107.148.214.139

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Peg Tech Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	23/tcp [2019-06-27]1pkt	2019-06-27 21:43:47

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 107.148.214.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31253
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;107.148.214.139.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 27 21:43:37 CST 2019
;; MSG SIZE  rcvd: 119

Host info

139.214.148.107.in-addr.arpa domain name pointer m139.gksend003.com.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
139.214.148.107.in-addr.arpa	name = m139.gksend003.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
54.38.183.177	attackbotsspam	2019-10-03T10:20:49.489584shield sshd\[19258\]: Invalid user maxreg from 54.38.183.177 port 43650 2019-10-03T10:20:49.494259shield sshd\[19258\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.ip-54-38-183.eu 2019-10-03T10:20:51.418649shield sshd\[19258\]: Failed password for invalid user maxreg from 54.38.183.177 port 43650 ssh2 2019-10-03T10:24:04.656018shield sshd\[19885\]: Invalid user tecnici from 54.38.183.177 port 46490 2019-10-03T10:24:04.660485shield sshd\[19885\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.ip-54-38-183.eu	2019-10-03 18:28:03
104.131.0.18	attackbotsspam	blogonese.net 104.131.0.18 \[03/Oct/2019:10:06:02 +0200\] "POST /wp-login.php HTTP/1.1" 200 5771 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" blogonese.net 104.131.0.18 \[03/Oct/2019:10:06:08 +0200\] "POST /wp-login.php HTTP/1.1" 200 5731 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-10-03 18:31:28
95.31.13.106	attackspam	postfix (unknown user, SPF fail or relay access denied)	2019-10-03 18:26:46
91.222.236.177	attackspam	B: Magento admin pass test (wrong country)	2019-10-03 18:12:31
208.187.166.179	attackspambots	Sep 30 19:18:41 srv1 postfix/smtpd[16554]: connect from placid.onvacationnow.com[208.187.166.179] Sep x@x Sep 30 19:18:46 srv1 postfix/smtpd[16554]: disconnect from placid.onvacationnow.com[208.187.166.179] Sep 30 19:18:48 srv1 postfix/smtpd[16092]: connect from placid.onvacationnow.com[208.187.166.179] Sep x@x Sep 30 19:18:54 srv1 postfix/smtpd[16092]: disconnect from placid.onvacationnow.com[208.187.166.179] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=208.187.166.179	2019-10-03 18:29:55
134.209.97.30	attack	2019-09-22 23:36:50,205 fail2ban.actions [818]: NOTICE [sshd] Ban 134.209.97.30 2019-09-23 02:42:41,521 fail2ban.actions [818]: NOTICE [sshd] Ban 134.209.97.30 2019-09-23 05:49:13,704 fail2ban.actions [818]: NOTICE [sshd] Ban 134.209.97.30 ...	2019-10-03 18:29:17
195.161.41.174	attackspambots	Oct 3 08:19:11 www sshd\[212771\]: Invalid user frederica from 195.161.41.174 Oct 3 08:19:11 www sshd\[212771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.161.41.174 Oct 3 08:19:13 www sshd\[212771\]: Failed password for invalid user frederica from 195.161.41.174 port 43024 ssh2 ...	2019-10-03 18:15:08
222.186.30.152	attackbotsspam	2019-10-03T17:34:11.524715enmeeting.mahidol.ac.th sshd\[20092\]: User root from 222.186.30.152 not allowed because not listed in AllowUsers 2019-10-03T17:34:11.881914enmeeting.mahidol.ac.th sshd\[20092\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.152 user=root 2019-10-03T17:34:14.563074enmeeting.mahidol.ac.th sshd\[20092\]: Failed password for invalid user root from 222.186.30.152 port 18555 ssh2 ...	2019-10-03 18:38:22
142.93.155.194	attackspam	Oct 3 08:08:35 pkdns2 sshd\[23404\]: Invalid user amavis from 142.93.155.194Oct 3 08:08:38 pkdns2 sshd\[23404\]: Failed password for invalid user amavis from 142.93.155.194 port 35188 ssh2Oct 3 08:12:19 pkdns2 sshd\[23601\]: Invalid user jd from 142.93.155.194Oct 3 08:12:21 pkdns2 sshd\[23601\]: Failed password for invalid user jd from 142.93.155.194 port 47300 ssh2Oct 3 08:16:11 pkdns2 sshd\[23791\]: Invalid user ariaan from 142.93.155.194Oct 3 08:16:12 pkdns2 sshd\[23791\]: Failed password for invalid user ariaan from 142.93.155.194 port 59404 ssh2 ...	2019-10-03 18:19:53
150.95.139.19	attackspam	Oct 3 10:30:46 SilenceServices sshd[10728]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.95.139.19 Oct 3 10:30:49 SilenceServices sshd[10728]: Failed password for invalid user test from 150.95.139.19 port 56858 ssh2 Oct 3 10:34:41 SilenceServices sshd[11750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.95.139.19	2019-10-03 18:22:31
110.231.55.13	attackspambots	(Oct 3) LEN=40 TTL=48 ID=15935 TCP DPT=8080 WINDOW=53484 SYN (Oct 3) LEN=40 TTL=48 ID=62817 TCP DPT=8080 WINDOW=40474 SYN (Oct 3) LEN=40 TTL=48 ID=57018 TCP DPT=8080 WINDOW=1910 SYN (Oct 2) LEN=40 TTL=48 ID=31286 TCP DPT=8080 WINDOW=61031 SYN (Oct 2) LEN=40 TTL=48 ID=60352 TCP DPT=8080 WINDOW=38175 SYN (Oct 2) LEN=40 TTL=48 ID=7015 TCP DPT=8080 WINDOW=32487 SYN (Oct 1) LEN=40 TTL=48 ID=44946 TCP DPT=8080 WINDOW=53484 SYN (Oct 1) LEN=40 TTL=48 ID=62968 TCP DPT=8080 WINDOW=42274 SYN (Oct 1) LEN=40 TTL=48 ID=47442 TCP DPT=8080 WINDOW=9945 SYN (Oct 1) LEN=40 TTL=48 ID=30628 TCP DPT=8080 WINDOW=64257 SYN (Sep 30) LEN=40 TTL=48 ID=63843 TCP DPT=8080 WINDOW=9945 SYN (Sep 30) LEN=40 TTL=48 ID=448 TCP DPT=8080 WINDOW=9945 SYN (Sep 30) LEN=40 TTL=48 ID=29286 TCP DPT=8080 WINDOW=9945 SYN (Sep 30) LEN=40 TTL=48 ID=9272 TCP DPT=8080 WINDOW=64257 SYN (Sep 30) LEN=40 TTL=48 ID=24437 TCP DPT=8080 WINDOW=64257 SYN	2019-10-03 18:30:46
162.241.132.130	attack	Fail2Ban - SSH Bruteforce Attempt	2019-10-03 18:22:06
152.247.28.150	attackspambots	Oct 2 23:52:52 TORMINT sshd\[25587\]: Invalid user admin from 152.247.28.150 Oct 2 23:52:52 TORMINT sshd\[25587\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.247.28.150 Oct 2 23:52:55 TORMINT sshd\[25587\]: Failed password for invalid user admin from 152.247.28.150 port 11760 ssh2 ...	2019-10-03 18:18:45
149.129.252.83	attackspambots	2019-10-03T05:14:44.946654abusebot-4.cloudsearch.cf sshd\[21161\]: Invalid user luma from 149.129.252.83 port 58428	2019-10-03 18:33:34
182.61.11.3	attackspam	Oct 3 00:33:12 hpm sshd\[17649\]: Invalid user teamspeak3bot from 182.61.11.3 Oct 3 00:33:12 hpm sshd\[17649\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.11.3 Oct 3 00:33:13 hpm sshd\[17649\]: Failed password for invalid user teamspeak3bot from 182.61.11.3 port 36432 ssh2 Oct 3 00:38:15 hpm sshd\[18102\]: Invalid user pos from 182.61.11.3 Oct 3 00:38:15 hpm sshd\[18102\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.11.3	2019-10-03 18:48:33

Recently Reported IPs

202.83.43.209	187.109.10.78	94.90.3.153	96.230.193.29
222.209.22.240	61.176.240.174	190.144.88.76	1.169.166.52
184.168.152.178	187.142.132.94	175.107.201.113	122.226.178.59
189.78.83.55	37.1.218.50	77.104.76.218	1.52.126.94
118.165.110.190	201.88.162.27	112.213.122.16	139.28.218.137