175.139.242.98

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
175.139.242.49	attack	(sshd) Failed SSH login from 175.139.242.49 (MY/Malaysia/-): 5 in the last 3600 secs	2020-08-24 23:04:48
175.139.242.49	attackspambots	Jun 14 22:41:54 sigma sshd\[19315\]: Invalid user chang from 175.139.242.49Jun 14 22:41:56 sigma sshd\[19315\]: Failed password for invalid user chang from 175.139.242.49 port 27523 ssh2 ...	2020-06-15 09:30:59
175.139.242.49	attack	Fail2Ban Ban Triggered	2019-10-29 18:32:53
175.139.242.49	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/175.139.242.49/ MY - 1H : (17) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : MY NAME ASN : ASN4788 IP : 175.139.242.49 CIDR : 175.139.192.0/18 PREFIX COUNT : 272 UNIQUE IP COUNT : 2955520 ATTACKS DETECTED ASN4788 : 1H - 4 3H - 5 6H - 9 12H - 9 24H - 11 DateTime : 2019-10-27 08:31:16 INFO : Port SSH 22 Scan Detected and Blocked by ADMIN - data recovery	2019-10-27 15:36:03
175.139.242.49	attackspambots	2019-10-26T16:05:18.423382lon01.zurich-datacenter.net sshd\[31571\]: Invalid user muriel from 175.139.242.49 port 24836 2019-10-26T16:05:18.431293lon01.zurich-datacenter.net sshd\[31571\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.242.49 2019-10-26T16:05:20.686173lon01.zurich-datacenter.net sshd\[31571\]: Failed password for invalid user muriel from 175.139.242.49 port 24836 ssh2 2019-10-26T16:09:38.740246lon01.zurich-datacenter.net sshd\[31641\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.242.49 user=root 2019-10-26T16:09:40.688403lon01.zurich-datacenter.net sshd\[31641\]: Failed password for root from 175.139.242.49 port 50938 ssh2 ...	2019-10-27 03:39:30
175.139.242.49	attackspam	2019-10-26T08:12:11.944066abusebot-2.cloudsearch.cf sshd\[21359\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.242.49 user=root	2019-10-26 16:27:39
175.139.242.49	attack	Invalid user srashid from 175.139.242.49 port 5408	2019-10-18 07:04:56
175.139.242.49	attackbotsspam	Oct 14 11:00:19 plusreed sshd[13468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.242.49 user=root Oct 14 11:00:21 plusreed sshd[13468]: Failed password for root from 175.139.242.49 port 13110 ssh2 ...	2019-10-15 00:20:29
175.139.242.49	attackbotsspam	Oct 13 22:02:21 vpn01 sshd[26487]: Failed password for root from 175.139.242.49 port 56328 ssh2 ...	2019-10-14 04:15:44
175.139.242.49	attackspambots	Oct 12 06:43:58 firewall sshd[12360]: Failed password for root from 175.139.242.49 port 21878 ssh2 Oct 12 06:48:26 firewall sshd[12504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.242.49 user=root Oct 12 06:48:28 firewall sshd[12504]: Failed password for root from 175.139.242.49 port 7307 ssh2 ...	2019-10-12 18:57:48
175.139.242.49	attack	2019-10-07T01:24:14.598397tmaserv sshd\[13613\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.242.49 user=root 2019-10-07T01:24:16.572982tmaserv sshd\[13613\]: Failed password for root from 175.139.242.49 port 28833 ssh2 2019-10-07T01:28:25.709405tmaserv sshd\[13790\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.242.49 user=root 2019-10-07T01:28:27.809978tmaserv sshd\[13790\]: Failed password for root from 175.139.242.49 port 18111 ssh2 2019-10-07T01:32:38.117887tmaserv sshd\[13983\]: Invalid user 123 from 175.139.242.49 port 23627 2019-10-07T01:32:38.122709tmaserv sshd\[13983\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.242.49 ...	2019-10-07 06:41:41
175.139.242.49	attack	Sep 27 18:04:15 meumeu sshd[30275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.242.49 Sep 27 18:04:16 meumeu sshd[30275]: Failed password for invalid user qbf77101 from 175.139.242.49 port 32233 ssh2 Sep 27 18:08:54 meumeu sshd[30916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.242.49 ...	2019-09-28 01:35:07
175.139.242.49	attackbots	Sep 26 02:31:08 plusreed sshd[20177]: Invalid user gpu from 175.139.242.49 ...	2019-09-26 14:36:37
175.139.242.49	attackspambots	Brute force attempt	2019-09-26 06:14:18
175.139.242.49	attack	2019-09-23T20:54:51.8032741495-001 sshd\[33912\]: Invalid user 1qaz2wsx from 175.139.242.49 port 48214 2019-09-23T20:54:51.8062701495-001 sshd\[33912\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.242.49 2019-09-23T20:54:53.6078231495-001 sshd\[33912\]: Failed password for invalid user 1qaz2wsx from 175.139.242.49 port 48214 ssh2 2019-09-23T20:59:18.7412811495-001 sshd\[34277\]: Invalid user qwerasdfzxcv from 175.139.242.49 port 6341 2019-09-23T20:59:18.7485801495-001 sshd\[34277\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.242.49 2019-09-23T20:59:20.8715961495-001 sshd\[34277\]: Failed password for invalid user qwerasdfzxcv from 175.139.242.49 port 6341 ssh2 ...	2019-09-24 09:14:51

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 175.139.242.98
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64822
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;175.139.242.98.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 15:12:13 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 98.242.139.175.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 98.242.139.175.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
122.51.82.22	attack	Apr 24 03:25:30 web1 sshd\[9987\]: Invalid user lz from 122.51.82.22 Apr 24 03:25:30 web1 sshd\[9987\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.82.22 Apr 24 03:25:33 web1 sshd\[9987\]: Failed password for invalid user lz from 122.51.82.22 port 54398 ssh2 Apr 24 03:30:49 web1 sshd\[10477\]: Invalid user matt from 122.51.82.22 Apr 24 03:30:49 web1 sshd\[10477\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.82.22	2020-04-24 23:15:06
222.186.180.8	attackbotsspam	Apr 24 16:58:45 vps sshd[111269]: Failed password for root from 222.186.180.8 port 55412 ssh2 Apr 24 16:58:50 vps sshd[111269]: Failed password for root from 222.186.180.8 port 55412 ssh2 Apr 24 16:58:53 vps sshd[111269]: Failed password for root from 222.186.180.8 port 55412 ssh2 Apr 24 16:58:56 vps sshd[111269]: Failed password for root from 222.186.180.8 port 55412 ssh2 Apr 24 16:58:59 vps sshd[111269]: Failed password for root from 222.186.180.8 port 55412 ssh2 ...	2020-04-24 23:14:26
122.228.19.80	attack	Apr 24 17:07:46 debian-2gb-nbg1-2 kernel: \[9999810.590357\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=122.228.19.80 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=108 ID=4508 PROTO=TCP SPT=59164 DPT=4343 WINDOW=29200 RES=0x00 SYN URGP=0	2020-04-24 23:32:51
106.51.80.198	attack	$f2bV_matches	2020-04-24 23:17:13
173.44.164.127	attackspambots	(From eric@talkwithwebvisitor.com) Cool website! My name’s Eric, and I just found your site - performancechiroofga.com - while surfing the net. You showed up at the top of the search results, so I checked you out. Looks like what you’re doing is pretty cool. But if you don’t mind me asking – after someone like me stumbles across performancechiroofga.com, what usually happens? Is your site generating leads for your business? I’m guessing some, but I also bet you’d like more… studies show that 7 out 10 who land on a site wind up leaving without a trace. Not good. Here’s a thought – what if there was an easy way for every visitor to “raise their hand” to get a phone call from you INSTANTLY… the second they hit your site and said, “call me now.” You can – Talk With Web Visitor is a software widget that’s works on your site, ready to capture any visitor’s Name, Email address and Phone Number. It lets you know IMMEDIATELY – so that you can talk to that lead while they’re literally look	2020-04-24 23:19:22
220.179.231.166	attackbots	2020-04-2414:05:541jRx5d-0005n2-9S\<=info@whatsup2013.chH=$localhost$[123.21.82.116]:47131P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3055id=20db6d3e351e343ca0a513bf58ac869a85767d@whatsup2013.chT="Gooddaycharmingstranger"forjdnichols3595@hotmail.compauledis78@gmail.com2020-04-2414:06:301jRx6D-0005pY-DJ\<=info@whatsup2013.chH=$localhost$[220.179.231.166]:56756P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3176id=28e452010a210b039f9a2c806793b9a53d5d85@whatsup2013.chT="Areyoureallyalone\?"forglenarogets1970@gmail.comgregoriovasquezhuinil@gmail.com2020-04-2414:04:341jRx4J-0005XK-HI\<=info@whatsup2013.chH=$localhost$[41.72.3.78]:36440P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3181id=0ce3f1aba08b5ead8e7086d5de0a331f3cd6db6257@whatsup2013.chT="Icouldbeyourfriend"forsmithgary357@gmail.comdmhegel@charter.net2020-04-2414:05:461jRx5V-0005ab-2q\<=info@whatsup2013.chH=\(loc	2020-04-24 23:06:31
128.14.133.58	attackspam	Unauthorized connection attempt detected from IP address 128.14.133.58 to port 8080 [T]	2020-04-24 23:12:07
218.78.99.233	attack	Apr 24 17:30:24 gw1 sshd[28420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.78.99.233 Apr 24 17:30:26 gw1 sshd[28420]: Failed password for invalid user pm from 218.78.99.233 port 36586 ssh2 ...	2020-04-24 23:20:01
217.112.128.152	attack	RBL listed IP. Trying to send Spam. IP autobanned	2020-04-24 23:51:46
157.230.240.34	attackbotsspam	2020-04-24T12:05:46.250122randservbullet-proofcloud-66.localdomain sshd[8507]: Invalid user school from 157.230.240.34 port 43764 2020-04-24T12:05:46.254432randservbullet-proofcloud-66.localdomain sshd[8507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.240.34 2020-04-24T12:05:46.250122randservbullet-proofcloud-66.localdomain sshd[8507]: Invalid user school from 157.230.240.34 port 43764 2020-04-24T12:05:48.204228randservbullet-proofcloud-66.localdomain sshd[8507]: Failed password for invalid user school from 157.230.240.34 port 43764 ssh2 ...	2020-04-24 23:44:09
51.89.149.213	attack	Apr 24 15:17:07 v22019038103785759 sshd\[7104\]: Invalid user redmine from 51.89.149.213 port 37416 Apr 24 15:17:07 v22019038103785759 sshd\[7104\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.89.149.213 Apr 24 15:17:09 v22019038103785759 sshd\[7104\]: Failed password for invalid user redmine from 51.89.149.213 port 37416 ssh2 Apr 24 15:25:49 v22019038103785759 sshd\[7602\]: Invalid user test from 51.89.149.213 port 52536 Apr 24 15:25:49 v22019038103785759 sshd\[7602\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.89.149.213 ...	2020-04-24 23:33:29
82.251.159.240	attackspambots	Bruteforce detected by fail2ban	2020-04-24 23:46:28
78.128.113.75	attack	Apr 24 16:50:27 mail.srvfarm.net postfix/smtps/smtpd[445671]: warning: unknown[78.128.113.75]: SASL PLAIN authentication failed: Apr 24 16:50:27 mail.srvfarm.net postfix/smtps/smtpd[445671]: lost connection after AUTH from unknown[78.128.113.75] Apr 24 16:50:31 mail.srvfarm.net postfix/smtps/smtpd[445676]: lost connection after AUTH from unknown[78.128.113.75] Apr 24 16:50:33 mail.srvfarm.net postfix/smtps/smtpd[445678]: lost connection after AUTH from unknown[78.128.113.75] Apr 24 16:50:33 mail.srvfarm.net postfix/smtps/smtpd[445671]: lost connection after AUTH from unknown[78.128.113.75]	2020-04-24 23:40:09
195.154.243.192	attack	Apr 23 06:13:49 emma postfix/smtpd[32477]: connect from 195-154-243-192.rev.poneytelecom.eu[195.154.243.192] Apr 23 06:13:49 emma postfix/smtpd[32477]: setting up TLS connection from 195-154-243-192.rev.poneytelecom.eu[195.154.243.192] Apr 23 06:13:50 emma postfix/smtpd[32477]: TLS connection established from 195-154-243-192.rev.poneytelecom.eu[195.154.243.192]: TLSv1 whostnameh cipher ADH-AES256-SHA (256/256 bhostnames) Apr x@x Apr 23 06:14:05 emma postfix/smtpd[32477]: disconnect from 195-154-243-192.rev.poneytelecom.eu[195.154.243.192] Apr 23 06:20:05 emma postfix/smtpd[754]: connect from 195-154-243-192.rev.poneytelecom.eu[195.154.243.192] Apr 23 06:20:05 emma postfix/smtpd[754]: setting up TLS connection from 195-154-243-192.rev.poneytelecom.eu[195.154.243.192] Apr 23 06:20:05 emma postfix/smtpd[754]: TLS connection established from 195-154-243-192.rev.poneytelecom.eu[195.154.243.192]: TLSv1 whostnameh cipher ADH-AES256-SHA (256/256 bhostnames) Apr x@x Apr 23 06:20........ -------------------------------	2020-04-24 23:25:11
115.236.19.35	attack	Apr 24 15:24:37 vlre-nyc-1 sshd\[10989\]: Invalid user yann from 115.236.19.35 Apr 24 15:24:37 vlre-nyc-1 sshd\[10989\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.236.19.35 Apr 24 15:24:38 vlre-nyc-1 sshd\[10989\]: Failed password for invalid user yann from 115.236.19.35 port 2566 ssh2 Apr 24 15:28:55 vlre-nyc-1 sshd\[11069\]: Invalid user stanford from 115.236.19.35 Apr 24 15:28:55 vlre-nyc-1 sshd\[11069\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.236.19.35 ...	2020-04-24 23:50:07

Recently Reported IPs

175.139.225.3	175.140.139.33	175.139.70.139	175.140.235.78
175.140.57.63	175.140.179.12	175.140.66.237	175.140.88.168
175.140.202.219	175.141.18.47	175.141.98.11	175.142.42.67
175.143.117.132	175.143.245.6	175.143.31.13	175.144.121.137
175.144.65.16	175.144.73.88	175.145.180.87	175.145.228.240