139.155.90.141

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	$f2bV_matches	2020-06-25 15:27:33
attack	Invalid user lara from 139.155.90.141 port 59676	2020-06-20 16:52:48
attackspambots	Jun 8 02:07:42 dns-3 sshd[19917]: User r.r from 139.155.90.141 not allowed because not listed in AllowUsers Jun 8 02:07:42 dns-3 sshd[19917]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.90.141 user=r.r Jun 8 02:07:44 dns-3 sshd[19917]: Failed password for invalid user r.r from 139.155.90.141 port 37214 ssh2 Jun 8 02:07:45 dns-3 sshd[19917]: Received disconnect from 139.155.90.141 port 37214:11: Bye Bye [preauth] Jun 8 02:07:45 dns-3 sshd[19917]: Disconnected from invalid user r.r 139.155.90.141 port 37214 [preauth] Jun 8 02:09:23 dns-3 sshd[20020]: User r.r from 139.155.90.141 not allowed because not listed in AllowUsers Jun 8 02:09:23 dns-3 sshd[20020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.90.141 user=r.r Jun 8 02:09:25 dns-3 sshd[20020]: Failed password for invalid user r.r from 139.155.90.141 port 54128 ssh2 Jun 8 02:09:26 dns-3 sshd[20020]: Recei........ -------------------------------	2020-06-08 20:48:14
attackbots	Lines containing failures of 139.155.90.141 Jun 1 04:25:23 kmh-vmh-001-fsn03 sshd[23898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.90.141 user=r.r Jun 1 04:25:26 kmh-vmh-001-fsn03 sshd[23898]: Failed password for r.r from 139.155.90.141 port 50852 ssh2 Jun 1 04:25:27 kmh-vmh-001-fsn03 sshd[23898]: Received disconnect from 139.155.90.141 port 50852:11: Bye Bye [preauth] Jun 1 04:25:27 kmh-vmh-001-fsn03 sshd[23898]: Disconnected from authenticating user r.r 139.155.90.141 port 50852 [preauth] Jun 1 04:39:30 kmh-vmh-001-fsn03 sshd[4574]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.90.141 user=r.r Jun 1 04:39:32 kmh-vmh-001-fsn03 sshd[4574]: Failed password for r.r from 139.155.90.141 port 44014 ssh2 Jun 1 04:39:34 kmh-vmh-001-fsn03 sshd[4574]: Received disconnect from 139.155.90.141 port 44014:11: Bye Bye [preauth] Jun 1 04:39:34 kmh-vmh-001-fsn03 sshd[4574]:........ ------------------------------	2020-06-06 14:57:01

Comments on same subnet:

IP	Type	Details	Datetime
139.155.90.88	attackspambots	Invalid user testtest from 139.155.90.88 port 49538	2020-07-26 13:27:38
139.155.90.88	attack	Jul 24 14:44:33 firewall sshd[8855]: Invalid user sheldon from 139.155.90.88 Jul 24 14:44:35 firewall sshd[8855]: Failed password for invalid user sheldon from 139.155.90.88 port 40294 ssh2 Jul 24 14:49:45 firewall sshd[9014]: Invalid user joni from 139.155.90.88 ...	2020-07-25 02:22:39
139.155.90.88	attack	2020-07-24T04:30:40.036605shield sshd\[26803\]: Invalid user master from 139.155.90.88 port 56780 2020-07-24T04:30:40.044024shield sshd\[26803\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.90.88 2020-07-24T04:30:41.937401shield sshd\[26803\]: Failed password for invalid user master from 139.155.90.88 port 56780 ssh2 2020-07-24T04:32:27.368417shield sshd\[27175\]: Invalid user user from 139.155.90.88 port 48854 2020-07-24T04:32:27.378124shield sshd\[27175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.90.88	2020-07-24 12:36:01
139.155.90.88	attackbotsspam	Jul 18 11:38:37 hidden sshd[28486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.90.88 Jul 18 11:38:39 hidden sshd[28486]: Failed password for invalid user kevin from 139.155.90.88 port 49536 ssh2 Jul 18 12:05:47 hidden sshd[32752]: Invalid user tomy from 139.155.90.88 port 40760	2020-07-19 21:49:07
139.155.90.88	attack	Invalid user lea from 139.155.90.88 port 54628	2020-06-30 15:37:25
139.155.90.88	attackbotsspam	Unauthorized connection attempt detected from IP address 139.155.90.88 to port 1510	2020-06-22 13:08:12
139.155.90.88	attack	2020-06-10T19:49:39.034210shield sshd\[3196\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.90.88 user=root 2020-06-10T19:49:40.752296shield sshd\[3196\]: Failed password for root from 139.155.90.88 port 45654 ssh2 2020-06-10T19:51:29.158893shield sshd\[3555\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.90.88 user=root 2020-06-10T19:51:31.309880shield sshd\[3555\]: Failed password for root from 139.155.90.88 port 44732 ssh2 2020-06-10T19:53:15.856436shield sshd\[3956\]: Invalid user oraprod from 139.155.90.88 port 43820	2020-06-11 06:15:29
139.155.90.108	attackspam	May 25 10:00:27 : SSH login attempts with invalid user	2020-05-26 06:12:18
139.155.90.88	attackspambots	2020-05-25T05:47:00.084775vps751288.ovh.net sshd\[2894\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.90.88 user=root 2020-05-25T05:47:02.723301vps751288.ovh.net sshd\[2894\]: Failed password for root from 139.155.90.88 port 54388 ssh2 2020-05-25T05:50:36.831269vps751288.ovh.net sshd\[2922\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.90.88 user=root 2020-05-25T05:50:38.787702vps751288.ovh.net sshd\[2922\]: Failed password for root from 139.155.90.88 port 41708 ssh2 2020-05-25T05:54:08.803758vps751288.ovh.net sshd\[2934\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.90.88 user=root	2020-05-25 13:47:46
139.155.90.108	attackbotsspam	Invalid user pyqt from 139.155.90.108 port 59976	2020-05-24 15:44:42
139.155.90.88	attackbotsspam	(sshd) Failed SSH login from 139.155.90.88 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 14 14:07:14 elude sshd[3023]: Invalid user comercial from 139.155.90.88 port 46716 May 14 14:07:15 elude sshd[3023]: Failed password for invalid user comercial from 139.155.90.88 port 46716 ssh2 May 14 14:16:11 elude sshd[4512]: Did not receive identification string from 139.155.90.88 port 43662 May 14 14:21:43 elude sshd[5346]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.90.88 user=root May 14 14:21:44 elude sshd[5346]: Failed password for root from 139.155.90.88 port 43634 ssh2	2020-05-15 03:04:49
139.155.90.88	attackbotsspam	May 10 08:05:31 ns381471 sshd[3445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.90.88 May 10 08:05:32 ns381471 sshd[3445]: Failed password for invalid user one from 139.155.90.88 port 40492 ssh2	2020-05-10 18:38:13
139.155.90.36	attackbotsspam	Unauthorized connection attempt detected from IP address 139.155.90.36 to port 2220 [J]	2020-01-30 20:53:16
139.155.90.36	attackbotsspam	Invalid user 11111 from 139.155.90.36 port 45024	2020-01-19 03:51:57
139.155.90.36	attackbotsspam	Unauthorized connection attempt detected from IP address 139.155.90.36 to port 2220 [J]	2020-01-17 04:45:24

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.155.90.141
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9590
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.155.90.141.			IN	A

;; AUTHORITY SECTION:
.			255	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060600 1800 900 604800 86400

;; Query time: 92 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 06 14:56:54 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 141.90.155.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 141.90.155.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
3.216.79.185	attackbotsspam	Jul 17 16:38:28 TCP Attack: SRC=3.216.79.185 DST=[Masked] LEN=250 TOS=0x00 PREC=0x00 TTL=235 DF PROTO=TCP SPT=53536 DPT=80 WINDOW=913 RES=0x00 ACK PSH URGP=0	2019-07-18 01:30:33
139.199.108.70	attackbots	Jul 17 17:40:17 MK-Soft-VM3 sshd\[19624\]: Invalid user t from 139.199.108.70 port 36898 Jul 17 17:40:17 MK-Soft-VM3 sshd\[19624\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.108.70 Jul 17 17:40:19 MK-Soft-VM3 sshd\[19624\]: Failed password for invalid user t from 139.199.108.70 port 36898 ssh2 ...	2019-07-18 01:50:09
103.115.227.2	attackspambots	Jul 17 18:00:38 vps sshd[23283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.115.227.2 Jul 17 18:00:40 vps sshd[23283]: Failed password for invalid user blue from 103.115.227.2 port 48338 ssh2 Jul 17 18:38:31 vps sshd[24618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.115.227.2 ...	2019-07-18 01:28:34
51.75.204.92	attack	Jul 17 13:10:30 vps200512 sshd\[6460\]: Invalid user prashant from 51.75.204.92 Jul 17 13:10:30 vps200512 sshd\[6460\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.204.92 Jul 17 13:10:32 vps200512 sshd\[6460\]: Failed password for invalid user prashant from 51.75.204.92 port 40906 ssh2 Jul 17 13:15:09 vps200512 sshd\[6599\]: Invalid user zorin from 51.75.204.92 Jul 17 13:15:09 vps200512 sshd\[6599\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.204.92	2019-07-18 01:21:44
178.93.102.197	attackbots	Honeypot attack, port: 23, PTR: 197-102-93-178.pool.ukrtel.net.	2019-07-18 01:42:07
92.119.160.125	attack	very strange	2019-07-18 01:23:59
166.62.28.126	attack	spam link http://cosmoestates.co.in/wp-content/themes/enfold/config-woocommerce/images/A_vicereine_Jacobitical.html	2019-07-18 01:26:19
113.161.1.111	attackbots	Jul 17 18:47:06 vps691689 sshd[19559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.161.1.111 Jul 17 18:47:08 vps691689 sshd[19559]: Failed password for invalid user oracle from 113.161.1.111 port 48432 ssh2 ...	2019-07-18 00:56:58
187.250.31.129	attackspambots	Honeypot attack, port: 23, PTR: 187.250.31.129.dsl.dyn.telnor.net.	2019-07-18 01:40:20
59.175.144.11	attackspambots	17.07.2019 17:28:04 Connection to port 8545 blocked by firewall	2019-07-18 01:42:40
184.105.139.77	attackbotsspam	TCP port 3389 (RDP) attempt blocked by firewall. [2019-07-17 18:37:49]	2019-07-18 01:19:33
37.120.150.150	attackspam	Sent Mail to address hacked/leaked/bought from crystalproductions.cz between 2011 and 2018	2019-07-18 00:58:47
59.127.172.234	attack	Jul 17 19:00:30 vps647732 sshd[7286]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.127.172.234 Jul 17 19:00:33 vps647732 sshd[7286]: Failed password for invalid user tomcat from 59.127.172.234 port 46198 ssh2 ...	2019-07-18 01:14:24
187.44.113.33	attackspam	Jul 17 19:42:57 bouncer sshd\[20167\]: Invalid user test from 187.44.113.33 port 53366 Jul 17 19:42:57 bouncer sshd\[20167\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.44.113.33 Jul 17 19:42:59 bouncer sshd\[20167\]: Failed password for invalid user test from 187.44.113.33 port 53366 ssh2 ...	2019-07-18 01:52:16
88.88.193.230	attack	2019-07-17T17:08:28.342194abusebot-4.cloudsearch.cf sshd\[4073\]: Invalid user sybase from 88.88.193.230 port 42623	2019-07-18 01:35:19

Recently Reported IPs

96.2.85.233	189.89.213.4	41.148.46.87	212.64.71.254
113.200.178.138	163.128.91.0	165.129.246.247	82.19.207.212
31.234.141.17	88.237.240.10	231.93.74.181	129.20.164.24
141.193.188.134	4.42.128.110	37.24.254.47	70.8.82.199
31.26.7.77	84.100.193.70	116.122.151.243	211.156.144.225