139.59.74.143 - IPInfo

Basic Info

City: Bengaluru

Region: Karnataka

Country: India

Internet Service Provider: Digital Ocean Inc.

Hostname: unknown

Organization: DigitalOcean, LLC

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Mar 5 19:50:42 motanud sshd\[21173\]: Invalid user hadoop from 139.59.74.143 port 41386 Mar 5 19:50:42 motanud sshd\[21173\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.143 Mar 5 19:50:44 motanud sshd\[21173\]: Failed password for invalid user hadoop from 139.59.74.143 port 41386 ssh2	2019-08-11 00:27:22
attackspambots	Jul 28 12:38:24 XXX sshd[13558]: Invalid user ftpuser from 139.59.74.143 port 37228	2019-07-28 21:10:34
attackbots	Jul 23 11:06:17 debian sshd\[21883\]: Invalid user www from 139.59.74.143 port 33884 Jul 23 11:06:17 debian sshd\[21883\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.143 Jul 23 11:06:20 debian sshd\[21883\]: Failed password for invalid user www from 139.59.74.143 port 33884 ssh2 ...	2019-07-24 01:29:32
attack	Jul 23 10:46:27 vps647732 sshd[14234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.143 Jul 23 10:46:30 vps647732 sshd[14234]: Failed password for invalid user admin from 139.59.74.143 port 33622 ssh2 ...	2019-07-23 17:06:42
attackbots	Jul 17 23:07:41 icinga sshd[15209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.143 Jul 17 23:07:43 icinga sshd[15209]: Failed password for invalid user web1 from 139.59.74.143 port 43898 ssh2 ...	2019-07-18 05:24:36
attack	" "	2019-07-15 13:08:36
attackbotsspam	Jul 14 05:30:48 ArkNodeAT sshd\[32034\]: Invalid user kiss from 139.59.74.143 Jul 14 05:30:48 ArkNodeAT sshd\[32034\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.143 Jul 14 05:30:50 ArkNodeAT sshd\[32034\]: Failed password for invalid user kiss from 139.59.74.143 port 56112 ssh2	2019-07-14 11:32:56
attackbotsspam	2019-07-12T01:40:51.037747abusebot-8.cloudsearch.cf sshd\[23216\]: Invalid user carl from 139.59.74.143 port 36234	2019-07-12 10:18:06
attackbotsspam	Jul 11 18:24:30 unicornsoft sshd\[7292\]: Invalid user fordcom from 139.59.74.143 Jul 11 18:24:30 unicornsoft sshd\[7292\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.143 Jul 11 18:24:32 unicornsoft sshd\[7292\]: Failed password for invalid user fordcom from 139.59.74.143 port 46344 ssh2	2019-07-12 03:39:58
attackspambots	Jul 11 15:02:53 nginx sshd[29786]: Invalid user rootkit from 139.59.74.143 Jul 11 15:02:53 nginx sshd[29786]: Received disconnect from 139.59.74.143 port 57886:11: Normal Shutdown, Thank you for playing [preauth]	2019-07-11 22:04:02
attack	Jul 9 22:30:31 server01 sshd\[23974\]: Invalid user select from 139.59.74.143 Jul 9 22:30:31 server01 sshd\[23974\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.143 Jul 9 22:30:33 server01 sshd\[23974\]: Failed password for invalid user select from 139.59.74.143 port 34412 ssh2 ...	2019-07-10 04:34:22
attackspambots	Jul 9 04:10:28 sshgateway sshd\[24569\]: Invalid user tino from 139.59.74.143 Jul 9 04:10:28 sshgateway sshd\[24569\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.143 Jul 9 04:10:30 sshgateway sshd\[24569\]: Failed password for invalid user tino from 139.59.74.143 port 56724 ssh2	2019-07-09 12:41:13
attack	2019-07-05T03:07:22.296233centos sshd\[22776\]: Invalid user helena from 139.59.74.143 port 46104 2019-07-05T03:07:22.300804centos sshd\[22776\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.143 2019-07-05T03:07:24.437166centos sshd\[22776\]: Failed password for invalid user helena from 139.59.74.143 port 46104 ssh2	2019-07-05 09:33:05
attackspam	Jul 3 06:16:58 core01 sshd\[2662\]: Invalid user celia from 139.59.74.143 port 44206 Jul 3 06:16:58 core01 sshd\[2662\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.143 ...	2019-07-03 12:40:29
attackspambots	SSH bruteforce (Triggered fail2ban)	2019-07-02 21:29:45
attack	Jul 1 12:15:16 MK-Soft-VM5 sshd\[30042\]: Invalid user zabbix from 139.59.74.143 port 58172 Jul 1 12:15:16 MK-Soft-VM5 sshd\[30042\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.143 Jul 1 12:15:18 MK-Soft-VM5 sshd\[30042\]: Failed password for invalid user zabbix from 139.59.74.143 port 58172 ssh2 ...	2019-07-01 20:21:05
attackspambots	Jun 30 20:03:23 MK-Soft-VM7 sshd\[13194\]: Invalid user hadoop from 139.59.74.143 port 34040 Jun 30 20:03:23 MK-Soft-VM7 sshd\[13194\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.143 Jun 30 20:03:25 MK-Soft-VM7 sshd\[13194\]: Failed password for invalid user hadoop from 139.59.74.143 port 34040 ssh2 ...	2019-07-01 04:33:39
attackspambots	Jun 30 09:34:13 *** sshd[11842]: User root from 139.59.74.143 not allowed because not listed in AllowUsers	2019-06-30 17:55:55
attack	Jun 29 02:45:02 [munged] sshd[10466]: Invalid user jboss from 139.59.74.143 port 38456 Jun 29 02:45:02 [munged] sshd[10466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.143	2019-06-29 09:02:23
attackbotsspam	Jun 29 00:46:00 vmd17057 sshd\[5625\]: Invalid user nagios from 139.59.74.143 port 46988 Jun 29 00:46:00 vmd17057 sshd\[5625\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.143 Jun 29 00:46:03 vmd17057 sshd\[5625\]: Failed password for invalid user nagios from 139.59.74.143 port 46988 ssh2 ...	2019-06-29 06:57:50
attackspambots	SSH Brute-Force reported by Fail2Ban	2019-06-28 17:14:13
attackspam	Jun 23 14:04:05 rpi sshd\[14001\]: Invalid user glassfish from 139.59.74.143 port 55186 Jun 23 14:04:05 rpi sshd\[14001\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.143 Jun 23 14:04:06 rpi sshd\[14001\]: Failed password for invalid user glassfish from 139.59.74.143 port 55186 ssh2	2019-06-23 21:25:46
attack	Jun 22 16:42:20 62-210-73-4 sshd\[846\]: Invalid user m from 139.59.74.143 port 50004 Jun 22 16:42:20 62-210-73-4 sshd\[846\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.143 ...	2019-06-23 02:10:49
attackbotsspam	Jun 22 13:29:54 *** sshd[17413]: Invalid user stagiaire from 139.59.74.143	2019-06-22 21:43:45
attackspambots	2019-06-22T01:18:14.000358enmeeting.mahidol.ac.th sshd\[29504\]: User root from 139.59.74.143 not allowed because not listed in AllowUsers 2019-06-22T01:18:14.122524enmeeting.mahidol.ac.th sshd\[29504\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.143 user=root 2019-06-22T01:18:15.783703enmeeting.mahidol.ac.th sshd\[29504\]: Failed password for invalid user root from 139.59.74.143 port 39360 ssh2 ...	2019-06-22 02:51:50
spam	SCAMMERS!!!	2019-06-21 03:09:55

Comments on same subnet:

IP	Type	Details	Datetime
139.59.74.23	attack	3389BruteforceFW23	2019-12-28 01:02:25
139.59.74.23	attackbotsspam	2019-12-05T15:00:42Z - RDP login failed multiple times. (139.59.74.23)	2019-12-06 03:24:47
139.59.74.89	attackspam	WordPress wp-login brute force :: 139.59.74.89 0.368 BYPASS [30/Oct/2019:03:52:08 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 1472 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-30 15:23:45
139.59.74.183	attack	" "	2019-10-01 02:33:38
139.59.74.183	attackbotsspam	Sep 26 22:07:46 areeb-Workstation sshd[25500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.183 Sep 26 22:07:48 areeb-Workstation sshd[25500]: Failed password for invalid user python from 139.59.74.183 port 51966 ssh2 ...	2019-09-27 00:50:42
139.59.74.183	attackbotsspam	Sep 20 11:16:54 MK-Soft-VM7 sshd\[11641\]: Invalid user natematias from 139.59.74.183 port 42918 Sep 20 11:16:54 MK-Soft-VM7 sshd\[11641\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.183 Sep 20 11:16:56 MK-Soft-VM7 sshd\[11641\]: Failed password for invalid user natematias from 139.59.74.183 port 42918 ssh2 ...	2019-09-20 17:32:50
139.59.74.183	attackspam	Sep 15 07:30:54 mout sshd[4781]: Invalid user po from 139.59.74.183 port 56348	2019-09-15 13:41:22
139.59.74.183	attack	Aug 30 18:20:53 dedicated sshd[3376]: Invalid user qhsupport from 139.59.74.183 port 45682	2019-08-31 07:04:32
139.59.74.183	attackbots	Aug 21 14:21:24 lcprod sshd\[2563\]: Invalid user scan from 139.59.74.183 Aug 21 14:21:24 lcprod sshd\[2563\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.183 Aug 21 14:21:25 lcprod sshd\[2563\]: Failed password for invalid user scan from 139.59.74.183 port 34648 ssh2 Aug 21 14:26:02 lcprod sshd\[2998\]: Invalid user mongod from 139.59.74.183 Aug 21 14:26:03 lcprod sshd\[2998\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.183	2019-08-22 08:37:53
139.59.74.157	attack	Feb 24 20:24:02 motanud sshd\[3884\]: Invalid user ftpuser from 139.59.74.157 port 53416 Feb 24 20:24:02 motanud sshd\[3884\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.157 Feb 24 20:24:03 motanud sshd\[3884\]: Failed password for invalid user ftpuser from 139.59.74.157 port 53416 ssh2	2019-08-11 00:23:48
139.59.74.183	attackspam	Aug 5 00:07:39 server sshd\[27322\]: Invalid user rppt from 139.59.74.183 port 53376 Aug 5 00:07:39 server sshd\[27322\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.183 Aug 5 00:07:40 server sshd\[27322\]: Failed password for invalid user rppt from 139.59.74.183 port 53376 ssh2 Aug 5 00:12:43 server sshd\[11028\]: Invalid user redis from 139.59.74.183 port 49932 Aug 5 00:12:43 server sshd\[11028\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.74.183	2019-08-05 05:16:25

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.74.143
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7345
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.59.74.143.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040402 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 05 03:26:35 +08 2019
;; MSG SIZE  rcvd: 117

Host info

Host 143.74.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 143.74.59.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
201.114.253.4	attackspambots	Jul 6 17:39:48 fwservlet sshd[22069]: Invalid user samura from 201.114.253.4 Jul 6 17:39:48 fwservlet sshd[22069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.114.253.4 Jul 6 17:39:50 fwservlet sshd[22069]: Failed password for invalid user samura from 201.114.253.4 port 36106 ssh2 Jul 6 17:39:50 fwservlet sshd[22069]: Received disconnect from 201.114.253.4 port 36106:11: Bye Bye [preauth] Jul 6 17:39:50 fwservlet sshd[22069]: Disconnected from 201.114.253.4 port 36106 [preauth] Jul 6 17:51:39 fwservlet sshd[22231]: Invalid user mei from 201.114.253.4 Jul 6 17:51:39 fwservlet sshd[22231]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.114.253.4 Jul 6 17:51:41 fwservlet sshd[22231]: Failed password for invalid user mei from 201.114.253.4 port 42756 ssh2 Jul 6 17:51:42 fwservlet sshd[22231]: Received disconnect from 201.114.253.4 port 42756:11: Bye Bye [preauth] Jul 6 17:........ -------------------------------	2019-07-07 23:08:39
54.39.145.31	attackbots	Jul 7 15:41:52 vserver sshd\[14082\]: Invalid user user from 54.39.145.31Jul 7 15:41:53 vserver sshd\[14082\]: Failed password for invalid user user from 54.39.145.31 port 57704 ssh2Jul 7 15:45:08 vserver sshd\[14092\]: Invalid user stanley from 54.39.145.31Jul 7 15:45:10 vserver sshd\[14092\]: Failed password for invalid user stanley from 54.39.145.31 port 54756 ssh2 ...	2019-07-07 23:13:27
222.186.15.28	attackspam	Jul 7 16:02:41 localhost sshd\[52273\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.28 user=root Jul 7 16:02:43 localhost sshd\[52273\]: Failed password for root from 222.186.15.28 port 13408 ssh2 ...	2019-07-07 23:13:00
128.199.182.235	attackspambots	2019-07-07T14:18:33.494523abusebot-6.cloudsearch.cf sshd\[11210\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.182.235 user=root	2019-07-07 23:05:55
124.251.44.162	attackspam	Portscan or hack attempt detected by psad/fwsnort	2019-07-07 22:42:56
185.53.88.45	attackbotsspam	\[2019-07-07 11:07:05\] SECURITY\[13451\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-07T11:07:05.631-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011441217900519",SessionID="0x7f02f8405d48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.45/53210",ACLName="no_extension_match" \[2019-07-07 11:08:54\] SECURITY\[13451\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-07T11:08:54.853-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441217900519",SessionID="0x7f02f81c5a28",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.45/57863",ACLName="no_extension_match" \[2019-07-07 11:10:22\] SECURITY\[13451\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-07T11:10:22.252-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011441217900519",SessionID="0x7f02f81c5a28",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.45/62405",ACLName="no_ex	2019-07-07 23:16:09
183.249.121.182	attackbots	" "	2019-07-07 23:29:11
112.4.172.182	attackbotsspam	failed_logins	2019-07-07 22:38:00
200.21.57.62	attackbots	Jul 7 16:32:58 mail sshd\[3848\]: Invalid user oracle from 200.21.57.62 port 37316 Jul 7 16:32:58 mail sshd\[3848\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.21.57.62 Jul 7 16:33:01 mail sshd\[3848\]: Failed password for invalid user oracle from 200.21.57.62 port 37316 ssh2 Jul 7 16:35:23 mail sshd\[4377\]: Invalid user p from 200.21.57.62 port 33710 Jul 7 16:35:23 mail sshd\[4377\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.21.57.62	2019-07-07 22:41:30
162.243.99.164	attackbotsspam	Triggered by Fail2Ban at Vostok web server	2019-07-07 22:44:10
193.213.152.118	attackspam	Jul 7 13:45:54 *** sshd[30902]: Invalid user external from 193.213.152.118	2019-07-07 22:55:28
151.80.203.32	attack	Jul 5 18:58:15 twattle sshd[6503]: Did not receive identification stri= ng from 151.80.203.32 Jul 5 18:59:45 twattle sshd[6504]: Invalid user t from 151.80.203.32 Jul 5 18:59:45 twattle sshd[6504]: Received disconnect from 151.80.203= .32: 11: Bye Bye [preauth] Jul 5 19:00:25 twattle sshd[6912]: Received disconnect from 151.80.203= .32: 11: Bye Bye [preauth] Jul 5 19:01:22 twattle sshd[6914]: Received disconnect from 151.80.203= .32: 11: Bye Bye [preauth] Jul 5 19:02:03 twattle sshd[6917]: Received disconnect from 151.80.203= .32: 11: Bye Bye [preauth] Jul 5 19:02:46 twattle sshd[6919]: Received disconnect from 151.80.203= .32: 11: Bye Bye [preauth] Jul 5 19:03:42 twattle sshd[6921]: Received disconnect from 151.80.203= .32: 11: Bye Bye [preauth] Jul 5 19:04:24 twattle sshd[6923]: Received disconnect from 151.80.203= .32: 11: Bye Bye [preauth] Jul 5 19:06:03 twattle sshd[7315]: Received disconnect from 151.80.203= .32: 11: Bye Bye [preauth] Jul 5 19:06:46 twa........ -------------------------------	2019-07-07 22:49:32
27.254.61.112	attackbots	Jul 7 16:17:43 tux-35-217 sshd\[15827\]: Invalid user jie from 27.254.61.112 port 38434 Jul 7 16:17:43 tux-35-217 sshd\[15827\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.61.112 Jul 7 16:17:45 tux-35-217 sshd\[15827\]: Failed password for invalid user jie from 27.254.61.112 port 38434 ssh2 Jul 7 16:22:00 tux-35-217 sshd\[15840\]: Invalid user ti from 27.254.61.112 port 50488 Jul 7 16:22:00 tux-35-217 sshd\[15840\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.61.112 ...	2019-07-07 22:53:24
117.156.119.39	attackbotsspam	Jul 7 13:41:33 ip-172-31-1-72 sshd\[19759\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.156.119.39 user=root Jul 7 13:41:36 ip-172-31-1-72 sshd\[19759\]: Failed password for root from 117.156.119.39 port 45484 ssh2 Jul 7 13:46:13 ip-172-31-1-72 sshd\[19862\]: Invalid user cui from 117.156.119.39 Jul 7 13:46:13 ip-172-31-1-72 sshd\[19862\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.156.119.39 Jul 7 13:46:15 ip-172-31-1-72 sshd\[19862\]: Failed password for invalid user cui from 117.156.119.39 port 42772 ssh2	2019-07-07 22:46:42
187.17.165.111	attackbots	Automatic report - Web App Attack	2019-07-07 22:38:34

Recently Reported IPs

182.190.4.68	195.24.198.17	190.129.18.112	145.239.89.162
189.204.192.117	210.2.157.130	131.0.251.2	76.164.204.176
51.79.32.26	170.130.143.118	185.20.165.13	37.220.154.230
181.226.180.241	168.0.39.113	185.195.16.198	114.39.160.200
93.113.125.89	37.200.74.34	79.133.161.28	81.22.45.54