219.140.119.148

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
219.140.119.44	attackspambots	219.140.119.44 - - \[31/Jan/2020:10:43:47 +0200\] "GET http://www.rfa.org/english/ HTTP/1.1" 404 206 "-" "Mozilla/5.0 \(Windows NT 10.0\; WOW64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/45.0.2454.101 Safari/537.36"	2020-01-31 22:39:59
219.140.119.231	attackbots	Unauthorized connection attempt detected from IP address 219.140.119.231 to port 8082 [J]	2020-01-29 07:49:39
219.140.119.139	attack	Unauthorized connection attempt detected from IP address 219.140.119.139 to port 80 [J]	2020-01-14 15:03:45
219.140.119.159	attackspambots	Unauthorized connection attempt detected from IP address 219.140.119.159 to port 2053	2019-12-31 06:17:35
219.140.119.132	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54315a9eca57e82d \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.096783921 Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 05:31:12
219.140.119.250	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 54160cf68976996b \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: blog.skk.moe \| User-Agent: Mozilla/4.047745454 Mozilla/4.0 (compatible; MSIE 5.00; Windows 98) \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:06:05

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 219.140.119.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43073
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;219.140.119.148.		IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 03:01:17 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 148.119.140.219.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 148.119.140.219.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
197.51.201.16	attack	Automatic report - Web App Attack	2019-06-22 19:45:53
113.88.192.171	attack	Port 1433 Scan	2019-06-22 19:57:58
40.78.86.164	attackbotsspam	Jun 22 06:22:28 bouncer sshd\[31818\]: Invalid user support from 40.78.86.164 port 39737 Jun 22 06:22:28 bouncer sshd\[31818\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.78.86.164 Jun 22 06:22:29 bouncer sshd\[31818\]: Failed password for invalid user support from 40.78.86.164 port 39737 ssh2 ...	2019-06-22 19:23:49
92.118.37.84	attackbotsspam	Jun 22 13:16:02 h2177944 kernel: \[2546147.055823\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.84 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=6291 PROTO=TCP SPT=41610 DPT=20426 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 22 13:18:47 h2177944 kernel: \[2546311.576971\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.84 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=7855 PROTO=TCP SPT=41610 DPT=6246 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 22 13:21:14 h2177944 kernel: \[2546459.010624\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.84 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=62977 PROTO=TCP SPT=41610 DPT=59414 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 22 13:30:13 h2177944 kernel: \[2546998.292254\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.84 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=10253 PROTO=TCP SPT=41610 DPT=5704 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 22 13:30:47 h2177944 kernel: \[2547031.546221\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.84 DST=85.214.117.9 LEN=	2019-06-22 19:44:28
128.106.251.174	attackspam	Telnetd brute force attack detected by fail2ban	2019-06-22 19:23:15
191.53.116.31	attack	SMTP-sasl brute force ...	2019-06-22 19:33:59
87.26.161.230	attackspam	400 BAD REQUEST	2019-06-22 20:10:13
2.113.91.186	attack	server 2	2019-06-22 19:41:14
197.61.158.45	attackspam	Jun 22 06:11:59 srv1 sshd[27615]: Address 197.61.158.45 maps to host-197.61.158.45.tedata.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jun 22 06:11:59 srv1 sshd[27615]: Invalid user admin from 197.61.158.45 Jun 22 06:11:59 srv1 sshd[27615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.61.158.45 Jun 22 06:12:02 srv1 sshd[27615]: Failed password for invalid user admin from 197.61.158.45 port 56029 ssh2 Jun 22 06:12:02 srv1 sshd[27616]: Connection closed by 197.61.158.45 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=197.61.158.45	2019-06-22 19:24:59
185.36.81.173	attackspambots	Jun 22 11:27:08 postfix/smtpd: warning: unknown[185.36.81.173]: SASL LOGIN authentication failed	2019-06-22 19:47:42
103.91.77.208	attack	port scan and connect, tcp 23 (telnet)	2019-06-22 20:03:55
114.215.124.166	attack	Jun 22 06:06:21 mxgate1 postfix/postscreen[9843]: CONNECT from [114.215.124.166]:53588 to [176.31.12.44]:25 Jun 22 06:06:21 mxgate1 postfix/dnsblog[9846]: addr 114.215.124.166 listed by domain zen.spamhaus.org as 127.0.0.3 Jun 22 06:06:21 mxgate1 postfix/dnsblog[9846]: addr 114.215.124.166 listed by domain zen.spamhaus.org as 127.0.0.4 Jun 22 06:06:21 mxgate1 postfix/dnsblog[9845]: addr 114.215.124.166 listed by domain bl.spamcop.net as 127.0.0.2 Jun 22 06:06:21 mxgate1 postfix/dnsblog[9848]: addr 114.215.124.166 listed by domain cbl.abuseat.org as 127.0.0.2 Jun 22 06:06:21 mxgate1 postfix/dnsblog[9844]: addr 114.215.124.166 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Jun 22 06:06:21 mxgate1 postfix/dnsblog[9847]: addr 114.215.124.166 listed by domain b.barracudacentral.org as 127.0.0.2 Jun 22 06:06:27 mxgate1 postfix/postscreen[9843]: DNSBL rank 6 for [114.215.124.166]:53588 Jun 22 06:06:37 mxgate1 postfix/postscreen[9843]: NOQUEUE: reject: RCPT from [114.215.124........ -------------------------------	2019-06-22 19:20:48
177.74.182.17	attackspambots	SMTP-sasl brute force ...	2019-06-22 19:46:26
111.26.198.30	attack	Brute force attempt	2019-06-22 19:19:33
182.16.156.65	attack	Hit on /wp-login.php	2019-06-22 19:28:13

Recently Reported IPs

217.61.136.91	113.190.42.52	36.184.64.32	106.87.7.114
39.182.235.212	139.198.118.142	175.168.76.235	82.127.180.168
111.12.121.243	1.84.249.221	181.126.100.18	219.68.172.86
187.178.238.88	189.208.149.100	103.235.34.166	167.99.86.244
177.39.118.65	13.236.52.13	63.147.53.28	175.107.0.160