139.162.102.199

Basic Info

City: unknown

Region: unknown

Country: Netherlands

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.162.102.46	attackspambots	Unauthorized connection attempt detected from IP address 139.162.102.46 to port 1755 [T]	2020-08-29 20:23:51
139.162.102.46	attackbotsspam	Unauthorized connection attempt detected from IP address 139.162.102.46 to port 1723 [T]	2020-08-16 01:39:57
139.162.102.46	attackbotsspam	port scan and connect, tcp 3128 (squid-http)	2020-07-23 19:32:48
139.162.102.46	attackbotsspam	Unauthorized connection attempt detected from IP address 139.162.102.46 to port 1723 [T]	2020-07-21 23:16:57
139.162.102.46	attackbotsspam	scan r	2020-05-07 19:17:34
139.162.102.46	attackbots	Unauthorized connection attempt detected from IP address 139.162.102.46 to port 3128 [J]	2020-03-03 02:18:58
139.162.102.46	attackbotsspam	TCP port 1723: Scan and connection	2020-02-27 21:11:52
139.162.102.46	attack	TCP port 1755: Scan and connection	2020-01-22 05:24:53
139.162.102.46	attack	Unauthorized connection attempt detected from IP address 139.162.102.46 to port 3128 [J]	2020-01-15 23:52:26
139.162.102.46	attackspam	Unauthorized connection attempt detected from IP address 139.162.102.46 to port 3127	2019-12-30 20:30:17
139.162.102.46	attack	Connection by 139.162.102.46 on port: 3127 got caught by honeypot at 11/8/2019 4:57:41 PM	2019-11-09 03:28:49
139.162.102.17	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-05 02:50:17
139.162.102.46	attackspambots	scan pptp user: vpn, test	2019-09-21 01:11:22

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.162.102.199
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7363
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.162.102.199.		IN	A

;; AUTHORITY SECTION:
.			551	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022701 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 05:38:28 CST 2022
;; MSG SIZE  rcvd: 108

Host info

199.102.162.139.in-addr.arpa domain name pointer li1586-199.members.linode.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
199.102.162.139.in-addr.arpa	name = li1586-199.members.linode.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.111.211.52	attack	Sep 9 08:24:20 root sshd[617]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.111.211.52 ...	2020-09-09 19:32:58
178.128.88.244	attackbots	Invalid user zabbix from 178.128.88.244 port 50734	2020-09-09 19:21:19
45.142.120.53	attack	Sep 9 01:14:14 marvibiene postfix/smtpd[3599]: warning: unknown[45.142.120.53]: SASL LOGIN authentication failed: VXNlcm5hbWU6 Sep 9 02:46:16 marvibiene postfix/smtpd[6854]: warning: unknown[45.142.120.53]: SASL LOGIN authentication failed: VXNlcm5hbWU6	2020-09-09 19:22:54
119.29.205.228	attackspambots	SSH invalid-user multiple login try	2020-09-09 19:57:38
45.142.120.89	attackspam	Sep 9 03:48:20 relay postfix/smtpd\[20418\]: warning: unknown\[45.142.120.89\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 9 03:48:55 relay postfix/smtpd\[28773\]: warning: unknown\[45.142.120.89\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 9 03:49:36 relay postfix/smtpd\[28771\]: warning: unknown\[45.142.120.89\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 9 03:50:15 relay postfix/smtpd\[28771\]: warning: unknown\[45.142.120.89\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 9 03:50:53 relay postfix/smtpd\[22870\]: warning: unknown\[45.142.120.89\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-09 19:24:15
60.175.223.153	attackspam	465/tcp 465/tcp 465/tcp [2020-09-09]3pkt	2020-09-09 19:17:49
201.182.180.31	attackbots	Sep 8 23:54:20 gw1 sshd[29906]: Failed password for root from 201.182.180.31 port 45016 ssh2 Sep 8 23:58:56 gw1 sshd[29953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.182.180.31 ...	2020-09-09 19:38:41
222.186.175.148	attack	Sep 9 13:31:29 server sshd[10681]: Failed none for root from 222.186.175.148 port 45216 ssh2 Sep 9 13:31:32 server sshd[10681]: Failed password for root from 222.186.175.148 port 45216 ssh2 Sep 9 13:31:34 server sshd[10681]: Failed password for root from 222.186.175.148 port 45216 ssh2	2020-09-09 19:36:17
191.240.116.87	attackspam	Sep 3 14:26:12 mail.srvfarm.net postfix/smtpd[2501464]: warning: unknown[191.240.116.87]: SASL PLAIN authentication failed: Sep 3 14:26:13 mail.srvfarm.net postfix/smtpd[2501464]: lost connection after AUTH from unknown[191.240.116.87] Sep 3 14:29:11 mail.srvfarm.net postfix/smtps/smtpd[2486066]: warning: unknown[191.240.116.87]: SASL PLAIN authentication failed: Sep 3 14:29:12 mail.srvfarm.net postfix/smtps/smtpd[2486066]: lost connection after AUTH from unknown[191.240.116.87] Sep 3 14:30:54 mail.srvfarm.net postfix/smtps/smtpd[2507273]: warning: unknown[191.240.116.87]: SASL PLAIN authentication failed:	2020-09-09 19:36:48
20.53.9.27	attackspam	MAIL: User Login Brute Force Attempt	2020-09-09 19:21:57
186.214.191.155	attack	Unauthorized connection attempt from IP address 186.214.191.155 on Port 445(SMB)	2020-09-09 19:54:55
95.172.44.186	attackbots	SPAM	2020-09-09 19:48:18
125.24.7.109	attackbots	mail auth brute force	2020-09-09 19:56:58
203.205.37.233	attack	Sep 8 14:16:25 ny01 sshd[29718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.205.37.233 Sep 8 14:16:27 ny01 sshd[29718]: Failed password for invalid user core from 203.205.37.233 port 57966 ssh2 Sep 8 14:20:50 ny01 sshd[30227]: Failed password for root from 203.205.37.233 port 36120 ssh2	2020-09-09 19:31:13
114.35.3.103	attack	DATE:2020-09-09 03:30:54, IP:114.35.3.103, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-09-09 19:20:39

Recently Reported IPs

139.155.41.218	139.162.103.172	46.44.114.168	139.129.179.213
139.138.139.87	138.68.104.92	138.68.242.59	138.68.105.3
138.68.86.31	138.68.58.53	138.68.212.76	138.68.88.245
138.68.88.122	138.68.52.154	138.68.9.38	138.68.139.50
138.68.66.128	138.68.91.146	138.68.93.188	138.68.96.11