128.199.148.139

Basic Info

City: unknown

Region: unknown

Country: United Kingdom

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
128.199.148.70	attack	2020-09-26T17:01:15.512890vps-d63064a2 sshd[30773]: Invalid user debian from 128.199.148.70 port 41132 2020-09-26T17:01:17.042131vps-d63064a2 sshd[30773]: Failed password for invalid user debian from 128.199.148.70 port 41132 ssh2 2020-09-26T17:05:46.712638vps-d63064a2 sshd[30835]: Invalid user ubuntu from 128.199.148.70 port 49492 2020-09-26T17:05:46.721175vps-d63064a2 sshd[30835]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.148.70 2020-09-26T17:05:46.712638vps-d63064a2 sshd[30835]: Invalid user ubuntu from 128.199.148.70 port 49492 2020-09-26T17:05:48.112414vps-d63064a2 sshd[30835]: Failed password for invalid user ubuntu from 128.199.148.70 port 49492 ssh2 ...	2020-09-27 03:08:14
128.199.148.70	attack	Sep 26 03:00:45 ny01 sshd[13694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.148.70 Sep 26 03:00:47 ny01 sshd[13694]: Failed password for invalid user yan from 128.199.148.70 port 53036 ssh2 Sep 26 03:05:29 ny01 sshd[14248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.148.70	2020-09-26 19:06:01
128.199.148.70	attackbots	Sep 24 07:44:04 marvibiene sshd[17524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.148.70 Sep 24 07:44:07 marvibiene sshd[17524]: Failed password for invalid user ppldtepe from 128.199.148.70 port 45676 ssh2 Sep 24 07:48:57 marvibiene sshd[17765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.148.70	2020-09-24 13:56:55
128.199.148.70	attackbots	2020-09-23T19:28:28.288598shield sshd\[21850\]: Invalid user user from 128.199.148.70 port 57910 2020-09-23T19:28:28.297818shield sshd\[21850\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.148.70 2020-09-23T19:28:30.125385shield sshd\[21850\]: Failed password for invalid user user from 128.199.148.70 port 57910 ssh2 2020-09-23T19:36:22.595581shield sshd\[22961\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.148.70 user=root 2020-09-23T19:36:24.494247shield sshd\[22961\]: Failed password for root from 128.199.148.70 port 38822 ssh2	2020-09-24 05:25:24
128.199.148.179	attackspambots	AbusiveCrawling	2020-08-25 05:41:30
128.199.148.99	attackbotsspam	Aug 15 18:39:55 abendstille sshd\[8260\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.148.99 user=root Aug 15 18:39:57 abendstille sshd\[8260\]: Failed password for root from 128.199.148.99 port 45266 ssh2 Aug 15 18:44:24 abendstille sshd\[12752\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.148.99 user=root Aug 15 18:44:27 abendstille sshd\[12752\]: Failed password for root from 128.199.148.99 port 55144 ssh2 Aug 15 18:49:06 abendstille sshd\[17071\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.148.99 user=root ...	2020-08-16 01:05:06
128.199.148.99	attackbotsspam	2020-08-13T10:59:45.562879billing sshd[28306]: Failed password for root from 128.199.148.99 port 50486 ssh2 2020-08-13T11:03:58.072739billing sshd[5182]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.148.99 user=root 2020-08-13T11:04:00.677072billing sshd[5182]: Failed password for root from 128.199.148.99 port 57052 ssh2 ...	2020-08-13 13:25:52
128.199.148.99	attackspambots	TCP (SYN) 128.199.148.99:44413 -> port 22148, len 44	2020-08-11 18:33:08
128.199.148.99	attackspambots	SSH Invalid Login	2020-08-08 05:49:41
128.199.148.99	attackbotsspam	TCP (SYN) 128.199.148.99:59356 -> port 5801, len 44	2020-08-08 01:41:26
128.199.148.99	attack	Jul 29 15:11:57 abendstille sshd\[18106\]: Invalid user linshi from 128.199.148.99 Jul 29 15:11:57 abendstille sshd\[18106\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.148.99 Jul 29 15:12:00 abendstille sshd\[18106\]: Failed password for invalid user linshi from 128.199.148.99 port 36760 ssh2 Jul 29 15:16:07 abendstille sshd\[22541\]: Invalid user cgutusa from 128.199.148.99 Jul 29 15:16:07 abendstille sshd\[22541\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.148.99 ...	2020-07-29 22:53:42
128.199.148.99	attack	firewall-block, port(s): 8913/tcp	2020-07-18 20:14:03
128.199.148.99	attackspam	Invalid user postgres from 128.199.148.99 port 34706	2020-07-17 13:09:23
128.199.148.99	attackbots	TCP (SYN) 128.199.148.99:50993 -> port 8152, len 44	2020-07-12 22:06:58
128.199.148.99	attackspambots	invalid login attempt (meichelberger)	2020-07-09 16:50:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 128.199.148.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40052
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;128.199.148.139.		IN	A

;; AUTHORITY SECTION:
.			485	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400

;; Query time: 50 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 04:29:22 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 139.148.199.128.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.148.199.128.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
1.235.192.218	attack	Invalid user contabilidad from 1.235.192.218 port 44068	2020-10-02 20:26:29
103.154.234.241	attackspam	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-10-02 20:44:20
102.37.12.59	attack	sshd: Failed password for invalid user .... from 102.37.12.59 port 1088 ssh2 (6 attempts)	2020-10-02 20:46:17
40.114.197.106	attackbots	2020-10-01T22:44:04.044087mail.broermann.family sshd[8088]: Invalid user www from 40.114.197.106 port 60884 2020-10-01T22:44:04.049233mail.broermann.family sshd[8088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.114.197.106 2020-10-01T22:44:04.044087mail.broermann.family sshd[8088]: Invalid user www from 40.114.197.106 port 60884 2020-10-01T22:44:06.644814mail.broermann.family sshd[8088]: Failed password for invalid user www from 40.114.197.106 port 60884 ssh2 2020-10-01T22:48:17.971000mail.broermann.family sshd[8444]: Invalid user pepe from 40.114.197.106 port 42090 ...	2020-10-02 20:42:25
128.199.95.60	attackbotsspam	Invalid user psql from 128.199.95.60 port 53828	2020-10-02 20:55:01
165.232.44.157	attackspam	Oct 1 17:49:20 r.ca sshd[12455]: Failed password for invalid user user1 from 165.232.44.157 port 39614 ssh2	2020-10-02 20:37:11
183.134.65.197	attackbots	" "	2020-10-02 20:30:04
192.241.235.192	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-10-02 20:52:46
204.93.157.55	attackbots	15 attempts against mh-modsecurity-ban on thorn	2020-10-02 20:32:11
212.70.149.20	attackspambots	Oct 2 14:48:11 srv01 postfix/smtpd\[7806\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 2 14:48:13 srv01 postfix/smtpd\[7805\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 2 14:48:17 srv01 postfix/smtpd\[7758\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 2 14:48:18 srv01 postfix/smtpd\[7756\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 2 14:48:36 srv01 postfix/smtpd\[7759\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-02 20:49:00
183.129.202.6	attack	Blocked by Sophos UTM Network Protection . / / proto=6 . srcport=45746 . dstport=1433 . (3836)	2020-10-02 21:03:29
103.154.234.242	attackspambots	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-10-02 20:56:24
88.214.26.13	attackbotsspam	22 attempts against mh-misbehave-ban on oak	2020-10-02 20:43:05
168.119.107.140	attack	Oct 1 23:35:01 server postfix/smtpd[30134]: NOQUEUE: reject: RCPT from static.140.107.119.168.clients.your-server.de[168.119.107.140]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Oct 1 23:40:13 server postfix/smtpd[30058]: NOQUEUE: reject: RCPT from static.140.107.119.168.clients.your-server.de[168.119.107.140]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Oct 1 23:44:05 server postfix/smtpd[30086]: NOQUEUE: reject: RCPT from static.140.107.119.168.clients.your-server.de[168.119.107.140]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo=	2020-10-02 20:39:02
190.133.210.32	attackbots	Lines containing failures of 190.133.210.32 (max 1000) Oct 1 22:39:29 srv sshd[80140]: Connection closed by 190.133.210.32 port 54713 Oct 1 22:39:33 srv sshd[80142]: Invalid user thostname0nich from 190.133.210.32 port 55051 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=190.133.210.32	2020-10-02 20:33:24

Recently Reported IPs

128.199.148.13	128.199.148.144	128.199.147.71	128.199.148.158
128.199.148.15	128.199.148.216	118.166.192.18	128.199.148.7
128.199.148.45	128.199.148.221	128.199.148.76	128.199.148.87
128.199.148.180	128.199.148.92	128.199.148.89	128.199.148.98
128.199.149.129	128.199.149.136	118.166.192.180	128.199.149.138