139.199.35.6 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.199.35.168	attackbots	bruteforce detected	2020-10-09 07:03:23
139.199.35.168	attackspambots	Oct 8 16:17:08 ms-srv sshd[54672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.35.168 user=root Oct 8 16:17:10 ms-srv sshd[54672]: Failed password for invalid user root from 139.199.35.168 port 34326 ssh2	2020-10-08 23:29:04
139.199.35.168	attack	2020-10-07 18:04:49.238980-0500 localhost sshd[92592]: Failed password for root from 139.199.35.168 port 49076 ssh2	2020-10-08 15:25:05
139.199.35.66	attack	Nov 25 12:00:55 localhost sshd\[77448\]: Invalid user furukawa from 139.199.35.66 port 40592 Nov 25 12:00:55 localhost sshd\[77448\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.35.66 Nov 25 12:00:57 localhost sshd\[77448\]: Failed password for invalid user furukawa from 139.199.35.66 port 40592 ssh2 Nov 25 12:09:06 localhost sshd\[77754\]: Invalid user b from 139.199.35.66 port 46498 Nov 25 12:09:06 localhost sshd\[77754\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.35.66 ...	2019-11-25 20:12:15
139.199.35.66	attackspam	SSH Brute Force, server-1 sshd[18227]: Failed password for root from 139.199.35.66 port 42478 ssh2	2019-11-22 08:27:18
139.199.35.66	attack	Nov 19 13:54:23 legacy sshd[17314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.35.66 Nov 19 13:54:24 legacy sshd[17314]: Failed password for invalid user Design123 from 139.199.35.66 port 52138 ssh2 Nov 19 13:59:44 legacy sshd[17437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.35.66 ...	2019-11-20 02:21:18
139.199.35.66	attackbots	Repeated brute force against a port	2019-11-12 18:56:49
139.199.35.66	attack	Nov 9 22:46:26 web1 sshd\[25838\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.35.66 user=root Nov 9 22:46:28 web1 sshd\[25838\]: Failed password for root from 139.199.35.66 port 51762 ssh2 Nov 9 22:50:33 web1 sshd\[26180\]: Invalid user niclas from 139.199.35.66 Nov 9 22:50:33 web1 sshd\[26180\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.35.66 Nov 9 22:50:35 web1 sshd\[26180\]: Failed password for invalid user niclas from 139.199.35.66 port 53034 ssh2	2019-11-10 16:52:03
139.199.35.66	attackbots	Automatic report - Banned IP Access	2019-11-10 08:30:36
139.199.35.66	attackbotsspam	$f2bV_matches	2019-11-08 08:05:05
139.199.35.66	attackbotsspam	5x Failed Password	2019-10-29 20:28:42
139.199.35.66	attackbots	Oct 15 18:39:21 sachi sshd\[3071\]: Invalid user login from 139.199.35.66 Oct 15 18:39:21 sachi sshd\[3071\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.35.66 Oct 15 18:39:22 sachi sshd\[3071\]: Failed password for invalid user login from 139.199.35.66 port 54904 ssh2 Oct 15 18:44:47 sachi sshd\[3540\]: Invalid user noc from 139.199.35.66 Oct 15 18:44:47 sachi sshd\[3540\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.35.66	2019-10-16 14:10:17
139.199.35.66	attackspam	2019-09-28T04:29:12.841174abusebot-2.cloudsearch.cf sshd\[31895\]: Invalid user z from 139.199.35.66 port 37436	2019-09-28 12:51:25
139.199.35.66	attack	Sep 7 15:27:02 OPSO sshd\[30871\]: Invalid user dbuser from 139.199.35.66 port 53690 Sep 7 15:27:02 OPSO sshd\[30871\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.35.66 Sep 7 15:27:05 OPSO sshd\[30871\]: Failed password for invalid user dbuser from 139.199.35.66 port 53690 ssh2 Sep 7 15:32:12 OPSO sshd\[31860\]: Invalid user sysadmin from 139.199.35.66 port 57634 Sep 7 15:32:12 OPSO sshd\[31860\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.35.66	2019-09-07 21:40:09
139.199.35.66	attackspam	Sep 6 15:29:34 pornomens sshd\[22741\]: Invalid user support from 139.199.35.66 port 56070 Sep 6 15:29:34 pornomens sshd\[22741\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.35.66 Sep 6 15:29:35 pornomens sshd\[22741\]: Failed password for invalid user support from 139.199.35.66 port 56070 ssh2 ...	2019-09-06 21:40:47

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.35.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49801
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.199.35.6.			IN	A

;; AUTHORITY SECTION:
.			267	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024022500 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 26 01:41:26 CST 2024
;; MSG SIZE  rcvd: 105

Host info

Host 6.35.199.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 6.35.199.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.38.127.227	attack	2020-09-09T18:49:43.203990cyberdyne sshd[352339]: Invalid user jboss from 51.38.127.227 port 34986 2020-09-09T18:49:43.206745cyberdyne sshd[352339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.127.227 2020-09-09T18:49:43.203990cyberdyne sshd[352339]: Invalid user jboss from 51.38.127.227 port 34986 2020-09-09T18:49:45.405434cyberdyne sshd[352339]: Failed password for invalid user jboss from 51.38.127.227 port 34986 ssh2 ...	2020-09-10 17:26:22
164.132.54.215	attack	Sep 10 11:38:16 minden010 sshd[856]: Failed password for root from 164.132.54.215 port 58750 ssh2 Sep 10 11:41:39 minden010 sshd[2362]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.54.215 Sep 10 11:41:42 minden010 sshd[2362]: Failed password for invalid user public from 164.132.54.215 port 35268 ssh2 ...	2020-09-10 17:57:03
157.245.117.187	attackbots	157.245.117.187 Multiple Bad Request error 400...	2020-09-10 17:54:49
222.249.235.234	attackspam	Sep 10 10:40:15 root sshd[30952]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.249.235.234 ...	2020-09-10 17:57:22
218.104.198.139	attackbotsspam	" "	2020-09-10 17:23:09
185.100.87.247	attack	185.100.87.247 - - [10/Sep/2020:01:36:11 +0200] "POST /sdk HTTP/1.1" 302 498 "-" "Mozilla/5.0 (Android 7.0; Mobile; rv:65.0) Gecko/65.0 Firefox/65.0" 185.100.87.247 - - [10/Sep/2020:01:36:11 +0200] "GET / HTTP/1.1" 302 492 "-" "Mozilla/5.0 (Android 7.0; Mobile; rv:65.0) Gecko/65.0 Firefox/65.0" 185.100.87.247 - - [10/Sep/2020:01:36:12 +0200] "GET /evox/about HTTP/1.1" 302 512 "-" "Mozilla/5.0 (Android 7.0; Mobile; rv:65.0) Gecko/65.0 Firefox/65.0" 185.100.87.247 - - [10/Sep/2020:01:36:14 +0200] "\x16\x03\x01\x02" 400 0 "-" "-" 185.100.87.247 - - [10/Sep/2020:01:36:14 +0200] "\x16\x03\x01\x02" 400 0 "-" "-"	2020-09-10 17:30:02
139.59.25.135	attackbotsspam	139.59.25.135 Multiple Bad Request error 400...	2020-09-10 17:31:06
188.65.106.130	attackbotsspam	20/9/9@13:54:41: FAIL: Alarm-Network address from=188.65.106.130 ...	2020-09-10 17:21:27
174.204.57.171	attackbotsspam	Brute forcing email accounts	2020-09-10 17:22:10
106.53.70.152	attackbots	Failed password for root from 106.53.70.152 port 49626 ssh2	2020-09-10 17:34:26
119.42.67.37	attackbots	Brute forcing email accounts	2020-09-10 17:25:53
177.137.96.14	attackbotsspam	Unauthorized connection attempt from IP address 177.137.96.14 on Port 445(SMB)	2020-09-10 17:27:16
144.172.93.131	attackspambots	Sep 9 10:49:03 Host-KLAX-C amavis[7336]: (07336-16) Blocked SPAM {RejectedInternal}, AM.PDP-SOCK LOCAL [144.172.93.131] [144.172.93.131] -> , Queue-ID: E862D1BFDCB, Message-ID: <0.0.0.25.1D686C793143AE8.410A0E@mail.stally.casa>, mail_id: xLROx3lj10sh, Hits: 13.581, size: 5300, 4060 ms Sep 9 10:49:07 Host-KLAX-C amavis[7338]: (07338-17) Blocked SPAM {RejectedInternal}, AM.PDP-SOCK LOCAL [144.172.93.131] [144.172.93.131] -> , Queue-ID: 35B051BFDCB, Message-ID: <0.0.0.3C.1D686C7B0E57136.49573D@mail.stally.casa>, mail_id: w6nEsEiGbWCh, Hits: 13.581, size: 5275, 4075 ms ...	2020-09-10 17:43:53
74.120.14.35	attack	Unauthorized connection attempt from IP address 74.120.14.35 on port 993	2020-09-10 17:20:32
89.100.106.42	attackspambots	Failed password for invalid user chase from 89.100.106.42 port 50138 ssh2	2020-09-10 17:37:48

Recently Reported IPs

182.119.164.0	109.160.97.32	51.91.9.160	114.125.253.159
192.168.0.132	169.254.0.1	146.70.173.113	199.116.118.223
206.217.205.88	37.19.210.6	001:0002:14:5:1:2:bf35:2610	2001:000:2:1:4:512:bf35:2610
10.10.10.187	170.33.97.36	110.90.175.187	94.41.238.10
227.105.101.147	144.126.200.201	21.173.201.140	122.112.247.195