139.9.149.245 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Huawei Public Cloud Service

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Triggered: repeated knocking on closed ports.	2019-12-30 15:23:53

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.9.149.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39734
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.9.149.245.			IN	A

;; AUTHORITY SECTION:
.			545	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019123000 1800 900 604800 86400

;; Query time: 1087 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 30 15:30:28 CST 2019
;; MSG SIZE  rcvd: 117

Host info

245.149.9.139.in-addr.arpa domain name pointer ecs-139-9-149-245.compute.hwclouds-dns.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
245.149.9.139.in-addr.arpa	name = ecs-139-9-149-245.compute.hwclouds-dns.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
165.22.255.242	attackspambots	165.22.255.242 - - [12/Jul/2020:12:55:36 +0100] "POST /wp-login.php HTTP/1.1" 200 1999 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.255.242 - - [12/Jul/2020:12:55:39 +0100] "POST /wp-login.php HTTP/1.1" 200 2040 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.255.242 - - [12/Jul/2020:12:55:42 +0100] "POST /wp-login.php HTTP/1.1" 200 2037 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-13 01:02:42
183.129.174.68	attackspambots	Invalid user ariel from 183.129.174.68 port 22009	2020-07-13 00:57:57
119.184.114.147	attackspam	Jul 12 14:33:57 [host] kernel: [224732.570885] [UF Jul 12 14:33:57 [host] kernel: [224732.570928] [UF Jul 12 14:33:57 [host] kernel: [224732.571032] [UF Jul 12 14:33:57 [host] kernel: [224732.571155] [UF Jul 12 14:33:57 [host] kernel: [224732.571187] [UF Jul 12 14:33:57 [host] kernel: [224732.571260] [UF Jul 12 14:33:57 [host] kernel: [224732.571559] [UF Jul 12 14:33:57 [host] kernel: [224732.571565] [UF Jul 12 14:33:57 [host] kernel: [224732.571769] [UF Jul 12 14:33:57 [host] kernel: [224732.571772] [UF	2020-07-13 00:56:37
134.122.108.208	attack	[Sun Jun 21 07:17:43 2020] - Syn Flood From IP: 134.122.108.208 Port: 53062	2020-07-13 00:47:14
120.132.103.67	attack	...	2020-07-13 00:44:02
49.234.131.75	attack	Jul 12 07:22:19 server1 sshd\[14906\]: Failed password for invalid user gam from 49.234.131.75 port 35278 ssh2 Jul 12 07:24:53 server1 sshd\[15818\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.131.75 user=mail Jul 12 07:24:54 server1 sshd\[15818\]: Failed password for mail from 49.234.131.75 port 33808 ssh2 Jul 12 07:27:16 server1 sshd\[16567\]: Invalid user anvisma from 49.234.131.75 Jul 12 07:27:16 server1 sshd\[16567\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.131.75 ...	2020-07-13 01:01:02
175.124.43.162	attackbots	Jul 12 16:14:17 l02a sshd[13654]: Invalid user murakami from 175.124.43.162 Jul 12 16:14:17 l02a sshd[13654]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.124.43.162 Jul 12 16:14:17 l02a sshd[13654]: Invalid user murakami from 175.124.43.162 Jul 12 16:14:19 l02a sshd[13654]: Failed password for invalid user murakami from 175.124.43.162 port 60086 ssh2	2020-07-13 00:53:25
192.144.230.43	attackspam	Invalid user atena from 192.144.230.43 port 36436	2020-07-13 00:59:18
167.172.201.94	attackspam	Jul 12 18:32:28 piServer sshd[19373]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.201.94 Jul 12 18:32:29 piServer sshd[19373]: Failed password for invalid user leah from 167.172.201.94 port 52286 ssh2 Jul 12 18:34:54 piServer sshd[19589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.201.94 ...	2020-07-13 00:36:01
123.207.211.71	attack	SSH Bruteforce attack	2020-07-13 00:45:06
138.197.25.187	attackbots	Jul 12 10:22:08 NPSTNNYC01T sshd[2624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.25.187 Jul 12 10:22:10 NPSTNNYC01T sshd[2624]: Failed password for invalid user liguanjin from 138.197.25.187 port 53400 ssh2 Jul 12 10:25:17 NPSTNNYC01T sshd[2849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.25.187 ...	2020-07-13 00:44:44
188.254.0.160	attackspam	Jul 12 16:12:19 ip-172-31-62-245 sshd\[13484\]: Invalid user technical from 188.254.0.160\ Jul 12 16:12:21 ip-172-31-62-245 sshd\[13484\]: Failed password for invalid user technical from 188.254.0.160 port 52976 ssh2\ Jul 12 16:15:34 ip-172-31-62-245 sshd\[13511\]: Invalid user egg from 188.254.0.160\ Jul 12 16:15:36 ip-172-31-62-245 sshd\[13511\]: Failed password for invalid user egg from 188.254.0.160 port 48902 ssh2\ Jul 12 16:18:41 ip-172-31-62-245 sshd\[13543\]: Invalid user server from 188.254.0.160\	2020-07-13 00:29:20
185.143.72.16	attack	2020-07-12 18:25:50 dovecot_login authenticator failed for \(User\) \[185.143.72.16\]: 535 Incorrect authentication data 2020-07-12 18:30:56 dovecot_login authenticator failed for \(User\) \[185.143.72.16\]: 535 Incorrect authentication data \(set_id=hawaii50@hosting1.no-server.de\) 2020-07-12 18:31:13 dovecot_login authenticator failed for \(User\) \[185.143.72.16\]: 535 Incorrect authentication data \(set_id=hawaii50@hosting1.no-server.de\) 2020-07-12 18:31:17 dovecot_login authenticator failed for \(User\) \[185.143.72.16\]: 535 Incorrect authentication data \(set_id=hawaii50@hosting1.no-server.de\) 2020-07-12 18:31:32 dovecot_login authenticator failed for \(User\) \[185.143.72.16\]: 535 Incorrect authentication data \(set_id=hawaii50@hosting1.no-server.de\) ...	2020-07-13 00:44:20
1.54.133.10	attackbotsspam	Jul 12 18:25:49 haigwepa sshd[7292]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.54.133.10 Jul 12 18:25:51 haigwepa sshd[7292]: Failed password for invalid user info from 1.54.133.10 port 54572 ssh2 ...	2020-07-13 00:34:06
46.38.145.247	attackspambots	2020-07-12 16:29:31 auth_plain authenticator failed for (User) [46.38.145.247]: 535 Incorrect authentication data (set_id=mue@csmailer.org) 2020-07-12 16:30:36 auth_plain authenticator failed for (User) [46.38.145.247]: 535 Incorrect authentication data (set_id=niceguy@csmailer.org) 2020-07-12 16:31:36 auth_plain authenticator failed for (User) [46.38.145.247]: 535 Incorrect authentication data (set_id=mikhaela@csmailer.org) 2020-07-12 16:32:46 auth_plain authenticator failed for (User) [46.38.145.247]: 535 Incorrect authentication data (set_id=MSBuild@csmailer.org) 2020-07-12 16:33:50 auth_plain authenticator failed for (User) [46.38.145.247]: 535 Incorrect authentication data (set_id=mromer@csmailer.org) ...	2020-07-13 00:32:33

Recently Reported IPs

117.139.251.249	150.109.45.228	182.92.235.86	59.35.94.79
21.83.14.3	118.239.22.22	49.206.15.22	60.161.0.93
31.47.103.33	14.142.99.210	113.224.77.102	192.121.11.247
125.161.136.112	119.115.94.44	178.156.202.93	195.216.133.8
217.112.142.141	113.1.40.17	109.177.51.246	46.176.47.124