Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Netherlands

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
IP Type Details Datetime
139.162.214.192 spambotsattack
[N10.H2.VM2] Port Scanner Detected Blocked by UFW
2023-02-18 16:15:46
139.162.247.102 attack
OSSEC HIDS Notification.
2020 Oct 15 19:14:19

Received From: shared->/var/log/secure
Rule: 1002 fired (level 2) -> "Unknown problem somewhere in the system."
Portion of the log(s):

Oct 15 19:14:18 shared sshd[2970433]: ssh_dispatch_run_fatal: Connection from 139.162.247.102 port 41166: bignum is negative [preauth]

 --END OF NOTIFICATION
2020-10-20 08:52:36
139.162.217.250 attack
WebSpam Attack
2020-10-07 05:56:21
139.162.217.250 attackbots
WebSpam Attack
2020-10-06 22:09:25
139.162.217.250 attack
WebSpam Attack
2020-10-06 13:52:46
139.162.247.102 attack
firewall-block, port(s): 22/tcp
2020-10-01 03:25:46
139.162.247.102 attackspambots
honeypot 22 port
2020-09-30 01:51:04
139.162.247.102 attackspam
Sep 29 12:19:00 baraca inetd[76034]: refused connection from scan003.ampereinnotech.com, service sshd (tcp)
Sep 29 12:19:01 baraca inetd[76035]: refused connection from scan003.ampereinnotech.com, service sshd (tcp)
Sep 29 12:19:02 baraca inetd[76038]: refused connection from scan003.ampereinnotech.com, service sshd (tcp)
...
2020-09-29 17:51:13
139.162.247.102 attackbotsspam
IP 139.162.247.102 attacked honeypot on port: 22 at 9/26/2020 5:56:09 AM
2020-09-26 21:09:12
139.162.247.102 attackbotsspam
Sep2601:57:57server6sshd[14291]:refusedconnectfrom139.162.247.102\(139.162.247.102\)Sep2601:58:02server6sshd[14327]:refusedconnectfrom139.162.247.102\(139.162.247.102\)Sep2601:58:07server6sshd[14343]:refusedconnectfrom139.162.247.102\(139.162.247.102\)Sep2601:58:12server6sshd[14360]:refusedconnectfrom139.162.247.102\(139.162.247.102\)Sep2601:58:17server6sshd[14374]:refusedconnectfrom139.162.247.102\(139.162.247.102\)
2020-09-26 12:51:05
139.162.245.68 attackspam
Found on Block CINS-badguys  / proto=6  .  srcport=50055  .  dstport=9200  .     (3216)
2020-09-22 23:57:27
139.162.245.68 attackspam
Found on Block CINS-badguys  / proto=6  .  srcport=50055  .  dstport=9200  .     (3216)
2020-09-22 16:01:33
139.162.245.68 attackbotsspam
Found on Block CINS-badguys  / proto=6  .  srcport=50055  .  dstport=9200  .     (3216)
2020-09-22 08:05:11
139.162.252.121 attackspambots
SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: li1537-121.members.linode.com.
2020-09-06 02:31:22
139.162.252.121 attack
SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: li1537-121.members.linode.com.
2020-09-05 18:06:32
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.162.2.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34794
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.162.2.4.			IN	A

;; AUTHORITY SECTION:
.			473	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 78 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 09:49:39 CST 2022
;; MSG SIZE  rcvd: 104
Host info
4.2.162.139.in-addr.arpa domain name pointer 139-162-2-4.ip.linodeusercontent.com.
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
4.2.162.139.in-addr.arpa	name = 139-162-2-4.ip.linodeusercontent.com.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
221.143.23.45 attackspambots
Unauthorised access (Jul 11) SRC=221.143.23.45 LEN=40 TTL=243 ID=49799 TCP DPT=445 WINDOW=1024 SYN
2019-07-12 02:27:24
187.150.8.4 attackbots
Honeypot attack, port: 5555, PTR: dsl-187-150-8-4-dyn.prod-infinitum.com.mx.
2019-07-12 02:10:58
154.8.182.51 attackbotsspam
May 12 07:55:21 server sshd\[116891\]: Invalid user scpuser from 154.8.182.51
May 12 07:55:21 server sshd\[116891\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.182.51
May 12 07:55:23 server sshd\[116891\]: Failed password for invalid user scpuser from 154.8.182.51 port 52326 ssh2
...
2019-07-12 02:10:07
153.36.242.114 attackbotsspam
Jul 11 20:07:23 cvbmail sshd\[11234\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.114  user=root
Jul 11 20:07:25 cvbmail sshd\[11234\]: Failed password for root from 153.36.242.114 port 36163 ssh2
Jul 11 20:08:02 cvbmail sshd\[11246\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.114  user=root
2019-07-12 02:24:41
46.166.151.47 attack
\[2019-07-11 14:17:18\] SECURITY\[13451\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-11T14:17:18.273-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="0046462607533",SessionID="0x7f02f8f2dd48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/63014",ACLName="no_extension_match"
\[2019-07-11 14:20:39\] SECURITY\[13451\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-11T14:20:39.948-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00446812400638",SessionID="0x7f02f94cdc98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/62800",ACLName="no_extension_match"
\[2019-07-11 14:21:20\] SECURITY\[13451\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-11T14:21:20.486-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00046462607533",SessionID="0x7f02f98e5508",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/55114",ACLName="no_exte
2019-07-12 02:32:33
154.113.0.209 attackspam
Jul  3 21:31:43 server sshd\[45815\]: Invalid user vanilla from 154.113.0.209
Jul  3 21:31:43 server sshd\[45815\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.113.0.209
Jul  3 21:31:45 server sshd\[45815\]: Failed password for invalid user vanilla from 154.113.0.209 port 3984 ssh2
...
2019-07-12 02:19:00
152.250.252.179 attackspambots
Jun  3 16:38:18 server sshd\[99567\]: Invalid user qichang from 152.250.252.179
Jun  3 16:38:18 server sshd\[99567\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.250.252.179
Jun  3 16:38:20 server sshd\[99567\]: Failed password for invalid user qichang from 152.250.252.179 port 37164 ssh2
...
2019-07-12 02:48:53
185.211.245.198 attack
Jul 11 14:22:44 web1 postfix/smtpd[17195]: warning: unknown[185.211.245.198]: SASL LOGIN authentication failed: authentication failure
...
2019-07-12 02:47:36
123.188.149.62 attackspam
Honeypot attack, port: 23, PTR: PTR record not found
2019-07-12 02:17:33
153.36.236.234 attackspambots
2019-07-11T20:13:47.886221centos sshd\[27013\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.234  user=root
2019-07-11T20:13:49.862229centos sshd\[27013\]: Failed password for root from 153.36.236.234 port 16592 ssh2
2019-07-11T20:13:52.569087centos sshd\[27013\]: Failed password for root from 153.36.236.234 port 16592 ssh2
2019-07-12 02:34:43
116.196.89.239 attackspam
Jul  8 20:19:42 vm8 sshd[20850]: Did not receive identification string from 116.196.89.239 port 56365
Jul  8 20:20:46 vm8 sshd[21242]: Invalid user packer from 116.196.89.239 port 43404
Jul  8 20:20:46 vm8 sshd[21242]: Received disconnect from 116.196.89.239 port 43404:11: Normal Shutdown, Thank you for playing [preauth]
Jul  8 20:20:46 vm8 sshd[21242]: Disconnected from 116.196.89.239 port 43404 [preauth]
Jul  8 20:21:37 vm8 sshd[21567]: Invalid user sandeep from 116.196.89.239 port 56349
Jul  8 20:21:37 vm8 sshd[21567]: Received disconnect from 116.196.89.239 port 56349:11: Normal Shutdown, Thank you for playing [preauth]
Jul  8 20:21:37 vm8 sshd[21567]: Disconnected from 116.196.89.239 port 56349 [preauth]
Jul  8 20:22:28 vm8 sshd[21883]: Invalid user db2 from 116.196.89.239 port 41043
Jul  8 20:22:28 vm8 sshd[21883]: Received disconnect from 116.196.89.239 port 41043:11: Normal Shutdown, Thank you for playing [preauth]
Jul  8 20:22:28 vm8 sshd[21883]: Disconnected f........
-------------------------------
2019-07-12 02:13:28
153.199.225.63 attackspambots
Jun  4 23:38:40 server sshd\[155103\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.199.225.63  user=root
Jun  4 23:38:42 server sshd\[155103\]: Failed password for root from 153.199.225.63 port 53788 ssh2
Jun  4 23:39:03 server sshd\[155103\]: Failed password for root from 153.199.225.63 port 53788 ssh2
...
2019-07-12 02:45:32
221.231.76.40 attackspambots
SSH/22 MH Probe, BF, Hack -
2019-07-12 02:45:51
153.36.232.36 attack
Jul 11 20:39:32 ovpn sshd\[30681\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.232.36  user=root
Jul 11 20:39:35 ovpn sshd\[30681\]: Failed password for root from 153.36.232.36 port 32130 ssh2
Jul 11 20:39:42 ovpn sshd\[30719\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.232.36  user=root
Jul 11 20:39:44 ovpn sshd\[30719\]: Failed password for root from 153.36.232.36 port 60058 ssh2
Jul 11 20:39:52 ovpn sshd\[30739\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.232.36  user=root
2019-07-12 02:42:05
78.188.236.8 attackbotsspam
CloudCIX Reconnaissance Scan Detected, PTR: 78.188.236.8.static.ttnet.com.tr.
2019-07-12 02:40:20

Recently Reported IPs

171.235.185.174 81.162.74.18 103.81.3.202 37.202.136.37
34.67.226.176 201.191.73.134 142.251.41.14 151.182.1.35
143.0.217.26 175.5.14.254 193.202.110.24 197.49.24.238
171.237.223.243 50.117.24.212 120.219.88.7 40.94.95.61
108.167.133.20 177.222.25.250 117.198.165.40 2.133.52.66