139.99.6.14 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.99.69.189	attackspam	139.99.69.189 - - [13/Oct/2020:17:28:32 +0200] "POST /wp-login.php HTTP/1.0" 200 4794 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-14 00:03:50
139.99.69.189	attackbots	139.99.69.189 - - [13/Oct/2020:07:22:18 +0100] "POST /wp-login.php HTTP/1.1" 200 2463 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.69.189 - - [13/Oct/2020:07:22:20 +0100] "POST /wp-login.php HTTP/1.1" 200 2443 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.69.189 - - [13/Oct/2020:07:22:20 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-13 15:18:24
139.99.69.189	attackspam	CMS (WordPress or Joomla) login attempt.	2020-10-13 07:54:32
139.99.62.85	attack	Automatic report - Banned IP Access	2020-10-08 05:44:40
139.99.62.85	attackspam	xmlrpc attack	2020-10-07 13:58:46
139.99.69.189	attackspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-10-01 03:55:57
139.99.69.189	attackspam	139.99.69.189 - - [30/Sep/2020:01:50:49 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.69.189 - - [30/Sep/2020:02:16:54 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-30 12:31:51
139.99.66.210	attack	Trying ports that it shouldn't be.	2020-08-27 20:04:19
139.99.61.247	attackspambots	Aug 20 07:57:14 pornomens sshd\[1983\]: Invalid user ubuntu from 139.99.61.247 port 36570 Aug 20 07:57:14 pornomens sshd\[1983\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.61.247 Aug 20 07:57:16 pornomens sshd\[1983\]: Failed password for invalid user ubuntu from 139.99.61.247 port 36570 ssh2 ...	2020-08-20 14:46:06
139.99.61.56	attack	1 Attack(s) Detected [DoS Attack: SYN/ACK Scan] from source: 139.99.61.56, port 30120, Tuesday, August 11, 2020 05:53:26	2020-08-13 15:05:51
139.99.66.210	attack	Port Scan detected! ...	2020-07-01 01:39:28
139.99.69.74	attackbotsspam	Feb 18 10:45:16 ns382633 sshd\[14335\]: Invalid user support from 139.99.69.74 port 63515 Feb 18 10:45:16 ns382633 sshd\[14335\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.69.74 Feb 18 10:45:19 ns382633 sshd\[14335\]: Failed password for invalid user support from 139.99.69.74 port 63515 ssh2 Feb 18 10:45:21 ns382633 sshd\[14337\]: Invalid user user from 139.99.69.74 port 59712 Feb 18 10:45:21 ns382633 sshd\[14337\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.69.74	2020-02-18 19:15:30
139.99.69.74	attackbots	Invalid user support from 139.99.69.74 port 60370	2020-02-11 15:19:36
139.99.62.85	attackbots	139.99.62.85 - - [14/Dec/2019:10:38:28 +0000] "POST /wp-login.php HTTP/1.1" 200 6393 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.62.85 - - [14/Dec/2019:10:38:29 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-12-14 22:44:26
139.99.62.85	attack	Automatic report - XMLRPC Attack	2019-12-08 20:08:45

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.6.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43364
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.99.6.14.			IN	A

;; AUTHORITY SECTION:
.			597	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:43:11 CST 2022
;; MSG SIZE  rcvd: 104

Host info

14.6.99.139.in-addr.arpa domain name pointer bpest.sgp1.dgprasetya.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
14.6.99.139.in-addr.arpa	name = bpest.sgp1.dgprasetya.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
36.62.211.159	attack	Jun 29 06:28:54 localhost postfix/smtpd\[2559\]: warning: unknown\[36.62.211.159\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 29 06:29:03 localhost postfix/smtpd\[2559\]: warning: unknown\[36.62.211.159\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 29 06:29:16 localhost postfix/smtpd\[2559\]: warning: unknown\[36.62.211.159\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 29 06:29:32 localhost postfix/smtpd\[2559\]: warning: unknown\[36.62.211.159\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 29 06:29:40 localhost postfix/smtpd\[2559\]: warning: unknown\[36.62.211.159\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-06-29 13:17:03
170.239.41.226	attackspambots	SMTP-sasl brute force ...	2019-06-29 14:00:06
209.97.187.108	attack	Jun 29 05:23:01 MK-Soft-VM3 sshd\[14680\]: Invalid user mysql from 209.97.187.108 port 35858 Jun 29 05:23:01 MK-Soft-VM3 sshd\[14680\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.187.108 Jun 29 05:23:03 MK-Soft-VM3 sshd\[14680\]: Failed password for invalid user mysql from 209.97.187.108 port 35858 ssh2 ...	2019-06-29 13:36:18
60.251.111.30	attackbotsspam	445/tcp 445/tcp 445/tcp... [2019-05-03/06-28]15pkt,1pt.(tcp)	2019-06-29 13:24:07
222.191.233.238	attackbots	'IP reached maximum auth failures for a one day block'	2019-06-29 14:11:43
185.209.0.26	attack	Port Scan detected from 185.209.0.26 (LV/Latvia/-). 4 hits in the last 70 seconds	2019-06-29 14:08:27
117.240.48.172	attack	445/tcp 445/tcp 445/tcp... [2019-05-11/06-28]5pkt,1pt.(tcp)	2019-06-29 13:22:08
78.15.67.161	attack	Jun 29 01:12:21 cvbmail sshd\[4277\]: Invalid user pi from 78.15.67.161 Jun 29 01:12:21 cvbmail sshd\[4277\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.15.67.161 Jun 29 01:12:21 cvbmail sshd\[4279\]: Invalid user pi from 78.15.67.161	2019-06-29 13:16:00
187.32.123.177	attackspambots	445/tcp 445/tcp [2019-04-29/06-28]2pkt	2019-06-29 13:15:29
195.3.146.88	attack	20089/tcp 40089/tcp 8977/tcp... [2019-06-08/28]516pkt,146pt.(tcp)	2019-06-29 13:59:39
89.38.150.236	attackbotsspam	TCP src-port=59338 dst-port=25 dnsbl-sorbs abuseat-org barracuda (3)	2019-06-29 13:46:59
92.118.37.84	attackspam	Jun 29 06:44:26 h2177944 kernel: \[107928.633420\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.84 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=29455 PROTO=TCP SPT=41610 DPT=44995 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 29 06:51:13 h2177944 kernel: \[108336.162171\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.84 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=19655 PROTO=TCP SPT=41610 DPT=52693 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 29 06:51:48 h2177944 kernel: \[108371.459031\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.84 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=53286 PROTO=TCP SPT=41610 DPT=24247 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 29 06:53:21 h2177944 kernel: \[108464.163958\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.84 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=23733 PROTO=TCP SPT=41610 DPT=3337 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 29 06:53:41 h2177944 kernel: \[108483.893539\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.84 DST=85.214.117.9 LEN=40	2019-06-29 13:17:30
92.222.195.161	attackspam	445/tcp 445/tcp 445/tcp [2019-06-20/28]3pkt	2019-06-29 13:17:49
58.209.79.180	attackbotsspam	SASL broute force	2019-06-29 13:37:31
206.189.129.131	attackbots	Jun 25 10:28:50 w sshd[32479]: Invalid user fake from 206.189.129.131 Jun 25 10:28:50 w sshd[32479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.129.131 Jun 25 10:28:52 w sshd[32479]: Failed password for invalid user fake from 206.189.129.131 port 40044 ssh2 Jun 25 10:28:53 w sshd[32479]: Received disconnect from 206.189.129.131: 11: Bye Bye [preauth] Jun 25 10:28:55 w sshd[32481]: Invalid user ubnt from 206.189.129.131 Jun 25 10:28:55 w sshd[32481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.129.131 Jun 25 10:28:56 w sshd[32481]: Failed password for invalid user ubnt from 206.189.129.131 port 49992 ssh2 Jun 25 10:28:57 w sshd[32481]: Received disconnect from 206.189.129.131: 11: Bye Bye [preauth] Jun 25 10:28:59 w sshd[32483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.129.131 user=r.r Jun 25 10:29:00 w sshd[32........ -------------------------------	2019-06-29 13:25:35

Recently Reported IPs

139.99.53.152	139.99.57.60	46.37.253.222	139.99.6.142
139.99.61.143	139.99.6.158	139.99.61.5	139.99.61.101
139.99.61.238	139.99.61.158	139.99.57.40	139.99.61.83
139.99.61.161	139.99.62.221	139.99.64.121	139.99.62.101
118.27.122.183	139.99.62.80	139.99.65.161	139.99.64.99