94.55.10.139 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Turkey

Internet Service Provider: Turksat Uydu Haberlesme ve Kablo TV Isletme A.S.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Mar 24 01:07:42 mout sshd[17121]: Invalid user debian from 94.55.10.139 port 53649 Mar 24 01:07:45 mout sshd[17121]: Failed password for invalid user debian from 94.55.10.139 port 53649 ssh2 Mar 24 01:07:45 mout sshd[17121]: Connection closed by 94.55.10.139 port 53649 [preauth]	2020-03-24 09:26:18

Type

Details

Datetime

attackbotsspam

Mar 24 01:07:42 mout sshd[17121]: Invalid user debian from 94.55.10.139 port 53649
Mar 24 01:07:45 mout sshd[17121]: Failed password for invalid user debian from 94.55.10.139 port 53649 ssh2
Mar 24 01:07:45 mout sshd[17121]: Connection closed by 94.55.10.139 port 53649 [preauth]

2020-03-24 09:26:18

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.55.10.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18284
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.55.10.139.			IN	A

;; AUTHORITY SECTION:
.			589	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032301 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 24 09:26:15 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 139.10.55.94.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.10.55.94.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.89.49.183	attack	SSH Invalid Login	2020-09-16 07:45:04
200.116.175.40	attack	Sep 15 19:44:10 h2779839 sshd[9672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.116.175.40 user=root Sep 15 19:44:11 h2779839 sshd[9672]: Failed password for root from 200.116.175.40 port 4975 ssh2 Sep 15 19:47:06 h2779839 sshd[9708]: Invalid user zabbix from 200.116.175.40 port 58908 Sep 15 19:47:06 h2779839 sshd[9708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.116.175.40 Sep 15 19:47:06 h2779839 sshd[9708]: Invalid user zabbix from 200.116.175.40 port 58908 Sep 15 19:47:09 h2779839 sshd[9708]: Failed password for invalid user zabbix from 200.116.175.40 port 58908 ssh2 Sep 15 19:50:04 h2779839 sshd[9749]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.116.175.40 user=root Sep 15 19:50:06 h2779839 sshd[9749]: Failed password for root from 200.116.175.40 port 1422 ssh2 Sep 15 19:53:02 h2779839 sshd[9772]: Invalid user ftpguest from 200.116.175 ...	2020-09-16 07:25:54
139.198.17.31	attackspambots	Sep 16 01:38:25 nuernberg-4g-01 sshd[5223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.17.31 Sep 16 01:38:27 nuernberg-4g-01 sshd[5223]: Failed password for invalid user git from 139.198.17.31 port 36416 ssh2 Sep 16 01:42:37 nuernberg-4g-01 sshd[7996]: Failed password for root from 139.198.17.31 port 46130 ssh2	2020-09-16 07:54:28
173.231.59.214	attackbotsspam	Brute force attack stopped by firewall	2020-09-16 07:57:40
47.146.140.94	attackspambots	Unauthorized connection attempt from IP address 47.146.140.94 on Port 445(SMB)	2020-09-16 07:43:47
54.241.217.22	attackspambots	Sep 15 22:11:42 haigwepa sshd[14595]: Failed password for root from 54.241.217.22 port 36932 ssh2 ...	2020-09-16 07:36:07
129.226.133.133	attack	2020-09-15T23:17:53.140293shield sshd\[32354\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.133.133 user=root 2020-09-15T23:17:55.608787shield sshd\[32354\]: Failed password for root from 129.226.133.133 port 52328 ssh2 2020-09-15T23:24:06.297043shield sshd\[2809\]: Invalid user diddy from 129.226.133.133 port 39484 2020-09-15T23:24:06.306324shield sshd\[2809\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.133.133 2020-09-15T23:24:08.648283shield sshd\[2809\]: Failed password for invalid user diddy from 129.226.133.133 port 39484 ssh2	2020-09-16 07:56:48
49.234.91.78	attackspambots	Sep 16 01:32:42 ns381471 sshd[7574]: Failed password for root from 49.234.91.78 port 51822 ssh2	2020-09-16 07:51:32
140.207.81.233	attack	5x Failed Password	2020-09-16 07:37:28
123.136.128.13	attack	Time: Tue Sep 15 17:31:05 2020 -0400 IP: 123.136.128.13 (IN/India/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 15 17:16:42 ams-11 sshd[4425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.136.128.13 user=root Sep 15 17:16:44 ams-11 sshd[4425]: Failed password for root from 123.136.128.13 port 41100 ssh2 Sep 15 17:27:21 ams-11 sshd[4852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.136.128.13 user=bin Sep 15 17:27:23 ams-11 sshd[4852]: Failed password for bin from 123.136.128.13 port 50339 ssh2 Sep 15 17:31:05 ams-11 sshd[5039]: Invalid user test from 123.136.128.13 port 51081	2020-09-16 07:31:24
13.125.115.202	attackspambots	2020-09-15T23:25:15.497630ns386461 sshd\[14761\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-13-125-115-202.ap-northeast-2.compute.amazonaws.com user=root 2020-09-15T23:25:17.874615ns386461 sshd\[14761\]: Failed password for root from 13.125.115.202 port 44124 ssh2 2020-09-15T23:41:09.415332ns386461 sshd\[29572\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-13-125-115-202.ap-northeast-2.compute.amazonaws.com user=root 2020-09-15T23:41:11.758531ns386461 sshd\[29572\]: Failed password for root from 13.125.115.202 port 42250 ssh2 2020-09-15T23:45:52.624285ns386461 sshd\[1713\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-13-125-115-202.ap-northeast-2.compute.amazonaws.com user=root ...	2020-09-16 07:29:37
178.170.219.6	attackspam	(RCPT) RCPT NOT ALLOWED FROM 178.170.219.6 (RU/Russia/-): 1 in the last 3600 secs	2020-09-16 08:01:43
41.32.173.42	attackspambots	SMB Server BruteForce Attack	2020-09-16 07:46:38
186.206.129.160	attackbots	Sep 15 23:27:02 nextcloud sshd\[19558\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.206.129.160 user=root Sep 15 23:27:03 nextcloud sshd\[19558\]: Failed password for root from 186.206.129.160 port 49655 ssh2 Sep 15 23:29:21 nextcloud sshd\[21884\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.206.129.160 user=root	2020-09-16 07:41:39
206.189.38.105	attackspambots	Sep 16 01:09:44 xeon sshd[34045]: Failed password for root from 206.189.38.105 port 37330 ssh2	2020-09-16 07:36:43

Recently Reported IPs

46.150.1.81	189.203.28.224	114.233.191.154	124.109.44.38
180.76.162.19	111.3.103.78	14.230.114.45	46.38.145.6
167.250.31.82	107.170.149.126	179.33.143.255	133.114.78.33
183.215.125.210	207.170.178.121	196.200.191.115	81.192.100.222
106.13.130.208	63.82.48.68	106.13.59.134	63.82.49.175