139.219.13.246

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Microsoft (China) Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	unauthorized connection attempt	2020-02-19 17:10:10

Comments on same subnet:

IP	Type	Details	Datetime
139.219.13.163	attackspambots	Too many connections or unauthorized access detected from Arctic banned ip	2020-08-31 00:00:12
139.219.13.163	attackspam	Aug 18 00:58:21 firewall sshd[26159]: Failed password for invalid user pi from 139.219.13.163 port 57234 ssh2 Aug 18 01:00:09 firewall sshd[26217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.13.163 user=root Aug 18 01:00:11 firewall sshd[26217]: Failed password for root from 139.219.13.163 port 54190 ssh2 ...	2020-08-18 12:15:23
139.219.13.163	attack	2020-08-17T15:15:58.512728vps1033 sshd[25995]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.13.163 2020-08-17T15:15:58.508749vps1033 sshd[25995]: Invalid user odoo from 139.219.13.163 port 54178 2020-08-17T15:16:00.879162vps1033 sshd[25995]: Failed password for invalid user odoo from 139.219.13.163 port 54178 ssh2 2020-08-17T15:19:01.684501vps1033 sshd[32377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.13.163 user=root 2020-08-17T15:19:03.174303vps1033 sshd[32377]: Failed password for root from 139.219.13.163 port 58462 ssh2 ...	2020-08-18 00:19:49
139.219.13.163	attackbots	reported through recidive - multiple failed attempts(SSH)	2020-08-16 07:30:15
139.219.13.163	attack	2020-08-05T02:45:47.205393hostname sshd[117209]: Failed password for root from 139.219.13.163 port 38614 ssh2 ...	2020-08-07 03:06:35
139.219.13.163	attackspambots	Aug 4 12:15:31 eventyay sshd[17591]: Failed password for root from 139.219.13.163 port 52612 ssh2 Aug 4 12:18:37 eventyay sshd[17718]: Failed password for root from 139.219.13.163 port 40292 ssh2 ...	2020-08-04 21:31:15
139.219.13.163	attackspam	Aug 4 05:10:04 rocket sshd[6640]: Failed password for root from 139.219.13.163 port 48222 ssh2 Aug 4 05:14:48 rocket sshd[7559]: Failed password for root from 139.219.13.163 port 58546 ssh2 ...	2020-08-04 14:04:43
139.219.13.163	attack	Aug 2 17:40:29 gw1 sshd[11018]: Failed password for root from 139.219.13.163 port 58752 ssh2 ...	2020-08-02 22:30:43
139.219.13.163	attackspam	"Unauthorized connection attempt on SSHD detected"	2020-06-22 19:24:21
139.219.13.163	attackbots	Jun 8 14:03:04 vmi345603 sshd[22353]: Failed password for root from 139.219.13.163 port 55428 ssh2 ...	2020-06-08 20:49:37
139.219.13.163	attackbots	2020-05-25T20:08:37.856797morrigan.ad5gb.com sshd[332]: Invalid user pippo from 139.219.13.163 port 40712 2020-05-25T20:08:39.781424morrigan.ad5gb.com sshd[332]: Failed password for invalid user pippo from 139.219.13.163 port 40712 ssh2 2020-05-25T20:08:40.837413morrigan.ad5gb.com sshd[332]: Disconnected from invalid user pippo 139.219.13.163 port 40712 [preauth]	2020-05-26 14:14:58
139.219.13.163	attack	Invalid user sahil from 139.219.13.163 port 43292	2020-05-22 12:00:52
139.219.138.253	attackbots	Unauthorized connection attempt detected from IP address 139.219.138.253 to port 3389	2020-05-20 13:31:45
139.219.13.163	attackspam	May 16 02:46:48 scw-6657dc sshd[22726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.13.163 May 16 02:46:48 scw-6657dc sshd[22726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.13.163 May 16 02:46:50 scw-6657dc sshd[22726]: Failed password for invalid user contable from 139.219.13.163 port 35118 ssh2 ...	2020-05-16 17:59:18
139.219.138.253	attack	Unauthorized connection attempt detected from IP address 139.219.138.253 to port 3389	2020-05-13 03:22:44

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.219.13.246
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21632
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.219.13.246.			IN	A

;; AUTHORITY SECTION:
.			343	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021900 1800 900 604800 86400

;; Query time: 131 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 19 17:10:02 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 246.13.219.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 246.13.219.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
34.80.135.20	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 12 - port: 28507 proto: tcp cat: Misc Attackbytes: 60	2020-07-14 01:26:59
189.113.74.190	attack	Email rejected due to spam filtering	2020-07-14 01:10:45
77.31.100.197	attackbots	Email rejected due to spam filtering	2020-07-14 00:59:08
102.43.45.63	attack	Automatic report - XMLRPC Attack	2020-07-14 00:57:23
61.177.172.102	attackspambots	Jul 13 19:03:03 dev0-dcde-rnet sshd[2088]: Failed password for root from 61.177.172.102 port 44664 ssh2 Jul 13 19:03:11 dev0-dcde-rnet sshd[2090]: Failed password for root from 61.177.172.102 port 60137 ssh2	2020-07-14 01:03:37
159.89.129.36	attackspambots	Jul 13 14:17:50 vps46666688 sshd[18309]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.129.36 Jul 13 14:17:52 vps46666688 sshd[18309]: Failed password for invalid user user1 from 159.89.129.36 port 47014 ssh2 ...	2020-07-14 01:32:55
87.148.33.31	attackbotsspam	Lines containing failures of 87.148.33.31 Jul 9 13:42:09 shared01 sshd[28081]: Invalid user butter from 87.148.33.31 port 52734 Jul 9 13:42:09 shared01 sshd[28081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.148.33.31 Jul 9 13:42:11 shared01 sshd[28081]: Failed password for invalid user butter from 87.148.33.31 port 52734 ssh2 Jul 9 13:42:11 shared01 sshd[28081]: Received disconnect from 87.148.33.31 port 52734:11: Bye Bye [preauth] Jul 9 13:42:11 shared01 sshd[28081]: Disconnected from invalid user butter 87.148.33.31 port 52734 [preauth] Jul 9 13:46:21 shared01 sshd[30080]: Invalid user collin from 87.148.33.31 port 60048 Jul 9 13:46:21 shared01 sshd[30080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.148.33.31 Jul 9 13:46:23 shared01 .... truncated .... Lines containing failures of 87.148.33.31 Jul 9 13:42:09 shared01 sshd[28081]: Invalid user butter from 87.148.3........ ------------------------------	2020-07-14 00:55:40
106.12.176.53	attack	TCP (SYN) 106.12.176.53:47627 -> port 19656, len 44	2020-07-14 01:24:40
192.241.236.133	attackspam	Port scan denied	2020-07-14 01:23:27
209.141.33.215	attackbots	Port scan denied	2020-07-14 01:30:40
129.204.233.214	attackspam	2020-07-13T12:17:01.111763abusebot-5.cloudsearch.cf sshd[5396]: Invalid user jeffrey from 129.204.233.214 port 33020 2020-07-13T12:17:01.118922abusebot-5.cloudsearch.cf sshd[5396]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.233.214 2020-07-13T12:17:01.111763abusebot-5.cloudsearch.cf sshd[5396]: Invalid user jeffrey from 129.204.233.214 port 33020 2020-07-13T12:17:03.616602abusebot-5.cloudsearch.cf sshd[5396]: Failed password for invalid user jeffrey from 129.204.233.214 port 33020 ssh2 2020-07-13T12:20:54.601894abusebot-5.cloudsearch.cf sshd[5402]: Invalid user oracle from 129.204.233.214 port 47440 2020-07-13T12:20:54.608081abusebot-5.cloudsearch.cf sshd[5402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.233.214 2020-07-13T12:20:54.601894abusebot-5.cloudsearch.cf sshd[5402]: Invalid user oracle from 129.204.233.214 port 47440 2020-07-13T12:20:56.759552abusebot-5.cloudsearch.cf sshd ...	2020-07-14 01:18:08
46.38.145.5	attack	Jul 13 18:54:50 srv01 postfix/smtpd\[28319\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 13 18:55:07 srv01 postfix/smtpd\[22225\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 13 18:55:30 srv01 postfix/smtpd\[28319\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 13 18:55:32 srv01 postfix/smtpd\[28392\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 13 18:55:37 srv01 postfix/smtpd\[28349\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-14 01:00:48
197.53.33.177	attack	Port scan denied	2020-07-14 01:31:20
118.36.102.70	attackbots	Email rejected due to spam filtering	2020-07-14 01:18:47
222.90.82.135	attackbots	2020-07-13T21:32:36.484452hostname sshd[9958]: Invalid user elv from 222.90.82.135 port 44998 2020-07-13T21:32:38.809947hostname sshd[9958]: Failed password for invalid user elv from 222.90.82.135 port 44998 ssh2 2020-07-13T21:35:42.265204hostname sshd[11282]: Invalid user fabio from 222.90.82.135 port 58321 ...	2020-07-14 01:22:22

Recently Reported IPs

78.9.110.3	252.225.65.219	241.115.180.174	62.11.53.233
61.173.75.236	91.148.21.128	243.15.31.37	43.47.43.12
96.237.222.184	46.214.18.137	36.68.53.240	157.98.191.217
27.74.85.186	27.64.190.132	228.83.14.38	57.187.153.124
14.248.73.64	18.218.19.157	234.83.106.246	2.181.165.239