144.139.195.64

Basic Info

City: Brisbane

Region: Queensland

Country: Australia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
144.139.195.70	attackbots	Icarus honeypot on github	2020-09-13 22:01:19
144.139.195.70	attack	Icarus honeypot on github	2020-09-13 13:56:17
144.139.195.70	attackspam	Icarus honeypot on github	2020-09-13 05:40:30
144.139.195.70	attackbots	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic	2020-05-12 07:57:57
144.139.195.70	attackbotsspam	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic	2020-05-03 06:03:29
144.139.195.70	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-04-14 07:17:06

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 144.139.195.64
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59106
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;144.139.195.64.			IN	A

;; AUTHORITY SECTION:
.			224	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110102 1800 900 604800 86400

;; Query time: 130 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 02 06:43:04 CST 2019
;; MSG SIZE  rcvd: 118

Host info

64.195.139.144.in-addr.arpa domain name pointer hab2346220.lnk.telstra.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
64.195.139.144.in-addr.arpa	name = hab2346220.lnk.telstra.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
66.249.64.89	attackspambots	404 NOT FOUND	2020-08-06 13:29:36
192.144.232.129	attackspam	Aug 6 06:24:58 vps1 sshd[25081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.232.129 user=root Aug 6 06:24:59 vps1 sshd[25081]: Failed password for invalid user root from 192.144.232.129 port 33656 ssh2 Aug 6 06:28:07 vps1 sshd[25242]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.232.129 user=root Aug 6 06:28:10 vps1 sshd[25242]: Failed password for invalid user root from 192.144.232.129 port 44632 ssh2 Aug 6 06:31:13 vps1 sshd[25293]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.232.129 user=root Aug 6 06:31:15 vps1 sshd[25293]: Failed password for invalid user root from 192.144.232.129 port 55604 ssh2 Aug 6 06:34:25 vps1 sshd[25332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.232.129 user=root ...	2020-08-06 13:16:26
219.142.19.70	attackbots	Aug 6 08:24:47 server2 sshd\[24579\]: Invalid user admin from 219.142.19.70 Aug 6 08:24:49 server2 sshd\[24581\]: Invalid user admin from 219.142.19.70 Aug 6 08:24:51 server2 sshd\[24585\]: Invalid user admin from 219.142.19.70 Aug 6 08:24:52 server2 sshd\[24587\]: Invalid user admin from 219.142.19.70 Aug 6 08:24:54 server2 sshd\[24589\]: Invalid user admin from 219.142.19.70 Aug 6 08:24:56 server2 sshd\[24593\]: Invalid user admin from 219.142.19.70	2020-08-06 13:40:56
211.72.117.101	attackspam	Aug 6 01:24:33 Tower sshd[39798]: Connection from 211.72.117.101 port 43660 on 192.168.10.220 port 22 rdomain "" Aug 6 01:24:34 Tower sshd[39798]: Failed password for root from 211.72.117.101 port 43660 ssh2 Aug 6 01:24:34 Tower sshd[39798]: Received disconnect from 211.72.117.101 port 43660:11: Bye Bye [preauth] Aug 6 01:24:34 Tower sshd[39798]: Disconnected from authenticating user root 211.72.117.101 port 43660 [preauth]	2020-08-06 13:33:37
117.247.238.10	attackspambots	Brute-force attempt banned	2020-08-06 13:20:57
182.216.245.188	attackspam	"$f2bV_matches"	2020-08-06 13:37:15
115.72.152.72	attack	Host Scan	2020-08-06 13:47:13
222.186.180.41	attackspam	Aug 6 06:43:18 sd-69548 sshd[2807877]: Unable to negotiate with 222.186.180.41 port 18630: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] Aug 6 07:27:35 sd-69548 sshd[2810787]: Unable to negotiate with 222.186.180.41 port 38846: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] ...	2020-08-06 13:33:19
121.8.157.138	attackspambots	Aug 6 05:18:01 vlre-nyc-1 sshd\[5800\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.8.157.138 user=root Aug 6 05:18:04 vlre-nyc-1 sshd\[5800\]: Failed password for root from 121.8.157.138 port 12581 ssh2 Aug 6 05:22:56 vlre-nyc-1 sshd\[5939\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.8.157.138 user=root Aug 6 05:22:58 vlre-nyc-1 sshd\[5939\]: Failed password for root from 121.8.157.138 port 12584 ssh2 Aug 6 05:24:49 vlre-nyc-1 sshd\[5986\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.8.157.138 user=root ...	2020-08-06 13:40:25
104.131.231.109	attackbots	Aug 5 19:17:13 auw2 sshd\[22860\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.231.109 user=root Aug 5 19:17:15 auw2 sshd\[22860\]: Failed password for root from 104.131.231.109 port 52710 ssh2 Aug 5 19:21:07 auw2 sshd\[23202\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.231.109 user=root Aug 5 19:21:09 auw2 sshd\[23202\]: Failed password for root from 104.131.231.109 port 36042 ssh2 Aug 5 19:25:01 auw2 sshd\[23513\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.231.109 user=root	2020-08-06 13:27:24
159.89.88.119	attack	Aug 5 19:16:29 web9 sshd\[5286\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.88.119 user=root Aug 5 19:16:31 web9 sshd\[5286\]: Failed password for root from 159.89.88.119 port 49470 ssh2 Aug 5 19:20:39 web9 sshd\[5928\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.88.119 user=root Aug 5 19:20:41 web9 sshd\[5928\]: Failed password for root from 159.89.88.119 port 60690 ssh2 Aug 5 19:24:45 web9 sshd\[7206\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.88.119 user=root	2020-08-06 13:39:58
206.189.200.15	attackbots	Brute force attempt	2020-08-06 13:09:08
222.186.180.130	attack	08/06/2020-01:11:04.238131 222.186.180.130 Protocol: 6 ET SCAN Potential SSH Scan	2020-08-06 13:21:18
51.89.157.100	attack	51.89.157.100 - - [06/Aug/2020:07:25:01 +0200] "GET /wp-login.php HTTP/1.1" 200 6060 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.89.157.100 - - [06/Aug/2020:07:25:02 +0200] "POST /wp-login.php HTTP/1.1" 200 6311 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.89.157.100 - - [06/Aug/2020:07:25:03 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-06 13:32:10
121.28.69.85	attack	Aug 6 10:39:52 gw1 sshd[15260]: Failed password for root from 121.28.69.85 port 54384 ssh2 ...	2020-08-06 13:46:35

Recently Reported IPs

45.145.62.245	87.127.164.45	213.168.229.91	62.74.189.54
76.101.95.23	225.43.139.131	179.60.77.161	185.181.209.187
202.156.113.31	120.145.249.134	21.77.80.6	158.145.45.218
217.182.197.8	82.18.137.118	129.155.152.232	169.226.72.141
75.108.177.199	128.158.205.37	166.169.71.237	173.127.89.19