139.219.237.253

Basic Info

City: Shanghai

Region: Shanghai

Country: China

Internet Service Provider: Microsoft (China) Co. Ltd.

Hostname: unknown

Organization: Shanghai Blue Cloud Technology Co.,Ltd

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Jul 15 18:55:28 dev0-dcde-rnet sshd[11192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.237.253 Jul 15 18:55:30 dev0-dcde-rnet sshd[11192]: Failed password for invalid user marcelo from 139.219.237.253 port 1504 ssh2 Jul 15 18:59:10 dev0-dcde-rnet sshd[11227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.237.253	2019-07-16 01:40:05
attackbotsspam	Jul 12 15:11:09 animalibera sshd[20727]: Invalid user orangepi from 139.219.237.253 port 1520 ...	2019-07-13 02:47:16
attack	Jul 12 08:27:07 animalibera sshd[16088]: Invalid user matt from 139.219.237.253 port 1520 ...	2019-07-12 16:31:58
attackspam	Jul 11 23:31:15 animalibera sshd[8415]: Invalid user common from 139.219.237.253 port 1520 ...	2019-07-12 07:41:32
attackbots	Automatic report - Web App Attack	2019-06-23 16:51:10

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.219.237.253
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11603
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.219.237.253.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040402 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 05 03:56:58 +08 2019
;; MSG SIZE  rcvd: 119

Host info

Host 253.237.219.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 253.237.219.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.233.141.224	attack	Mar 7 01:25:58 Ubuntu-1404-trusty-64-minimal sshd\[26610\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.141.224 user=root Mar 7 01:26:01 Ubuntu-1404-trusty-64-minimal sshd\[26610\]: Failed password for root from 49.233.141.224 port 35900 ssh2 Mar 7 01:38:55 Ubuntu-1404-trusty-64-minimal sshd\[3856\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.141.224 user=root Mar 7 01:38:57 Ubuntu-1404-trusty-64-minimal sshd\[3856\]: Failed password for root from 49.233.141.224 port 38220 ssh2 Mar 7 01:42:30 Ubuntu-1404-trusty-64-minimal sshd\[5948\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.141.224 user=root	2020-03-07 09:35:45
2.228.39.100	attackspambots	Unauthorized connection attempt from IP address 2.228.39.100 on Port 445(SMB)	2020-03-07 09:36:12
51.68.251.201	attackbotsspam	Mar 7 01:50:03 vps647732 sshd[19596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.251.201 Mar 7 01:50:04 vps647732 sshd[19596]: Failed password for invalid user git-admin from 51.68.251.201 port 33492 ssh2 ...	2020-03-07 09:03:13
191.82.28.94	attack	Email rejected due to spam filtering	2020-03-07 09:43:21
111.230.157.95	attackbotsspam	20 attempts against mh-misbehave-ban on milky	2020-03-07 09:18:40
178.34.117.155	attackbots	2020-03-06 22:56:44 lookup_cram authenticator failed for (1babffbdm3.wellweb.host) [178.34.117.155]:64127 I=[10.100.18.23]:25: 435 Unable to authenticate at present (set_id=mia.petersson): failed to open /etc/exim4/eximconfig/accept/auth_logins for linear search: No such file or directory 2020-03-06 22:56:44 auth_server_plain authenticator failed for (1babffbdm3.wellweb.host) [178.34.117.155]:64127 I=[10.100.18.23]:25: 435 Unable to authenticate at present (set_id=mia.petersson): failed to open /etc/exim4/eximconfig/accept/auth_logins for linear search: No such file or directory 2020-03-06 22:56:44 auth_server_login authenticator failed for (1babffbdm3.wellweb.host) [178.34.117.155]:64127 I=[10.100.18.23]:25: 435 Unable to authenticate at present (set_id=mia.petersson): failed to open /etc/exim4/eximconfig/accept/auth_logins for linear search: No such file or directory 2020-03-06 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=178.34.117.155	2020-03-07 09:42:33
186.227.236.234	attack	Unauthorized connection attempt from IP address 186.227.236.234 on Port 445(SMB)	2020-03-07 09:18:58
104.128.63.215	attackspam	Unauthorized connection attempt from IP address 104.128.63.215 on Port 445(SMB)	2020-03-07 09:43:53
78.46.4.225	attackbots	" "	2020-03-07 09:36:42
106.13.41.87	attack	Mar 6 15:22:03 hanapaa sshd\[14034\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.41.87 user=sys Mar 6 15:22:05 hanapaa sshd\[14034\]: Failed password for sys from 106.13.41.87 port 45436 ssh2 Mar 6 15:26:12 hanapaa sshd\[14382\]: Invalid user apache from 106.13.41.87 Mar 6 15:26:12 hanapaa sshd\[14382\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.41.87 Mar 6 15:26:14 hanapaa sshd\[14382\]: Failed password for invalid user apache from 106.13.41.87 port 41428 ssh2	2020-03-07 09:33:46
212.47.244.208	attackbots	Automatic report - XMLRPC Attack	2020-03-07 09:05:34
52.37.1.63	attackspambots	xmlrpc attack	2020-03-07 09:35:17
51.38.71.36	attackspambots	Mar 6 23:14:07 IngegnereFirenze sshd[6281]: Failed password for invalid user surya from 51.38.71.36 port 44670 ssh2 ...	2020-03-07 09:25:53
203.189.206.109	attackbots	Mar 7 00:11:18 l03 sshd[1150]: Invalid user ubuntu from 203.189.206.109 port 36212 ...	2020-03-07 09:09:11
96.9.245.184	attackbotsspam	Mar 6 23:02:31 icecube postfix/smtpd[52327]: NOQUEUE: reject: RCPT from vpsnode24.webstudio40.com[96.9.245.184]: 554 5.7.1 Service unavailable; Client host [96.9.245.184] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=	2020-03-07 09:09:30

Recently Reported IPs

71.6.233.71	52.62.152.189	59.115.147.153	58.221.71.133
113.137.246.241	193.201.224.12	41.188.49.138	200.188.133.90
190.192.204.223	68.183.181.125	46.209.239.91	101.89.145.133
128.199.216.13	88.202.190.135	118.24.19.185	107.170.200.63
92.68.176.254	92.50.59.98	91.121.142.225	71.6.233.228