City: unknown
Region: unknown
Country: Singapore
Internet Service Provider: PT. Cloud Hosting Indonesia
Hostname: unknown
Organization: OVH SAS
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attackspambots | Brute forcing Wordpress login |
2019-08-13 14:17:31 |
| attackspambots | xmlrpc attack |
2019-07-23 13:05:11 |
| attack | www.ft-1848-basketball.de 139.99.2.13 \[23/Jun/2019:12:05:17 +0200\] "POST /wp-login.php HTTP/1.1" 200 2174 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" www.ft-1848-basketball.de 139.99.2.13 \[23/Jun/2019:12:05:18 +0200\] "POST /wp-login.php HTTP/1.1" 200 2144 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2019-06-23 18:24:34 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 139.99.222.79 | spambotsattackproxynormal | Super win |
2022-06-06 06:47:34 |
| 139.99.203.12 | attackspambots | Oct 6 18:07:32 scw-gallant-ride sshd[18950]: Failed password for root from 139.99.203.12 port 50320 ssh2 |
2020-10-07 02:23:59 |
| 139.99.203.12 | attack | $f2bV_matches |
2020-10-06 18:20:20 |
| 139.99.219.208 | attackbots | 5x Failed Password |
2020-10-04 08:15:40 |
| 139.99.238.150 | attackbots | $f2bV_matches |
2020-10-04 03:14:53 |
| 139.99.219.208 | attackbots | detected by Fail2Ban |
2020-10-04 00:41:33 |
| 139.99.238.150 | attackbots | Oct 3 08:51:54 itv-usvr-01 sshd[28621]: Invalid user cloudera from 139.99.238.150 Oct 3 08:51:54 itv-usvr-01 sshd[28621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.238.150 Oct 3 08:51:54 itv-usvr-01 sshd[28621]: Invalid user cloudera from 139.99.238.150 Oct 3 08:51:56 itv-usvr-01 sshd[28621]: Failed password for invalid user cloudera from 139.99.238.150 port 56232 ssh2 |
2020-10-03 19:07:48 |
| 139.99.219.208 | attackspam | detected by Fail2Ban |
2020-10-03 16:30:33 |
| 139.99.238.150 | attack | Sep 30 12:05:18 rocket sshd[6208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.238.150 Sep 30 12:05:20 rocket sshd[6208]: Failed password for invalid user postmaster from 139.99.238.150 port 59568 ssh2 ... |
2020-10-01 03:03:51 |
| 139.99.219.208 | attack | [f2b] sshd bruteforce, retries: 1 |
2020-10-01 02:59:10 |
| 139.99.238.150 | attackspam | Sep 30 12:05:18 rocket sshd[6208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.238.150 Sep 30 12:05:20 rocket sshd[6208]: Failed password for invalid user postmaster from 139.99.238.150 port 59568 ssh2 ... |
2020-09-30 19:16:49 |
| 139.99.203.12 | attackspambots | Sep 24 11:34:25 gw1 sshd[17805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.203.12 Sep 24 11:34:28 gw1 sshd[17805]: Failed password for invalid user sandbox from 139.99.203.12 port 56940 ssh2 ... |
2020-09-24 22:23:01 |
| 139.99.203.12 | attackspam | Sep 24 11:12:30 gw1 sshd[17259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.203.12 Sep 24 11:12:32 gw1 sshd[17259]: Failed password for invalid user minecraft from 139.99.203.12 port 34858 ssh2 ... |
2020-09-24 14:15:22 |
| 139.99.203.12 | attackbots | 2020-09-24T02:28:50.439441hostname sshd[12857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.203.12 user=root 2020-09-24T02:28:52.294815hostname sshd[12857]: Failed password for root from 139.99.203.12 port 37342 ssh2 2020-09-24T02:31:52.026106hostname sshd[14044]: Invalid user teamspeak from 139.99.203.12 port 53466 ... |
2020-09-24 05:42:47 |
| 139.99.239.230 | attackbotsspam | 139.99.239.230 (AU/Australia/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 23 08:05:36 server2 sshd[29455]: Failed password for root from 139.99.239.230 port 54690 ssh2 Sep 23 08:06:25 server2 sshd[29972]: Failed password for root from 211.23.167.152 port 54474 ssh2 Sep 23 08:08:49 server2 sshd[31240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.18.159.82 user=root Sep 23 08:05:51 server2 sshd[29627]: Failed password for root from 106.13.176.163 port 47966 ssh2 Sep 23 08:05:49 server2 sshd[29627]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.176.163 user=root IP Addresses Blocked: |
2020-09-23 20:36:18 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.2.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24265
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.99.2.13. IN A
;; AUTHORITY SECTION:
. 3457 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019050100 1800 900 604800 86400
;; Query time: 1 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu May 02 01:00:47 +08 2019
;; MSG SIZE rcvd: 115
13.2.99.139.in-addr.arpa domain name pointer sgx51.cloudhost.id.
Server: 67.207.67.3
Address: 67.207.67.3#53
Non-authoritative answer:
13.2.99.139.in-addr.arpa name = sgx51.cloudhost.id.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 14.161.45.78 | attackspambots | "Fail2Ban detected SSH brute force attempt" |
2019-11-02 04:33:28 |
| 140.213.52.35 | attack | Unauthorized connection attempt from IP address 140.213.52.35 on Port 445(SMB) |
2019-11-02 05:04:32 |
| 144.217.79.233 | attackbots | invalid user |
2019-11-02 04:57:28 |
| 101.200.56.77 | attackspambots | Automatic report - Banned IP Access |
2019-11-02 05:01:30 |
| 185.80.55.93 | attackbotsspam | slow and persistent scanner |
2019-11-02 05:03:10 |
| 113.53.18.234 | attackspambots | Unauthorized connection attempt from IP address 113.53.18.234 on Port 445(SMB) |
2019-11-02 05:08:10 |
| 113.181.168.180 | attack | "Fail2Ban detected SSH brute force attempt" |
2019-11-02 04:46:24 |
| 77.42.114.208 | attackbotsspam | Automatic report - Port Scan Attack |
2019-11-02 04:38:36 |
| 119.196.83.18 | attackbots | 2019-11-01T20:15:53.711606abusebot-5.cloudsearch.cf sshd\[15696\]: Invalid user hp from 119.196.83.18 port 54240 2019-11-01T20:15:53.716586abusebot-5.cloudsearch.cf sshd\[15696\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.196.83.18 |
2019-11-02 04:27:06 |
| 178.128.52.97 | attackbots | Nov 1 20:15:48 *** sshd[10277]: User root from 178.128.52.97 not allowed because not listed in AllowUsers |
2019-11-02 04:35:20 |
| 116.132.37.30 | attackbots | 1433/tcp [2019-11-01]1pkt |
2019-11-02 04:36:04 |
| 148.76.175.130 | attackbots | RDP Bruteforce |
2019-11-02 04:40:18 |
| 202.29.56.202 | attackbots | Automatic report - SSH Brute-Force Attack |
2019-11-02 04:31:54 |
| 124.248.191.240 | attackbots | 23/tcp [2019-11-01]1pkt |
2019-11-02 04:51:39 |
| 106.13.59.20 | attackbotsspam | Automatic report - Banned IP Access |
2019-11-02 05:07:24 |