66.175.238.139

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: 1&1 Internet Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Port Scan: TCP/445	2019-08-24 11:59:54

Comments on same subnet:

IP	Type	Details	Datetime
66.175.238.223	attack	Mar 4 21:21:13 hpm sshd\[24322\]: Invalid user webadmin from 66.175.238.223 Mar 4 21:21:13 hpm sshd\[24322\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.175.238.223 Mar 4 21:21:15 hpm sshd\[24322\]: Failed password for invalid user webadmin from 66.175.238.223 port 60366 ssh2 Mar 4 21:30:02 hpm sshd\[24981\]: Invalid user odoo from 66.175.238.223 Mar 4 21:30:02 hpm sshd\[24981\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.175.238.223	2020-03-05 15:45:25
66.175.238.223	attack	Feb 29 15:46:10 wbs sshd\[12706\]: Invalid user ekp from 66.175.238.223 Feb 29 15:46:10 wbs sshd\[12706\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.175.238.223 Feb 29 15:46:12 wbs sshd\[12706\]: Failed password for invalid user ekp from 66.175.238.223 port 42694 ssh2 Feb 29 15:54:28 wbs sshd\[13363\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.175.238.223 user=root Feb 29 15:54:30 wbs sshd\[13363\]: Failed password for root from 66.175.238.223 port 52626 ssh2	2020-03-01 09:55:39
66.175.238.223	attackspambots	Feb 28 10:14:40 gw1 sshd[29771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.175.238.223 Feb 28 10:14:42 gw1 sshd[29771]: Failed password for invalid user xulei from 66.175.238.223 port 34262 ssh2 ...	2020-02-28 13:20:14
66.175.238.223	attack	Feb 11 23:27:10 markkoudstaal sshd[31476]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.175.238.223 Feb 11 23:27:12 markkoudstaal sshd[31476]: Failed password for invalid user ts from 66.175.238.223 port 47900 ssh2 Feb 11 23:29:36 markkoudstaal sshd[31922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.175.238.223	2020-02-12 06:45:20
66.175.238.223	attackspambots	Invalid user tys from 66.175.238.223 port 35772	2020-02-11 14:08:11
66.175.238.223	attackbots	Feb 10 06:24:52 legacy sshd[13287]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.175.238.223 Feb 10 06:24:54 legacy sshd[13287]: Failed password for invalid user ubg from 66.175.238.223 port 54776 ssh2 Feb 10 06:27:59 legacy sshd[13549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.175.238.223 ...	2020-02-10 13:43:29
66.175.238.223	attackspambots	SSH Brute Force	2020-01-31 14:03:56
66.175.238.223	attackspam	Jan 29 22:39:47 DAAP sshd[11578]: Invalid user yadavaprakasa from 66.175.238.223 port 39198 Jan 29 22:39:47 DAAP sshd[11578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.175.238.223 Jan 29 22:39:47 DAAP sshd[11578]: Invalid user yadavaprakasa from 66.175.238.223 port 39198 Jan 29 22:39:48 DAAP sshd[11578]: Failed password for invalid user yadavaprakasa from 66.175.238.223 port 39198 ssh2 Jan 29 22:47:08 DAAP sshd[11657]: Invalid user kanak from 66.175.238.223 port 55700 ...	2020-01-30 06:12:02
66.175.238.223	attackspambots	Unauthorized connection attempt detected from IP address 66.175.238.223 to port 2220 [J]	2020-01-13 05:47:38
66.175.238.223	attackbotsspam	SSH/22 MH Probe, BF, Hack -	2020-01-05 05:54:24
66.175.238.144	attack	2019-12-18T05:28:04.707250shield sshd\[26534\]: Invalid user caela from 66.175.238.144 port 38624 2019-12-18T05:28:04.711653shield sshd\[26534\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.175.238.144 2019-12-18T05:28:06.609991shield sshd\[26534\]: Failed password for invalid user caela from 66.175.238.144 port 38624 ssh2 2019-12-18T05:33:44.580041shield sshd\[28049\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.175.238.144 user=root 2019-12-18T05:33:46.488344shield sshd\[28049\]: Failed password for root from 66.175.238.144 port 50746 ssh2	2019-12-18 13:37:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.175.238.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38970
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;66.175.238.139.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082302 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 24 11:59:41 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 139.238.175.66.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 139.238.175.66.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.175.182	attackbotsspam	Time: Mon Sep 28 02:15:26 2020 +0000 IP: 222.186.175.182 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 28 02:15:11 1-1 sshd[599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root Sep 28 02:15:13 1-1 sshd[599]: Failed password for root from 222.186.175.182 port 46892 ssh2 Sep 28 02:15:16 1-1 sshd[599]: Failed password for root from 222.186.175.182 port 46892 ssh2 Sep 28 02:15:19 1-1 sshd[599]: Failed password for root from 222.186.175.182 port 46892 ssh2 Sep 28 02:15:23 1-1 sshd[599]: Failed password for root from 222.186.175.182 port 46892 ssh2	2020-09-29 04:47:08
222.186.175.151	attackbots	Time: Sat Sep 26 22:47:21 2020 +0000 IP: 222.186.175.151 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 26 22:47:06 29-1 sshd[11933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.151 user=root Sep 26 22:47:08 29-1 sshd[11933]: Failed password for root from 222.186.175.151 port 39306 ssh2 Sep 26 22:47:11 29-1 sshd[11933]: Failed password for root from 222.186.175.151 port 39306 ssh2 Sep 26 22:47:15 29-1 sshd[11933]: Failed password for root from 222.186.175.151 port 39306 ssh2 Sep 26 22:47:17 29-1 sshd[11933]: Failed password for root from 222.186.175.151 port 39306 ssh2	2020-09-29 04:42:19
112.85.42.176	attack	$f2bV_matches	2020-09-29 04:43:16
51.254.156.114	attackspambots	Sep 28 22:12:20 roki sshd[23754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.156.114 user=root Sep 28 22:12:22 roki sshd[23754]: Failed password for root from 51.254.156.114 port 39210 ssh2 Sep 28 22:16:45 roki sshd[24075]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.156.114 user=root Sep 28 22:16:47 roki sshd[24075]: Failed password for root from 51.254.156.114 port 57720 ssh2 Sep 28 22:19:59 roki sshd[24321]: Invalid user ken from 51.254.156.114 Sep 28 22:19:59 roki sshd[24321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.156.114 ...	2020-09-29 04:44:56
62.210.103.204	attackbots	Port scan denied	2020-09-29 04:32:28
49.88.112.72	attack	Sep 28 23:09:09 pkdns2 sshd\[48720\]: Failed password for root from 49.88.112.72 port 41882 ssh2Sep 28 23:10:54 pkdns2 sshd\[48829\]: Failed password for root from 49.88.112.72 port 22582 ssh2Sep 28 23:14:23 pkdns2 sshd\[48979\]: Failed password for root from 49.88.112.72 port 52161 ssh2Sep 28 23:15:15 pkdns2 sshd\[49050\]: Failed password for root from 49.88.112.72 port 43207 ssh2Sep 28 23:15:18 pkdns2 sshd\[49050\]: Failed password for root from 49.88.112.72 port 43207 ssh2Sep 28 23:15:21 pkdns2 sshd\[49050\]: Failed password for root from 49.88.112.72 port 43207 ssh2 ...	2020-09-29 04:30:27
222.186.173.183	attackbotsspam	Failed password for invalid user from 222.186.173.183 port 49582 ssh2	2020-09-29 05:03:24
167.172.201.94	attackspambots	2020-09-28T16:28:55.582095mail.thespaminator.com sshd[12323]: Invalid user anita from 167.172.201.94 port 38286 2020-09-28T16:28:57.093012mail.thespaminator.com sshd[12323]: Failed password for invalid user anita from 167.172.201.94 port 38286 ssh2 ...	2020-09-29 04:56:41
188.254.0.160	attack	Sep 28 18:37:59 h2779839 sshd[1795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.160 user=root Sep 28 18:38:01 h2779839 sshd[1795]: Failed password for root from 188.254.0.160 port 40108 ssh2 Sep 28 18:41:56 h2779839 sshd[1983]: Invalid user alpha from 188.254.0.160 port 49476 Sep 28 18:41:56 h2779839 sshd[1983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.160 Sep 28 18:41:56 h2779839 sshd[1983]: Invalid user alpha from 188.254.0.160 port 49476 Sep 28 18:41:58 h2779839 sshd[1983]: Failed password for invalid user alpha from 188.254.0.160 port 49476 ssh2 Sep 28 18:46:03 h2779839 sshd[2093]: Invalid user eoffice from 188.254.0.160 port 58910 Sep 28 18:46:03 h2779839 sshd[2093]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.160 Sep 28 18:46:03 h2779839 sshd[2093]: Invalid user eoffice from 188.254.0.160 port 58910 Sep 28 18:46:05 ...	2020-09-29 05:00:57
68.183.28.35	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-29 04:58:14
182.61.44.2	attackspam	(sshd) Failed SSH login from 182.61.44.2 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 28 12:30:42 server sshd[10778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.44.2 user=root Sep 28 12:30:43 server sshd[10778]: Failed password for root from 182.61.44.2 port 57871 ssh2 Sep 28 12:39:34 server sshd[13097]: Invalid user admin from 182.61.44.2 port 36503 Sep 28 12:39:36 server sshd[13097]: Failed password for invalid user admin from 182.61.44.2 port 36503 ssh2 Sep 28 12:43:32 server sshd[14108]: Invalid user glenn from 182.61.44.2 port 53960	2020-09-29 04:51:25
106.12.77.182	attackbots	Time: Mon Sep 28 18:58:23 2020 +0000 IP: 106.12.77.182 (-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 28 18:48:07 16-1 sshd[4488]: Invalid user asterisk from 106.12.77.182 port 39278 Sep 28 18:48:10 16-1 sshd[4488]: Failed password for invalid user asterisk from 106.12.77.182 port 39278 ssh2 Sep 28 18:55:20 16-1 sshd[5227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.77.182 user=root Sep 28 18:55:22 16-1 sshd[5227]: Failed password for root from 106.12.77.182 port 53150 ssh2 Sep 28 18:58:21 16-1 sshd[5538]: Invalid user hadoop from 106.12.77.182 port 34724	2020-09-29 04:50:53
106.12.199.30	attackspambots	Sep 28 15:23:05 ns382633 sshd\[8529\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 user=root Sep 28 15:23:07 ns382633 sshd\[8529\]: Failed password for root from 106.12.199.30 port 53908 ssh2 Sep 28 15:29:29 ns382633 sshd\[9778\]: Invalid user crm from 106.12.199.30 port 56700 Sep 28 15:29:29 ns382633 sshd\[9778\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 Sep 28 15:29:31 ns382633 sshd\[9778\]: Failed password for invalid user crm from 106.12.199.30 port 56700 ssh2	2020-09-29 04:29:25
222.186.30.57	attackspambots	Sep 28 22:31:31 * sshd[5716]: Failed password for root from 222.186.30.57 port 51384 ssh2	2020-09-29 04:38:53
110.12.193.98	attackbots	Invalid user nginx from 110.12.193.98 port 39260	2020-09-29 05:00:30

Recently Reported IPs

208.123.112.135	207.32.248.94	8.6.25.102	200.98.162.44
200.98.129.89	198.210.119.207	177.50.61.117	97.70.128.201
208.190.7.183	195.25.64.107	194.177.232.165	192.139.139.132
190.139.250.33	190.94.148.89	189.8.92.186	47.37.224.38
188.75.255.37	248.51.32.37	137.96.139.195	251.34.73.219