139.99.91.161 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: OVH Singapore Pte. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Mar 25 13:19:56 localhost sshd[92545]: Invalid user usertest from 139.99.91.161 port 60422 Mar 25 13:19:56 localhost sshd[92545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.ip-139-99-91.net Mar 25 13:19:56 localhost sshd[92545]: Invalid user usertest from 139.99.91.161 port 60422 Mar 25 13:19:57 localhost sshd[92545]: Failed password for invalid user usertest from 139.99.91.161 port 60422 ssh2 Mar 25 13:28:02 localhost sshd[93269]: Invalid user raamatukogu from 139.99.91.161 port 58896 ...	2020-03-25 21:39:59
attackspambots	Brute force attempt	2020-03-25 17:05:50
attackbotsspam	$f2bV_matches	2020-03-21 14:24:14
attackbotsspam	Mar 19 09:18:16 gw1 sshd[496]: Failed password for root from 139.99.91.161 port 53600 ssh2 ...	2020-03-19 12:47:28

Comments on same subnet:

IP	Type	Details	Datetime
139.99.91.43	attackbotsspam	SSH 2020-09-17 06:43:07 139.99.91.43 139.99.182.230 > POST serenevillasbali.indonesiaroom.com /wp-login.php HTTP/1.1 - - 2020-09-17 23:54:08 139.99.91.43 139.99.182.230 > GET shinichisurabaya.com /wp-login.php HTTP/1.1 - - 2020-09-17 23:54:08 139.99.91.43 139.99.182.230 > POST shinichisurabaya.com /wp-login.php HTTP/1.1 - -	2020-09-19 03:35:21
139.99.91.43	attack	SSH 2020-09-17 06:43:07 139.99.91.43 139.99.182.230 > POST serenevillasbali.indonesiaroom.com /wp-login.php HTTP/1.1 - - 2020-09-17 23:54:08 139.99.91.43 139.99.182.230 > GET shinichisurabaya.com /wp-login.php HTTP/1.1 - - 2020-09-17 23:54:08 139.99.91.43 139.99.182.230 > POST shinichisurabaya.com /wp-login.php HTTP/1.1 - -	2020-09-18 19:38:02
139.99.91.151	attackbots	ssh brute force	2020-08-26 17:04:27
139.99.91.132	attackbots	Apr 27 13:46:29 ns392434 sshd[10712]: Invalid user rashmi from 139.99.91.132 port 35618 Apr 27 13:46:29 ns392434 sshd[10712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.132 Apr 27 13:46:29 ns392434 sshd[10712]: Invalid user rashmi from 139.99.91.132 port 35618 Apr 27 13:46:31 ns392434 sshd[10712]: Failed password for invalid user rashmi from 139.99.91.132 port 35618 ssh2 Apr 27 13:53:53 ns392434 sshd[10931]: Invalid user sj from 139.99.91.132 port 56048 Apr 27 13:53:53 ns392434 sshd[10931]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.132 Apr 27 13:53:53 ns392434 sshd[10931]: Invalid user sj from 139.99.91.132 port 56048 Apr 27 13:53:55 ns392434 sshd[10931]: Failed password for invalid user sj from 139.99.91.132 port 56048 ssh2 Apr 27 13:58:12 ns392434 sshd[11090]: Invalid user gavin from 139.99.91.132 port 39114	2020-04-27 20:33:57
139.99.91.132	attackbotsspam	Apr 23 22:10:05 sxvn sshd[417655]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.132	2020-04-24 04:10:13
139.99.91.132	attackspambots	Apr 17 11:55:54 sshgateway sshd\[11379\]: Invalid user oracle from 139.99.91.132 Apr 17 11:55:54 sshgateway sshd\[11379\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.ip-139-99-91.net Apr 17 11:55:57 sshgateway sshd\[11379\]: Failed password for invalid user oracle from 139.99.91.132 port 34736 ssh2	2020-04-17 20:43:28
139.99.91.132	attackspam	"Unauthorized connection attempt on SSHD detected"	2020-04-14 01:49:00
139.99.91.132	attackspam	Mar 30 02:29:26 XXX sshd[53004]: Invalid user usa from 139.99.91.132 port 46016	2020-03-30 09:33:49
139.99.91.35	attackspam	Feb 22 15:00:22 hanapaa sshd\[18593\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.ip-139-99-91.net user=root Feb 22 15:00:24 hanapaa sshd\[18593\]: Failed password for root from 139.99.91.35 port 40618 ssh2 Feb 22 15:04:19 hanapaa sshd\[18952\]: Invalid user www from 139.99.91.35 Feb 22 15:04:19 hanapaa sshd\[18952\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.ip-139-99-91.net Feb 22 15:04:20 hanapaa sshd\[18952\]: Failed password for invalid user www from 139.99.91.35 port 35834 ssh2	2020-02-23 09:07:39
139.99.91.35	attackbotsspam	Feb 12 05:45:13 roki sshd[9406]: Invalid user ruhnow from 139.99.91.35 Feb 12 05:45:13 roki sshd[9406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.35 Feb 12 05:45:15 roki sshd[9406]: Failed password for invalid user ruhnow from 139.99.91.35 port 51972 ssh2 Feb 12 05:58:41 roki sshd[11771]: Invalid user goodluck from 139.99.91.35 Feb 12 05:58:41 roki sshd[11771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.35 ...	2020-02-12 13:13:37
139.99.91.84	attack	Feb 7 23:20:56 ovpn sshd\[16557\]: Invalid user pfy from 139.99.91.84 Feb 7 23:20:56 ovpn sshd\[16557\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.84 Feb 7 23:20:58 ovpn sshd\[16557\]: Failed password for invalid user pfy from 139.99.91.84 port 39270 ssh2 Feb 7 23:37:29 ovpn sshd\[20700\]: Invalid user ogo from 139.99.91.84 Feb 7 23:37:29 ovpn sshd\[20700\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.84	2020-02-08 08:55:16
139.99.91.84	attackspam	Feb 6 02:45:56 legacy sshd[8820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.84 Feb 6 02:45:59 legacy sshd[8820]: Failed password for invalid user zet from 139.99.91.84 port 38882 ssh2 Feb 6 02:49:11 legacy sshd[9068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.84 ...	2020-02-06 09:51:18
139.99.91.84	attack	Feb 6 01:57:20 legacy sshd[5898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.84 Feb 6 01:57:22 legacy sshd[5898]: Failed password for invalid user mha from 139.99.91.84 port 48966 ssh2 Feb 6 02:00:32 legacy sshd[6132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.84 ...	2020-02-06 09:11:30
139.99.91.84	attackbots	Jan 30 02:12:02 MainVPS sshd[26311]: Invalid user triya from 139.99.91.84 port 53358 Jan 30 02:12:02 MainVPS sshd[26311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.91.84 Jan 30 02:12:02 MainVPS sshd[26311]: Invalid user triya from 139.99.91.84 port 53358 Jan 30 02:12:04 MainVPS sshd[26311]: Failed password for invalid user triya from 139.99.91.84 port 53358 ssh2 Jan 30 02:15:21 MainVPS sshd[613]: Invalid user jagdeep from 139.99.91.84 port 55374 ...	2020-01-30 09:50:51
139.99.91.35	attack	Unauthorized connection attempt detected from IP address 139.99.91.35 to port 2220 [J]	2020-01-30 00:33:50

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.99.91.161
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53527
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.99.91.161.			IN	A

;; AUTHORITY SECTION:
.			515	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031801 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 19 12:47:24 CST 2020
;; MSG SIZE  rcvd: 117

Host info

161.91.99.139.in-addr.arpa domain name pointer 161.ip-139-99-91.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
161.91.99.139.in-addr.arpa	name = 161.ip-139-99-91.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
202.98.78.171	attackspambots	Scanning	2019-12-13 23:12:17
112.85.42.229	attackspam	...	2019-12-13 23:14:18
142.44.243.160	attack	Dec 12 23:44:08 kapalua sshd\[637\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.ip-142-44-243.net user=mysql Dec 12 23:44:10 kapalua sshd\[637\]: Failed password for mysql from 142.44.243.160 port 40449 ssh2 Dec 12 23:49:37 kapalua sshd\[1254\]: Invalid user roo from 142.44.243.160 Dec 12 23:49:37 kapalua sshd\[1254\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.ip-142-44-243.net Dec 12 23:49:39 kapalua sshd\[1254\]: Failed password for invalid user roo from 142.44.243.160 port 45037 ssh2	2019-12-13 23:15:28
220.182.20.21	attackspambots	1576222915 - 12/13/2019 08:41:55 Host: 220.182.20.21/220.182.20.21 Port: 445 TCP Blocked	2019-12-13 23:09:49
155.0.32.9	attack	Invalid user backup from 155.0.32.9 port 57294	2019-12-13 23:40:43
185.156.73.52	attackspambots	12/13/2019-10:24:48.407017 185.156.73.52 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-12-13 23:32:03
190.85.234.215	attack	Invalid user wwwadmin from 190.85.234.215 port 46144	2019-12-13 23:23:28
51.77.212.124	attackbots	Dec 13 04:53:12 php1 sshd\[3090\]: Invalid user mixer from 51.77.212.124 Dec 13 04:53:12 php1 sshd\[3090\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.ip-51-77-212.eu Dec 13 04:53:15 php1 sshd\[3090\]: Failed password for invalid user mixer from 51.77.212.124 port 48103 ssh2 Dec 13 05:00:11 php1 sshd\[4018\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.ip-51-77-212.eu user=root Dec 13 05:00:13 php1 sshd\[4018\]: Failed password for root from 51.77.212.124 port 51896 ssh2	2019-12-13 23:07:10
59.100.246.170	attackspambots	Dec 13 10:14:12 linuxvps sshd\[42107\]: Invalid user windler from 59.100.246.170 Dec 13 10:14:12 linuxvps sshd\[42107\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.100.246.170 Dec 13 10:14:14 linuxvps sshd\[42107\]: Failed password for invalid user windler from 59.100.246.170 port 44557 ssh2 Dec 13 10:21:21 linuxvps sshd\[46138\]: Invalid user cam from 59.100.246.170 Dec 13 10:21:21 linuxvps sshd\[46138\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.100.246.170	2019-12-13 23:33:28
166.111.71.34	attackspambots	$f2bV_matches	2019-12-13 23:19:06
200.110.174.137	attackspambots	Invalid user marlise from 200.110.174.137 port 36454	2019-12-13 23:22:43
180.241.41.237	attack	1576222902 - 12/13/2019 08:41:42 Host: 180.241.41.237/180.241.41.237 Port: 445 TCP Blocked	2019-12-13 23:18:44
164.52.12.210	attackspam	Dec 13 12:51:53 vpn01 sshd[20898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.52.12.210 Dec 13 12:51:55 vpn01 sshd[20898]: Failed password for invalid user aabb654 from 164.52.12.210 port 52605 ssh2 ...	2019-12-13 23:41:38
128.199.247.115	attack	Invalid user oracle from 128.199.247.115 port 33036	2019-12-13 23:43:18
106.13.217.93	attackspambots	Invalid user backup from 106.13.217.93 port 46182	2019-12-13 23:35:33

Recently Reported IPs

121.172.165.105	103.45.191.7	91.241.19.201	137.220.138.236
196.219.98.12	164.132.12.49	52.138.71.94	206.214.8.13
188.4.84.62	121.11.100.183	41.45.157.86	192.241.239.155
183.131.138.94	106.12.210.127	219.69.241.38	202.15.138.52
181.124.15.159	156.201.157.118	104.199.169.3	159.196.34.240