63.239.129.138

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: CenturyLink Communications LLC

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Port Scan detected from 63.239.129.138 (US/United States/New York/New York/-). 4 hits in the last 20 seconds	2020-05-11 13:25:43
attack	May 8 15:46:37 web1 sshd[9720]: Invalid user argentina from 63.239.129.138 port 50980 May 8 15:46:37 web1 sshd[9720]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=63.239.129.138 May 8 15:46:37 web1 sshd[9720]: Invalid user argentina from 63.239.129.138 port 50980 May 8 15:46:39 web1 sshd[9720]: Failed password for invalid user argentina from 63.239.129.138 port 50980 ssh2 May 8 15:53:07 web1 sshd[11267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=63.239.129.138 user=root May 8 15:53:09 web1 sshd[11267]: Failed password for root from 63.239.129.138 port 52710 ssh2 May 8 15:56:33 web1 sshd[12148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=63.239.129.138 user=root May 8 15:56:35 web1 sshd[12148]: Failed password for root from 63.239.129.138 port 50308 ssh2 May 8 15:59:59 web1 sshd[13038]: pam_unix(sshd:auth): authentication failure; logname= uid= ...	2020-05-08 17:56:13
attackspam	May 7 19:19:09 nextcloud sshd\[12142\]: Invalid user customer from 63.239.129.138 May 7 19:19:09 nextcloud sshd\[12142\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=63.239.129.138 May 7 19:19:11 nextcloud sshd\[12142\]: Failed password for invalid user customer from 63.239.129.138 port 47006 ssh2	2020-05-08 04:53:59
attack	Apr 28 15:57:19 work-partkepr sshd\[12734\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=63.239.129.138 user=root Apr 28 15:57:21 work-partkepr sshd\[12734\]: Failed password for root from 63.239.129.138 port 55152 ssh2 ...	2020-04-29 02:21:48

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 63.239.129.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20354
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;63.239.129.138.			IN	A

;; AUTHORITY SECTION:
.			458	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042801 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 29 02:21:44 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 138.129.239.63.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 138.129.239.63.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
152.136.95.118	attack	Nov 28 05:05:16 Ubuntu-1404-trusty-64-minimal sshd\[18774\]: Invalid user nahomi from 152.136.95.118 Nov 28 05:05:16 Ubuntu-1404-trusty-64-minimal sshd\[18774\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.95.118 Nov 28 05:05:18 Ubuntu-1404-trusty-64-minimal sshd\[18774\]: Failed password for invalid user nahomi from 152.136.95.118 port 47184 ssh2 Nov 28 05:56:32 Ubuntu-1404-trusty-64-minimal sshd\[3277\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.95.118 user=root Nov 28 05:56:34 Ubuntu-1404-trusty-64-minimal sshd\[3277\]: Failed password for root from 152.136.95.118 port 48134 ssh2	2019-11-28 14:20:08
222.186.175.183	attack	$f2bV_matches	2019-11-28 14:21:11
91.99.73.70	attack	Automatic report - XMLRPC Attack	2019-11-28 14:18:32
97.99.219.145	attackspam	BURG,WP GET /wp-login.php	2019-11-28 13:47:17
185.143.221.186	attack	11/27/2019-23:57:04.924526 185.143.221.186 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-28 14:03:21
45.55.129.23	attack	Nov 28 07:17:53 MainVPS sshd[22726]: Invalid user vanairsdale from 45.55.129.23 port 56605 Nov 28 07:17:53 MainVPS sshd[22726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.129.23 Nov 28 07:17:53 MainVPS sshd[22726]: Invalid user vanairsdale from 45.55.129.23 port 56605 Nov 28 07:17:55 MainVPS sshd[22726]: Failed password for invalid user vanairsdale from 45.55.129.23 port 56605 ssh2 Nov 28 07:25:36 MainVPS sshd[4251]: Invalid user milord from 45.55.129.23 port 46309 ...	2019-11-28 14:29:51
52.38.214.62	attackbotsspam	B: Abusive content scan (301)	2019-11-28 13:54:20
27.115.115.218	attack	Nov 28 05:45:56 microserver sshd[22726]: Invalid user ivarson from 27.115.115.218 port 43202 Nov 28 05:45:56 microserver sshd[22726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.115.115.218 Nov 28 05:45:58 microserver sshd[22726]: Failed password for invalid user ivarson from 27.115.115.218 port 43202 ssh2 Nov 28 05:53:48 microserver sshd[23559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.115.115.218 user=root Nov 28 05:53:50 microserver sshd[23559]: Failed password for root from 27.115.115.218 port 49000 ssh2 Nov 28 06:09:08 microserver sshd[25725]: Invalid user hokkaren from 27.115.115.218 port 60590 Nov 28 06:09:08 microserver sshd[25725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.115.115.218 Nov 28 06:09:11 microserver sshd[25725]: Failed password for invalid user hokkaren from 27.115.115.218 port 60590 ssh2 Nov 28 06:17:08 microserver sshd[27129]: Invalid user c	2019-11-28 13:52:32
182.71.108.154	attackbots	Invalid user leonelle from 182.71.108.154 port 50213	2019-11-28 14:14:42
159.65.62.216	attackspam	Nov 28 05:53:25 jane sshd[28173]: Failed password for root from 159.65.62.216 port 42768 ssh2 ...	2019-11-28 14:21:33
123.206.88.24	attackbotsspam	Nov 28 00:46:47 TORMINT sshd\[16147\]: Invalid user dos from 123.206.88.24 Nov 28 00:46:47 TORMINT sshd\[16147\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.88.24 Nov 28 00:46:49 TORMINT sshd\[16147\]: Failed password for invalid user dos from 123.206.88.24 port 47330 ssh2 ...	2019-11-28 14:07:25
81.133.189.239	attackspam	ssh failed login	2019-11-28 13:52:10
139.199.219.235	attackbots	Nov 28 03:25:38 ws24vmsma01 sshd[117684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.219.235 Nov 28 03:25:39 ws24vmsma01 sshd[117684]: Failed password for invalid user admin from 139.199.219.235 port 36246 ssh2 ...	2019-11-28 14:28:34
189.34.62.36	attackbots	Nov 28 07:01:46 markkoudstaal sshd[24066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.34.62.36 Nov 28 07:01:47 markkoudstaal sshd[24066]: Failed password for invalid user dillyn from 189.34.62.36 port 54261 ssh2 Nov 28 07:09:57 markkoudstaal sshd[24886]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.34.62.36	2019-11-28 14:18:09
129.94.164.100	attack	RDP Bruteforce	2019-11-28 14:24:27

Recently Reported IPs

193.60.157.63	145.201.17.231	54.215.6.203	108.174.8.22
69.227.233.68	187.199.207.128	184.233.104.56	135.179.7.188
188.79.167.165	161.204.102.211	64.152.25.209	223.7.168.198
105.49.157.31	161.35.64.61	206.62.135.213	163.155.92.48
14.241.234.55	232.83.13.58	153.248.198.42	105.157.5.194