139.213.74.140

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom Jilin Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	firewall-block, port(s): 8080/tcp	2019-11-04 07:05:14

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.213.74.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62731
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.213.74.140.			IN	A

;; AUTHORITY SECTION:
.			512	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110301 1800 900 604800 86400

;; Query time: 250 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 04 07:05:11 CST 2019
;; MSG SIZE  rcvd: 118

Host info

140.74.213.139.in-addr.arpa domain name pointer 140.74.213.139.adsl-pool.jlccptt.net.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
140.74.213.139.in-addr.arpa	name = 140.74.213.139.adsl-pool.jlccptt.net.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
188.254.18.110	attack	Wordpress login scanning	2019-12-18 00:24:45
101.99.80.99	attackbots	$f2bV_matches	2019-12-18 00:33:37
193.188.22.65	attack	Dec 17 15:24:56 mail kernel: [1612440.769796] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=193.188.22.65 DST=91.205.173.180 LEN=52 TOS=0x02 PREC=0x00 TTL=118 ID=3885 DF PROTO=TCP SPT=3203 DPT=5900 WINDOW=200 RES=0x00 CWR ECE SYN URGP=0 Dec 17 15:24:59 mail kernel: [1612443.769339] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=193.188.22.65 DST=91.205.173.180 LEN=52 TOS=0x02 PREC=0x00 TTL=118 ID=3886 DF PROTO=TCP SPT=3203 DPT=5900 WINDOW=200 RES=0x00 CWR ECE SYN URGP=0 Dec 17 15:25:05 mail kernel: [1612449.769429] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=193.188.22.65 DST=91.205.173.180 LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=3887 DF PROTO=TCP SPT=3203 DPT=5900 WINDOW=200 RES=0x00 SYN URGP=0	2019-12-18 00:27:55
77.247.108.77	attackspam	12/17/2019-10:12:46.002488 77.247.108.77 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 75	2019-12-18 00:34:56
140.143.57.159	attackbotsspam	2019-12-17T16:10:47.167666shield sshd\[28839\]: Invalid user rpm from 140.143.57.159 port 36862 2019-12-17T16:10:47.172726shield sshd\[28839\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.57.159 2019-12-17T16:10:48.885969shield sshd\[28839\]: Failed password for invalid user rpm from 140.143.57.159 port 36862 ssh2 2019-12-17T16:19:02.729951shield sshd\[31690\]: Invalid user server from 140.143.57.159 port 41398 2019-12-17T16:19:02.734520shield sshd\[31690\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.57.159	2019-12-18 00:29:17
222.186.175.217	attackbotsspam	Dec 17 17:03:02 localhost sshd\[6444\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root Dec 17 17:03:04 localhost sshd\[6444\]: Failed password for root from 222.186.175.217 port 44506 ssh2 Dec 17 17:03:07 localhost sshd\[6444\]: Failed password for root from 222.186.175.217 port 44506 ssh2	2019-12-18 00:05:45
111.206.87.230	attack	Dec 17 17:05:42 microserver sshd[6340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.206.87.230 user=root Dec 17 17:05:43 microserver sshd[6340]: Failed password for root from 111.206.87.230 port 50200 ssh2 Dec 17 17:12:23 microserver sshd[7298]: Invalid user yajima from 111.206.87.230 port 60988 Dec 17 17:12:23 microserver sshd[7298]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.206.87.230 Dec 17 17:12:24 microserver sshd[7298]: Failed password for invalid user yajima from 111.206.87.230 port 60988 ssh2 Dec 17 17:58:16 microserver sshd[14594]: Invalid user adils from 111.206.87.230 port 55548 Dec 17 17:58:16 microserver sshd[14594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.206.87.230 Dec 17 17:58:18 microserver sshd[14594]: Failed password for invalid user adils from 111.206.87.230 port 55548 ssh2 Dec 17 18:05:12 microserver sshd[15875]: Invalid user bronco from 11	2019-12-18 00:44:05
164.73.191.2	attackspambots	Dec 17 14:24:53 mercury wordpress(www.learnargentinianspanish.com)[8451]: XML-RPC authentication attempt for unknown user silvina from 164.73.191.2 ...	2019-12-18 00:41:44
94.21.139.39	attackspambots	Dec 17 16:04:52 game-panel sshd[6794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.21.139.39 Dec 17 16:04:52 game-panel sshd[6795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.21.139.39 Dec 17 16:04:53 game-panel sshd[6794]: Failed password for invalid user pi from 94.21.139.39 port 38992 ssh2	2019-12-18 00:06:12
5.39.82.176	attackbots	Dec 17 17:25:27 server sshd\[3691\]: Invalid user wen from 5.39.82.176 Dec 17 17:25:27 server sshd\[3691\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.82.176 Dec 17 17:25:28 server sshd\[3691\]: Failed password for invalid user wen from 5.39.82.176 port 45016 ssh2 Dec 17 17:33:32 server sshd\[5837\]: Invalid user shellsite from 5.39.82.176 Dec 17 17:33:32 server sshd\[5837\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.82.176 ...	2019-12-18 00:41:13
14.161.12.154	attack	Unauthorized connection attempt detected from IP address 14.161.12.154 to port 445	2019-12-18 00:36:59
209.235.23.125	attackbotsspam	Dec 17 17:58:48 pkdns2 sshd\[6106\]: Address 209.235.23.125 maps to enterprisehostinginc.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Dec 17 17:58:48 pkdns2 sshd\[6106\]: Invalid user ggg666 from 209.235.23.125Dec 17 17:58:50 pkdns2 sshd\[6106\]: Failed password for invalid user ggg666 from 209.235.23.125 port 44642 ssh2Dec 17 18:04:52 pkdns2 sshd\[6407\]: Address 209.235.23.125 maps to enterprisehostinginc.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Dec 17 18:04:52 pkdns2 sshd\[6407\]: Invalid user samosa from 209.235.23.125Dec 17 18:04:54 pkdns2 sshd\[6407\]: Failed password for invalid user samosa from 209.235.23.125 port 51942 ssh2 ...	2019-12-18 00:17:19
112.85.42.182	attackbotsspam	Dec 17 16:45:03 lnxweb61 sshd[25137]: Failed password for root from 112.85.42.182 port 18412 ssh2 Dec 17 16:45:07 lnxweb61 sshd[25137]: Failed password for root from 112.85.42.182 port 18412 ssh2 Dec 17 16:45:10 lnxweb61 sshd[25137]: Failed password for root from 112.85.42.182 port 18412 ssh2 Dec 17 16:45:13 lnxweb61 sshd[25137]: Failed password for root from 112.85.42.182 port 18412 ssh2	2019-12-17 23:58:53
140.246.58.131	attack	Dec 17 16:49:33 sd-53420 sshd\[30316\]: User mail from 140.246.58.131 not allowed because none of user's groups are listed in AllowGroups Dec 17 16:49:33 sd-53420 sshd\[30316\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.246.58.131 user=mail Dec 17 16:49:35 sd-53420 sshd\[30316\]: Failed password for invalid user mail from 140.246.58.131 port 50951 ssh2 Dec 17 16:57:08 sd-53420 sshd\[869\]: Invalid user server from 140.246.58.131 Dec 17 16:57:08 sd-53420 sshd\[869\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.246.58.131 ...	2019-12-18 00:38:08
112.217.207.130	attackspam	Dec 17 16:29:08 minden010 sshd[3715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.217.207.130 Dec 17 16:29:10 minden010 sshd[3715]: Failed password for invalid user emerald from 112.217.207.130 port 40132 ssh2 Dec 17 16:35:30 minden010 sshd[5820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.217.207.130 ...	2019-12-18 00:37:50

Recently Reported IPs

147.215.62.173	212.252.226.112	17.254.249.45	35.24.180.102
68.70.69.145	12.162.208.105	67.122.139.93	121.255.251.79
122.60.110.35	147.78.53.254	188.37.116.69	79.213.53.162
171.38.172.79	208.226.85.134	109.165.233.218	41.247.128.175
185.190.66.133	198.168.251.190	89.254.133.224	143.233.166.231