dimas from 139.219.0.29 Aug 22 00:18:55 sachi sshd\[8143\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.29 Aug 22 00:18:56 sachi sshd\[8143\]: Failed password for invalid user dimas from 139.219.0.29 port 60992 ssh2 Aug 22 00:22:48 sachi sshd\[8506\]: Invalid user developer from 139.219.0.29 Aug 22 00:22:48 sachi sshd\[8506\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.29	2019-08-22 19:10:49

Comments on same subnet:

IP	Type	Details	Datetime
139.219.0.102	attack	prod11 ...	2020-09-09 20:01:02
139.219.0.102	attackbots	Sep 9 01:32:47 mail sshd\[63284\]: Invalid user shera from 139.219.0.102 ...	2020-09-09 13:58:26
139.219.0.102	attackbots	Sep 1 15:30:43 jane sshd[18170]: Failed password for root from 139.219.0.102 port 52504 ssh2 ...	2020-09-02 01:16:17
139.219.0.102	attack	Tried sshing with brute force.	2020-08-16 08:34:13
139.219.0.102	attackspambots	Aug 14 06:46:06 rancher-0 sshd[1076642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.102 user=root Aug 14 06:46:09 rancher-0 sshd[1076642]: Failed password for root from 139.219.0.102 port 49292 ssh2 ...	2020-08-14 14:08:38
139.219.0.102	attackbots	Failed password for root from 139.219.0.102 port 21566 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.102 user=root Failed password for root from 139.219.0.102 port 63408 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.102 user=root Failed password for root from 139.219.0.102 port 49744 ssh2	2020-08-02 04:51:21
139.219.0.102	attack	Jul 31 23:31:34 santamaria sshd\[24041\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.102 user=root Jul 31 23:31:36 santamaria sshd\[24041\]: Failed password for root from 139.219.0.102 port 62796 ssh2 Jul 31 23:35:57 santamaria sshd\[24174\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.102 user=root ...	2020-08-01 08:19:45
139.219.0.102	attack	Jul 31 15:09:10 abendstille sshd\[31748\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.102 user=root Jul 31 15:09:11 abendstille sshd\[31748\]: Failed password for root from 139.219.0.102 port 45710 ssh2 Jul 31 15:12:53 abendstille sshd\[2746\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.102 user=root Jul 31 15:12:55 abendstille sshd\[2746\]: Failed password for root from 139.219.0.102 port 22766 ssh2 Jul 31 15:16:46 abendstille sshd\[6345\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.102 user=root ...	2020-08-01 04:11:08
139.219.0.102	attackbotsspam	Jul 29 19:28:15 ift sshd\[14466\]: Invalid user gengxin from 139.219.0.102Jul 29 19:28:18 ift sshd\[14466\]: Failed password for invalid user gengxin from 139.219.0.102 port 59032 ssh2Jul 29 19:31:02 ift sshd\[15229\]: Invalid user arjun from 139.219.0.102Jul 29 19:31:03 ift sshd\[15229\]: Failed password for invalid user arjun from 139.219.0.102 port 63240 ssh2Jul 29 19:33:49 ift sshd\[15462\]: Invalid user xn from 139.219.0.102 ...	2020-07-30 02:28:00
139.219.0.102	attackspambots	Jul 25 17:27:33 vmd36147 sshd[9571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.102 Jul 25 17:27:35 vmd36147 sshd[9571]: Failed password for invalid user sona from 139.219.0.102 port 25978 ssh2 Jul 25 17:31:30 vmd36147 sshd[18209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.102 ...	2020-07-26 01:15:49
139.219.0.102	attackbots	Jul 24 16:34:57 mail sshd[24068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.102 Jul 24 16:34:58 mail sshd[24068]: Failed password for invalid user manoj from 139.219.0.102 port 10934 ssh2 ...	2020-07-24 23:41:43
139.219.0.102	attackspambots	Invalid user rolo from 139.219.0.102 port 24558	2020-07-15 08:58:29
139.219.0.102	attack	2020-07-11T10:15:05.810912vps773228.ovh.net sshd[10786]: Invalid user xxshi from 139.219.0.102 port 58152 2020-07-11T10:15:05.827025vps773228.ovh.net sshd[10786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.102 2020-07-11T10:15:05.810912vps773228.ovh.net sshd[10786]: Invalid user xxshi from 139.219.0.102 port 58152 2020-07-11T10:15:08.101727vps773228.ovh.net sshd[10786]: Failed password for invalid user xxshi from 139.219.0.102 port 58152 ssh2 2020-07-11T10:18:06.198175vps773228.ovh.net sshd[10807]: Invalid user juliette from 139.219.0.102 port 16978 ...	2020-07-11 16:33:50
139.219.0.102	attackspambots	Invalid user russel from 139.219.0.102 port 39168	2020-07-11 08:05:10
139.219.0.102	attackspam	$f2bV_matches	2020-06-29 13:30:16

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.219.0.29
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33407
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.219.0.29.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082200 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 22 19:10:32 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 29.0.219.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 29.0.219.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
65.49.20.66	attackspam	Unauthorized connection attempt detected from IP address 65.49.20.66 to port 22	2020-06-20 13:23:24
37.59.61.13	attackbotsspam	Invalid user blumberg from 37.59.61.13 port 36160	2020-06-20 13:31:33
58.137.216.3	attackbots	Unauthorised access (Jun 20) SRC=58.137.216.3 LEN=52 PREC=0x40 TTL=104 ID=21754 DF TCP DPT=445 WINDOW=8192 SYN	2020-06-20 13:17:45
106.124.141.229	attack	Jun 20 01:41:36 ws24vmsma01 sshd[49170]: Failed password for root from 106.124.141.229 port 58258 ssh2 ...	2020-06-20 13:52:52
212.70.149.50	attack	Jun 20 07:18:27 mail postfix/smtpd\[10963\]: warning: unknown\[212.70.149.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 20 07:18:58 mail postfix/smtpd\[10963\]: warning: unknown\[212.70.149.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 20 07:19:30 mail postfix/smtpd\[10963\]: warning: unknown\[212.70.149.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 20 07:49:53 mail postfix/smtpd\[11967\]: warning: unknown\[212.70.149.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-06-20 13:51:10
113.161.62.20	attackspam	Dovecot Invalid User Login Attempt.	2020-06-20 13:34:54
167.172.98.80	attackspambots	Invalid user test1 from 167.172.98.80 port 42124	2020-06-20 13:57:42
201.48.115.236	attackspambots	SSH brute-force: detected 18 distinct username(s) / 19 distinct password(s) within a 24-hour window.	2020-06-20 13:53:49
113.125.119.250	attack	Invalid user masako from 113.125.119.250 port 45506	2020-06-20 13:28:54
129.204.125.233	attackbotsspam	Jun 20 06:18:50 vps647732 sshd[23488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.125.233 Jun 20 06:18:52 vps647732 sshd[23488]: Failed password for invalid user teste2 from 129.204.125.233 port 60220 ssh2 ...	2020-06-20 13:34:38
89.248.167.141	attackbots	Fail2Ban Ban Triggered	2020-06-20 13:25:03
34.96.147.16	attackbots	Invalid user luky from 34.96.147.16 port 54506	2020-06-20 14:00:15
129.28.78.8	attackbots	2020-06-20T07:02:13.232180galaxy.wi.uni-potsdam.de sshd[29561]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.78.8 2020-06-20T07:02:13.230171galaxy.wi.uni-potsdam.de sshd[29561]: Invalid user odoo from 129.28.78.8 port 33798 2020-06-20T07:02:15.685485galaxy.wi.uni-potsdam.de sshd[29561]: Failed password for invalid user odoo from 129.28.78.8 port 33798 ssh2 2020-06-20T07:04:02.186172galaxy.wi.uni-potsdam.de sshd[29816]: Invalid user ygm from 129.28.78.8 port 55818 2020-06-20T07:04:02.188106galaxy.wi.uni-potsdam.de sshd[29816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.78.8 2020-06-20T07:04:02.186172galaxy.wi.uni-potsdam.de sshd[29816]: Invalid user ygm from 129.28.78.8 port 55818 2020-06-20T07:04:03.938785galaxy.wi.uni-potsdam.de sshd[29816]: Failed password for invalid user ygm from 129.28.78.8 port 55818 ssh2 2020-06-20T07:05:47.604010galaxy.wi.uni-potsdam.de sshd[30021]: Invalid use ...	2020-06-20 13:50:10
193.35.48.18	attackspam	Jun 20 07:14:37 srv01 postfix/smtpd\[9486\]: warning: unknown\[193.35.48.18\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 20 07:14:57 srv01 postfix/smtpd\[11843\]: warning: unknown\[193.35.48.18\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 20 07:21:14 srv01 postfix/smtpd\[7106\]: warning: unknown\[193.35.48.18\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 20 07:21:32 srv01 postfix/smtpd\[7106\]: warning: unknown\[193.35.48.18\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 20 07:29:18 srv01 postfix/smtpd\[14202\]: warning: unknown\[193.35.48.18\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-20 13:30:43
200.146.227.146	attackspam	(imapd) Failed IMAP login from 200.146.227.146 (BR/Brazil/200-146-227-146.xf-static.ctbcnetsuper.com.br): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jun 20 08:24:44 ir1 dovecot[2885757]: imap-login: Disconnected (auth failed, 1 attempts in 5 secs): user=, method=PLAIN, rip=200.146.227.146, lip=5.63.12.44, TLS, session=	2020-06-20 13:22:41

Recently Reported IPs

150.109.63.147	51.77.200.62	156.127.225.249	94.167.123.168
47.124.76.110	169.128.202.36	20.128.194.157	5.224.220.251
55.224.13.8	43.140.244.146	253.176.5.196	207.192.231.190
163.53.20.111	143.78.122.83	171.231.244.180	239.218.197.227
105.95.46.211	189.94.146.158	83.178.172.159	158.162.122.96