139.219.133.155

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Microsoft (China) Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	2019-11-21T14:56:24.277571abusebot-2.cloudsearch.cf sshd\[3007\]: Invalid user admin from 139.219.133.155 port 41082	2019-11-21 23:16:02
attackspam	Invalid user admin from 139.219.133.155 port 54110 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.133.155 Failed password for invalid user admin from 139.219.133.155 port 54110 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.133.155 user=root Failed password for root from 139.219.133.155 port 37036 ssh2	2019-11-05 16:43:04
attackbots	Oct 26 19:04:35 sauna sshd[3582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.133.155 Oct 26 19:04:37 sauna sshd[3582]: Failed password for invalid user tomaso from 139.219.133.155 port 53062 ssh2 ...	2019-10-27 02:00:10
attack	Oct 24 18:17:07 TORMINT sshd\[9787\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.133.155 user=root Oct 24 18:17:09 TORMINT sshd\[9787\]: Failed password for root from 139.219.133.155 port 33936 ssh2 Oct 24 18:22:30 TORMINT sshd\[10007\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.133.155 user=root ...	2019-10-25 06:28:04
attackspam	Oct 19 07:05:20 www sshd\[32451\]: Invalid user admin from 139.219.133.155 Oct 19 07:05:20 www sshd\[32451\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.133.155 Oct 19 07:05:22 www sshd\[32451\]: Failed password for invalid user admin from 139.219.133.155 port 52298 ssh2 ...	2019-10-19 17:21:14
attack	Oct 16 21:24:38 MK-Soft-VM3 sshd[19573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.133.155 Oct 16 21:24:40 MK-Soft-VM3 sshd[19573]: Failed password for invalid user ck from 139.219.133.155 port 53216 ssh2 ...	2019-10-17 06:35:10
attackspam	Oct 16 17:09:23 MK-Soft-VM3 sshd[8419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.133.155 Oct 16 17:09:25 MK-Soft-VM3 sshd[8419]: Failed password for invalid user zenenko from 139.219.133.155 port 40414 ssh2 ...	2019-10-16 23:55:20
attack	Sep 22 23:05:29 lnxweb61 sshd[32679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.133.155 Sep 22 23:05:29 lnxweb61 sshd[32679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.133.155	2019-09-23 05:18:36
attackbotsspam	Sep 20 23:24:50 lcdev sshd\[19137\]: Invalid user user from 139.219.133.155 Sep 20 23:24:50 lcdev sshd\[19137\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.133.155 Sep 20 23:24:51 lcdev sshd\[19137\]: Failed password for invalid user user from 139.219.133.155 port 40386 ssh2 Sep 20 23:30:52 lcdev sshd\[19656\]: Invalid user supervisor from 139.219.133.155 Sep 20 23:30:52 lcdev sshd\[19656\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.133.155	2019-09-21 18:24:43
attackbotsspam	Sep 10 03:38:57 core sshd[26580]: Invalid user temp from 139.219.133.155 port 42910 Sep 10 03:38:59 core sshd[26580]: Failed password for invalid user temp from 139.219.133.155 port 42910 ssh2 ...	2019-09-10 09:41:17
attackspambots	Sep 7 13:51:16 kapalua sshd\[23218\]: Invalid user qwerty from 139.219.133.155 Sep 7 13:51:16 kapalua sshd\[23218\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.133.155 Sep 7 13:51:19 kapalua sshd\[23218\]: Failed password for invalid user qwerty from 139.219.133.155 port 41430 ssh2 Sep 7 13:56:47 kapalua sshd\[23718\]: Invalid user tf2server from 139.219.133.155 Sep 7 13:56:47 kapalua sshd\[23718\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.133.155	2019-09-08 14:47:32
attack	Automatic report - Banned IP Access	2019-08-10 16:54:31

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.219.133.155
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5597
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.219.133.155.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080100 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 01 17:37:42 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 155.133.219.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 155.133.219.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.241.213.147	attackbotsspam	www.fahrschule-mihm.de 192.241.213.147 [08/May/2020:16:00:22 +0200] "POST /wp-login.php HTTP/1.1" 200 5993 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" www.fahrschule-mihm.de 192.241.213.147 [08/May/2020:16:00:28 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4071 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-16 18:32:43
92.222.92.64	attackspambots	Invalid user ts3bot3 from 92.222.92.64 port 45874	2020-05-16 19:01:59
93.79.102.220	attackspam	UA_VOLIA-MNT_<177>1588490722 [1:2403470:56986] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 86 [Classification: Misc Attack] [Priority: 2]: {TCP} 93.79.102.220:55984	2020-05-16 18:29:21
202.150.115.215	attackbots	DATE:2020-05-16 01:55:25, IP:202.150.115.215, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-05-16 18:24:43
116.105.195.243	attack	May 16 03:59:29 ajax sshd[725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.105.195.243 May 16 03:59:31 ajax sshd[725]: Failed password for invalid user tomcat from 116.105.195.243 port 51488 ssh2	2020-05-16 18:46:26
47.100.240.129	attack	47.100.240.129 - - [15/May/2020:16:17:06 +0200] "GET /wp-login.php HTTP/1.1" 200 6451 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 47.100.240.129 - - [15/May/2020:16:17:11 +0200] "POST /wp-login.php HTTP/1.1" 200 6702 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 47.100.240.129 - - [15/May/2020:16:17:14 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-16 18:35:55
60.249.82.121	attack	Invalid user ddd from 60.249.82.121 port 58972	2020-05-16 18:53:42
47.52.30.46	attack	Sql/code injection probe	2020-05-16 18:37:28
85.172.107.95	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-05-16 18:24:22
163.44.168.207	attackbots	Invalid user batch from 163.44.168.207 port 36948	2020-05-16 19:03:22
202.5.61.24	attackbotsspam	Brute force attack stopped by firewall	2020-05-16 18:55:45
195.224.138.61	attackbotsspam	May 16 05:30:19 ift sshd\[18870\]: Invalid user ts3server from 195.224.138.61May 16 05:30:22 ift sshd\[18870\]: Failed password for invalid user ts3server from 195.224.138.61 port 58588 ssh2May 16 05:36:13 ift sshd\[20143\]: Invalid user teamspeak from 195.224.138.61May 16 05:36:15 ift sshd\[20143\]: Failed password for invalid user teamspeak from 195.224.138.61 port 38124 ssh2May 16 05:39:29 ift sshd\[20446\]: Failed password for root from 195.224.138.61 port 45334 ssh2 ...	2020-05-16 19:09:46
152.136.203.208	attackbots	May 16 03:51:07 vps639187 sshd\[11527\]: Invalid user gang from 152.136.203.208 port 49200 May 16 03:51:07 vps639187 sshd\[11527\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.203.208 May 16 03:51:09 vps639187 sshd\[11527\]: Failed password for invalid user gang from 152.136.203.208 port 49200 ssh2 ...	2020-05-16 18:58:07
87.251.74.198	attackbotsspam	May 16 04:14:47 debian-2gb-nbg1-2 kernel: \[11854133.413471\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=87.251.74.198 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=33315 PROTO=TCP SPT=41212 DPT=12634 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-16 19:02:22
165.22.187.76	attackbotsspam	Port scan denied	2020-05-16 18:50:46

Recently Reported IPs

49.69.35.26	187.87.13.161	138.184.101.155	87.106.40.199
74.184.62.112	185.166.107.182	104.248.128.217	1.1.216.211
177.99.190.122	125.165.37.100	213.194.161.47	197.55.167.0
178.159.249.66	177.84.98.186	137.59.213.29	129.122.16.162
61.109.98.71	185.235.244.50	113.70.46.186	222.188.32.54