139.199.94.65 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.199.94.100	attackbotsspam	Oct 13 10:58:58 h2427292 sshd\[1579\]: Invalid user yuka from 139.199.94.100 Oct 13 10:58:58 h2427292 sshd\[1579\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.94.100 Oct 13 10:59:00 h2427292 sshd\[1579\]: Failed password for invalid user yuka from 139.199.94.100 port 54048 ssh2 ...	2020-10-14 01:24:25
139.199.94.100	attackspam	$f2bV_matches	2020-10-13 16:34:04
139.199.94.100	attackspambots	bruteforce detected	2020-10-03 05:18:56
139.199.94.100	attackspam	Oct 2 08:18:35 hell sshd[15768]: Failed password for root from 139.199.94.100 port 49242 ssh2 Oct 2 08:30:45 hell sshd[18161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.94.100 ...	2020-10-03 00:42:30
139.199.94.100	attackbots	Oct 2 08:18:35 hell sshd[15768]: Failed password for root from 139.199.94.100 port 49242 ssh2 Oct 2 08:30:45 hell sshd[18161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.94.100 ...	2020-10-02 21:12:12
139.199.94.100	attack	Oct 2 08:18:35 hell sshd[15768]: Failed password for root from 139.199.94.100 port 49242 ssh2 Oct 2 08:30:45 hell sshd[18161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.94.100 ...	2020-10-02 17:44:57
139.199.94.100	attackbotsspam	k+ssh-bruteforce	2020-10-02 14:11:18
139.199.94.100	attack	Sep 29 14:59:16 localhost sshd[2613784]: Invalid user phil from 139.199.94.100 port 36000 ...	2020-09-30 00:48:12
139.199.94.51	attackspam	Sep 28 22:31:29 [host] sshd[31496]: Invalid user w Sep 28 22:31:29 [host] sshd[31496]: pam_unix(sshd: Sep 28 22:31:32 [host] sshd[31496]: Failed passwor	2020-09-29 04:53:22
139.199.94.51	attackbots	Sep 28 10:37:15 vps sshd[28567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.94.51 Sep 28 10:37:17 vps sshd[28567]: Failed password for invalid user test01 from 139.199.94.51 port 53350 ssh2 Sep 28 10:48:46 vps sshd[29310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.94.51 ...	2020-09-28 21:11:43
139.199.94.51	attackspambots	Sep 28 04:21:29 inter-technics sshd[11309]: Invalid user oracle from 139.199.94.51 port 59024 Sep 28 04:21:29 inter-technics sshd[11309]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.94.51 Sep 28 04:21:29 inter-technics sshd[11309]: Invalid user oracle from 139.199.94.51 port 59024 Sep 28 04:21:30 inter-technics sshd[11309]: Failed password for invalid user oracle from 139.199.94.51 port 59024 ssh2 Sep 28 04:25:09 inter-technics sshd[11600]: Invalid user deploy from 139.199.94.51 port 44354 ...	2020-09-28 13:17:21
139.199.94.51	attackbotsspam	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=root	2020-09-25 05:17:51
139.199.94.51	attack	s3.hscode.pl - SSH Attack	2020-09-22 00:20:41
139.199.94.51	attack	SSH Brute-Force Attack	2020-09-21 16:02:12
139.199.94.51	attack	Time: Sun Sep 20 22:53:43 2020 +0000 IP: 139.199.94.51 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 20 22:39:13 48-1 sshd[9726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.94.51 user=root Sep 20 22:39:15 48-1 sshd[9726]: Failed password for root from 139.199.94.51 port 55168 ssh2 Sep 20 22:48:10 48-1 sshd[10035]: Invalid user test from 139.199.94.51 port 37870 Sep 20 22:48:13 48-1 sshd[10035]: Failed password for invalid user test from 139.199.94.51 port 37870 ssh2 Sep 20 22:53:42 48-1 sshd[10260]: Invalid user ut99server from 139.199.94.51 port 38254	2020-09-21 07:56:07

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.94.65
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18759
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.199.94.65.			IN	A

;; AUTHORITY SECTION:
.			14	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 78 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:21:49 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 65.94.199.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 65.94.199.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
186.94.111.71	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 15-12-2019 06:25:09.	2019-12-15 20:25:28
122.51.59.149	attackspambots	Dec 15 12:03:51 sshgateway sshd\[24595\]: Invalid user wu from 122.51.59.149 Dec 15 12:03:51 sshgateway sshd\[24595\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.59.149 Dec 15 12:03:53 sshgateway sshd\[24595\]: Failed password for invalid user wu from 122.51.59.149 port 39438 ssh2	2019-12-15 20:04:51
51.79.87.90	attackbots	$f2bV_matches	2019-12-15 20:17:59
121.66.252.158	attack	Dec 14 22:47:18 home sshd[28788]: Invalid user toong from 121.66.252.158 port 34280 Dec 14 22:47:18 home sshd[28788]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.66.252.158 Dec 14 22:47:18 home sshd[28788]: Invalid user toong from 121.66.252.158 port 34280 Dec 14 22:47:20 home sshd[28788]: Failed password for invalid user toong from 121.66.252.158 port 34280 ssh2 Dec 14 23:02:25 home sshd[28926]: Invalid user torusjoe from 121.66.252.158 port 53734 Dec 14 23:02:25 home sshd[28926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.66.252.158 Dec 14 23:02:25 home sshd[28926]: Invalid user torusjoe from 121.66.252.158 port 53734 Dec 14 23:02:27 home sshd[28926]: Failed password for invalid user torusjoe from 121.66.252.158 port 53734 ssh2 Dec 14 23:09:46 home sshd[28977]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.66.252.158 user=root Dec 14 23:09:48 home sshd[28977]: Faile	2019-12-15 20:11:05
168.228.199.59	attackspam	Honeypot attack, port: 23, PTR: resources-168-228-199-59.yune.com.br.	2019-12-15 19:54:19
72.252.139.211	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-15 20:12:56
39.105.208.39	attack	Dec 15 05:53:58 host sshd\[7166\]: Invalid user bot from 39.105.208.39Dec 15 06:01:07 host sshd\[10534\]: Invalid user ta from 39.105.208.39Dec 15 06:08:13 host sshd\[14359\]: Invalid user debian-exim from 39.105.208.39 ...	2019-12-15 19:58:21
54.254.111.195	attackspam	serveres are UTC Lines containing failures of 54.254.111.195 Dec 13 19:50:36 tux2 sshd[21770]: Failed password for r.r from 54.254.111.195 port 57418 ssh2 Dec 13 19:50:37 tux2 sshd[21770]: Received disconnect from 54.254.111.195 port 57418:11: Bye Bye [preauth] Dec 13 19:50:37 tux2 sshd[21770]: Disconnected from authenticating user r.r 54.254.111.195 port 57418 [preauth] Dec 13 20:01:15 tux2 sshd[22367]: Invalid user info from 54.254.111.195 port 43538 Dec 13 20:01:15 tux2 sshd[22367]: Failed password for invalid user info from 54.254.111.195 port 43538 ssh2 Dec 13 20:01:15 tux2 sshd[22367]: Received disconnect from 54.254.111.195 port 43538:11: Bye Bye [preauth] Dec 13 20:01:15 tux2 sshd[22367]: Disconnected from invalid user info 54.254.111.195 port 43538 [preauth] Dec 13 20:06:59 tux2 sshd[22693]: Invalid user otemoyan from 54.254.111.195 port 43920 Dec 13 20:06:59 tux2 sshd[22693]: Failed password for invalid user otemoyan from 54.254.111.195 port 43920 ssh2 Dec 13 ........ ------------------------------	2019-12-15 19:44:27
222.186.175.155	attackspam	Dec 15 13:01:53 host sshd[32495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.155 user=root Dec 15 13:01:55 host sshd[32495]: Failed password for root from 222.186.175.155 port 18996 ssh2 ...	2019-12-15 20:07:12
114.242.245.32	attack	Dec 15 07:25:45 lnxmail61 sshd[20058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.242.245.32	2019-12-15 19:45:10
185.156.73.42	attackbotsspam	ET DROP Dshield Block Listed Source group 1 - port: 12943 proto: TCP cat: Misc Attack	2019-12-15 20:23:16
13.76.45.47	attackspam	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.76.45.47 user=bin Failed password for bin from 13.76.45.47 port 39170 ssh2 Invalid user guava from 13.76.45.47 port 49304 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.76.45.47 Failed password for invalid user guava from 13.76.45.47 port 49304 ssh2	2019-12-15 20:18:15
175.5.139.5	attack	Scanning	2019-12-15 20:11:26
113.248.150.98	attackbotsspam	Scanning	2019-12-15 19:46:22
175.138.108.78	attackbots	Dec 15 12:30:25 vps647732 sshd[29217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.138.108.78 Dec 15 12:30:28 vps647732 sshd[29217]: Failed password for invalid user euro from 175.138.108.78 port 42954 ssh2 ...	2019-12-15 19:47:13

Recently Reported IPs

139.200.106.31	139.199.91.15	118.249.185.154	139.200.13.211
139.200.2.19	139.2.165.233	139.200.21.235	139.201.113.19
139.200.8.44	139.200.21.19	139.200.106.44	139.200.32.10
139.201.114.37	118.249.20.18	118.249.20.206	118.249.20.86
118.249.205.141	118.249.205.25	118.249.205.64	118.249.206.221