139.199.94.65 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.199.94.100	attackbotsspam	Oct 13 10:58:58 h2427292 sshd\[1579\]: Invalid user yuka from 139.199.94.100 Oct 13 10:58:58 h2427292 sshd\[1579\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.94.100 Oct 13 10:59:00 h2427292 sshd\[1579\]: Failed password for invalid user yuka from 139.199.94.100 port 54048 ssh2 ...	2020-10-14 01:24:25
139.199.94.100	attackspam	$f2bV_matches	2020-10-13 16:34:04
139.199.94.100	attackspambots	bruteforce detected	2020-10-03 05:18:56
139.199.94.100	attackspam	Oct 2 08:18:35 hell sshd[15768]: Failed password for root from 139.199.94.100 port 49242 ssh2 Oct 2 08:30:45 hell sshd[18161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.94.100 ...	2020-10-03 00:42:30
139.199.94.100	attackbots	Oct 2 08:18:35 hell sshd[15768]: Failed password for root from 139.199.94.100 port 49242 ssh2 Oct 2 08:30:45 hell sshd[18161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.94.100 ...	2020-10-02 21:12:12
139.199.94.100	attack	Oct 2 08:18:35 hell sshd[15768]: Failed password for root from 139.199.94.100 port 49242 ssh2 Oct 2 08:30:45 hell sshd[18161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.94.100 ...	2020-10-02 17:44:57
139.199.94.100	attackbotsspam	k+ssh-bruteforce	2020-10-02 14:11:18
139.199.94.100	attack	Sep 29 14:59:16 localhost sshd[2613784]: Invalid user phil from 139.199.94.100 port 36000 ...	2020-09-30 00:48:12
139.199.94.51	attackspam	Sep 28 22:31:29 [host] sshd[31496]: Invalid user w Sep 28 22:31:29 [host] sshd[31496]: pam_unix(sshd: Sep 28 22:31:32 [host] sshd[31496]: Failed passwor	2020-09-29 04:53:22
139.199.94.51	attackbots	Sep 28 10:37:15 vps sshd[28567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.94.51 Sep 28 10:37:17 vps sshd[28567]: Failed password for invalid user test01 from 139.199.94.51 port 53350 ssh2 Sep 28 10:48:46 vps sshd[29310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.94.51 ...	2020-09-28 21:11:43
139.199.94.51	attackspambots	Sep 28 04:21:29 inter-technics sshd[11309]: Invalid user oracle from 139.199.94.51 port 59024 Sep 28 04:21:29 inter-technics sshd[11309]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.94.51 Sep 28 04:21:29 inter-technics sshd[11309]: Invalid user oracle from 139.199.94.51 port 59024 Sep 28 04:21:30 inter-technics sshd[11309]: Failed password for invalid user oracle from 139.199.94.51 port 59024 ssh2 Sep 28 04:25:09 inter-technics sshd[11600]: Invalid user deploy from 139.199.94.51 port 44354 ...	2020-09-28 13:17:21
139.199.94.51	attackbotsspam	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=root	2020-09-25 05:17:51
139.199.94.51	attack	s3.hscode.pl - SSH Attack	2020-09-22 00:20:41
139.199.94.51	attack	SSH Brute-Force Attack	2020-09-21 16:02:12
139.199.94.51	attack	Time: Sun Sep 20 22:53:43 2020 +0000 IP: 139.199.94.51 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 20 22:39:13 48-1 sshd[9726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.94.51 user=root Sep 20 22:39:15 48-1 sshd[9726]: Failed password for root from 139.199.94.51 port 55168 ssh2 Sep 20 22:48:10 48-1 sshd[10035]: Invalid user test from 139.199.94.51 port 37870 Sep 20 22:48:13 48-1 sshd[10035]: Failed password for invalid user test from 139.199.94.51 port 37870 ssh2 Sep 20 22:53:42 48-1 sshd[10260]: Invalid user ut99server from 139.199.94.51 port 38254	2020-09-21 07:56:07

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.94.65
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18759
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.199.94.65.			IN	A

;; AUTHORITY SECTION:
.			14	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 78 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:21:49 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 65.94.199.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 65.94.199.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.71.76.122	attackspam	SSH Bruteforce attack	2020-05-11 15:21:17
187.162.51.63	attackspam	May 11 08:30:57 ns381471 sshd[21995]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.162.51.63 May 11 08:30:59 ns381471 sshd[21995]: Failed password for invalid user vps from 187.162.51.63 port 50315 ssh2	2020-05-11 15:47:27
195.154.42.43	attackspambots	2020-05-11T06:43:09.766882abusebot-8.cloudsearch.cf sshd[24557]: Invalid user netdump1 from 195.154.42.43 port 35262 2020-05-11T06:43:09.774403abusebot-8.cloudsearch.cf sshd[24557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.154.42.43 2020-05-11T06:43:09.766882abusebot-8.cloudsearch.cf sshd[24557]: Invalid user netdump1 from 195.154.42.43 port 35262 2020-05-11T06:43:12.003341abusebot-8.cloudsearch.cf sshd[24557]: Failed password for invalid user netdump1 from 195.154.42.43 port 35262 ssh2 2020-05-11T06:47:06.281586abusebot-8.cloudsearch.cf sshd[24767]: Invalid user ubuntu from 195.154.42.43 port 44612 2020-05-11T06:47:06.288347abusebot-8.cloudsearch.cf sshd[24767]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.154.42.43 2020-05-11T06:47:06.281586abusebot-8.cloudsearch.cf sshd[24767]: Invalid user ubuntu from 195.154.42.43 port 44612 2020-05-11T06:47:08.050874abusebot-8.cloudsearch.cf sshd[247 ...	2020-05-11 15:26:10
49.235.108.3	attackbots	20 attempts against mh-ssh on echoip	2020-05-11 15:53:06
45.141.84.10	attackbots	May 11 05:23:06 raspberrypi sshd\[26243\]: Invalid user admin from 45.141.84.10May 11 05:23:08 raspberrypi sshd\[26243\]: Failed password for invalid user admin from 45.141.84.10 port 18515 ssh2May 11 05:23:10 raspberrypi sshd\[26331\]: Invalid user support from 45.141.84.10May 11 05:23:12 raspberrypi sshd\[26331\]: Failed password for invalid user support from 45.141.84.10 port 48543 ssh2 ...	2020-05-11 15:13:44
45.143.220.18	attackbotsspam	[2020-05-11 02:59:28] NOTICE[1157] chan_sip.c: Registration from '"900" ' failed for '45.143.220.18:5092' - Wrong password [2020-05-11 02:59:28] SECURITY[1173] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-05-11T02:59:28.474-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="900",SessionID="0x7f5f10905838",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.18/5092",Challenge="78eef63b",ReceivedChallenge="78eef63b",ReceivedHash="7eb8ea24252d61007d23d80259c61a3b" [2020-05-11 02:59:28] NOTICE[1157] chan_sip.c: Registration from '"900" ' failed for '45.143.220.18:5092' - Wrong password [2020-05-11 02:59:28] SECURITY[1173] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-05-11T02:59:28.587-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="900",SessionID="0x7f5f103ba5e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.2 ...	2020-05-11 15:13:18
34.73.39.215	attackbotsspam	2020-05-11T06:23:06.058198shield sshd\[26210\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=215.39.73.34.bc.googleusercontent.com user=root 2020-05-11T06:23:08.163868shield sshd\[26210\]: Failed password for root from 34.73.39.215 port 45062 ssh2 2020-05-11T06:26:43.318541shield sshd\[26992\]: Invalid user temp1 from 34.73.39.215 port 53452 2020-05-11T06:26:43.322306shield sshd\[26992\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=215.39.73.34.bc.googleusercontent.com 2020-05-11T06:26:45.873688shield sshd\[26992\]: Failed password for invalid user temp1 from 34.73.39.215 port 53452 ssh2	2020-05-11 15:23:58
189.127.9.226	attackspambots	Found by fail2ban	2020-05-11 15:28:10
67.205.135.127	attackspambots	<6 unauthorized SSH connections	2020-05-11 15:55:02
162.243.136.203	attackspambots	" "	2020-05-11 15:46:20
194.182.71.107	attack	$f2bV_matches	2020-05-11 15:18:40
103.79.90.72	attack	srv02 SSH BruteForce Attacks 22 ..	2020-05-11 15:10:45
120.148.222.243	attackbotsspam	Invalid user ubuntu from 120.148.222.243 port 40332	2020-05-11 15:25:17
113.160.173.164	attack	Scanning my IP for 2 days now. One port a minute. Bouncing off a few other ip addresses. China, Indonesia, France, Singapore, Egypt, and a few other countries.	2020-05-11 15:43:44
176.31.102.37	attackspambots	(sshd) Failed SSH login from 176.31.102.37 (FR/France/ns389831.ip-176-31-102.eu): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 11 09:18:09 s1 sshd[17869]: Invalid user test from 176.31.102.37 port 50901 May 11 09:18:12 s1 sshd[17869]: Failed password for invalid user test from 176.31.102.37 port 50901 ssh2 May 11 10:11:33 s1 sshd[20168]: Invalid user ftpuser from 176.31.102.37 port 57920 May 11 10:11:35 s1 sshd[20168]: Failed password for invalid user ftpuser from 176.31.102.37 port 57920 ssh2 May 11 10:15:11 s1 sshd[20331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.102.37 user=root	2020-05-11 15:24:48

Recently Reported IPs

139.200.106.31	139.199.91.15	118.249.185.154	139.200.13.211
139.200.2.19	139.2.165.233	139.200.21.235	139.201.113.19
139.200.8.44	139.200.21.19	139.200.106.44	139.200.32.10
139.201.114.37	118.249.20.18	118.249.20.206	118.249.20.86
118.249.205.141	118.249.205.25	118.249.205.64	118.249.206.221