139.199.162.74

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt detected from IP address 139.199.162.74 to port 1433	2020-03-18 19:14:16

Comments on same subnet:

IP	Type	Details	Datetime
139.199.162.224	attack	"INDICATOR-SCAN PHP backdoor scan attempt"	2020-04-19 05:46:22

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.162.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20234
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.162.74.			IN	A

;; AUTHORITY SECTION:
.			518	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031800 1800 900 604800 86400

;; Query time: 50 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 18 19:14:12 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 74.162.199.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 74.162.199.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
122.51.245.236	attackbots	prod6 ...	2020-04-28 06:07:38
176.113.115.54	attackbotsspam	firewall-block, port(s): 1777/tcp, 3105/tcp, 10627/tcp, 10749/tcp, 10954/tcp, 11444/tcp, 11753/tcp, 12180/tcp, 14343/tcp, 16496/tcp, 16617/tcp, 21251/tcp, 26506/tcp, 28121/tcp, 28898/tcp, 31127/tcp, 34768/tcp, 35046/tcp, 39993/tcp, 40855/tcp, 41098/tcp, 42059/tcp, 44604/tcp, 45950/tcp, 48391/tcp, 49413/tcp, 54027/tcp, 55230/tcp, 55909/tcp, 57466/tcp	2020-04-28 06:21:48
66.150.223.117	attackbotsspam	ICMP flood	2020-04-28 05:51:12
89.134.126.89	attackspam	2020-04-27T20:11:09.537202homeassistant sshd[30447]: Invalid user fwinter from 89.134.126.89 port 36994 2020-04-27T20:11:09.552898homeassistant sshd[30447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.134.126.89 ...	2020-04-28 06:08:08
45.55.239.27	attackspam	2020-04-27T23:11:23.439580ns386461 sshd\[28641\]: Invalid user user from 45.55.239.27 port 57589 2020-04-27T23:11:23.444349ns386461 sshd\[28641\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.239.27 2020-04-27T23:11:24.590663ns386461 sshd\[28641\]: Failed password for invalid user user from 45.55.239.27 port 57589 ssh2 2020-04-27T23:19:24.786783ns386461 sshd\[3768\]: Invalid user sybase from 45.55.239.27 port 52601 2020-04-27T23:19:24.791344ns386461 sshd\[3768\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.239.27 ...	2020-04-28 05:55:42
54.37.75.16	attack	Apr 28 00:16:27 prox sshd[30925]: Failed password for root from 54.37.75.16 port 50678 ssh2	2020-04-28 06:29:09
187.62.191.3	attackspambots	TCP src-port=57118 dst-port=25 Listed on dnsbl-sorbs abuseat-org barracuda (Project Honey Pot rated Suspicious & Spammer) (411)	2020-04-28 05:52:46
49.64.209.63	attackspambots	SSH brute force attempt	2020-04-28 06:14:00
27.70.56.255	attack	Telnetd brute force attack detected by fail2ban	2020-04-28 05:57:48
222.110.165.141	attackspambots	Apr 27 23:01:33 pkdns2 sshd\[46906\]: Invalid user bill from 222.110.165.141Apr 27 23:01:34 pkdns2 sshd\[46906\]: Failed password for invalid user bill from 222.110.165.141 port 55550 ssh2Apr 27 23:06:15 pkdns2 sshd\[47165\]: Invalid user wordpress from 222.110.165.141Apr 27 23:06:17 pkdns2 sshd\[47165\]: Failed password for invalid user wordpress from 222.110.165.141 port 37460 ssh2Apr 27 23:10:54 pkdns2 sshd\[47372\]: Invalid user buscador from 222.110.165.141Apr 27 23:10:56 pkdns2 sshd\[47372\]: Failed password for invalid user buscador from 222.110.165.141 port 47606 ssh2 ...	2020-04-28 06:20:54
113.142.139.118	attackspam	2020-04-27T22:08:00.687596vps751288.ovh.net sshd\[12047\]: Invalid user info from 113.142.139.118 port 44742 2020-04-27T22:08:00.697123vps751288.ovh.net sshd\[12047\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.142.139.118 2020-04-27T22:08:02.426253vps751288.ovh.net sshd\[12047\]: Failed password for invalid user info from 113.142.139.118 port 44742 ssh2 2020-04-27T22:11:06.506057vps751288.ovh.net sshd\[12106\]: Invalid user www from 113.142.139.118 port 33098 2020-04-27T22:11:06.515709vps751288.ovh.net sshd\[12106\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.142.139.118	2020-04-28 06:09:38
35.202.129.108	attackbotsspam	Apr 27 22:36:34 PorscheCustomer sshd[17712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.202.129.108 Apr 27 22:36:35 PorscheCustomer sshd[17712]: Failed password for invalid user sanga from 35.202.129.108 port 44706 ssh2 Apr 27 22:40:16 PorscheCustomer sshd[17798]: Failed password for root from 35.202.129.108 port 54110 ssh2 ...	2020-04-28 05:54:22
190.239.143.14	attackbots	1588018255 - 04/27/2020 22:10:55 Host: 190.239.143.14/190.239.143.14 Port: 445 TCP Blocked	2020-04-28 06:23:14
185.50.149.17	attack	Apr 27 23:55:50 mail postfix/smtpd\[5802\]: warning: unknown\[185.50.149.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Apr 27 23:56:06 mail postfix/smtpd\[5950\]: warning: unknown\[185.50.149.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Apr 27 23:56:06 mail postfix/smtpd\[5944\]: warning: unknown\[185.50.149.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Apr 27 23:56:06 mail postfix/smtpd\[5949\]: warning: unknown\[185.50.149.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Apr 27 23:56:06 mail postfix/smtpd\[5943\]: warning: unknown\[185.50.149.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Apr 27 23:56:06 mail postfix/smtpd\[5951\]: warning: unknown\[185.50.149.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Apr 27 23:56:06 mail postfix/smtpd\[5945\]: warning: unknown\[185.50.149.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Apr 27 23:56:06 mail postfix/smtpd\[5947\]: warning: unknown\[185.50.149.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Apr 27 2	2020-04-28 05:59:17
116.105.215.232	attackbots	Invalid user service from 116.105.215.232 port 51056	2020-04-28 06:06:43

Recently Reported IPs

36.90.90.18	14.177.156.53	42.113.153.232	188.37.236.27
77.72.254.134	114.141.185.93	113.167.250.7	42.119.150.102
125.162.221.254	49.146.35.102	14.248.68.67	113.190.72.91
52.27.76.97	134.209.147.73	115.124.73.190	115.72.116.239
211.202.227.221	118.70.169.232	212.156.205.241	106.12.173.149