139.162.245.190

Basic Info

City: unknown

Region: unknown

Country: Netherlands

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.162.245.68	attackspam	Found on Block CINS-badguys / proto=6 . srcport=50055 . dstport=9200 . (3216)	2020-09-22 23:57:27
139.162.245.68	attackspam	Found on Block CINS-badguys / proto=6 . srcport=50055 . dstport=9200 . (3216)	2020-09-22 16:01:33
139.162.245.68	attackbotsspam	Found on Block CINS-badguys / proto=6 . srcport=50055 . dstport=9200 . (3216)	2020-09-22 08:05:11
139.162.245.191	attack	fire	2019-08-09 13:47:26
139.162.245.191	attackbots	Bad Request: "GET / HTTP/1.0"	2019-06-22 09:39:52

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.162.245.190
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59584
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.162.245.190.		IN	A

;; AUTHORITY SECTION:
.			299	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 118 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 12:01:14 CST 2022
;; MSG SIZE  rcvd: 108

Host info

190.245.162.139.in-addr.arpa domain name pointer beach.savviihq.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
190.245.162.139.in-addr.arpa	name = beach.savviihq.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
108.29.77.74	attackbotsspam	Sent mail to target address hacked/leaked from abandonia in 2016	2019-12-08 08:26:09
200.119.215.69	attackbots	Unauthorized connection attempt from IP address 200.119.215.69 on Port 445(SMB)	2019-12-08 08:23:48
139.199.48.217	attackbotsspam	Dec 7 13:42:55 wbs sshd\[18653\]: Invalid user monticello from 139.199.48.217 Dec 7 13:42:55 wbs sshd\[18653\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.48.217 Dec 7 13:42:57 wbs sshd\[18653\]: Failed password for invalid user monticello from 139.199.48.217 port 43502 ssh2 Dec 7 13:49:00 wbs sshd\[19411\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.48.217 user=mysql Dec 7 13:49:02 wbs sshd\[19411\]: Failed password for mysql from 139.199.48.217 port 53140 ssh2	2019-12-08 08:03:53
138.197.103.160	attackspam	Dec 7 14:20:50 web9 sshd\[22340\]: Invalid user admin from 138.197.103.160 Dec 7 14:20:50 web9 sshd\[22340\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.103.160 Dec 7 14:20:52 web9 sshd\[22340\]: Failed password for invalid user admin from 138.197.103.160 port 53994 ssh2 Dec 7 14:26:29 web9 sshd\[23228\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.103.160 user=uucp Dec 7 14:26:30 web9 sshd\[23228\]: Failed password for uucp from 138.197.103.160 port 36530 ssh2	2019-12-08 08:30:23
36.71.160.214	attackspambots	[Sun Dec 08 06:30:28.445777 2019] [:error] [pid 28327:tid 139906326849280] [client 36.71.160.214:11349] [client 36.71.160.214] ModSecurity: Access denied with code 403 (phase 4). Pattern match "^5\\\\d{2}$" at RESPONSE_STATUS. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/RESPONSE-950-DATA-LEAKAGES.conf"] [line "118"] [id "950100"] [msg "The Application Returned a 500-Level Status Code"] [data "Matched Data: 500 found within RESPONSE_STATUS: 500"] [severity "ERROR"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-disclosure"] [tag "WASCTC/WASC-13"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.6"] [tag "paranoia-level/2"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/infografis-iklim/infografis-bulanan"] [unique_id "Xew2E3Sr2qxoiTIoM8I6YAAAANE"], referer: https://karangploso.jatim.bmkg.go.id/ ...	2019-12-08 08:21:18
222.186.52.86	attackbotsspam	Dec 8 01:15:28 * sshd[27087]: Failed password for root from 222.186.52.86 port 16402 ssh2	2019-12-08 08:23:30
159.89.126.252	attackspambots	LGS,WP GET /wp-login.php	2019-12-08 08:33:36
222.186.175.215	attack	Dec 8 01:27:48 vmd17057 sshd\[20563\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.215 user=root Dec 8 01:27:50 vmd17057 sshd\[20563\]: Failed password for root from 222.186.175.215 port 41688 ssh2 Dec 8 01:27:54 vmd17057 sshd\[20563\]: Failed password for root from 222.186.175.215 port 41688 ssh2 ...	2019-12-08 08:29:13
121.229.10.174	attackbots	Dec 7 22:12:26 h2022099 sshd[32291]: reveeclipse mapping checking getaddrinfo for 174.10.229.121.broad.nj.js.dynamic.163data.com.cn [121.229.10.174] failed - POSSIBLE BREAK-IN ATTEMPT! Dec 7 22:12:26 h2022099 sshd[32291]: Invalid user cpanel from 121.229.10.174 Dec 7 22:12:26 h2022099 sshd[32291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.229.10.174 Dec 7 22:12:28 h2022099 sshd[32291]: Failed password for invalid user cpanel from 121.229.10.174 port 40721 ssh2 Dec 7 22:12:29 h2022099 sshd[32291]: Received disconnect from 121.229.10.174: 11: Bye Bye [preauth] Dec 7 22:20:25 h2022099 sshd[1136]: reveeclipse mapping checking getaddrinfo for 174.10.229.121.broad.nj.js.dynamic.163data.com.cn [121.229.10.174] failed - POSSIBLE BREAK-IN ATTEMPT! Dec 7 22:20:25 h2022099 sshd[1136]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.229.10.174 user=r.r Dec 7 22:20:27 h2022099 ssh........ -------------------------------	2019-12-08 07:59:38
124.158.179.6	attackbotsspam	Unauthorized connection attempt from IP address 124.158.179.6 on Port 445(SMB)	2019-12-08 08:12:48
106.12.33.174	attack	Dec 8 00:24:03 vpn01 sshd[10428]: Failed password for root from 106.12.33.174 port 54054 ssh2 Dec 8 00:30:40 vpn01 sshd[10712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.33.174 ...	2019-12-08 08:07:54
93.39.104.224	attack	Dec 8 01:47:58 sauna sshd[223375]: Failed password for root from 93.39.104.224 port 57226 ssh2 Dec 8 01:53:47 sauna sshd[223758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.39.104.224 ...	2019-12-08 08:06:12
185.2.140.155	attackspambots	Dec 7 23:56:51 game-panel sshd[12168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.2.140.155 Dec 7 23:56:53 game-panel sshd[12168]: Failed password for invalid user q11qw22w from 185.2.140.155 port 59464 ssh2 Dec 8 00:02:19 game-panel sshd[12438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.2.140.155	2019-12-08 08:14:35
167.71.215.72	attack	Dec 8 01:13:11 srv206 sshd[5311]: Invalid user j2m from 167.71.215.72 Dec 8 01:13:11 srv206 sshd[5311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.215.72 Dec 8 01:13:11 srv206 sshd[5311]: Invalid user j2m from 167.71.215.72 Dec 8 01:13:14 srv206 sshd[5311]: Failed password for invalid user j2m from 167.71.215.72 port 46820 ssh2 ...	2019-12-08 08:34:51
201.209.130.179	attack	Unauthorized connection attempt from IP address 201.209.130.179 on Port 445(SMB)	2019-12-08 08:36:05

Recently Reported IPs

139.162.246.172	139.162.249.104	139.162.244.250	139.162.249.83
139.162.247.157	139.162.248.154	139.162.249.121	139.162.25.145
139.162.252.103	139.162.251.173	139.162.254.159	139.162.250.41
139.162.252.231	139.162.254.18	139.162.26.130	139.162.27.25
139.162.254.72	139.162.28.116	139.162.28.34	139.162.28.150