159.203.85.139

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
159.203.85.196	attack	firewall-block, port(s): 27644/tcp	2020-10-05 03:16:02
159.203.85.196	attack	TCP (SYN) 159.203.85.196:43513 -> port 27644, len 44	2020-10-04 19:01:51
159.203.85.196	attackbotsspam	DATE:2020-09-21 11:45:29, IP:159.203.85.196, PORT:ssh SSH brute force auth (docker-dc)	2020-09-21 18:12:47
159.203.85.196	attack	Invalid user user from 159.203.85.196 port 37784	2020-09-20 00:39:21
159.203.85.196	attackspambots	DATE:2020-09-19 08:40:32, IP:159.203.85.196, PORT:ssh SSH brute force auth (docker-dc)	2020-09-19 16:27:28
159.203.85.196	attack	Invalid user oracle from 159.203.85.196 port 43905	2020-09-03 01:25:05
159.203.85.196	attack	Port scanning [2 denied]	2020-09-02 16:51:03
159.203.85.196	attackbotsspam	2020-08-26T19:01:17.006943snf-827550 sshd[11387]: Invalid user jboss from 159.203.85.196 port 60149 2020-08-26T19:01:19.591588snf-827550 sshd[11387]: Failed password for invalid user jboss from 159.203.85.196 port 60149 ssh2 2020-08-26T19:03:48.059723snf-827550 sshd[12300]: Invalid user oracle from 159.203.85.196 port 52489 ...	2020-08-27 04:42:07
159.203.85.196	attackbots	Aug 25 17:26:24 abendstille sshd\[18809\]: Invalid user dev from 159.203.85.196 Aug 25 17:26:24 abendstille sshd\[18809\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.85.196 Aug 25 17:26:26 abendstille sshd\[18809\]: Failed password for invalid user dev from 159.203.85.196 port 46715 ssh2 Aug 25 17:29:44 abendstille sshd\[22215\]: Invalid user rsh from 159.203.85.196 Aug 25 17:29:44 abendstille sshd\[22215\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.85.196 ...	2020-08-25 23:43:34
159.203.85.196	attack	Aug 20 16:07:09 dignus sshd[20101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.85.196 user=root Aug 20 16:07:12 dignus sshd[20101]: Failed password for root from 159.203.85.196 port 56710 ssh2 Aug 20 16:10:57 dignus sshd[20598]: Invalid user test from 159.203.85.196 port 33632 Aug 20 16:10:57 dignus sshd[20598]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.85.196 Aug 20 16:10:59 dignus sshd[20598]: Failed password for invalid user test from 159.203.85.196 port 33632 ssh2 ...	2020-08-21 07:27:04
159.203.85.196	attackspam	Aug 20 08:37:36 fhem-rasp sshd[24093]: User git from 159.203.85.196 not allowed because not listed in AllowUsers ...	2020-08-20 14:57:47
159.203.85.93	attackbots	159.203.85.93 - - [07/Aug/2019:17:27:44 +0000] "POST /wp-admin/admin-post.php?nd_options_value_import_settings=siteurl[nd_options_option_value]https://jackielovedogs.com/pret.js?l=1&[nd_options_end_option] HTTP/1.1" 403 1089 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.143 Safari/537.36" 159.203.85.93 - - [07/Aug/2019:17:27:52 +0000] "POST /wp-admin/admin-post.phpnd_donations_value_import_settings=home[nd_donations_option_value]https://jackielovedogs.com/pret?l=1&[nd_donations_end_option] HTTP/1.1" 301 - "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.143 Safari/537.36"	2019-08-08 05:41:43

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.203.85.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36111
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;159.203.85.139.			IN	A

;; AUTHORITY SECTION:
.			70	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 19:25:03 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 139.85.203.159.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.85.203.159.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.205.221.146	attackspam	Apr 28 17:38:11 server sshd\[77766\]: Invalid user av from 119.205.221.146 Apr 28 17:38:11 server sshd\[77766\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.205.221.146 Apr 28 17:38:13 server sshd\[77766\]: Failed password for invalid user av from 119.205.221.146 port 33676 ssh2 ...	2019-07-17 09:02:52
106.12.194.207	attack	k+ssh-bruteforce	2019-07-17 08:43:10
119.197.77.52	attackspambots	Jul 17 02:45:23 h2177944 sshd\[11542\]: Invalid user user from 119.197.77.52 port 41800 Jul 17 02:45:23 h2177944 sshd\[11542\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.197.77.52 Jul 17 02:45:25 h2177944 sshd\[11542\]: Failed password for invalid user user from 119.197.77.52 port 41800 ssh2 Jul 17 02:51:18 h2177944 sshd\[11628\]: Invalid user ubuntu from 119.197.77.52 port 39500 ...	2019-07-17 09:08:30
119.165.53.234	attack	Apr 11 14:25:27 server sshd\[118629\]: Invalid user admin from 119.165.53.234 Apr 11 14:25:27 server sshd\[118629\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.165.53.234 Apr 11 14:25:29 server sshd\[118629\]: Failed password for invalid user admin from 119.165.53.234 port 37843 ssh2 ...	2019-07-17 09:12:53
119.147.88.77	attack	May 2 15:50:14 server sshd\[242609\]: Invalid user applmgr from 119.147.88.77 May 2 15:50:14 server sshd\[242609\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.147.88.77 May 2 15:50:16 server sshd\[242609\]: Failed password for invalid user applmgr from 119.147.88.77 port 46012 ssh2 ...	2019-07-17 09:14:41
176.106.186.35	attack	Brute force attempt	2019-07-17 09:21:49
119.27.167.231	attack	Jun 26 18:32:38 server sshd\[118228\]: Invalid user server from 119.27.167.231 Jun 26 18:32:38 server sshd\[118228\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.27.167.231 Jun 26 18:32:40 server sshd\[118228\]: Failed password for invalid user server from 119.27.167.231 port 40238 ssh2 ...	2019-07-17 08:57:20
153.36.242.143	attackspam	Jul 16 20:32:16 plusreed sshd[22778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.143 user=root Jul 16 20:32:18 plusreed sshd[22778]: Failed password for root from 153.36.242.143 port 54592 ssh2 ...	2019-07-17 08:40:47
181.48.68.54	attackspam	Jul 17 00:39:49 eventyay sshd[4154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.68.54 Jul 17 00:39:51 eventyay sshd[4154]: Failed password for invalid user jb from 181.48.68.54 port 46496 ssh2 Jul 17 00:43:38 eventyay sshd[4994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.68.54 ...	2019-07-17 09:10:39
118.97.39.51	attackspam	Jun 20 03:54:53 server sshd\[51326\]: Invalid user php2root from 118.97.39.51 Jun 20 03:54:53 server sshd\[51326\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.97.39.51 Jun 20 03:54:56 server sshd\[51326\]: Failed password for invalid user php2root from 118.97.39.51 port 53751 ssh2 ...	2019-07-17 09:23:59
70.75.69.162	attackbots	Jul 17 01:20:10 microserver sshd[51874]: Invalid user bot from 70.75.69.162 port 38878 Jul 17 01:20:10 microserver sshd[51874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.75.69.162 Jul 17 01:20:11 microserver sshd[51874]: Failed password for invalid user bot from 70.75.69.162 port 38878 ssh2 Jul 17 01:26:35 microserver sshd[54074]: Invalid user minecraft from 70.75.69.162 port 36820 Jul 17 01:26:35 microserver sshd[54074]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.75.69.162 Jul 17 01:39:21 microserver sshd[58476]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.75.69.162 user=root Jul 17 01:39:23 microserver sshd[58476]: Failed password for root from 70.75.69.162 port 60938 ssh2 Jul 17 01:45:32 microserver sshd[60837]: Invalid user sls from 70.75.69.162 port 58886 Jul 17 01:45:32 microserver sshd[60837]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0	2019-07-17 08:54:51
118.97.140.237	attackbots	Jul 17 02:24:43 * sshd[9887]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.97.140.237 Jul 17 02:24:45 * sshd[9887]: Failed password for invalid user rails from 118.97.140.237 port 49960 ssh2	2019-07-17 09:26:07
188.165.242.200	attackspambots	SSH Brute-Force reported by Fail2Ban	2019-07-17 09:13:45
212.156.245.134	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-16 20:30:07,462 INFO [amun_request_handler] PortScan Detected on Port: 445 (212.156.245.134)	2019-07-17 09:12:22
165.227.44.244	attackbots	WordPress login Brute force / Web App Attack on client site.	2019-07-17 08:55:09

Recently Reported IPs

159.203.85.34	159.203.88.242	159.203.87.248	159.203.90.104
159.203.9.104	159.203.90.153	159.203.90.155	159.203.90.192
159.203.89.90	159.203.92.10	159.203.92.20	159.203.93.248
159.203.96.56	159.203.96.233	159.203.95.228	159.203.92.132
159.203.97.234	159.203.98.70	159.203.94.229	159.203.99.119