139.99.134.195

Basic Info

City: unknown

Region: unknown

Country: Australia

Internet Service Provider: OVH Australia Pty Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	GET /configuration.php-bak GET /configuration.php_bak GET /configuration.php.bak GET /configuration.bak GET /configuration.php_new GET /configuration.php.old GET /configuration.php.new GET /configuration.php_Old GET /configuration.php_old	2020-10-12 07:31:56
attackbotsspam	GET /configuration.php-bak GET /configuration.php_bak GET /configuration.php.bak GET /configuration.bak GET /configuration.php_new GET /configuration.php.old GET /configuration.php.new GET /configuration.php_Old GET /configuration.php_old	2020-10-11 23:47:20
attackbots	(mod_security) mod_security (id:210730) triggered by 139.99.134.195 (AU/Australia/vps-62ae2a86.vps.ovh.ca): 5 in the last 3600 secs	2020-10-11 15:46:23
attackbotsspam	(mod_security) mod_security (id:210730) triggered by 139.99.134.195 (AU/Australia/vps-62ae2a86.vps.ovh.ca): 5 in the last 3600 secs	2020-10-11 09:04:23
attackbots	(mod_security) mod_security (id:210492) triggered by 139.99.134.195 (AU/Australia/vps-62ae2a86.vps.ovh.ca): 5 in the last 3600 secs	2020-09-13 00:35:43
attackspam	(mod_security) mod_security (id:210492) triggered by 139.99.134.195 (AU/Australia/vps-62ae2a86.vps.ovh.ca): 5 in the last 3600 secs	2020-09-12 16:34:51

Comments on same subnet:

IP	Type	Details	Datetime
139.99.134.177	attackspam	reported through recidive - multiple failed attempts(SSH)	2020-06-07 06:59:34
139.99.134.177	attackbotsspam	May 28 14:02:41 ajax sshd[32401]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.134.177 May 28 14:02:43 ajax sshd[32401]: Failed password for invalid user grogers from 139.99.134.177 port 58774 ssh2	2020-05-28 21:57:47
139.99.134.177	attackspam	May 10 18:34:21 web1 sshd\[5271\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.134.177 user=root May 10 18:34:24 web1 sshd\[5271\]: Failed password for root from 139.99.134.177 port 50702 ssh2 May 10 18:38:50 web1 sshd\[5645\]: Invalid user ziad from 139.99.134.177 May 10 18:38:50 web1 sshd\[5645\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.134.177 May 10 18:38:52 web1 sshd\[5645\]: Failed password for invalid user ziad from 139.99.134.177 port 53890 ssh2	2020-05-11 12:41:41
139.99.134.167	attackspambots	2020-04-21T00:47:28.9865681495-001 sshd[4639]: Invalid user zs from 139.99.134.167 port 59008 2020-04-21T00:47:28.9912971495-001 sshd[4639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.ip-139-99-134.net 2020-04-21T00:47:28.9865681495-001 sshd[4639]: Invalid user zs from 139.99.134.167 port 59008 2020-04-21T00:47:30.7542451495-001 sshd[4639]: Failed password for invalid user zs from 139.99.134.167 port 59008 ssh2 2020-04-21T00:54:31.4658311495-001 sshd[5012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.ip-139-99-134.net user=root 2020-04-21T00:54:33.9676581495-001 sshd[5012]: Failed password for root from 139.99.134.167 port 47834 ssh2 ...	2020-04-21 16:16:23
139.99.134.167	attackbots	Apr 20 16:19:45 itv-usvr-01 sshd[15353]: Invalid user admin from 139.99.134.167 Apr 20 16:19:45 itv-usvr-01 sshd[15353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.134.167 Apr 20 16:19:45 itv-usvr-01 sshd[15353]: Invalid user admin from 139.99.134.167 Apr 20 16:19:47 itv-usvr-01 sshd[15353]: Failed password for invalid user admin from 139.99.134.167 port 36920 ssh2 Apr 20 16:26:26 itv-usvr-01 sshd[15629]: Invalid user zv from 139.99.134.167	2020-04-20 19:51:32

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.134.195
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36218
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.99.134.195.			IN	A

;; AUTHORITY SECTION:
.			171	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020091200 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 12 16:34:47 CST 2020
;; MSG SIZE  rcvd: 118

Host info

195.134.99.139.in-addr.arpa domain name pointer vps-62ae2a86.vps.ovh.ca.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
195.134.99.139.in-addr.arpa	name = vps-62ae2a86.vps.ovh.ca.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
41.41.91.210	attack	DATE:2019-09-03 10:06:11, IP:41.41.91.210, PORT:1433 - MSSQL brute force auth on a honeypot server (epe-dc)	2019-09-03 21:16:08
218.98.40.135	attackspambots	Sep 3 15:34:54 lnxded63 sshd[13468]: Failed password for root from 218.98.40.135 port 48345 ssh2 Sep 3 15:34:54 lnxded63 sshd[13468]: Failed password for root from 218.98.40.135 port 48345 ssh2	2019-09-03 22:15:36
89.218.146.134	attackspambots	Unauthorized connection attempt from IP address 89.218.146.134 on Port 445(SMB)	2019-09-03 21:59:14
42.104.97.227	attack	Sep 3 16:39:45 vtv3 sshd\[11824\]: Invalid user seymour from 42.104.97.227 port 44185 Sep 3 16:39:45 vtv3 sshd\[11824\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.104.97.227 Sep 3 16:39:47 vtv3 sshd\[11824\]: Failed password for invalid user seymour from 42.104.97.227 port 44185 ssh2 Sep 3 16:43:48 vtv3 sshd\[13922\]: Invalid user teste from 42.104.97.227 port 7024 Sep 3 16:43:48 vtv3 sshd\[13922\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.104.97.227 Sep 3 16:56:40 vtv3 sshd\[20520\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.104.97.227 user=www-data Sep 3 16:56:42 vtv3 sshd\[20520\]: Failed password for www-data from 42.104.97.227 port 26522 ssh2 Sep 3 17:00:53 vtv3 sshd\[22874\]: Invalid user tanja from 42.104.97.227 port 2840 Sep 3 17:00:53 vtv3 sshd\[22874\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser	2019-09-03 22:18:03
223.99.19.41	attackbots	Honeypot attack, port: 23, PTR: PTR record not found	2019-09-03 22:00:11
137.63.184.100	attack	Sep 3 11:16:03 yabzik sshd[22822]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.63.184.100 Sep 3 11:16:05 yabzik sshd[22822]: Failed password for invalid user devol from 137.63.184.100 port 52956 ssh2 Sep 3 11:21:28 yabzik sshd[24653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.63.184.100	2019-09-03 22:04:02
23.126.140.33	attackspam	Sep 3 03:54:50 hiderm sshd\[13687\]: Invalid user gamer from 23.126.140.33 Sep 3 03:54:50 hiderm sshd\[13687\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23-126-140-33.lightspeed.miamfl.sbcglobal.net Sep 3 03:54:51 hiderm sshd\[13687\]: Failed password for invalid user gamer from 23.126.140.33 port 57870 ssh2 Sep 3 04:00:09 hiderm sshd\[14153\]: Invalid user postgres from 23.126.140.33 Sep 3 04:00:09 hiderm sshd\[14153\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23-126-140-33.lightspeed.miamfl.sbcglobal.net	2019-09-03 22:12:06
196.196.216.135	attackbotsspam	Attacks on 3/9/2019	2019-09-03 21:13:18
149.202.57.244	attackspam	2019-09-03T10:02:31.879430abusebot-5.cloudsearch.cf sshd\[29278\]: Invalid user administrator from 149.202.57.244 port 57750	2019-09-03 21:27:55
177.96.205.25	attackbots	Honeypot attack, port: 81, PTR: 177.96.205.25.dynamic.adsl.gvt.net.br.	2019-09-03 21:47:01
35.238.227.76	attackspambots	"Test Inject 130'a=0"	2019-09-03 21:21:45
206.189.222.181	attackbots	Sep 3 11:35:36 *** sshd[2991]: Invalid user rpc from 206.189.222.181	2019-09-03 21:54:25
103.249.233.101	attack	Honeypot attack, port: 445, PTR: PTR record not found	2019-09-03 21:40:22
125.106.74.14	attack	Sep 3 10:05:55 apollo sshd\[22718\]: Invalid user admin from 125.106.74.14Sep 3 10:05:57 apollo sshd\[22718\]: Failed password for invalid user admin from 125.106.74.14 port 51599 ssh2Sep 3 10:05:59 apollo sshd\[22718\]: Failed password for invalid user admin from 125.106.74.14 port 51599 ssh2 ...	2019-09-03 21:28:55
87.226.148.67	attackbots	Sep 3 13:47:05 mail sshd[897]: Invalid user jon from 87.226.148.67 Sep 3 13:47:05 mail sshd[897]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.226.148.67 Sep 3 13:47:05 mail sshd[897]: Invalid user jon from 87.226.148.67 Sep 3 13:47:07 mail sshd[897]: Failed password for invalid user jon from 87.226.148.67 port 40426 ssh2 Sep 3 13:54:03 mail sshd[12959]: Invalid user derik from 87.226.148.67 ...	2019-09-03 21:14:39

Recently Reported IPs

172.252.201.122	14.247.251.101	23.97.70.165	202.129.164.186
108.216.61.173	177.23.191.189	52.149.160.100	45.129.33.84
60.243.125.245	170.150.8.13	209.212.194.195	197.58.102.58
117.222.235.21	252.77.117.145	139.194.125.224	125.230.48.98
103.107.187.18	218.72.210.62	152.136.237.47	5.36.17.179