219.140.116.73

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
219.140.116.221	attack	Unauthorized connection attempt detected from IP address 219.140.116.221 to port 8123 [T]	2020-01-29 08:06:30
219.140.116.234	attackspam	Unauthorized connection attempt detected from IP address 219.140.116.234 to port 8090	2020-01-01 21:16:03
219.140.116.205	attackbotsspam	Unauthorized connection attempt detected from IP address 219.140.116.205 to port 8081	2019-12-31 06:18:06
219.140.116.108	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5413990029bed386 \| WAF_Rule_ID: 1112825 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Mobile Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 07:03:48
219.140.116.137	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5410f178dd34e4c8 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.084743666 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:36:46
219.140.116.97	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 54124d47bdbce7bd \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/4.038533357 Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1) QQBrowser/6.0 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 00:52:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 219.140.116.73
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2389
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;219.140.116.73.			IN	A

;; AUTHORITY SECTION:
.			459	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 08:18:24 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 73.116.140.219.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 73.116.140.219.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
162.243.144.142	attack	firewall-block, port(s): 27019/tcp	2019-08-23 10:54:25
119.28.73.77	attackbots	Aug 23 07:01:51 itv-usvr-02 sshd[32232]: Invalid user ubuntu from 119.28.73.77 port 35814 Aug 23 07:01:51 itv-usvr-02 sshd[32232]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.73.77 Aug 23 07:01:51 itv-usvr-02 sshd[32232]: Invalid user ubuntu from 119.28.73.77 port 35814 Aug 23 07:01:53 itv-usvr-02 sshd[32232]: Failed password for invalid user ubuntu from 119.28.73.77 port 35814 ssh2 Aug 23 07:06:19 itv-usvr-02 sshd[32278]: Invalid user dani from 119.28.73.77 port 49128	2019-08-23 10:03:07
114.108.181.165	attackspambots	Aug 23 00:13:09 bouncer sshd\[13836\]: Invalid user ttest from 114.108.181.165 port 57518 Aug 23 00:13:09 bouncer sshd\[13836\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.108.181.165 Aug 23 00:13:11 bouncer sshd\[13836\]: Failed password for invalid user ttest from 114.108.181.165 port 57518 ssh2 ...	2019-08-23 10:31:53
162.220.166.114	attack	Splunk® : port scan detected: Aug 22 22:05:20 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:64:c3:d6:0b:ef:f0:08:00 SRC=162.220.166.114 DST=104.248.11.191 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=54321 PROTO=TCP SPT=48063 DPT=8088 WINDOW=65535 RES=0x00 SYN URGP=0	2019-08-23 10:28:28
152.136.95.118	attack	Aug 23 03:11:03 mail sshd\[25996\]: Invalid user ts3srv from 152.136.95.118 port 37238 Aug 23 03:11:03 mail sshd\[25996\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.95.118 ...	2019-08-23 10:12:03
218.92.0.200	attackbots	2019-08-23T02:15:21.913937abusebot-6.cloudsearch.cf sshd\[28807\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.200 user=root	2019-08-23 10:46:37
49.234.74.45	attack	Aug 23 05:50:27 server sshd\[2881\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.74.45 user=backup Aug 23 05:50:29 server sshd\[2881\]: Failed password for backup from 49.234.74.45 port 37350 ssh2 Aug 23 05:55:21 server sshd\[24596\]: Invalid user support from 49.234.74.45 port 53854 Aug 23 05:55:21 server sshd\[24596\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.74.45 Aug 23 05:55:22 server sshd\[24596\]: Failed password for invalid user support from 49.234.74.45 port 53854 ssh2	2019-08-23 10:56:30
49.88.112.66	attackbotsspam	Aug 22 16:46:41 lcprod sshd\[2498\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.66 user=root Aug 22 16:46:43 lcprod sshd\[2498\]: Failed password for root from 49.88.112.66 port 27927 ssh2 Aug 22 16:47:41 lcprod sshd\[2581\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.66 user=root Aug 22 16:47:44 lcprod sshd\[2581\]: Failed password for root from 49.88.112.66 port 55433 ssh2 Aug 22 16:48:40 lcprod sshd\[2660\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.66 user=root	2019-08-23 10:48:50
132.232.94.119	attack	Aug 23 02:09:02 MK-Soft-VM7 sshd\[25775\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.94.119 user=root Aug 23 02:09:04 MK-Soft-VM7 sshd\[25775\]: Failed password for root from 132.232.94.119 port 58698 ssh2 Aug 23 02:14:23 MK-Soft-VM7 sshd\[25922\]: Invalid user hg from 132.232.94.119 port 46944 ...	2019-08-23 10:26:40
182.180.163.223	attack	scan r	2019-08-23 10:57:01
132.232.1.62	attackspambots	Aug 23 00:39:15 hb sshd\[1211\]: Invalid user ericsson from 132.232.1.62 Aug 23 00:39:15 hb sshd\[1211\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.1.62 Aug 23 00:39:18 hb sshd\[1211\]: Failed password for invalid user ericsson from 132.232.1.62 port 35682 ssh2 Aug 23 00:43:20 hb sshd\[1578\]: Invalid user demo from 132.232.1.62 Aug 23 00:43:20 hb sshd\[1578\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.1.62	2019-08-23 10:52:17
104.131.111.64	attack	2019-08-22T20:01:57.077499abusebot.cloudsearch.cf sshd\[22323\]: Invalid user dao from 104.131.111.64 port 32886	2019-08-23 10:22:15
84.28.76.163	attack	$f2bV_matches	2019-08-23 10:51:27
222.186.52.124	attack	Aug 23 04:31:33 legacy sshd[19278]: Failed password for root from 222.186.52.124 port 58972 ssh2 Aug 23 04:31:42 legacy sshd[19281]: Failed password for root from 222.186.52.124 port 49220 ssh2 ...	2019-08-23 10:44:19
188.17.152.30	attackspambots	Aug2221:20:38server2dovecot:imap-login:Disconnected$authfailed\,1attemptsin6secs$:user=\\,method=PLAIN\,rip=177.159.122.251\,lip=81.17.25.230\,TLS:Connectionclosed\,session=\Aug2221:12:51server2dovecot:imap-login:Disconnected$authfailed\,1attemptsin6secs$:user=\\,method=PLAIN\,rip=182.140.133.153\,lip=81.17.25.230\,TLS\,session=\Aug2220:48:43server2dovecot:imap-login:Disconnected$authfailed\,1attemptsin6secs$:user=\\,method=PLAIN\,rip=58.17.221.4\,lip=81.17.25.230\,TLS\,session=\Aug2220:56:34server2dovecot:imap-login:Disconnected$authfailed\,1attemptsin8secs$:user=\\,method=PLAIN\,rip=218.28.234.53\,lip=81.17.25.230\,TLS:Connectionclosed\,session=\Aug2220:50:29server2dovecot:imap-login:Disconnected$authfailed\,1attemptsin7secs$:user=\\,method=PLAIN\,rip=58.17.221.4\,lip=81.17.25.230\,TLS:Connectionclos	2019-08-23 10:31:14

Recently Reported IPs

219.140.117.185	219.140.117.136	219.140.118.110	219.140.116.126
219.140.116.27	219.140.116.203	219.140.118.24	219.140.118.116
219.140.118.115	219.140.118.87	219.140.119.126	219.140.119.140
219.140.118.43	219.140.119.247	219.140.119.37	219.140.119.194
219.140.119.252	219.141.32.58	219.141.34.108	219.143.174.213