139.155.17.74 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	" "	2020-08-24 23:14:42
attackbots	Aug 21 00:35:12 vps639187 sshd\[4672\]: Invalid user ebs from 139.155.17.74 port 53114 Aug 21 00:35:12 vps639187 sshd\[4672\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.17.74 Aug 21 00:35:14 vps639187 sshd\[4672\]: Failed password for invalid user ebs from 139.155.17.74 port 53114 ssh2 ...	2020-08-21 06:52:03
attackbotsspam	Jul 12 00:01:36 main sshd[16938]: Failed password for invalid user jenkins from 139.155.17.74 port 38048 ssh2 Jul 12 00:03:55 main sshd[16967]: Failed password for invalid user lianqing from 139.155.17.74 port 42422 ssh2 Jul 12 00:06:25 main sshd[17004]: Failed password for invalid user gengxin from 139.155.17.74 port 46816 ssh2	2020-07-13 07:27:11
attack	Jul 10 05:35:39 saturn sshd[185831]: Invalid user sys-a from 139.155.17.74 port 40014 Jul 10 05:35:40 saturn sshd[185831]: Failed password for invalid user sys-a from 139.155.17.74 port 40014 ssh2 Jul 10 05:57:14 saturn sshd[186605]: Invalid user gitlab-prometheus from 139.155.17.74 port 59554 ...	2020-07-10 12:42:54
attackbotsspam	Jul 8 07:06:57 h2427292 sshd\[17239\]: Invalid user zyxq from 139.155.17.74 Jul 8 07:06:57 h2427292 sshd\[17239\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.17.74 Jul 8 07:06:59 h2427292 sshd\[17239\]: Failed password for invalid user zyxq from 139.155.17.74 port 59954 ssh2 ...	2020-07-08 14:38:51
attack	Automatic report BANNED IP	2020-06-30 05:15:20
attackspam	Jun 18 16:18:58 buvik sshd[19083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.17.74 Jun 18 16:19:01 buvik sshd[19083]: Failed password for invalid user ww from 139.155.17.74 port 32784 ssh2 Jun 18 16:22:36 buvik sshd[19624]: Invalid user vitor from 139.155.17.74 ...	2020-06-19 00:42:13
attackspam	2020-06-10 05:51:03,895 fail2ban.actions: WARNING [ssh] Ban 139.155.17.74	2020-06-10 15:45:31
attackbotsspam	2020-06-01T07:45:08.0264921495-001 sshd[28840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.17.74 user=root 2020-06-01T07:45:10.3929881495-001 sshd[28840]: Failed password for root from 139.155.17.74 port 48870 ssh2 2020-06-01T07:48:03.1136631495-001 sshd[28950]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.17.74 user=root 2020-06-01T07:48:05.3090011495-001 sshd[28950]: Failed password for root from 139.155.17.74 port 51774 ssh2 2020-06-01T07:50:23.8736611495-001 sshd[29020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.17.74 user=root 2020-06-01T07:50:26.2895091495-001 sshd[29020]: Failed password for root from 139.155.17.74 port 54650 ssh2 ...	2020-06-01 21:22:49

Comments on same subnet:

IP	Type	Details	Datetime
139.155.17.13	attackspambots	2020-09-28 UTC: (32x) - albert,ali,caixa,dev,ips,manager,mysql,nproc(2x),oracle,root(12x),steve,sun,sysadmin,teamspeak,test,testuser,user2,usuario1,yang,zope	2020-09-29 19:34:05
139.155.17.76	attackbotsspam	Sep 16 08:56:25 itv-usvr-01 sshd[28095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.17.76 user=root Sep 16 08:56:26 itv-usvr-01 sshd[28095]: Failed password for root from 139.155.17.76 port 53894 ssh2 Sep 16 08:58:10 itv-usvr-01 sshd[28179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.17.76 user=root Sep 16 08:58:12 itv-usvr-01 sshd[28179]: Failed password for root from 139.155.17.76 port 43986 ssh2 Sep 16 08:59:25 itv-usvr-01 sshd[28212]: Invalid user medical from 139.155.17.76	2020-09-16 12:13:07
139.155.17.76	attackspambots	Sep 15 19:15:20 master sshd[23060]: Failed password for root from 139.155.17.76 port 41072 ssh2 Sep 15 19:20:16 master sshd[23099]: Failed password for invalid user tortoisesvn from 139.155.17.76 port 56516 ssh2 Sep 15 19:23:05 master sshd[23112]: Failed password for root from 139.155.17.76 port 55714 ssh2 Sep 15 19:25:36 master sshd[23126]: Failed password for root from 139.155.17.76 port 54902 ssh2 Sep 15 19:28:12 master sshd[23140]: Failed password for root from 139.155.17.76 port 54090 ssh2 Sep 15 19:36:13 master sshd[23212]: Failed password for root from 139.155.17.76 port 51656 ssh2 Sep 15 19:38:48 master sshd[23236]: Failed password for invalid user greta from 139.155.17.76 port 50852 ssh2 Sep 15 19:43:57 master sshd[23269]: Failed password for invalid user macallister from 139.155.17.76 port 49246 ssh2 Sep 15 19:46:30 master sshd[23302]: Failed password for root from 139.155.17.76 port 48440 ssh2 Sep 15 19:49:03 master sshd[23325]: Failed password for root from 139.155.17.76 port 47634 ssh2	2020-09-16 04:02:12
139.155.17.13	attackspambots	Aug 28 02:57:03 gw1 sshd[32707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.17.13 Aug 28 02:57:05 gw1 sshd[32707]: Failed password for invalid user map from 139.155.17.13 port 38256 ssh2 ...	2020-08-28 06:19:51
139.155.17.13	attackbots	2020-08-23T16:11:58.4657311495-001 sshd[9465]: Invalid user ubuntu from 139.155.17.13 port 40676 2020-08-23T16:12:00.2619481495-001 sshd[9465]: Failed password for invalid user ubuntu from 139.155.17.13 port 40676 ssh2 2020-08-23T16:13:41.8235541495-001 sshd[9573]: Invalid user customer from 139.155.17.13 port 36722 2020-08-23T16:13:41.8267241495-001 sshd[9573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.17.13 2020-08-23T16:13:41.8235541495-001 sshd[9573]: Invalid user customer from 139.155.17.13 port 36722 2020-08-23T16:13:43.4300711495-001 sshd[9573]: Failed password for invalid user customer from 139.155.17.13 port 36722 ssh2 ...	2020-08-24 04:55:00
139.155.17.13	attackbots	Invalid user xy from 139.155.17.13 port 47326	2020-08-23 15:51:19
139.155.17.13	attackbots	Aug 7 13:52:28 ovpn sshd\[15233\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.17.13 user=root Aug 7 13:52:30 ovpn sshd\[15233\]: Failed password for root from 139.155.17.13 port 46064 ssh2 Aug 7 14:05:31 ovpn sshd\[20625\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.17.13 user=root Aug 7 14:05:33 ovpn sshd\[20625\]: Failed password for root from 139.155.17.13 port 34348 ssh2 Aug 7 14:08:06 ovpn sshd\[21492\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.17.13 user=root	2020-08-07 20:57:33
139.155.17.13	attack	Aug 5 02:58:10 firewall sshd[30102]: Failed password for root from 139.155.17.13 port 45364 ssh2 Aug 5 03:02:22 firewall sshd[30373]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.17.13 user=root Aug 5 03:02:24 firewall sshd[30373]: Failed password for root from 139.155.17.13 port 35118 ssh2 ...	2020-08-05 19:59:05
139.155.17.125	attack	Aug 2 19:55:48 lnxweb61 sshd[3600]: Failed password for root from 139.155.17.125 port 36230 ssh2 Aug 2 19:55:48 lnxweb61 sshd[3600]: Failed password for root from 139.155.17.125 port 36230 ssh2	2020-08-03 02:04:31
139.155.17.85	attackspam	Jul 29 22:17:42 h2646465 sshd[25917]: Invalid user hongge from 139.155.17.85 Jul 29 22:17:42 h2646465 sshd[25917]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.17.85 Jul 29 22:17:42 h2646465 sshd[25917]: Invalid user hongge from 139.155.17.85 Jul 29 22:17:44 h2646465 sshd[25917]: Failed password for invalid user hongge from 139.155.17.85 port 50062 ssh2 Jul 29 22:22:35 h2646465 sshd[26557]: Invalid user wyx from 139.155.17.85 Jul 29 22:22:35 h2646465 sshd[26557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.17.85 Jul 29 22:22:35 h2646465 sshd[26557]: Invalid user wyx from 139.155.17.85 Jul 29 22:22:37 h2646465 sshd[26557]: Failed password for invalid user wyx from 139.155.17.85 port 56030 ssh2 Jul 29 22:26:20 h2646465 sshd[27169]: Invalid user tyc from 139.155.17.85 ...	2020-07-30 07:00:14
139.155.17.13	attackspam	Invalid user calin from 139.155.17.13 port 57342	2020-07-12 01:17:52
139.155.17.85	attackbots	Jul 7 14:00:37 sip sshd[858051]: Invalid user ppl from 139.155.17.85 port 43564 Jul 7 14:00:39 sip sshd[858051]: Failed password for invalid user ppl from 139.155.17.85 port 43564 ssh2 Jul 7 14:08:24 sip sshd[858143]: Invalid user app from 139.155.17.85 port 41030 ...	2020-07-07 20:31:35
139.155.17.13	attackbotsspam	SSH Brute-Forcing (server1)	2020-06-27 22:36:19
139.155.17.76	attackbotsspam	Jun 25 12:22:22 ns3033917 sshd[20998]: Invalid user mauricio from 139.155.17.76 port 46894 Jun 25 12:22:24 ns3033917 sshd[20998]: Failed password for invalid user mauricio from 139.155.17.76 port 46894 ssh2 Jun 25 12:33:12 ns3033917 sshd[21108]: Invalid user bssh from 139.155.17.76 port 44072 ...	2020-06-25 21:08:51
139.155.17.13	attack	(sshd) Failed SSH login from 139.155.17.13 (CN/China/-): 10 in the last 3600 secs	2020-06-25 17:35:09

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.17.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41352
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.17.74.			IN	A

;; AUTHORITY SECTION:
.			509	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060100 1800 900 604800 86400

;; Query time: 78 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 01 21:22:45 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 74.17.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 74.17.155.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
34.212.63.114	attackspam	11/05/2019-16:10:02.953681 34.212.63.114 Protocol: 6 SURICATA TLS invalid record/traffic	2019-11-05 23:41:58
213.32.18.189	attack	Nov 5 16:08:29 localhost sshd\[16760\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.18.189 user=root Nov 5 16:08:31 localhost sshd\[16760\]: Failed password for root from 213.32.18.189 port 50136 ssh2 Nov 5 16:12:09 localhost sshd\[17147\]: Invalid user az from 213.32.18.189 port 59256	2019-11-05 23:30:34
103.82.32.7	attackspam	Message ID Created at: Tue, Nov 5, 2019 at 8:39 AM (Delivered after -1 seconds) From: HavenLock Offer To: me@cisco.com.uk Subject: Are you safe in your own home? SPF: SOFTFAIL with IP 103.82.32.7	2019-11-05 23:48:28
177.79.30.115	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-06 00:08:21
200.222.110.36	attack	2019-11-05T15:33:26.852628shield sshd\[4605\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.222.110.36 user=root 2019-11-05T15:33:28.875707shield sshd\[4605\]: Failed password for root from 200.222.110.36 port 45422 ssh2 2019-11-05T15:38:29.164666shield sshd\[5003\]: Invalid user loring from 200.222.110.36 port 55854 2019-11-05T15:38:29.168824shield sshd\[5003\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.222.110.36 2019-11-05T15:38:30.790083shield sshd\[5003\]: Failed password for invalid user loring from 200.222.110.36 port 55854 ssh2	2019-11-05 23:51:29
34.68.213.49	attackbotsspam	fail2ban honeypot	2019-11-05 23:54:30
190.85.234.215	attack	Nov 5 20:37:38 gw1 sshd[30629]: Failed password for root from 190.85.234.215 port 33738 ssh2 Nov 5 20:41:58 gw1 sshd[30810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.85.234.215 ...	2019-11-05 23:56:46
45.146.203.115	attackbots	$f2bV_matches	2019-11-06 00:00:30
51.91.136.174	attackbots	2019-11-05T15:18:01.649966abusebot-5.cloudsearch.cf sshd\[27174\]: Invalid user ubuntu from 51.91.136.174 port 51366	2019-11-05 23:28:51
139.59.77.235	attack	2019-11-05T09:21:13.6715771495-001 sshd\[5972\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.77.235 user=root 2019-11-05T09:21:15.8508981495-001 sshd\[5972\]: Failed password for root from 139.59.77.235 port 60850 ssh2 2019-11-05T09:25:56.2233311495-001 sshd\[6159\]: Invalid user testftp from 139.59.77.235 port 43026 2019-11-05T09:25:56.2265051495-001 sshd\[6159\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.77.235 2019-11-05T09:25:58.5902781495-001 sshd\[6159\]: Failed password for invalid user testftp from 139.59.77.235 port 43026 ssh2 2019-11-05T09:30:42.4494791495-001 sshd\[6306\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.77.235 user=root ...	2019-11-05 23:39:11
81.22.45.159	attack	11/05/2019-09:40:57.922357 81.22.45.159 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-05 23:44:52
146.185.25.171	attackbots	DNS Enumeration	2019-11-05 23:55:35
198.199.83.232	attackspambots	xmlrpc attack	2019-11-05 23:44:32
185.234.219.105	attackspambots	Brute force attempt	2019-11-05 23:52:20
146.185.25.186	attackspam	DNS Enumeration	2019-11-05 23:50:05

Recently Reported IPs

149.32.119.100	138.21.63.57	178.176.176.1	144.156.109.108
82.93.209.20	129.95.184.16	62.28.139.216	134.97.143.19
71.140.247.170	46.121.188.167	73.147.7.220	173.121.13.30
200.15.193.254	82.123.83.60	60.217.246.108	112.182.154.163
5.171.251.167	1.55.108.46	185.39.34.144	138.198.197.118