139.162.14.9 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Netherlands

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.162.147.137	attack	Unauthorized connection attempt detected from IP address 139.162.147.137 to port 139	2020-10-12 06:11:53
139.162.147.137	attackspam	Unauthorized connection attempt detected from IP address 139.162.147.137 to port 139	2020-10-11 22:21:03
139.162.147.137	attackspambots	Use Brute-Force	2020-10-11 14:17:25
139.162.147.137	attack	Use Brute-Force	2020-10-11 07:40:30
139.162.146.148	attackbots	UDP 139.162.146.148:37702 -> port 53, len 59	2020-09-21 01:46:43
139.162.146.148	attack	UDP 139.162.146.148:51121 -> port 53, len 59	2020-09-20 17:45:34
139.162.148.195	attackspambots	Lines containing failures of 139.162.148.195 May 15 16:55:33 shared03 sshd[9416]: Invalid user watanabe from 139.162.148.195 port 55874 May 15 16:55:33 shared03 sshd[9416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.162.148.195 May 15 16:55:36 shared03 sshd[9416]: Failed password for invalid user watanabe from 139.162.148.195 port 55874 ssh2 May 15 16:55:36 shared03 sshd[9416]: Received disconnect from 139.162.148.195 port 55874:11: Bye Bye [preauth] May 15 16:55:36 shared03 sshd[9416]: Disconnected from invalid user watanabe 139.162.148.195 port 55874 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=139.162.148.195	2020-05-15 23:21:41
139.162.144.244	attackbotsspam	Unauthorized connection attempt detected from IP address 139.162.144.244 to port 102 [J]	2020-01-31 00:40:10
139.162.144.113	attackspambots	spam	2020-01-28 15:28:31
139.162.144.15	attackbots	HTTP/80/443 Probe, BF, WP, Hack -	2019-12-26 04:06:20
139.162.144.244	attackbots	Honeypot hit.	2019-09-03 05:12:49
139.162.146.15	attackbots	GET /api/v1/pods HTTP/1.1	2019-07-28 16:15:52

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.162.14.9
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39148
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.162.14.9.			IN	A

;; AUTHORITY SECTION:
.			482	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 07:07:34 CST 2022
;; MSG SIZE  rcvd: 105

Host info

9.14.162.139.in-addr.arpa domain name pointer 139-162-14-9.ip.linodeusercontent.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
9.14.162.139.in-addr.arpa	name = 139-162-14-9.ip.linodeusercontent.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.200.39.9	attack	firewall-block, port(s): 22/tcp	2019-07-05 19:26:56
60.174.95.244	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-05 19:38:50
182.93.48.19	attack	Jul 5 08:11:49 server2 sshd[5514]: Address 182.93.48.19 maps to n18293z48l19.static.ctmip.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jul 5 08:11:49 server2 sshd[5514]: Invalid user xxxxxxxnetworks from 182.93.48.19 Jul 5 08:11:49 server2 sshd[5514]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.93.48.19 Jul 5 08:11:51 server2 sshd[5514]: Failed password for invalid user xxxxxxxnetworks from 182.93.48.19 port 42618 ssh2 Jul 5 08:11:51 server2 sshd[5514]: Received disconnect from 182.93.48.19: 11: Bye Bye [preauth] Jul 5 08:14:25 server2 sshd[5694]: Address 182.93.48.19 maps to n18293z48l19.static.ctmip.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jul 5 08:14:25 server2 sshd[5694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.93.48.19 user=r.r Jul 5 08:14:27 server2 sshd[5694]: Failed password for r.r from 1........ -------------------------------	2019-07-05 19:51:02
5.189.182.20	attackspambots	Scanning and Vuln Attempts	2019-07-05 19:55:27
104.54.186.1	attackbotsspam	2019-07-04T19:08:10.992228stt-1.[munged] kernel: [6313313.952223] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:97:36:58:84:78:ac:57:aa:c1:08:00 SRC=104.54.186.1 DST=[mungedIP1] LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=26439 PROTO=TCP SPT=3395 DPT=37215 WINDOW=5464 RES=0x00 SYN URGP=0 2019-07-05T03:47:36.888699stt-1.[munged] kernel: [6344479.752722] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:97:36:58:84:78:ac:57:aa:c1:08:00 SRC=104.54.186.1 DST=[mungedIP1] LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=50023 PROTO=TCP SPT=3395 DPT=37215 WINDOW=5464 RES=0x00 SYN URGP=0 2019-07-05T04:00:23.751282stt-1.[munged] kernel: [6345246.613031] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:97:36:58:84:78:ac:57:aa:c1:08:00 SRC=104.54.186.1 DST=[mungedIP1] LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=39818 PROTO=TCP SPT=3395 DPT=37215 WINDOW=5464 RES=0x00 SYN URGP=0	2019-07-05 19:28:29
149.56.76.252	attack	Time: Fri Jul 5 03:42:59 2019 -0400 IP: 149.56.76.252 (CA/Canada/ip252.ip-149-56-76.net) Failures: 30 (smtpauth) Interval: 3600 seconds Blocked: Permanent Block	2019-07-05 19:42:17
49.204.226.244	attack	Unauthorized connection attempt from IP address 49.204.226.244 on Port 445(SMB)	2019-07-05 19:30:52
165.225.104.124	attackspam	Unauthorized connection attempt from IP address 165.225.104.124 on Port 445(SMB)	2019-07-05 19:35:39
62.94.208.113	attack	DATE:2019-07-05 10:36:13, IP:62.94.208.113, PORT:ssh brute force auth on SSH service (patata)	2019-07-05 19:59:12
61.19.58.6	attackbots	Jul 5 09:05:12 XXX sshd[62259]: Invalid user supervisor from 61.19.58.6 port 33452	2019-07-05 19:53:37
114.88.197.193	attack	Unauthorized connection attempt from IP address 114.88.197.193 on Port 445(SMB)	2019-07-05 19:43:09
182.119.238.22	attackspambots	Jul 5 15:59:30 localhost sshd[8519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.119.238.22 user=root Jul 5 15:59:32 localhost sshd[8519]: Failed password for root from 182.119.238.22 port 44349 ssh2 Jul 5 15:59:42 localhost sshd[8519]: error: maximum authentication attempts exceeded for root from 182.119.238.22 port 44349 ssh2 [preauth] Jul 5 15:59:30 localhost sshd[8519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.119.238.22 user=root Jul 5 15:59:32 localhost sshd[8519]: Failed password for root from 182.119.238.22 port 44349 ssh2 Jul 5 15:59:42 localhost sshd[8519]: error: maximum authentication attempts exceeded for root from 182.119.238.22 port 44349 ssh2 [preauth] ...	2019-07-05 20:00:00
2001:648:2ffc:1227:a800:ff:fe75:7c1	attack	WordPress wp-login brute force :: 2001:648:2ffc:1227:a800:ff:fe75:7c1 0.120 BYPASS [05/Jul/2019:18:00:02 1000] [censored_4] "POST /wp-login.php HTTP/1.1" 200 4214 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-07-05 19:50:11
212.98.162.54	attackspam	Unauthorized connection attempt from IP address 212.98.162.54 on Port 445(SMB)	2019-07-05 19:14:13
2.136.114.40	attackspam	Jul 5 12:46:56 lnxded63 sshd[594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.136.114.40 Jul 5 12:46:56 lnxded63 sshd[594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.136.114.40	2019-07-05 19:22:19

Recently Reported IPs

139.159.231.160	139.162.174.210	139.162.72.64	139.170.10.249
139.162.231.136	139.170.232.73	139.177.197.165	139.178.70.214
139.189.208.167	139.180.208.18	139.189.209.106	139.190.145.198
139.190.149.57	139.190.239.181	139.190.138.86	139.190.239.76
139.190.239.77	139.190.239.9	139.190.239.245	139.192.251.79