139.5.253.33 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: India

Internet Service Provider: Excitel

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 139.5.253.33 to port 1433	2020-01-02 20:55:27

Comments on same subnet:

IP	Type	Details	Datetime
139.5.253.131	attackspam	Attempts against non-existent wp-login	2020-10-07 06:27:20
139.5.253.131	attackspambots	Attempts against non-existent wp-login	2020-10-06 22:43:55
139.5.253.131	attackbots	Port Scan: TCP/443	2020-10-06 14:29:08
139.5.253.245	attack	Looking for resource vulnerabilities	2019-10-19 06:13:15

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.5.253.33
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7786
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.5.253.33.			IN	A

;; AUTHORITY SECTION:
.			10800	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010200 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 100.100.2.136#53(100.100.2.136)
;; WHEN: Thu Jan 02 21:05:08 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 33.253.5.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 33.253.5.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
92.118.37.83	attackbots	Mar 5 20:08:53 debian-2gb-nbg1-2 kernel: \[5694501.757693\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=92.118.37.83 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=634 PROTO=TCP SPT=52895 DPT=40059 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-06 03:22:52
197.230.100.106	attack	Unauthorized connection attempt from IP address 197.230.100.106 on Port 445(SMB)	2020-03-06 03:24:55
61.191.98.59	attackspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-06 03:10:57
104.248.37.196	attack	SIP/5060 Probe, BF, Hack -	2020-03-06 03:28:03
51.15.46.184	attackbotsspam	Invalid user cpanel from 51.15.46.184 port 45154	2020-03-06 03:18:58
106.12.198.175	attackspam	fail2ban	2020-03-06 02:58:54
187.84.60.43	attackbotsspam	scan z	2020-03-06 03:25:49
14.98.58.186	attack	Honeypot attack, port: 445, PTR: static-186.58.98.14-tataidc.co.in.	2020-03-06 02:57:46
163.172.57.247	attack	Feb 14 01:20:26 odroid64 sshd\[4913\]: User root from 163.172.57.247 not allowed because not listed in AllowUsers Feb 14 01:20:26 odroid64 sshd\[4913\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.57.247 user=root ...	2020-03-06 03:05:43
139.59.180.53	attack	Mar 5 08:45:47 php1 sshd\[16143\]: Invalid user test from 139.59.180.53 Mar 5 08:45:47 php1 sshd\[16143\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.180.53 Mar 5 08:45:49 php1 sshd\[16143\]: Failed password for invalid user test from 139.59.180.53 port 55908 ssh2 Mar 5 08:49:21 php1 sshd\[16418\]: Invalid user www from 139.59.180.53 Mar 5 08:49:21 php1 sshd\[16418\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.180.53	2020-03-06 03:10:06
222.186.175.220	attackbotsspam	Mar 5 20:05:56 vps647732 sshd[2504]: Failed password for root from 222.186.175.220 port 58874 ssh2 Mar 5 20:06:00 vps647732 sshd[2504]: Failed password for root from 222.186.175.220 port 58874 ssh2 ...	2020-03-06 03:08:16
173.8.39.117	attackspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-06 02:56:29
49.232.35.132	attack	2020-03-05T19:16:44.835919shield sshd\[29041\]: Invalid user alex from 49.232.35.132 port 40910 2020-03-05T19:16:44.844344shield sshd\[29041\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.35.132 2020-03-05T19:16:47.220254shield sshd\[29041\]: Failed password for invalid user alex from 49.232.35.132 port 40910 ssh2 2020-03-05T19:22:46.890445shield sshd\[29895\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.35.132 user=root 2020-03-05T19:22:49.296318shield sshd\[29895\]: Failed password for root from 49.232.35.132 port 44404 ssh2	2020-03-06 03:27:08
80.15.73.201	attackbotsspam	Unauthorized connection attempt from IP address 80.15.73.201 on Port 445(SMB)	2020-03-06 03:14:11
121.23.176.12	attackbotsspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-06 03:21:18

Recently Reported IPs

242.148.184.77	173.227.32.12	113.98.31.76	42.117.24.21
179.143.143.38	83.115.13.10	240.148.204.110	42.113.95.121
56.220.93.72	172.88.126.148	68.13.162.144	1.53.242.65
44.29.143.181	106.109.69.68	2.99.61.105	39.116.198.231
217.97.17.40	218.108.36.183	81.129.0.23	85.51.186.19