147.139.160.85

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
147.139.160.218	attack	bruteforce detected	2020-07-11 06:33:55
147.139.160.218	attack	May 5 14:19:55 gw1 sshd[27237]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.160.218 May 5 14:19:57 gw1 sshd[27237]: Failed password for invalid user trent from 147.139.160.218 port 41480 ssh2 ...	2020-05-05 19:01:02
147.139.160.218	attackspambots	Apr 13 10:31:33 srv05 sshd[26844]: Failed password for invalid user kpaul from 147.139.160.218 port 40392 ssh2 Apr 13 10:31:33 srv05 sshd[26844]: Received disconnect from 147.139.160.218: 11: Bye Bye [preauth] Apr 13 10:38:09 srv05 sshd[27208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.160.218 user=r.r Apr 13 10:38:11 srv05 sshd[27208]: Failed password for r.r from 147.139.160.218 port 54246 ssh2 Apr 13 10:38:11 srv05 sshd[27208]: Received disconnect from 147.139.160.218: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=147.139.160.218	2020-04-13 22:12:53

Type

Details

Datetime

147.139.160.218

attack

bruteforce detected

2020-07-11 06:33:55

147.139.160.218

attack

May  5 14:19:55 gw1 sshd[27237]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.160.218
May  5 14:19:57 gw1 sshd[27237]: Failed password for invalid user trent from 147.139.160.218 port 41480 ssh2
...

2020-05-05 19:01:02

147.139.160.218

attackspambots

Apr 13 10:31:33 srv05 sshd[26844]: Failed password for invalid user kpaul from 147.139.160.218 port 40392 ssh2
Apr 13 10:31:33 srv05 sshd[26844]: Received disconnect from 147.139.160.218: 11: Bye Bye [preauth]
Apr 13 10:38:09 srv05 sshd[27208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.160.218  user=r.r
Apr 13 10:38:11 srv05 sshd[27208]: Failed password for r.r from 147.139.160.218 port 54246 ssh2
Apr 13 10:38:11 srv05 sshd[27208]: Received disconnect from 147.139.160.218: 11: Bye Bye [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=147.139.160.218

2020-04-13 22:12:53

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 147.139.160.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22858
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;147.139.160.85.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 01:38:17 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 85.160.139.147.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 85.160.139.147.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.14.37.194	attack	Oct 3 15:37:44 localhost kernel: [3869283.641146] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=190.14.37.194 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=60 ID=45742 DF PROTO=TCP SPT=55533 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 15:37:44 localhost kernel: [3869283.641177] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=190.14.37.194 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=60 ID=45742 DF PROTO=TCP SPT=55533 DPT=22 SEQ=3313914017 ACK=0 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 23:53:52 localhost kernel: [3899051.918316] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=190.14.37.194 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=74 ID=17923 DF PROTO=TCP SPT=51088 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 23:53:52 localhost kernel: [3899051.918322] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=190.14.37.194 DST=[mungedIP2] LEN=40 TOS=0x08 P	2019-10-04 16:19:46
104.139.5.180	attackbotsspam	Oct 4 10:11:12 MK-Soft-Root2 sshd[7828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.139.5.180 Oct 4 10:11:14 MK-Soft-Root2 sshd[7828]: Failed password for invalid user 1QaZ2WsX3EdC4RfV from 104.139.5.180 port 37978 ssh2 ...	2019-10-04 16:27:09
160.124.48.207	attackbotsspam	2019-10-04T08:24:59.506301abusebot-2.cloudsearch.cf sshd\[9000\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.124.48.207 user=root	2019-10-04 16:44:08
37.204.118.194	attackspam	Oct 1 09:56:09 toyboy sshd[20953]: reveeclipse mapping checking getaddrinfo for broadband-37.204-118-194.ip.moscow.rt.ru [37.204.118.194] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 1 09:56:09 toyboy sshd[20953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.204.118.194 user=r.r Oct 1 09:56:12 toyboy sshd[20953]: Failed password for r.r from 37.204.118.194 port 50909 ssh2 Oct 1 09:56:14 toyboy sshd[20953]: Failed password for r.r from 37.204.118.194 port 50909 ssh2 Oct 1 09:56:16 toyboy sshd[20953]: Failed password for r.r from 37.204.118.194 port 50909 ssh2 Oct 1 09:56:18 toyboy sshd[20953]: Failed password for r.r from 37.204.118.194 port 50909 ssh2 Oct 1 09:56:21 toyboy sshd[20953]: Failed password for r.r from 37.204.118.194 port 50909 ssh2 Oct 1 09:56:23 toyboy sshd[20953]: Failed password for r.r from 37.204.118.194 port 50909 ssh2 Oct 1 09:56:23 toyboy sshd[20953]: Disconnecting: Too many authentication failures ........ -------------------------------	2019-10-04 16:17:53
45.231.29.46	attack	Sep 30 08:17:17 our-server-hostname postfix/smtpd[28333]: connect from unknown[45.231.29.46] Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=45.231.29.46	2019-10-04 16:42:40
43.243.128.213	attackspam	Oct 4 03:20:29 ny01 sshd[20210]: Failed password for root from 43.243.128.213 port 42347 ssh2 Oct 4 03:25:29 ny01 sshd[21397]: Failed password for root from 43.243.128.213 port 33163 ssh2	2019-10-04 16:01:35
49.88.112.68	attackbots	Oct 4 04:25:15 xentho sshd[4692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.68 user=root Oct 4 04:25:17 xentho sshd[4692]: Failed password for root from 49.88.112.68 port 36177 ssh2 Oct 4 04:25:20 xentho sshd[4692]: Failed password for root from 49.88.112.68 port 36177 ssh2 Oct 4 04:25:15 xentho sshd[4692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.68 user=root Oct 4 04:25:17 xentho sshd[4692]: Failed password for root from 49.88.112.68 port 36177 ssh2 Oct 4 04:25:20 xentho sshd[4692]: Failed password for root from 49.88.112.68 port 36177 ssh2 Oct 4 04:25:15 xentho sshd[4692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.68 user=root Oct 4 04:25:17 xentho sshd[4692]: Failed password for root from 49.88.112.68 port 36177 ssh2 Oct 4 04:25:20 xentho sshd[4692]: Failed password for root from 49.88.112.68 port 36177 ...	2019-10-04 16:37:48
118.25.195.244	attackbotsspam	Oct 4 08:54:55 DAAP sshd[7607]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.195.244 user=root Oct 4 08:54:56 DAAP sshd[7607]: Failed password for root from 118.25.195.244 port 59324 ssh2 ...	2019-10-04 16:00:43
180.148.1.218	attackbots	Oct 4 03:49:32 www_kotimaassa_fi sshd[17920]: Failed password for root from 180.148.1.218 port 34364 ssh2 ...	2019-10-04 16:00:19
139.217.96.76	attackbots	Oct 4 04:09:31 www_kotimaassa_fi sshd[18372]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.96.76 Oct 4 04:09:33 www_kotimaassa_fi sshd[18372]: Failed password for invalid user Nullen_1233 from 139.217.96.76 port 52992 ssh2 ...	2019-10-04 16:28:03
99.122.154.169	attack	Oct 3 17:46:10 friendsofhawaii sshd\[5205\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=prox.sekrutstash.com user=root Oct 3 17:46:13 friendsofhawaii sshd\[5205\]: Failed password for root from 99.122.154.169 port 35364 ssh2 Oct 3 17:50:18 friendsofhawaii sshd\[5525\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=prox.sekrutstash.com user=root Oct 3 17:50:20 friendsofhawaii sshd\[5525\]: Failed password for root from 99.122.154.169 port 48688 ssh2 Oct 3 17:54:25 friendsofhawaii sshd\[5857\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=prox.sekrutstash.com user=root	2019-10-04 16:02:30
37.49.231.130	attack	10/03/2019-23:53:32.389083 37.49.231.130 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 33	2019-10-04 16:32:19
87.130.14.61	attackspam	Oct 4 06:44:58 vtv3 sshd\[29630\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.130.14.61 user=root Oct 4 06:44:59 vtv3 sshd\[29630\]: Failed password for root from 87.130.14.61 port 39296 ssh2 Oct 4 06:53:26 vtv3 sshd\[1705\]: Invalid user 123 from 87.130.14.61 port 51214 Oct 4 06:53:26 vtv3 sshd\[1705\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.130.14.61 Oct 4 06:53:29 vtv3 sshd\[1705\]: Failed password for invalid user 123 from 87.130.14.61 port 51214 ssh2 Oct 4 07:03:43 vtv3 sshd\[7001\]: Invalid user 2wsxcde34rfv from 87.130.14.61 port 55806 Oct 4 07:03:43 vtv3 sshd\[7001\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.130.14.61 Oct 4 07:03:45 vtv3 sshd\[7001\]: Failed password for invalid user 2wsxcde34rfv from 87.130.14.61 port 55806 ssh2 Oct 4 07:07:18 vtv3 sshd\[8940\]: Invalid user 2wsxcde34rfv from 87.130.14.61 port 47922 Oct 4 07:07:18 vt	2019-10-04 16:16:16
51.77.148.87	attack	2019-10-04T07:44:53.727065tmaserv sshd\[19430\]: Failed password for invalid user Sigma from 51.77.148.87 port 37738 ssh2 2019-10-04T07:57:35.966232tmaserv sshd\[20105\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.ip-51-77-148.eu user=root 2019-10-04T07:57:38.353928tmaserv sshd\[20105\]: Failed password for root from 51.77.148.87 port 48550 ssh2 2019-10-04T08:01:58.523283tmaserv sshd\[20327\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.ip-51-77-148.eu user=root 2019-10-04T08:02:00.348717tmaserv sshd\[20327\]: Failed password for root from 51.77.148.87 port 33330 ssh2 2019-10-04T08:06:15.696079tmaserv sshd\[20499\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.ip-51-77-148.eu user=root ...	2019-10-04 16:10:47
71.6.199.23	attackspambots	10/04/2019-02:41:49.604394 71.6.199.23 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 71	2019-10-04 16:28:52

Recently Reported IPs

117.57.64.190	175.10.5.91	178.158.226.251	177.129.206.31
200.126.33.154	113.228.182.35	109.237.102.105	201.173.217.77
14.237.30.247	121.157.35.230	103.162.29.98	5.29.8.35
87.121.157.20	45.132.185.43	27.4.203.248	168.151.184.222
178.234.42.168	66.249.64.210	176.101.193.240	187.162.36.91