139.162.202.94

Basic Info

City: unknown

Region: unknown

Country: Netherlands

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.162.202.229	attack	trying to access non-authorized port	2020-08-27 18:33:27
139.162.202.229	attackspambots	port scan and connect, tcp 9200 (elasticsearch)	2020-06-09 01:59:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.162.202.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5654
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.162.202.94.			IN	A

;; AUTHORITY SECTION:
.			504	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400

;; Query time: 179 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 12:36:37 CST 2022
;; MSG SIZE  rcvd: 107

Host info

94.202.162.139.in-addr.arpa domain name pointer li1365-94.members.linode.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
94.202.162.139.in-addr.arpa	name = li1365-94.members.linode.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
184.105.139.94	attackspam	Honeypot hit.	2019-11-21 19:20:41
82.125.149.167	attackbotsspam	$f2bV_matches	2019-11-21 19:15:19
74.82.215.70	attackbots	Nov 21 07:21:00 linuxrulz sshd[16594]: Invalid user stepanek from 74.82.215.70 port 59588 Nov 21 07:21:00 linuxrulz sshd[16594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.82.215.70 Nov 21 07:21:01 linuxrulz sshd[16594]: Failed password for invalid user stepanek from 74.82.215.70 port 59588 ssh2 Nov 21 07:21:01 linuxrulz sshd[16594]: Received disconnect from 74.82.215.70 port 59588:11: Bye Bye [preauth] Nov 21 07:21:01 linuxrulz sshd[16594]: Disconnected from 74.82.215.70 port 59588 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=74.82.215.70	2019-11-21 19:21:10
111.27.4.181	attackbotsspam	11/21/2019-07:24:33.291296 111.27.4.181 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-11-21 19:12:21
192.81.211.152	attack	Nov 9 22:03:09 odroid64 sshd\[23397\]: User root from 192.81.211.152 not allowed because not listed in AllowUsers Nov 9 22:03:09 odroid64 sshd\[23397\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.81.211.152 user=root ...	2019-11-21 18:57:10
51.254.201.67	attackspambots	Nov 21 07:21:46 firewall sshd[2565]: Invalid user mysql from 51.254.201.67 Nov 21 07:21:48 firewall sshd[2565]: Failed password for invalid user mysql from 51.254.201.67 port 36778 ssh2 Nov 21 07:25:12 firewall sshd[2645]: Invalid user nakakubo from 51.254.201.67 ...	2019-11-21 18:49:31
208.64.33.83	attack	Nov 20 19:46:07 DNS-2 sshd[30448]: User r.r from 208.64.33.83 not allowed because not listed in AllowUsers Nov 20 19:46:07 DNS-2 sshd[30448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.64.33.83 user=r.r Nov 20 19:46:09 DNS-2 sshd[30448]: Failed password for invalid user r.r from 208.64.33.83 port 37188 ssh2 Nov 20 19:46:11 DNS-2 sshd[30448]: Received disconnect from 208.64.33.83 port 37188:11: Bye Bye [preauth] Nov 20 19:46:11 DNS-2 sshd[30448]: Disconnected from invalid user r.r 208.64.33.83 port 37188 [preauth] Nov 20 19:57:24 DNS-2 sshd[30860]: Invalid user garlick from 208.64.33.83 port 39288 Nov 20 19:57:24 DNS-2 sshd[30860]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.64.33.83 Nov 20 19:57:26 DNS-2 sshd[30860]: Failed password for invalid user garlick from 208.64.33.83 port 39288 ssh2 Nov 20 19:57:26 DNS-2 sshd[30860]: Received disconnect from 208.64.33.83 port 39288........ -------------------------------	2019-11-21 18:58:04
122.160.41.85	attackbots	Honeypot attack, port: 445, PTR: abts-north-static-085.41.160.122.airtelbroadband.in.	2019-11-21 19:00:49
61.216.13.170	attackspam	2019-11-21T03:32:22.287910ns547587 sshd\[8660\]: Invalid user kaseem from 61.216.13.170 port 6510 2019-11-21T03:32:22.293268ns547587 sshd\[8660\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61-216-13-170.hinet-ip.hinet.net 2019-11-21T03:32:24.787668ns547587 sshd\[8660\]: Failed password for invalid user kaseem from 61.216.13.170 port 6510 ssh2 2019-11-21T03:36:05.303731ns547587 sshd\[8922\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61-216-13-170.hinet-ip.hinet.net user=root ...	2019-11-21 18:41:19
41.217.216.39	attack	Sep 29 08:52:11 vtv3 sshd[1984]: Invalid user minecraft from 41.217.216.39 port 43268 Sep 29 08:52:11 vtv3 sshd[1984]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.217.216.39 Sep 29 08:52:13 vtv3 sshd[1984]: Failed password for invalid user minecraft from 41.217.216.39 port 43268 ssh2 Sep 29 08:58:05 vtv3 sshd[4967]: Invalid user vhost from 41.217.216.39 port 55776 Sep 29 08:58:05 vtv3 sshd[4967]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.217.216.39 Nov 21 08:41:26 vtv3 sshd[28062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.217.216.39 Nov 21 08:41:28 vtv3 sshd[28062]: Failed password for invalid user yoyo from 41.217.216.39 port 51102 ssh2 Nov 21 08:49:15 vtv3 sshd[30949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.217.216.39 Nov 21 09:01:55 vtv3 sshd[3689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 e	2019-11-21 19:09:43
186.147.223.47	attack	Nov 21 00:15:49 indra sshd[918894]: reveeclipse mapping checking getaddrinfo for static-ip-18614722347.cable.net.co [186.147.223.47] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 21 00:15:49 indra sshd[918894]: Invalid user coffee from 186.147.223.47 Nov 21 00:15:49 indra sshd[918894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.147.223.47 Nov 21 00:15:51 indra sshd[918894]: Failed password for invalid user coffee from 186.147.223.47 port 54785 ssh2 Nov 21 00:15:51 indra sshd[918894]: Received disconnect from 186.147.223.47: 11: Bye Bye [preauth] Nov 21 00:24:46 indra sshd[920149]: reveeclipse mapping checking getaddrinfo for static-ip-18614722347.cable.net.co [186.147.223.47] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 21 00:24:46 indra sshd[920149]: Invalid user rieserver from 186.147.223.47 Nov 21 00:24:46 indra sshd[920149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.147.223.47 ........ -------------------------------	2019-11-21 19:15:58
125.24.155.129	attackspam	Honeypot attack, port: 445, PTR: node-upt.pool-125-24.dynamic.totinternet.net.	2019-11-21 18:57:27
61.177.172.158	attack	2019-11-21T10:30:24.286274hub.schaetter.us sshd\[2873\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.158 user=root 2019-11-21T10:30:26.016541hub.schaetter.us sshd\[2873\]: Failed password for root from 61.177.172.158 port 26611 ssh2 2019-11-21T10:30:27.893117hub.schaetter.us sshd\[2873\]: Failed password for root from 61.177.172.158 port 26611 ssh2 2019-11-21T10:30:30.381854hub.schaetter.us sshd\[2873\]: Failed password for root from 61.177.172.158 port 26611 ssh2 2019-11-21T10:31:13.743771hub.schaetter.us sshd\[2885\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.158 user=root ...	2019-11-21 19:19:58
51.15.190.180	attackbots	Nov 20 22:36:11 hpm sshd\[721\]: Invalid user admin from 51.15.190.180 Nov 20 22:36:11 hpm sshd\[721\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.190.180 Nov 20 22:36:13 hpm sshd\[721\]: Failed password for invalid user admin from 51.15.190.180 port 58950 ssh2 Nov 20 22:42:23 hpm sshd\[1337\]: Invalid user liebesny from 51.15.190.180 Nov 20 22:42:23 hpm sshd\[1337\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.190.180	2019-11-21 19:06:25
202.182.123.185	attackbots	Nov 20 20:14:23 linuxrulz sshd[7233]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.182.123.185 user=r.r Nov 20 20:14:25 linuxrulz sshd[7233]: Failed password for r.r from 202.182.123.185 port 50463 ssh2 Nov 20 20:14:25 linuxrulz sshd[7233]: Received disconnect from 202.182.123.185 port 50463:11: Bye Bye [preauth] Nov 20 20:14:25 linuxrulz sshd[7233]: Disconnected from 202.182.123.185 port 50463 [preauth] Nov 20 20:39:13 linuxrulz sshd[10993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.182.123.185 user=backup Nov 20 20:39:15 linuxrulz sshd[10993]: Failed password for backup from 202.182.123.185 port 34459 ssh2 Nov 20 20:39:15 linuxrulz sshd[10993]: Received disconnect from 202.182.123.185 port 34459:11: Bye Bye [preauth] Nov 20 20:39:15 linuxrulz sshd[10993]: Disconnected from 202.182.123.185 port 34459 [preauth] Nov 20 20:43:02 linuxrulz sshd[11666]: Invalid user scott from........ -------------------------------	2019-11-21 19:01:04

Recently Reported IPs

139.162.203.41	139.162.204.195	139.162.204.181	139.162.207.174
139.162.206.219	139.162.204.22	139.162.207.150	139.162.208.133
139.162.207.204	139.162.208.241	187.57.224.145	139.162.212.22
139.162.214.9	139.162.212.156	139.162.217.37	139.162.215.183
139.162.215.63	139.162.215.48	139.162.216.129	139.162.217.225