119.139.198.74

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Guangdong Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	2020-05-10T10:03:22.2681831495-001 sshd[27932]: Invalid user csgoserver from 119.139.198.74 port 35479 2020-05-10T10:03:24.3315611495-001 sshd[27932]: Failed password for invalid user csgoserver from 119.139.198.74 port 35479 ssh2 2020-05-10T10:06:04.2953941495-001 sshd[28061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.139.198.74 user=root 2020-05-10T10:06:06.5964691495-001 sshd[28061]: Failed password for root from 119.139.198.74 port 49517 ssh2 2020-05-10T10:08:55.1414411495-001 sshd[28173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.139.198.74 user=root 2020-05-10T10:08:56.9161881495-001 sshd[28173]: Failed password for root from 119.139.198.74 port 35319 ssh2 ...	2020-05-11 03:00:25

Type

Details

Datetime

attackspam

2020-05-10T10:03:22.2681831495-001 sshd[27932]: Invalid user csgoserver from 119.139.198.74 port 35479
2020-05-10T10:03:24.3315611495-001 sshd[27932]: Failed password for invalid user csgoserver from 119.139.198.74 port 35479 ssh2
2020-05-10T10:06:04.2953941495-001 sshd[28061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.139.198.74  user=root
2020-05-10T10:06:06.5964691495-001 sshd[28061]: Failed password for root from 119.139.198.74 port 49517 ssh2
2020-05-10T10:08:55.1414411495-001 sshd[28173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.139.198.74  user=root
2020-05-10T10:08:56.9161881495-001 sshd[28173]: Failed password for root from 119.139.198.74 port 35319 ssh2
...

2020-05-11 03:00:25

Comments on same subnet:

IP	Type	Details	Datetime
119.139.198.3	attackspambots	2020-05-07T10:10:06.103580abusebot-7.cloudsearch.cf sshd[4036]: Invalid user admin from 119.139.198.3 port 45971 2020-05-07T10:10:06.110721abusebot-7.cloudsearch.cf sshd[4036]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.139.198.3 2020-05-07T10:10:06.103580abusebot-7.cloudsearch.cf sshd[4036]: Invalid user admin from 119.139.198.3 port 45971 2020-05-07T10:10:08.450591abusebot-7.cloudsearch.cf sshd[4036]: Failed password for invalid user admin from 119.139.198.3 port 45971 ssh2 2020-05-07T10:12:28.788632abusebot-7.cloudsearch.cf sshd[4194]: Invalid user sme from 119.139.198.3 port 32829 2020-05-07T10:12:28.795960abusebot-7.cloudsearch.cf sshd[4194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.139.198.3 2020-05-07T10:12:28.788632abusebot-7.cloudsearch.cf sshd[4194]: Invalid user sme from 119.139.198.3 port 32829 2020-05-07T10:12:30.629172abusebot-7.cloudsearch.cf sshd[4194]: Failed password fo ...	2020-05-07 19:25:31
119.139.198.156	attackbotsspam	1433/tcp [2020-03-31]1pkt	2020-04-01 05:18:39
119.139.198.117	attackspam	SSH Brute-Forcing (server2)	2020-03-26 19:23:14
119.139.198.117	attackbots	Mar 25 21:34:28 ws22vmsma01 sshd[29738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.139.198.117 Mar 25 21:34:29 ws22vmsma01 sshd[29738]: Failed password for invalid user admin from 119.139.198.117 port 37462 ssh2 ...	2020-03-26 08:54:53
119.139.198.166	attackspambots	Aug 13 01:54:26 www sshd\[9012\]: Invalid user nokia from 119.139.198.166Aug 13 01:54:28 www sshd\[9012\]: Failed password for invalid user nokia from 119.139.198.166 port 56934 ssh2Aug 13 02:00:45 www sshd\[9077\]: Invalid user test6 from 119.139.198.166 ...	2019-08-13 07:08:54

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.139.198.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52755
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;119.139.198.74.			IN	A

;; AUTHORITY SECTION:
.			541	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051001 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon May 11 03:00:22 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 74.198.139.119.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 74.198.139.119.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
104.236.224.69	attackspambots	Aug 26 02:07:26 ns381471 sshd[6339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.224.69 Aug 26 02:07:28 ns381471 sshd[6339]: Failed password for invalid user cc from 104.236.224.69 port 48126 ssh2	2020-08-26 08:12:39
149.129.185.154	attackspambots	Aug 26 04:53:15 shivevps sshd[5289]: Bad protocol version identification '\024' from 149.129.185.154 port 36796 Aug 26 04:54:46 shivevps sshd[7983]: Bad protocol version identification '\024' from 149.129.185.154 port 42628 Aug 26 04:54:51 shivevps sshd[8361]: Bad protocol version identification '\024' from 149.129.185.154 port 46514 ...	2020-08-26 12:11:04
140.143.233.29	attackbotsspam	Aug 26 00:39:43 vps sshd[17376]: Failed password for root from 140.143.233.29 port 29186 ssh2 Aug 26 00:49:22 vps sshd[17910]: Failed password for root from 140.143.233.29 port 50516 ssh2 Aug 26 01:05:19 vps sshd[19000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.233.29 ...	2020-08-26 08:12:25
51.15.125.122	attackspam	Aug 26 04:53:23 shivevps sshd[5576]: Bad protocol version identification '\024' from 51.15.125.122 port 42280 Aug 26 04:54:45 shivevps sshd[7871]: Bad protocol version identification '\024' from 51.15.125.122 port 59882 Aug 26 04:54:51 shivevps sshd[8352]: Bad protocol version identification '\024' from 51.15.125.122 port 35268 ...	2020-08-26 12:13:21
112.85.42.229	attack	Aug 26 06:00:41 abendstille sshd\[2052\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.229 user=root Aug 26 06:00:41 abendstille sshd\[2055\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.229 user=root Aug 26 06:00:43 abendstille sshd\[2052\]: Failed password for root from 112.85.42.229 port 34467 ssh2 Aug 26 06:00:43 abendstille sshd\[2055\]: Failed password for root from 112.85.42.229 port 37376 ssh2 Aug 26 06:00:45 abendstille sshd\[2052\]: Failed password for root from 112.85.42.229 port 34467 ssh2 ...	2020-08-26 12:11:32
67.158.20.125	attackspam	Brute forcing email accounts	2020-08-26 12:08:18
162.243.129.46	attackspam	Port Scan ...	2020-08-26 08:04:15
152.136.119.164	attack	(sshd) Failed SSH login from 152.136.119.164 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 26 01:04:34 amsweb01 sshd[9003]: Invalid user testdb from 152.136.119.164 port 51268 Aug 26 01:04:36 amsweb01 sshd[9003]: Failed password for invalid user testdb from 152.136.119.164 port 51268 ssh2 Aug 26 01:11:20 amsweb01 sshd[10016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.119.164 user=root Aug 26 01:11:22 amsweb01 sshd[10016]: Failed password for root from 152.136.119.164 port 37038 ssh2 Aug 26 01:16:41 amsweb01 sshd[10805]: Invalid user odoo11 from 152.136.119.164 port 37258	2020-08-26 08:14:10
122.114.72.74	attackbotsspam	Aug 26 00:58:57 ajax sshd[22445]: Failed password for root from 122.114.72.74 port 58740 ssh2	2020-08-26 08:07:49
123.163.27.208	attack	Aug 26 04:54:46 shivevps sshd[7894]: Bad protocol version identification '\024' from 123.163.27.208 port 35728 Aug 26 04:54:46 shivevps sshd[7899]: Bad protocol version identification '\024' from 123.163.27.208 port 35734 Aug 26 04:54:50 shivevps sshd[8253]: Bad protocol version identification '\024' from 123.163.27.208 port 35766 ...	2020-08-26 12:15:18
121.135.113.49	attack	Aug 26 00:49:28 rocket sshd[23920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.135.113.49 Aug 26 00:49:30 rocket sshd[23920]: Failed password for invalid user buntu from 121.135.113.49 port 43454 ssh2 ...	2020-08-26 08:08:13
36.65.187.0	attackspambots	Aug 26 04:52:57 shivevps sshd[4298]: Bad protocol version identification '\024' from 36.65.187.0 port 52892 Aug 26 04:52:57 shivevps sshd[4357]: Bad protocol version identification '\024' from 36.65.187.0 port 52943 Aug 26 04:54:51 shivevps sshd[8346]: Bad protocol version identification '\024' from 36.65.187.0 port 56442 ...	2020-08-26 12:15:02
5.206.34.211	attack	SMB Server BruteForce Attack	2020-08-26 08:02:31
180.183.158.254	attackspam	Aug 26 04:53:01 shivevps sshd[4655]: Bad protocol version identification '\024' from 180.183.158.254 port 45527 Aug 26 04:53:01 shivevps sshd[4669]: Bad protocol version identification '\024' from 180.183.158.254 port 45533 Aug 26 04:54:52 shivevps sshd[8407]: Bad protocol version identification '\024' from 180.183.158.254 port 48148 ...	2020-08-26 12:05:16
179.157.2.75	attackbots	Aug 25 16:58:54 ny01 sshd[1393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.157.2.75 Aug 25 16:58:56 ny01 sshd[1393]: Failed password for invalid user wangqiang from 179.157.2.75 port 35368 ssh2 Aug 25 17:04:24 ny01 sshd[2218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.157.2.75	2020-08-26 08:06:14

Recently Reported IPs

59.93.94.203	91.79.1.104	80.91.176.152	79.53.169.204
103.7.79.216	113.23.3.130	186.235.63.115	174.96.80.251
14.187.55.94	107.139.177.215	117.168.20.181	59.3.22.223
113.179.87.158	123.23.122.27	45.146.255.52	187.138.6.55
117.242.101.101	77.28.44.193	220.134.201.191	189.113.72.105