139.82.28.39 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.82.28.39
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41491
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.82.28.39.			IN	A

;; AUTHORITY SECTION:
.			157	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 48 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:41:13 CST 2022
;; MSG SIZE  rcvd: 105

Host info

39.28.82.139.in-addr.arpa domain name pointer amendoa.ldhs.cetuc.puc-rio.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
39.28.82.139.in-addr.arpa	name = amendoa.ldhs.cetuc.puc-rio.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.203.122.149	attackspam	Sep 24 03:16:13 MK-Soft-VM5 sshd[18762]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.122.149 Sep 24 03:16:16 MK-Soft-VM5 sshd[18762]: Failed password for invalid user www from 159.203.122.149 port 55364 ssh2 ...	2019-09-24 09:30:47
186.30.103.250	attackbotsspam	PHI,WP GET /wp-login.php	2019-09-24 09:18:44
95.226.138.149	attackspambots	[MonSep2323:06:10.6928242019][:error][pid11100:tid47560275416832][client95.226.138.149:62576][client95.226.138.149]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles$disablethisruleifyourequireaccesstofilesthatendwith.sql$"][severity"CRITICAL"][hostname"boltonholding.com"][uri"/database/web.sql"][unique_id"XYkzwtsUuVZFQayW3TDzUQAAAMg"][MonSep2323:06:19.7410122019][:error][pid10871:tid47560300631808][client95.226.138.149:63740][client95.226.138.149]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles$disablethisruleifyourequireaccesstofilesthatendwith.sql$"][se	2019-09-24 09:39:59
181.57.133.130	attackbots	Automatic report - Banned IP Access	2019-09-24 09:37:35
114.80.222.203	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2019-09-24 09:25:05
84.254.28.47	attack	SSH Brute-Force reported by Fail2Ban	2019-09-24 09:14:35
36.239.144.227	attack	Honeypot attack, port: 23, PTR: 36-239-144-227.dynamic-ip.hinet.net.	2019-09-24 09:16:21
182.74.25.246	attack	Sep 24 03:15:53 rpi sshd[26956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.74.25.246 Sep 24 03:15:55 rpi sshd[26956]: Failed password for invalid user weblogic from 182.74.25.246 port 38274 ssh2	2019-09-24 09:21:07
180.242.134.253	attack	34567/tcp [2019-09-23]1pkt	2019-09-24 09:17:10
42.116.224.160	attackbots	23/tcp [2019-09-23]1pkt	2019-09-24 09:33:48
103.60.126.65	attackbots	Sep 23 17:54:31 hcbb sshd\[28072\]: Invalid user certificat from 103.60.126.65 Sep 23 17:54:31 hcbb sshd\[28072\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.60.126.65 Sep 23 17:54:34 hcbb sshd\[28072\]: Failed password for invalid user certificat from 103.60.126.65 port 50641 ssh2 Sep 23 17:59:15 hcbb sshd\[28451\]: Invalid user cisco from 103.60.126.65 Sep 23 17:59:15 hcbb sshd\[28451\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.60.126.65	2019-09-24 12:01:57
222.186.15.101	attack	Sep 24 03:02:31 MK-Soft-VM4 sshd[30604]: Failed password for root from 222.186.15.101 port 27532 ssh2 Sep 24 03:02:36 MK-Soft-VM4 sshd[30604]: Failed password for root from 222.186.15.101 port 27532 ssh2 ...	2019-09-24 09:07:53
171.236.91.38	attackspambots	Honeypot attack, port: 23, PTR: dynamic-adsl.viettel.vn.	2019-09-24 09:35:34
218.92.0.143	attackspam	Sep 24 07:13:10 lcl-usvr-02 sshd[28810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.143 user=root Sep 24 07:13:12 lcl-usvr-02 sshd[28810]: Failed password for root from 218.92.0.143 port 4909 ssh2 Sep 24 07:13:25 lcl-usvr-02 sshd[28810]: error: maximum authentication attempts exceeded for root from 218.92.0.143 port 4909 ssh2 [preauth] Sep 24 07:13:10 lcl-usvr-02 sshd[28810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.143 user=root Sep 24 07:13:12 lcl-usvr-02 sshd[28810]: Failed password for root from 218.92.0.143 port 4909 ssh2 Sep 24 07:13:25 lcl-usvr-02 sshd[28810]: error: maximum authentication attempts exceeded for root from 218.92.0.143 port 4909 ssh2 [preauth] Sep 24 07:13:28 lcl-usvr-02 sshd[28916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.143 user=root Sep 24 07:13:30 lcl-usvr-02 sshd[28916]: Failed password for root from 218.92.0.143 p	2019-09-24 09:12:12
218.26.97.162	attack	Email IMAP login failure	2019-09-24 09:30:03

Recently Reported IPs

139.82.28.42	139.82.127.1	139.9.0.33	139.9.104.113
139.9.102.70	139.82.86.145	139.9.0.105	139.82.74.131
139.9.105.186	118.254.209.108	139.9.125.180	139.9.135.23
139.9.113.234	139.9.133.196	139.9.135.101	139.9.139.220
139.9.135.41	139.9.141.41	139.9.137.176	139.9.143.80