212.139.114.20

Basic Info

City: Twickenham

Region: England

Country: United Kingdom

Internet Service Provider: TalkTalk Communications Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Mar 18 13:05:37 vlre-nyc-1 sshd\[8998\]: Invalid user admin from 212.139.114.20 Mar 18 13:05:37 vlre-nyc-1 sshd\[8998\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.139.114.20 Mar 18 13:05:39 vlre-nyc-1 sshd\[8998\]: Failed password for invalid user admin from 212.139.114.20 port 59950 ssh2 Mar 18 13:05:41 vlre-nyc-1 sshd\[9003\]: Invalid user admin from 212.139.114.20 Mar 18 13:05:41 vlre-nyc-1 sshd\[9003\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.139.114.20 ...	2020-03-19 04:51:17

Type

Details

Datetime

attackbots

Mar 18 13:05:37 vlre-nyc-1 sshd\[8998\]: Invalid user admin from 212.139.114.20
Mar 18 13:05:37 vlre-nyc-1 sshd\[8998\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.139.114.20
Mar 18 13:05:39 vlre-nyc-1 sshd\[8998\]: Failed password for invalid user admin from 212.139.114.20 port 59950 ssh2
Mar 18 13:05:41 vlre-nyc-1 sshd\[9003\]: Invalid user admin from 212.139.114.20
Mar 18 13:05:41 vlre-nyc-1 sshd\[9003\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.139.114.20
...

2020-03-19 04:51:17

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.139.114.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25646
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;212.139.114.20.			IN	A

;; AUTHORITY SECTION:
.			166	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031801 1800 900 604800 86400

;; Query time: 117 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 19 04:51:14 CST 2020
;; MSG SIZE  rcvd: 118

Host info

20.114.139.212.in-addr.arpa domain name pointer host-212-139-114-20.static.as9105.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.114.139.212.in-addr.arpa	name = host-212-139-114-20.static.as9105.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
189.169.32.102	attackbots	Unauthorized connection attempt from IP address 189.169.32.102 on Port 445(SMB)	2019-11-04 06:59:24
14.140.207.62	attack	Unauthorized connection attempt from IP address 14.140.207.62 on Port 445(SMB)	2019-11-04 06:58:39
106.13.15.122	attackbotsspam	Mar 23 08:41:57 vtv3 sshd\[17311\]: Invalid user judy from 106.13.15.122 port 58278 Mar 23 08:41:57 vtv3 sshd\[17311\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.15.122 Mar 23 08:42:00 vtv3 sshd\[17311\]: Failed password for invalid user judy from 106.13.15.122 port 58278 ssh2 Mar 23 08:48:21 vtv3 sshd\[19784\]: Invalid user ot from 106.13.15.122 port 36120 Mar 23 08:48:21 vtv3 sshd\[19784\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.15.122 Apr 3 00:15:54 vtv3 sshd\[10676\]: Invalid user web from 106.13.15.122 port 47070 Apr 3 00:15:54 vtv3 sshd\[10676\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.15.122 Apr 3 00:15:56 vtv3 sshd\[10676\]: Failed password for invalid user web from 106.13.15.122 port 47070 ssh2 Apr 3 00:25:52 vtv3 sshd\[14610\]: Invalid user yj from 106.13.15.122 port 54478 Apr 3 00:25:52 vtv3 sshd\[14610\]: pam_unix\(sshd:au	2019-11-04 06:58:26
177.53.104.2	attack	firewall-block, port(s): 23/tcp	2019-11-04 07:03:46
147.78.53.254	attack	WordPress XMLRPC scan :: 147.78.53.254 0.832 - [03/Nov/2019:22:30:22 0000] www.[censored_1] "POST /xmlrpc.php HTTP/1.1" 200 194 "https://www.[censored_1]/" "PHP/6.3.47" "HTTP/1.1"	2019-11-04 07:06:51
175.211.112.250	attack	2019-11-03T22:30:59.777234abusebot-5.cloudsearch.cf sshd\[8053\]: Invalid user hp from 175.211.112.250 port 42454	2019-11-04 06:36:41
167.114.152.139	attack	Nov 3 23:26:01 SilenceServices sshd[30759]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.152.139 Nov 3 23:26:03 SilenceServices sshd[30759]: Failed password for invalid user rain from 167.114.152.139 port 49520 ssh2 Nov 3 23:30:42 SilenceServices sshd[3117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.152.139	2019-11-04 06:49:07
182.140.235.120	attack	firewall-block, port(s): 1433/tcp	2019-11-04 07:01:43
106.75.7.70	attackbotsspam	Nov 3 17:26:48 TORMINT sshd\[25556\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.7.70 user=root Nov 3 17:26:50 TORMINT sshd\[25556\]: Failed password for root from 106.75.7.70 port 60014 ssh2 Nov 3 17:30:56 TORMINT sshd\[25738\]: Invalid user jorge from 106.75.7.70 Nov 3 17:30:56 TORMINT sshd\[25738\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.7.70 ...	2019-11-04 06:39:05
49.88.112.115	attackspam	Nov 3 12:29:55 php1 sshd\[29700\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115 user=root Nov 3 12:29:56 php1 sshd\[29700\]: Failed password for root from 49.88.112.115 port 17466 ssh2 Nov 3 12:30:46 php1 sshd\[29770\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115 user=root Nov 3 12:30:48 php1 sshd\[29770\]: Failed password for root from 49.88.112.115 port 31609 ssh2 Nov 3 12:30:50 php1 sshd\[29770\]: Failed password for root from 49.88.112.115 port 31609 ssh2	2019-11-04 06:40:25
51.15.55.90	attackspam	Nov 3 22:30:24 thevastnessof sshd[17505]: Failed password for root from 51.15.55.90 port 38272 ssh2 ...	2019-11-04 07:05:44
220.76.107.50	attackspam	Nov 4 01:30:44 hosting sshd[25637]: Invalid user cvsroot from 220.76.107.50 port 60048 ...	2019-11-04 06:47:00
201.148.20.232	attackspambots	Unauthorized connection attempt from IP address 201.148.20.232 on Port 445(SMB)	2019-11-04 06:50:19
207.154.247.249	attackspam	WordPress login Brute force / Web App Attack on client site.	2019-11-04 06:35:00
89.91.69.181	attack	Nov 4 00:46:20 www sshd\[184247\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.91.69.181 user=root Nov 4 00:46:21 www sshd\[184247\]: Failed password for root from 89.91.69.181 port 49442 ssh2 Nov 4 00:50:25 www sshd\[184267\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.91.69.181 user=root ...	2019-11-04 07:11:55

Recently Reported IPs

209.234.163.100	178.171.58.193	122.88.5.204	68.58.190.96
103.197.57.240	221.52.236.61	172.250.156.74	200.146.235.128
104.236.28.47	74.39.63.30	37.185.250.253	81.214.130.7
120.148.30.224	132.74.194.156	198.245.55.145	61.223.255.89
106.77.146.198	170.40.163.183	126.67.143.4	37.89.90.176