1.199.153.139 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.199.153.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55602
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.199.153.139.			IN	A

;; AUTHORITY SECTION:
.			415	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022400 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 17:49:10 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 139.153.199.1.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

server can't find 1.199.153.139.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
77.247.110.203	attack	\[2019-09-29 14:03:05\] NOTICE\[1948\] chan_sip.c: Registration from '\' failed for '77.247.110.203:56848' - Wrong password \[2019-09-29 14:03:05\] SECURITY\[2006\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-29T14:03:05.793-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="10333333",SessionID="0x7f1e1d0b85d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.203/56848",Challenge="226efa58",ReceivedChallenge="226efa58",ReceivedHash="2356b9f98bdc3946f02685eb4d795fc4" \[2019-09-29 14:03:42\] NOTICE\[1948\] chan_sip.c: Registration from '\' failed for '77.247.110.203:55445' - Wrong password \[2019-09-29 14:03:42\] SECURITY\[2006\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-29T14:03:42.655-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="10444444",SessionID="0x7f1e1d0b85d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77	2019-09-30 02:07:52
222.186.180.17	attackspambots	SSH Brute Force, server-1 sshd[3502]: Failed password for root from 222.186.180.17 port 59750 ssh2	2019-09-30 01:28:41
200.209.174.76	attackbots	2019-09-29T13:48:21.1993421495-001 sshd\[30567\]: Invalid user attack from 200.209.174.76 port 53784 2019-09-29T13:48:21.2024921495-001 sshd\[30567\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.209.174.76 2019-09-29T13:48:22.5674111495-001 sshd\[30567\]: Failed password for invalid user attack from 200.209.174.76 port 53784 ssh2 2019-09-29T13:53:40.2986301495-001 sshd\[31341\]: Invalid user deploy1 from 200.209.174.76 port 43423 2019-09-29T13:53:40.3074731495-001 sshd\[31341\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.209.174.76 2019-09-29T13:53:42.1340641495-001 sshd\[31341\]: Failed password for invalid user deploy1 from 200.209.174.76 port 43423 ssh2 ...	2019-09-30 02:09:27
93.116.91.177	attackspam	port scan and connect, tcp 23 (telnet)	2019-09-30 01:47:58
203.48.246.66	attackbots	Sep 29 13:58:15 markkoudstaal sshd[27725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.48.246.66 Sep 29 13:58:16 markkoudstaal sshd[27725]: Failed password for invalid user p@ssword from 203.48.246.66 port 33922 ssh2 Sep 29 14:03:36 markkoudstaal sshd[28234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.48.246.66	2019-09-30 02:10:14
71.42.189.140	attack	banned by fail2ban	2019-09-30 01:59:21
89.36.222.85	attackspam	2019-09-29T15:45:31.113209lon01.zurich-datacenter.net sshd\[12887\]: Invalid user do from 89.36.222.85 port 48084 2019-09-29T15:45:31.119291lon01.zurich-datacenter.net sshd\[12887\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.36.222.85 2019-09-29T15:45:33.609894lon01.zurich-datacenter.net sshd\[12887\]: Failed password for invalid user do from 89.36.222.85 port 48084 ssh2 2019-09-29T15:49:53.872725lon01.zurich-datacenter.net sshd\[12968\]: Invalid user unit from 89.36.222.85 port 59928 2019-09-29T15:49:53.879576lon01.zurich-datacenter.net sshd\[12968\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.36.222.85 ...	2019-09-30 01:36:53
114.38.41.238	attack	Port scan	2019-09-30 02:13:35
171.6.190.178	attack	Unauthorized connection attempt from IP address 171.6.190.178 on Port 445(SMB)	2019-09-30 02:06:21
1.24.64.180	attackspam	(Sep 29) LEN=40 TTL=49 ID=57694 TCP DPT=8080 WINDOW=12213 SYN (Sep 29) LEN=40 TTL=49 ID=47620 TCP DPT=8080 WINDOW=12213 SYN (Sep 28) LEN=40 TTL=49 ID=20088 TCP DPT=8080 WINDOW=26287 SYN (Sep 28) LEN=40 TTL=49 ID=20221 TCP DPT=8080 WINDOW=32447 SYN (Sep 28) LEN=40 TTL=49 ID=62037 TCP DPT=8080 WINDOW=12213 SYN (Sep 27) LEN=40 TTL=49 ID=47587 TCP DPT=8080 WINDOW=26287 SYN (Sep 27) LEN=40 TTL=49 ID=25589 TCP DPT=8080 WINDOW=32447 SYN (Sep 27) LEN=40 TTL=49 ID=47961 TCP DPT=8080 WINDOW=26287 SYN (Sep 27) LEN=40 TTL=49 ID=36854 TCP DPT=8080 WINDOW=12213 SYN (Sep 26) LEN=40 TTL=49 ID=43286 TCP DPT=8080 WINDOW=26287 SYN (Sep 26) LEN=40 TTL=49 ID=43234 TCP DPT=8080 WINDOW=32447 SYN (Sep 26) LEN=40 TTL=49 ID=18421 TCP DPT=8080 WINDOW=12213 SYN (Sep 26) LEN=40 TTL=49 ID=60487 TCP DPT=8080 WINDOW=26287 SYN (Sep 26) LEN=40 TTL=49 ID=37120 TCP DPT=8080 WINDOW=32447 SYN (Sep 25) LEN=40 TTL=49 ID=49499 TCP DPT=8080 WINDOW=32447 SYN	2019-09-30 01:44:23
159.203.201.231	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/159.203.201.231/ NL - 1H : (365) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : NL NAME ASN : ASN14061 IP : 159.203.201.231 CIDR : 159.203.192.0/20 PREFIX COUNT : 490 UNIQUE IP COUNT : 1963008 WYKRYTE ATAKI Z ASN14061 : 1H - 2 3H - 9 6H - 18 12H - 33 24H - 66 INFO : SYN Flood DDoS Attack Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery	2019-09-30 01:51:31
51.15.58.201	attackbots	2019-09-29T14:44:12.038888abusebot-7.cloudsearch.cf sshd\[14773\]: Invalid user magalie from 51.15.58.201 port 52752	2019-09-30 01:34:34
112.25.142.28	attackbots	Unauthorised access (Sep 29) SRC=112.25.142.28 LEN=40 TOS=0x04 TTL=47 ID=27355 TCP DPT=8080 WINDOW=37356 SYN Unauthorised access (Sep 29) SRC=112.25.142.28 LEN=40 TOS=0x04 TTL=49 ID=36844 TCP DPT=8080 WINDOW=58780 SYN Unauthorised access (Sep 28) SRC=112.25.142.28 LEN=40 TOS=0x04 TTL=47 ID=26401 TCP DPT=8080 WINDOW=58780 SYN Unauthorised access (Sep 27) SRC=112.25.142.28 LEN=40 TOS=0x04 TTL=47 ID=9019 TCP DPT=8080 WINDOW=37356 SYN	2019-09-30 01:41:51
104.192.109.140	attackspam	Sep 29 08:10:03 localhost kernel: [3496822.005490] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=104.192.109.140 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=54759 PROTO=TCP SPT=44617 DPT=7676 SEQ=3966675045 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 29 10:24:08 localhost kernel: [3504867.049597] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=104.192.109.140 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=2403 PROTO=TCP SPT=44617 DPT=106 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 29 10:24:08 localhost kernel: [3504867.049626] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=104.192.109.140 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=2403 PROTO=TCP SPT=44617 DPT=106 SEQ=3535038839 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0	2019-09-30 01:30:51
113.172.115.210	attackspambots	445/tcp [2019-09-29]1pkt	2019-09-30 01:58:33

Recently Reported IPs

1.199.153.115	1.199.153.143	1.199.153.145	1.199.153.16
123.5.14.239	1.199.153.197	1.199.153.201	1.199.153.231
1.199.153.245	1.199.153.45	160.29.91.251	1.199.153.67
1.199.153.70	1.199.153.98	1.199.154.111	1.199.154.120
1.199.154.131	1.199.154.153	1.199.154.16	1.199.154.181