City: Tokyo
Region: Tokyo
Country: Japan
Internet Service Provider: Linode LLC
Hostname: unknown
Organization: Linode, LLC
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attack | Unauthorized connection attempt detected from IP address 139.162.99.243 to port 25 [T] |
2020-08-29 20:24:22 |
| attackbots | Unauthorized connection attempt detected from IP address 139.162.99.243 to port 102 [T] |
2020-08-14 00:31:34 |
| attack | Unauthorized connection attempt from IP address 139.162.99.243 on Port 25(SMTP) |
2020-07-25 06:51:34 |
| attack | Unauthorized connection attempt detected from IP address 139.162.99.243 to port 102 [T] |
2020-07-21 23:02:37 |
| attackbotsspam | Unauthorized connection attempt detected from IP address 139.162.99.243 to port 25 |
2020-06-01 00:01:06 |
| attack | May 7 14:02:37 mout postfix/smtpd[31958]: lost connection after CONNECT from scan-42.security.ipip.net[139.162.99.243] |
2020-05-07 20:07:21 |
| attack | Unauthorized connection attempt detected from IP address 139.162.99.243 to port 25 |
2020-04-21 12:49:54 |
| attackbotsspam | Mar 4 06:33:26 dev postfix/anvil\[15102\]: statistics: max connection rate 1/60s for \(smtp:139.162.99.243\) at Mar 4 06:30:05 ... |
2020-03-06 04:02:40 |
| attack | Unauthorized connection attempt detected from IP address 139.162.99.243 to port 102 [J] |
2020-03-03 01:42:56 |
| attackbots | Unauthorized connection attempt detected from IP address 139.162.99.243 to port 102 [J] |
2020-02-04 20:38:45 |
| attack | Nov 27 19:27:24 h2829583 postfix/smtpd[17801]: lost connection after CONNECT from scan-42.security.ipip.net[139.162.99.243] Nov 27 19:59:39 h2829583 postfix/smtpd[18073]: lost connection after CONNECT from scan-42.security.ipip.net[139.162.99.243] |
2019-11-28 05:57:16 |
| attack | SASL Brute Force |
2019-11-16 17:37:04 |
| attackspam | SASL Brute Force |
2019-10-08 22:53:14 |
| attackbotsspam | Unauthorized connection attempt from IP address 139.162.99.243 on Port 25(SMTP) |
2019-09-10 21:10:46 |
| attackspambots | 2019-09-04 17:57:41,673 fail2ban.actions [8379]: NOTICE [postfix] Ban 139.162.99.243 ... |
2019-09-06 10:18:06 |
| attackspambots | SASL Brute Force |
2019-08-13 03:20:06 |
| attackbots | \[09/Jul/2019 06:23:04\] SMTP Spam attack detected from 139.162.99.243, client closed connection before SMTP greeting \[09/Jul/2019 06:23:05\] SMTP Spam attack detected from 139.162.99.243, client closed connection before SMTP greeting \[09/Jul/2019 06:23:19\] SMTP Spam attack detected from 139.162.99.243, client closed connection before SMTP greeting ... |
2019-07-09 17:03:53 |
| attack | 2019-06-26 19:21:00 -> 2019-06-28 19:12:10 : 147 login attempts (139.162.99.243) |
2019-06-29 06:15:39 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 139.162.99.58 | attack | Found on Alienvault / proto=6 . srcport=33656 . dstport=808 . (3659) |
2020-10-05 06:31:14 |
| 139.162.99.58 | attackbotsspam | " " |
2020-10-04 22:32:36 |
| 139.162.99.58 | attackspam | firewall-block, port(s): 808/tcp |
2020-07-14 02:45:30 |
| 139.162.99.58 | attack |
|
2020-06-28 01:50:26 |
| 139.162.99.103 | attack | firewall-block, port(s): 123/udp |
2020-03-17 00:09:07 |
| 139.162.99.58 | attack | unauthorized connection attempt |
2020-02-19 15:35:17 |
| 139.162.99.58 | attackbots | MultiHost/MultiPort Probe, Scan, Hack - |
2020-02-06 03:11:14 |
| 139.162.99.58 | attackbotsspam | unauthorized connection attempt |
2020-01-15 17:17:58 |
| 139.162.99.58 | attackbots | firewall-block, port(s): 808/tcp |
2019-10-10 02:57:55 |
| 139.162.99.58 | attackbotsspam | 808/tcp 808/tcp 808/tcp... [2019-06-07/08-06]82pkt,1pt.(tcp) |
2019-08-07 09:42:13 |
| 139.162.99.58 | attackspambots | firewall-block, port(s): 808/tcp |
2019-07-19 15:02:04 |
| 139.162.99.58 | attack | firewall-block, port(s): 808/tcp |
2019-07-08 09:26:54 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.162.99.243
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50546
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.162.99.243. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019033102 1800 900 604800 86400
;; Query time: 70 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 01 20:28:18 +08 2019
;; MSG SIZE rcvd: 118
243.99.162.139.in-addr.arpa domain name pointer scan-42.security.ipip.net.
Server: 67.207.67.3
Address: 67.207.67.3#53
Non-authoritative answer:
243.99.162.139.in-addr.arpa name = scan-42.security.ipip.net.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 185.175.93.104 | attackspam | firewall-block, port(s): 33333/tcp |
2020-07-06 02:05:10 |
| 96.48.158.15 | attackbots | 1593971059 - 07/05/2020 19:44:19 Host: 96.48.158.15/96.48.158.15 Port: 445 TCP Blocked |
2020-07-06 02:28:12 |
| 46.38.150.72 | attack | Jul 5 14:18:42 web02.agentur-b-2.de postfix/smtpd[23663]: warning: unknown[46.38.150.72]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 5 14:19:32 web02.agentur-b-2.de postfix/smtpd[23663]: warning: unknown[46.38.150.72]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 5 14:19:56 web02.agentur-b-2.de postfix/smtpd[22912]: warning: unknown[46.38.150.72]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 5 14:20:21 web02.agentur-b-2.de postfix/smtpd[22912]: warning: unknown[46.38.150.72]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 5 14:20:47 web02.agentur-b-2.de postfix/smtpd[23663]: warning: unknown[46.38.150.72]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2020-07-06 02:08:27 |
| 178.46.136.122 | attackbotsspam | (mod_security) mod_security (id:5000135) triggered by 178.46.136.122 (RU/Russia/ip-178-46-136-122.dsl.surnet.ru): 10 in the last 3600 secs; ID: rub |
2020-07-06 02:23:48 |
| 119.17.221.61 | attack | Jul 5 19:10:13 gestao sshd[8082]: Failed password for root from 119.17.221.61 port 35602 ssh2 Jul 5 19:13:57 gestao sshd[8163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.17.221.61 Jul 5 19:13:59 gestao sshd[8163]: Failed password for invalid user josh from 119.17.221.61 port 33758 ssh2 ... |
2020-07-06 02:24:01 |
| 49.235.111.100 | attackbotsspam | Jul 5 20:39:45 journals sshd\[66015\]: Invalid user itz from 49.235.111.100 Jul 5 20:39:45 journals sshd\[66015\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.111.100 Jul 5 20:39:46 journals sshd\[66015\]: Failed password for invalid user itz from 49.235.111.100 port 57412 ssh2 Jul 5 20:44:21 journals sshd\[66444\]: Invalid user centos from 49.235.111.100 Jul 5 20:44:21 journals sshd\[66444\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.111.100 ... |
2020-07-06 02:24:21 |
| 51.178.41.60 | attackbotsspam | 2020-07-05T17:55:54.411293shield sshd\[2945\]: Invalid user maxime from 51.178.41.60 port 44130 2020-07-05T17:55:54.415085shield sshd\[2945\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.ip-51-178-41.eu 2020-07-05T17:55:56.237104shield sshd\[2945\]: Failed password for invalid user maxime from 51.178.41.60 port 44130 ssh2 2020-07-05T17:58:17.326486shield sshd\[4099\]: Invalid user admin from 51.178.41.60 port 35697 2020-07-05T17:58:17.330407shield sshd\[4099\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.ip-51-178-41.eu |
2020-07-06 02:03:49 |
| 118.140.197.98 | attack | Honeypot attack, port: 445, PTR: static-bbs-98-197-140-118-on-nets.com. |
2020-07-06 02:39:13 |
| 125.70.244.4 | attack | Jul 5 17:40:34 plex-server sshd[206658]: Invalid user administrator from 125.70.244.4 port 58994 Jul 5 17:40:34 plex-server sshd[206658]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.70.244.4 Jul 5 17:40:34 plex-server sshd[206658]: Invalid user administrator from 125.70.244.4 port 58994 Jul 5 17:40:36 plex-server sshd[206658]: Failed password for invalid user administrator from 125.70.244.4 port 58994 ssh2 Jul 5 17:44:14 plex-server sshd[207901]: Invalid user user from 125.70.244.4 port 57610 ... |
2020-07-06 02:31:57 |
| 14.45.41.137 | attackspam | Honeypot attack, port: 81, PTR: PTR record not found |
2020-07-06 02:35:06 |
| 167.71.228.251 | attackbotsspam | Jul 5 20:09:44 vps sshd[501987]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.228.251 Jul 5 20:09:46 vps sshd[501987]: Failed password for invalid user wqy from 167.71.228.251 port 58644 ssh2 Jul 5 20:11:13 vps sshd[512609]: Invalid user yuzhonghang from 167.71.228.251 port 52212 Jul 5 20:11:13 vps sshd[512609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.228.251 Jul 5 20:11:14 vps sshd[512609]: Failed password for invalid user yuzhonghang from 167.71.228.251 port 52212 ssh2 ... |
2020-07-06 02:13:23 |
| 89.248.168.244 | attack | ET CINS Active Threat Intelligence Poor Reputation IP group 81 - port: 5720 proto: TCP cat: Misc Attack |
2020-07-06 02:37:14 |
| 46.38.148.2 | attack | 2020-07-05 17:46:50 auth_plain authenticator failed for (User) [46.38.148.2]: 535 Incorrect authentication data (set_id=robin@csmailer.org) 2020-07-05 17:47:18 auth_plain authenticator failed for (User) [46.38.148.2]: 535 Incorrect authentication data (set_id=peggy@csmailer.org) 2020-07-05 17:47:47 auth_plain authenticator failed for (User) [46.38.148.2]: 535 Incorrect authentication data (set_id=crystal@csmailer.org) 2020-07-05 17:48:16 auth_plain authenticator failed for (User) [46.38.148.2]: 535 Incorrect authentication data (set_id=gladys@csmailer.org) 2020-07-05 17:48:41 auth_plain authenticator failed for (User) [46.38.148.2]: 535 Incorrect authentication data (set_id=rita@csmailer.org) ... |
2020-07-06 02:00:32 |
| 73.185.241.75 | attackbots | Unauthorized connection attempt detected from IP address 73.185.241.75 to port 23 |
2020-07-06 01:58:52 |
| 46.38.150.94 | attack | abuse-sasl |
2020-07-06 02:28:31 |