139.99.21.240 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: PT. Cloud Hosting Indonesia

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Wordpress Admin Login attack	2019-06-26 12:31:37

Comments on same subnet:

IP	Type	Details	Datetime
139.99.219.208	attackbots	5x Failed Password	2020-10-04 08:15:40
139.99.219.208	attackbots	detected by Fail2Ban	2020-10-04 00:41:33
139.99.219.208	attackspam	detected by Fail2Ban	2020-10-03 16:30:33
139.99.219.208	attack	[f2b] sshd bruteforce, retries: 1	2020-10-01 02:59:10
139.99.219.208	attackbotsspam	Sep 14 18:54:06 h2865660 sshd[31938]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.219.208 user=root Sep 14 18:54:08 h2865660 sshd[31938]: Failed password for root from 139.99.219.208 port 46421 ssh2 Sep 14 19:02:56 h2865660 sshd[32559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.219.208 user=root Sep 14 19:02:58 h2865660 sshd[32559]: Failed password for root from 139.99.219.208 port 42740 ssh2 Sep 14 19:07:56 h2865660 sshd[301]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.219.208 user=root Sep 14 19:07:58 h2865660 sshd[301]: Failed password for root from 139.99.219.208 port 48476 ssh2 ...	2020-09-15 01:15:51
139.99.219.208	attackbots	Sep 14 07:04:13 django-0 sshd[31080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.219.208 user=root Sep 14 07:04:16 django-0 sshd[31080]: Failed password for root from 139.99.219.208 port 49588 ssh2 ...	2020-09-14 16:59:21
139.99.219.208	attack	Sep 13 18:45:35 h1745522 sshd[10733]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.219.208 user=root Sep 13 18:45:37 h1745522 sshd[10733]: Failed password for root from 139.99.219.208 port 32773 ssh2 Sep 13 18:49:45 h1745522 sshd[11288]: Invalid user ftp_boot from 139.99.219.208 port 59995 Sep 13 18:49:45 h1745522 sshd[11288]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.219.208 Sep 13 18:49:45 h1745522 sshd[11288]: Invalid user ftp_boot from 139.99.219.208 port 59995 Sep 13 18:49:47 h1745522 sshd[11288]: Failed password for invalid user ftp_boot from 139.99.219.208 port 59995 ssh2 Sep 13 18:53:44 h1745522 sshd[11700]: Invalid user jenkins from 139.99.219.208 port 58984 Sep 13 18:53:44 h1745522 sshd[11700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.219.208 Sep 13 18:53:44 h1745522 sshd[11700]: Invalid user jenkins from 139.99.219.208 ...	2020-09-14 01:19:24
139.99.219.208	attackbotsspam	Sep 13 00:07:18 ns382633 sshd\[14114\]: Invalid user bonny from 139.99.219.208 port 42879 Sep 13 00:07:18 ns382633 sshd\[14114\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.219.208 Sep 13 00:07:21 ns382633 sshd\[14114\]: Failed password for invalid user bonny from 139.99.219.208 port 42879 ssh2 Sep 13 00:15:10 ns382633 sshd\[15712\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.219.208 user=root Sep 13 00:15:11 ns382633 sshd\[15712\]: Failed password for root from 139.99.219.208 port 35770 ssh2	2020-09-13 17:12:40
139.99.219.208	attackbotsspam	SSH login attempts.	2020-09-07 04:17:23
139.99.219.208	attackspambots	(sshd) Failed SSH login from 139.99.219.208 (AU/Australia/-): 10 in the last 3600 secs	2020-09-06 19:51:51
139.99.219.208	attackspam	SSH Brute-Forcing (server2)	2020-09-05 04:10:44
139.99.219.208	attackspambots	Invalid user wanglj from 139.99.219.208 port 58809	2020-09-04 19:45:06
139.99.219.208	attackspambots	Sep 1 03:18:08 server sshd[11470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.219.208 user=root Sep 1 03:18:08 server sshd[11470]: User root from 139.99.219.208 not allowed because listed in DenyUsers Sep 1 03:18:10 server sshd[11470]: Failed password for invalid user root from 139.99.219.208 port 33941 ssh2 Sep 1 03:19:28 server sshd[24112]: Invalid user anurag from 139.99.219.208 port 48517 Sep 1 03:19:28 server sshd[24112]: Invalid user anurag from 139.99.219.208 port 48517 ...	2020-09-01 08:28:14
139.99.219.208	attackspambots	Aug 22 09:16:40 lukav-desktop sshd\[13193\]: Invalid user lbs from 139.99.219.208 Aug 22 09:16:40 lukav-desktop sshd\[13193\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.219.208 Aug 22 09:16:43 lukav-desktop sshd\[13193\]: Failed password for invalid user lbs from 139.99.219.208 port 55640 ssh2 Aug 22 09:21:10 lukav-desktop sshd\[13295\]: Invalid user lost from 139.99.219.208 Aug 22 09:21:10 lukav-desktop sshd\[13295\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.219.208	2020-08-22 14:52:53
139.99.219.208	attackbotsspam	Aug 10 14:00:01 vm0 sshd[8327]: Failed password for root from 139.99.219.208 port 33451 ssh2 ...	2020-08-10 21:14:20

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.21.240
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15610
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.99.21.240.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050901 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri May 10 09:34:14 +08 2019
;; MSG SIZE  rcvd: 117

Host info

240.21.99.139.in-addr.arpa domain name pointer ip240.ip-139-99-21.net.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
240.21.99.139.in-addr.arpa	name = ip240.ip-139-99-21.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
61.142.247.210	attackbotsspam	(pop3d) Failed POP3 login from 61.142.247.210 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Mar 4 08:22:56 ir1 dovecot[4133960]: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=61.142.247.210, lip=5.63.12.44, session=	2020-03-04 19:24:13
147.30.43.196	attackbotsspam	" "	2020-03-04 19:33:11
91.121.45.5	attack	Mar 4 07:50:59 server sshd\[20528\]: Invalid user oracle from 91.121.45.5 Mar 4 07:50:59 server sshd\[20528\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91-121-45-5.ovh.net Mar 4 07:51:02 server sshd\[20528\]: Failed password for invalid user oracle from 91.121.45.5 port 52059 ssh2 Mar 4 07:53:14 server sshd\[20729\]: Invalid user influxdb from 91.121.45.5 Mar 4 07:53:14 server sshd\[20729\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91-121-45-5.ovh.net ...	2020-03-04 19:12:32
78.186.10.141	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-04 19:33:47
182.253.119.50	attackspam	Mar 4 16:46:27 areeb-Workstation sshd[27259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.253.119.50 Mar 4 16:46:29 areeb-Workstation sshd[27259]: Failed password for invalid user peter from 182.253.119.50 port 35476 ssh2 ...	2020-03-04 19:20:50
177.19.117.220	attackbotsspam	port scan and connect, tcp 23 (telnet)	2020-03-04 19:04:43
80.211.181.194	attackspambots	Mar 4 06:58:53 jane sshd[23681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.181.194 Mar 4 06:58:55 jane sshd[23681]: Failed password for invalid user smart from 80.211.181.194 port 34278 ssh2 ...	2020-03-04 19:14:42
69.254.62.212	attack	2020-03-04T05:20:50.525278randservbullet-proofcloud-66.localdomain sshd[7037]: Invalid user zhcui from 69.254.62.212 port 5758 2020-03-04T05:20:50.531174randservbullet-proofcloud-66.localdomain sshd[7037]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-69-254-62-212.hsd1.fl.comcast.net 2020-03-04T05:20:50.525278randservbullet-proofcloud-66.localdomain sshd[7037]: Invalid user zhcui from 69.254.62.212 port 5758 2020-03-04T05:20:52.090687randservbullet-proofcloud-66.localdomain sshd[7037]: Failed password for invalid user zhcui from 69.254.62.212 port 5758 ssh2 ...	2020-03-04 19:17:07
106.13.126.155	attackbotsspam	2020-03-04T10:52:14.741210shield sshd\[27497\]: Invalid user oracle from 106.13.126.155 port 43522 2020-03-04T10:52:14.745879shield sshd\[27497\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.126.155 2020-03-04T10:52:17.030502shield sshd\[27497\]: Failed password for invalid user oracle from 106.13.126.155 port 43522 ssh2 2020-03-04T11:00:09.662658shield sshd\[28917\]: Invalid user postgres from 106.13.126.155 port 34602 2020-03-04T11:00:09.667935shield sshd\[28917\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.126.155	2020-03-04 19:14:10
184.22.20.194	attackspam	1583297573 - 03/04/2020 05:52:53 Host: 184.22.20.194/184.22.20.194 Port: 445 TCP Blocked	2020-03-04 19:28:33
201.7.210.50	attackbots	php WP PHPmyadamin ABUSE blocked for 12h	2020-03-04 19:08:53
27.35.18.176	attack	" "	2020-03-04 19:13:16
129.211.49.227	attackspam	Mar 4 09:19:43 ncomp sshd[5123]: Invalid user peter from 129.211.49.227 Mar 4 09:19:43 ncomp sshd[5123]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.49.227 Mar 4 09:19:43 ncomp sshd[5123]: Invalid user peter from 129.211.49.227 Mar 4 09:19:46 ncomp sshd[5123]: Failed password for invalid user peter from 129.211.49.227 port 39072 ssh2	2020-03-04 19:22:15
222.186.180.9	attack	2020-03-04T10:55:55.807256shield sshd\[28123\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.9 user=root 2020-03-04T10:55:57.428863shield sshd\[28123\]: Failed password for root from 222.186.180.9 port 57748 ssh2 2020-03-04T10:56:00.686931shield sshd\[28123\]: Failed password for root from 222.186.180.9 port 57748 ssh2 2020-03-04T10:56:04.025533shield sshd\[28123\]: Failed password for root from 222.186.180.9 port 57748 ssh2 2020-03-04T10:56:06.909023shield sshd\[28123\]: Failed password for root from 222.186.180.9 port 57748 ssh2	2020-03-04 18:59:53
104.227.17.170	attackspambots	(From palmermckelvey687@gmail.com) Hello, I sent this message because I'd like to know if you are interested in getting more visits on your website from people who are searching for products/services on Google. I am a skilled website optimizer, and I specialize in getting your site to appear on the first page of search results. With my 10 years of experience, I can tell you that being on the first page would surely increase your profits. If you're interested, please let me know and I will gladly contact you through phone. Just let me know when. Talk to you soon! - Mckelvey	2020-03-04 19:01:46

Recently Reported IPs

252.167.255.62	1.14.67.209	141.156.17.140	114.223.113.236
103.102.239.47	143.109.107.187	95.234.208.25	113.172.207.212
166.4.37.160	59.145.174.144	106.12.88.165	10.180.247.41
40.67.254.36	41.142.245.31	118.89.165.46	122.116.172.92
202.162.19.114	148.70.80.160	118.131.36.38	118.24.17.145