139.155.74.147

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Found on Github Combined on 3 lists / proto=6 . srcport=50234 . dstport=23557 . (1759)	2020-10-13 22:54:55
attackbotsspam	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-10-13 14:15:20
attackspambots	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-10-13 06:57:21
attackspambots	$f2bV_matches	2020-08-22 14:16:37
attack	Aug 5 16:08:38 ns381471 sshd[15732]: Failed password for root from 139.155.74.147 port 56782 ssh2	2020-08-05 22:12:55
attackspambots	Jul 11 23:56:16 ns382633 sshd\[1615\]: Invalid user dauner from 139.155.74.147 port 48023 Jul 11 23:56:16 ns382633 sshd\[1615\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.147 Jul 11 23:56:18 ns382633 sshd\[1615\]: Failed password for invalid user dauner from 139.155.74.147 port 48023 ssh2 Jul 12 00:00:58 ns382633 sshd\[2531\]: Invalid user lulli from 139.155.74.147 port 37535 Jul 12 00:00:58 ns382633 sshd\[2531\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.147	2020-07-12 07:24:34
attackspambots	Invalid user admin from 139.155.74.147 port 56158	2020-06-13 16:44:14
attackbotsspam	Jun 11 01:32:45 dhoomketu sshd[634888]: Failed password for invalid user mass from 139.155.74.147 port 58408 ssh2 Jun 11 01:34:46 dhoomketu sshd[634960]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.147 user=root Jun 11 01:34:47 dhoomketu sshd[634960]: Failed password for root from 139.155.74.147 port 42767 ssh2 Jun 11 01:36:48 dhoomketu sshd[634989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.147 user=root Jun 11 01:36:50 dhoomketu sshd[634989]: Failed password for root from 139.155.74.147 port 55354 ssh2 ...	2020-06-11 06:57:17
attackbots	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-06-02 22:36:05

Comments on same subnet:

IP	Type	Details	Datetime
139.155.74.13	attackspambots	MLV GET /wp-login.php	2020-08-05 07:43:38
139.155.74.240	attackbotsspam	Invalid user aurore from 139.155.74.240 port 44788	2020-07-31 06:05:44
139.155.74.240	attack	Invalid user idempiere from 139.155.74.240 port 34572	2020-07-30 17:34:31
139.155.74.240	attack	Jul 22 22:03:17 ns381471 sshd[8744]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.240 Jul 22 22:03:19 ns381471 sshd[8744]: Failed password for invalid user admin from 139.155.74.240 port 60236 ssh2	2020-07-23 04:14:00
139.155.74.240	attackspambots	2020-07-06 UTC: (147x) - VM,acct,acme,admin(4x),administrator,asterisk,azar,b,cacheusr,cam,carrie,comfort,cse,db2inst3,deploy,deployer,dge,dis,drcom,edu,emilio,erica,ethos,evv,frida,gisele,git,gitlab-runner,hadoop,hans,indu,james,jenkins,john1,joomla,kafka(2x),kg,las,lcr,mai,mc,mcserver,me,mf,monitor,mysql(2x),nexus,oem,opscode,oracle(2x),owncloud,pankaj,prashant,prem,premier,r,rachid,remote,roger,root(41x),ryan,sam,scott,sdv,shield,smbuser,stage,stone,student,superman,svaadmin,sysadmin,tahir,tapas,tb,tecnico,test(2x),test3,tomas,tomcat,toor,uat,ubuntu,user(2x),userftp,usher,wangwei,wayne,wbiadmin,webmaster,wfp,work,xt,yjlee,zc,zhangyang,zhangyong,zsh,zzz	2020-07-07 18:15:03
139.155.74.240	attack	Jul 4 23:22:34 ift sshd\[61094\]: Invalid user test from 139.155.74.240Jul 4 23:22:37 ift sshd\[61094\]: Failed password for invalid user test from 139.155.74.240 port 58348 ssh2Jul 4 23:25:31 ift sshd\[61755\]: Invalid user cr from 139.155.74.240Jul 4 23:25:32 ift sshd\[61755\]: Failed password for invalid user cr from 139.155.74.240 port 60934 ssh2Jul 4 23:28:19 ift sshd\[62211\]: Invalid user usuario from 139.155.74.240 ...	2020-07-05 05:14:33
139.155.74.240	attackbots	Jun 17 12:31:02 webhost01 sshd[4010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.240 Jun 17 12:31:05 webhost01 sshd[4010]: Failed password for invalid user earth from 139.155.74.240 port 54016 ssh2 ...	2020-06-17 13:59:50
139.155.74.38	attackspam	Dec 23 01:43:55 server sshd\[32265\]: Invalid user dere from 139.155.74.38 Dec 23 01:43:55 server sshd\[32265\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.38 Dec 23 01:43:57 server sshd\[32265\]: Failed password for invalid user dere from 139.155.74.38 port 46200 ssh2 Dec 23 01:51:17 server sshd\[2004\]: Invalid user backup from 139.155.74.38 Dec 23 01:51:17 server sshd\[2004\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.38 ...	2019-12-23 08:29:31
139.155.74.38	attack	Dec 14 12:16:56 loxhost sshd\[14445\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.38 user=root Dec 14 12:16:58 loxhost sshd\[14445\]: Failed password for root from 139.155.74.38 port 55816 ssh2 Dec 14 12:23:10 loxhost sshd\[14578\]: Invalid user nfs from 139.155.74.38 port 48102 Dec 14 12:23:10 loxhost sshd\[14578\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.38 Dec 14 12:23:12 loxhost sshd\[14578\]: Failed password for invalid user nfs from 139.155.74.38 port 48102 ssh2 ...	2019-12-14 19:37:14
139.155.74.38	attack	29 failed attempt(s) in the last 24h	2019-12-03 06:43:58
139.155.74.38	attackspambots	Dec 1 10:00:15 ny01 sshd[29930]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.38 Dec 1 10:00:18 ny01 sshd[29930]: Failed password for invalid user rpc from 139.155.74.38 port 42344 ssh2 Dec 1 10:05:05 ny01 sshd[30461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.38	2019-12-01 23:19:43
139.155.74.38	attack	Nov 27 12:55:37 wbs sshd\[11889\]: Invalid user kristosik from 139.155.74.38 Nov 27 12:55:37 wbs sshd\[11889\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.38 Nov 27 12:55:39 wbs sshd\[11889\]: Failed password for invalid user kristosik from 139.155.74.38 port 55596 ssh2 Nov 27 12:59:45 wbs sshd\[12262\]: Invalid user apples from 139.155.74.38 Nov 27 12:59:45 wbs sshd\[12262\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.38	2019-11-28 07:15:02
139.155.74.38	attackspambots	Nov 27 18:13:39 heissa sshd\[12379\]: Invalid user byholt from 139.155.74.38 port 58348 Nov 27 18:13:39 heissa sshd\[12379\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.38 Nov 27 18:13:42 heissa sshd\[12379\]: Failed password for invalid user byholt from 139.155.74.38 port 58348 ssh2 Nov 27 18:20:07 heissa sshd\[13338\]: Invalid user nfs from 139.155.74.38 port 51464 Nov 27 18:20:07 heissa sshd\[13338\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.74.38	2019-11-28 03:50:20
139.155.74.38	attackspambots	$f2bV_matches	2019-11-25 16:14:50
139.155.74.38	attackbots	SSH brutforce	2019-11-21 02:55:11

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.74.147
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38790
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.74.147.			IN	A

;; AUTHORITY SECTION:
.			532	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060200 1800 900 604800 86400

;; Query time: 43 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 02 22:36:00 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 147.74.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 147.74.155.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
195.54.166.43	attackbots	firewall-block, port(s): 868/tcp, 950/tcp, 5890/tcp, 7567/tcp, 16268/tcp, 18726/tcp, 19521/tcp, 19541/tcp, 21298/tcp, 24146/tcp, 25938/tcp, 25951/tcp, 26793/tcp, 27383/tcp, 29882/tcp, 30982/tcp, 31708/tcp, 31801/tcp, 32703/tcp, 33030/tcp, 33337/tcp, 34036/tcp, 40182/tcp, 41098/tcp, 45195/tcp, 46090/tcp, 48410/tcp, 49228/tcp, 49392/tcp, 51781/tcp, 51822/tcp, 58229/tcp, 60028/tcp, 61328/tcp, 62436/tcp, 64516/tcp	2020-04-28 06:15:35
112.85.42.188	attackspambots	04/27/2020-18:19:19.543093 112.85.42.188 Protocol: 6 ET SCAN Potential SSH Scan	2020-04-28 06:19:53
45.143.220.105	attackspam	trying to hack asterisk	2020-04-28 06:47:56
49.232.168.171	attackspambots	2020-04-27T22:04:43.792013shield sshd\[19395\]: Invalid user karol from 49.232.168.171 port 39720 2020-04-27T22:04:43.795476shield sshd\[19395\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.168.171 2020-04-27T22:04:45.913845shield sshd\[19395\]: Failed password for invalid user karol from 49.232.168.171 port 39720 ssh2 2020-04-27T22:09:04.175392shield sshd\[20320\]: Invalid user bitbucket from 49.232.168.171 port 43920 2020-04-27T22:09:04.183974shield sshd\[20320\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.168.171	2020-04-28 06:22:32
102.134.73.47	attack	Port probing on unauthorized port 5425	2020-04-28 06:28:08
94.249.46.70	attack	Unauthorised access (Apr 27) SRC=94.249.46.70 LEN=40 TTL=50 ID=53455 TCP DPT=23 WINDOW=9850 SYN	2020-04-28 06:37:54
52.78.195.135	attackspambots	2020-04-27T20:16:01.432132abusebot-7.cloudsearch.cf sshd[11200]: Invalid user test from 52.78.195.135 port 50578 2020-04-27T20:16:01.437189abusebot-7.cloudsearch.cf sshd[11200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-52-78-195-135.ap-northeast-2.compute.amazonaws.com 2020-04-27T20:16:01.432132abusebot-7.cloudsearch.cf sshd[11200]: Invalid user test from 52.78.195.135 port 50578 2020-04-27T20:16:03.534758abusebot-7.cloudsearch.cf sshd[11200]: Failed password for invalid user test from 52.78.195.135 port 50578 ssh2 2020-04-27T20:20:24.809903abusebot-7.cloudsearch.cf sshd[11470]: Invalid user dmr from 52.78.195.135 port 40480 2020-04-27T20:20:24.817671abusebot-7.cloudsearch.cf sshd[11470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-52-78-195-135.ap-northeast-2.compute.amazonaws.com 2020-04-27T20:20:24.809903abusebot-7.cloudsearch.cf sshd[11470]: Invalid user dmr from 52.78.195.135 port 40 ...	2020-04-28 06:36:22
95.85.33.119	attackbots	SSH Invalid Login	2020-04-28 06:45:22
120.71.146.217	attack	Invalid user parsa from 120.71.146.217 port 47678	2020-04-28 06:27:46
129.204.78.138	attack	ssh intrusion attempt	2020-04-28 06:41:12
206.189.173.77	attackbotsspam	[Mon Apr 27 18:14:49 2020] - DDoS Attack From IP: 206.189.173.77 Port: 41713	2020-04-28 06:23:49
107.180.95.70	attack	Brute-force general attack.	2020-04-28 06:42:17
142.93.235.47	attackbotsspam	SSH Invalid Login	2020-04-28 06:33:56
35.174.164.36	attackbotsspam	[Mon Apr 27 09:23:59 2020] - DDoS Attack From IP: 35.174.164.36 Port: 51619	2020-04-28 06:30:48
42.116.209.49	attackbots	20/4/27@16:10:31: FAIL: IoT-Telnet address from=42.116.209.49 ...	2020-04-28 06:49:34

Recently Reported IPs

101.146.227.180	212.82.227.144	135.55.163.51	37.116.231.11
131.176.95.13	60.86.80.110	135.154.117.172	189.62.239.14
149.56.121.105	116.49.1.96	174.72.114.119	89.117.60.97
111.39.222.173	212.197.74.60	104.59.219.13	57.55.185.224
15.57.231.204	147.23.45.229	132.48.116.88	69.140.44.147