139.99.141.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Australia

Internet Service Provider: CreeperHost LTD

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	web Attack on Wordpress site	2019-11-30 06:30:06

Comments on same subnet:

IP	Type	Details	Datetime
139.99.141.237	attackbots	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: svr02-vs02.svr02.goau.net.au.	2020-09-08 01:27:46
139.99.141.237	attackspambots	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: svr02-vs02.svr02.goau.net.au.	2020-09-07 16:53:12
139.99.141.237	attack	Fail2Ban Ban Triggered	2020-09-01 00:44:29
139.99.141.237	attackspam	Found User-Agent associated with security scanner Request Missing a Host Header	2020-06-08 17:15:49
139.99.141.237	attackbots	W 31101,/var/log/nginx/access.log,-,-	2020-04-11 00:12:38
139.99.141.237	attackbotsspam	port scan and connect, tcp 80 (http)	2019-12-21 08:41:28
139.99.141.237	attackspambots	Detected by Maltrail	2019-11-14 09:07:15

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.141.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10160
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.99.141.2.			IN	A

;; AUTHORITY SECTION:
.			230	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112901 1800 900 604800 86400

;; Query time: 107 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 30 06:30:03 CST 2019
;; MSG SIZE  rcvd: 116

Host info

2.141.99.139.in-addr.arpa domain name pointer ip2.ip-139-99-141.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.141.99.139.in-addr.arpa	name = ip2.ip-139-99-141.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.189.248.114	attack	Icarus honeypot on github	2020-04-14 03:40:52
51.75.27.239	attackbots	Apr 13 23:22:45 gw1 sshd[19646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.27.239 Apr 13 23:22:47 gw1 sshd[19646]: Failed password for invalid user alex from 51.75.27.239 port 36216 ssh2 ...	2020-04-14 03:27:28
71.6.158.166	attack	Automatic report - Banned IP Access	2020-04-14 03:51:10
49.235.87.98	attackbots	Apr 13 09:25:16 km20725 sshd[14720]: Invalid user madison from 49.235.87.98 Apr 13 09:25:16 km20725 sshd[14720]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.87.98 Apr 13 09:25:18 km20725 sshd[14720]: Failed password for invalid user madison from 49.235.87.98 port 32892 ssh2 Apr 13 09:25:18 km20725 sshd[14720]: Received disconnect from 49.235.87.98: 11: Bye Bye [preauth] Apr 13 09:32:56 km20725 sshd[14982]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.87.98 user=r.r Apr 13 09:32:57 km20725 sshd[14982]: Failed password for r.r from 49.235.87.98 port 52246 ssh2 Apr 13 09:32:57 km20725 sshd[14982]: Received disconnect from 49.235.87.98: 11: Bye Bye [preauth] Apr 13 09:37:47 km20725 sshd[15204]: Invalid user fliet from 49.235.87.98 Apr 13 09:37:47 km20725 sshd[15204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.87.98 Apr 13 ........ -------------------------------	2020-04-14 03:35:17
109.245.57.64	attackspam	High volume WP login attempts -nov	2020-04-14 03:20:25
148.66.135.178	attackspambots	Apr 13 21:05:33 eventyay sshd[6690]: Failed password for root from 148.66.135.178 port 34444 ssh2 Apr 13 21:09:49 eventyay sshd[6976]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.135.178 Apr 13 21:09:51 eventyay sshd[6976]: Failed password for invalid user clamav from 148.66.135.178 port 43920 ssh2 ...	2020-04-14 03:19:30
45.95.168.245	attackbotsspam	auto-add	2020-04-14 03:56:36
134.209.7.179	attackbotsspam	20 attempts against mh-ssh on echoip	2020-04-14 03:39:59
103.145.12.53	attackspam	Port Scan: Events[3] countPorts[3]: 22 443 80 ..	2020-04-14 03:50:06
185.147.215.8	attackbots	[2020-04-13 13:42:25] NOTICE[1170] chan_sip.c: Registration from '' failed for '185.147.215.8:51286' - Wrong password [2020-04-13 13:42:25] SECURITY[1184] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-13T13:42:25.611-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="9762",SessionID="0x7f6c0801d1d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215.8/51286",Challenge="0518b673",ReceivedChallenge="0518b673",ReceivedHash="171915bb28f606b633ed1808e67ed23e" [2020-04-13 13:43:03] NOTICE[1170] chan_sip.c: Registration from '' failed for '185.147.215.8:56613' - Wrong password [2020-04-13 13:43:03] SECURITY[1184] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-13T13:43:03.901-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="4057",SessionID="0x7f6c08033fe8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215.8 ...	2020-04-14 03:48:05
80.211.45.85	attack	SSH Brute Force	2020-04-14 03:19:03
193.112.186.231	attackbots	SSH Login Bruteforce	2020-04-14 03:33:23
173.212.234.9	attack	2020-04-13T20:21:45.222109vps773228.ovh.net sshd[20606]: Invalid user sinus from 173.212.234.9 port 58998 2020-04-13T20:21:45.244537vps773228.ovh.net sshd[20606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.212.234.9 2020-04-13T20:21:45.222109vps773228.ovh.net sshd[20606]: Invalid user sinus from 173.212.234.9 port 58998 2020-04-13T20:21:47.117603vps773228.ovh.net sshd[20606]: Failed password for invalid user sinus from 173.212.234.9 port 58998 ssh2 2020-04-13T20:23:28.337222vps773228.ovh.net sshd[21222]: Invalid user sinus from 173.212.234.9 port 41074 ...	2020-04-14 03:18:41
119.29.133.210	attackbots	$f2bV_matches	2020-04-14 03:53:53
60.168.42.64	attackspambots	(sshd) Failed SSH login from 60.168.42.64 (CN/China/-): 5 in the last 3600 secs	2020-04-14 03:34:43

Recently Reported IPs

122.51.49.9	121.22.111.110	121.130.93.2	121.66.224.9
119.29.203.1	108.162.210.154	134.209.24.63	119.29.10.2
118.98.127.1	118.24.114.1	117.157.15.2	115.112.143.1
114.118.96.2	114.112.58.1	119.90.3.21	113.200.236.6
111.93.200.5	111.68.104.1	221.232.130.26	111.231.119.1