152.136.146.139

Basic Info

City: unknown

Region: Beijing

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	fraudulent SSH attempt	2019-12-14 06:28:55
attackspam	Dec 10 13:35:39 plusreed sshd[10092]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.146.139 user=root Dec 10 13:35:41 plusreed sshd[10092]: Failed password for root from 152.136.146.139 port 37290 ssh2 ...	2019-12-11 02:46:49
attack	Dec 8 10:14:28 web9 sshd\[28512\]: Invalid user operator from 152.136.146.139 Dec 8 10:14:28 web9 sshd\[28512\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.146.139 Dec 8 10:14:31 web9 sshd\[28512\]: Failed password for invalid user operator from 152.136.146.139 port 53404 ssh2 Dec 8 10:20:35 web9 sshd\[29506\]: Invalid user scow from 152.136.146.139 Dec 8 10:20:35 web9 sshd\[29506\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.146.139	2019-12-09 06:04:45
attackbots	Dec 4 04:36:38 sachi sshd\[3870\]: Invalid user login from 152.136.146.139 Dec 4 04:36:38 sachi sshd\[3870\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.146.139 Dec 4 04:36:40 sachi sshd\[3870\]: Failed password for invalid user login from 152.136.146.139 port 36616 ssh2 Dec 4 04:46:20 sachi sshd\[4887\]: Invalid user sirpa from 152.136.146.139 Dec 4 04:46:20 sachi sshd\[4887\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.146.139	2019-12-05 02:52:13

Comments on same subnet:

IP	Type	Details	Datetime
152.136.146.210	attackspambots	SSH brute force attempt	2020-07-01 08:16:11

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 152.136.146.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60119
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;152.136.146.139.		IN	A

;; AUTHORITY SECTION:
.			535	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120402 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 05 02:52:10 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 139.146.136.152.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.146.136.152.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
104.236.112.52	attackspam	Sep 28 13:37:16 eddieflores sshd\[32707\]: Invalid user west from 104.236.112.52 Sep 28 13:37:16 eddieflores sshd\[32707\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.112.52 Sep 28 13:37:18 eddieflores sshd\[32707\]: Failed password for invalid user west from 104.236.112.52 port 45558 ssh2 Sep 28 13:41:44 eddieflores sshd\[743\]: Invalid user boinc from 104.236.112.52 Sep 28 13:41:44 eddieflores sshd\[743\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.112.52	2019-09-29 07:41:50
218.67.39.150	attack	3389BruteforceStormFW21	2019-09-29 07:28:46
115.236.61.204	attackbots	Port scan attempt detected by AWS-CCS, CTS, India	2019-09-29 07:16:34
92.188.124.228	attackbots	Sep 28 23:10:12 game-panel sshd[17903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.188.124.228 Sep 28 23:10:15 game-panel sshd[17903]: Failed password for invalid user hn from 92.188.124.228 port 36178 ssh2 Sep 28 23:14:07 game-panel sshd[18037]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.188.124.228	2019-09-29 07:17:09
49.88.112.78	attackspam	2019-09-29T01:09:29.191789lon01.zurich-datacenter.net sshd\[26319\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.78 user=root 2019-09-29T01:09:30.835759lon01.zurich-datacenter.net sshd\[26319\]: Failed password for root from 49.88.112.78 port 64076 ssh2 2019-09-29T01:09:33.301727lon01.zurich-datacenter.net sshd\[26319\]: Failed password for root from 49.88.112.78 port 64076 ssh2 2019-09-29T01:09:35.708139lon01.zurich-datacenter.net sshd\[26319\]: Failed password for root from 49.88.112.78 port 64076 ssh2 2019-09-29T01:18:13.411594lon01.zurich-datacenter.net sshd\[26508\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.78 user=root ...	2019-09-29 07:18:42
62.7.90.34	attack	2019-09-28T23:29:33.570133abusebot-4.cloudsearch.cf sshd\[27530\]: Invalid user hdduser from 62.7.90.34 port 41208	2019-09-29 07:37:51
51.91.16.128	attackspam	Sep 28 21:49:06 vps82406 sshd[25444]: Failed password for r.r from 51.91.16.128 port 41290 ssh2 Sep 28 21:49:27 vps82406 sshd[25448]: Failed password for r.r from 51.91.16.128 port 45368 ssh2 Sep 28 21:49:48 vps82406 sshd[25470]: Failed password for r.r from 51.91.16.128 port 49454 ssh2 Sep 28 21:50:10 vps82406 sshd[25501]: Failed password for r.r from 51.91.16.128 port 53564 ssh2 Sep 28 21:50:33 vps82406 sshd[25566]: Failed password for r.r from 51.91.16.128 port 57656 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=51.91.16.128	2019-09-29 07:32:53
222.186.175.154	attackbotsspam	Sep 29 01:35:52 MainVPS sshd[20588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.154 user=root Sep 29 01:35:54 MainVPS sshd[20588]: Failed password for root from 222.186.175.154 port 16828 ssh2 Sep 29 01:36:10 MainVPS sshd[20588]: error: maximum authentication attempts exceeded for root from 222.186.175.154 port 16828 ssh2 [preauth] Sep 29 01:35:52 MainVPS sshd[20588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.154 user=root Sep 29 01:35:54 MainVPS sshd[20588]: Failed password for root from 222.186.175.154 port 16828 ssh2 Sep 29 01:36:10 MainVPS sshd[20588]: error: maximum authentication attempts exceeded for root from 222.186.175.154 port 16828 ssh2 [preauth] Sep 29 01:36:19 MainVPS sshd[20625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.154 user=root Sep 29 01:36:21 MainVPS sshd[20625]: Failed password for root from 222.186.175.154 port	2019-09-29 07:41:31
124.156.218.80	attackspam	Sep 29 02:04:55 www sshd\[34702\]: Invalid user nikolas from 124.156.218.80Sep 29 02:04:57 www sshd\[34702\]: Failed password for invalid user nikolas from 124.156.218.80 port 55006 ssh2Sep 29 02:09:25 www sshd\[34900\]: Invalid user olya from 124.156.218.80 ...	2019-09-29 07:21:17
222.186.175.215	attack	Sep 29 01:48:31 mail sshd\[3103\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.215 user=root Sep 29 01:48:33 mail sshd\[3103\]: Failed password for root from 222.186.175.215 port 52034 ssh2 Sep 29 01:48:37 mail sshd\[3103\]: Failed password for root from 222.186.175.215 port 52034 ssh2 Sep 29 01:48:42 mail sshd\[3103\]: Failed password for root from 222.186.175.215 port 52034 ssh2 Sep 29 01:48:46 mail sshd\[3103\]: Failed password for root from 222.186.175.215 port 52034 ssh2	2019-09-29 07:54:55
188.165.24.200	attack	Sep 28 22:46:38 apollo sshd\[17024\]: Invalid user arkuser from 188.165.24.200Sep 28 22:46:40 apollo sshd\[17024\]: Failed password for invalid user arkuser from 188.165.24.200 port 56144 ssh2Sep 28 22:50:14 apollo sshd\[17030\]: Invalid user skyrix from 188.165.24.200 ...	2019-09-29 07:26:37
104.236.124.45	attackspam	Sep 28 13:05:16 auw2 sshd\[11639\]: Invalid user bruno from 104.236.124.45 Sep 28 13:05:16 auw2 sshd\[11639\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.124.45 Sep 28 13:05:17 auw2 sshd\[11639\]: Failed password for invalid user bruno from 104.236.124.45 port 45817 ssh2 Sep 28 13:13:26 auw2 sshd\[12520\]: Invalid user 7654321 from 104.236.124.45 Sep 28 13:13:26 auw2 sshd\[12520\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.124.45	2019-09-29 07:23:17
119.27.170.64	attack	2019-09-28T21:56:48.799836abusebot-5.cloudsearch.cf sshd\[26313\]: Invalid user developer from 119.27.170.64 port 50210	2019-09-29 07:37:02
96.56.82.194	attackbotsspam	2019-09-28T22:54:32.011879hub.schaetter.us sshd\[18419\]: Invalid user sk from 96.56.82.194 port 65308 2019-09-28T22:54:32.022621hub.schaetter.us sshd\[18419\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.56.82.194 2019-09-28T22:54:34.856365hub.schaetter.us sshd\[18419\]: Failed password for invalid user sk from 96.56.82.194 port 65308 ssh2 2019-09-28T22:58:17.505554hub.schaetter.us sshd\[18462\]: Invalid user ke from 96.56.82.194 port 55146 2019-09-28T22:58:17.516380hub.schaetter.us sshd\[18462\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.56.82.194 ...	2019-09-29 07:46:41
39.135.1.194	attack	firewall-block, port(s): 1433/tcp, 7002/tcp, 8080/tcp	2019-09-29 07:43:21

Recently Reported IPs

68.129.174.166	139.49.214.100	80.52.76.24	141.121.165.157
138.197.152.116	189.34.47.239	92.171.123.162	39.90.219.103
121.3.92.125	72.216.123.69	13.33.120.83	104.176.198.36
47.3.116.100	179.0.182.248	173.148.245.182	189.240.67.235
204.62.51.227	213.87.242.153	194.29.11.61	27.208.113.175