159.138.149.74

Basic Info

City: Nanjing

Region: Jiangsu

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
159.138.149.210	attackspam	do not respect robot.txt	2020-02-29 03:33:45
159.138.149.47	attackbotsspam	Looking for resource vulnerabilities	2020-01-15 09:23:48
159.138.149.148	attackspambots	badbot	2020-01-07 22:29:13
159.138.149.42	attack	Unauthorized access detected from banned ip	2020-01-01 13:13:04
159.138.149.214	attackbots	Unauthorized access detected from banned ip	2019-12-28 16:06:13
159.138.149.107	attack	[Fri Dec 20 21:47:05.500811 2019] [ssl:info] [pid 23331:tid 140202395809536] [client 159.138.149.107:41419] AH02033: No hostname was provided via SNI for a name based virtual host ...	2019-12-21 06:23:57
159.138.149.62	attack	badbot	2019-11-27 06:21:04
159.138.149.52	attack	badbot	2019-11-27 03:31:07
159.138.149.34	attackspam	badbot	2019-11-25 14:44:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.138.149.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54763
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;159.138.149.74.			IN	A

;; AUTHORITY SECTION:
.			105	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022032302 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 24 12:16:29 CST 2022
;; MSG SIZE  rcvd: 107

Host info

74.149.138.159.in-addr.arpa domain name pointer ecs-159-138-149-74.compute.hwclouds-dns.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
74.149.138.159.in-addr.arpa	name = ecs-159-138-149-74.compute.hwclouds-dns.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.245.96.216	attack	Sep 4 15:34:34 ns37 sshd[10942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.245.96.216	2019-09-04 21:35:35
201.149.22.37	attack	Sep 4 08:56:40 aat-srv002 sshd[14189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.149.22.37 Sep 4 08:56:42 aat-srv002 sshd[14189]: Failed password for invalid user sparc from 201.149.22.37 port 39650 ssh2 Sep 4 09:00:43 aat-srv002 sshd[14294]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.149.22.37 Sep 4 09:00:45 aat-srv002 sshd[14294]: Failed password for invalid user asf from 201.149.22.37 port 54290 ssh2 ...	2019-09-04 22:14:31
129.204.42.58	attack	Sep 4 03:03:54 lcdev sshd\[30530\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.42.58 user=root Sep 4 03:03:55 lcdev sshd\[30530\]: Failed password for root from 129.204.42.58 port 41016 ssh2 Sep 4 03:11:47 lcdev sshd\[31369\]: Invalid user il from 129.204.42.58 Sep 4 03:11:47 lcdev sshd\[31369\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.42.58 Sep 4 03:11:50 lcdev sshd\[31369\]: Failed password for invalid user il from 129.204.42.58 port 60253 ssh2	2019-09-04 21:25:44
51.77.212.124	attackbots	Sep 4 14:12:01 game-panel sshd[20707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.212.124 Sep 4 14:12:03 game-panel sshd[20707]: Failed password for invalid user xray from 51.77.212.124 port 42447 ssh2 Sep 4 14:16:57 game-panel sshd[20921]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.212.124	2019-09-04 22:19:23
162.247.74.204	attackspambots	Sep 4 03:28:53 hiderm sshd\[20287\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=billsf.tor-exit.calyxinstitute.org user=root Sep 4 03:28:55 hiderm sshd\[20287\]: Failed password for root from 162.247.74.204 port 57596 ssh2 Sep 4 03:28:58 hiderm sshd\[20287\]: Failed password for root from 162.247.74.204 port 57596 ssh2 Sep 4 03:29:00 hiderm sshd\[20287\]: Failed password for root from 162.247.74.204 port 57596 ssh2 Sep 4 03:29:03 hiderm sshd\[20287\]: Failed password for root from 162.247.74.204 port 57596 ssh2	2019-09-04 21:43:58
94.191.115.174	attackspambots	Sep 1 17:21:17 itv-usvr-01 sshd[3067]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.115.174 user=root Sep 1 17:21:19 itv-usvr-01 sshd[3067]: Failed password for root from 94.191.115.174 port 59789 ssh2 Sep 1 17:26:58 itv-usvr-01 sshd[3248]: Invalid user mfg from 94.191.115.174 Sep 1 17:26:58 itv-usvr-01 sshd[3248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.115.174 Sep 1 17:26:58 itv-usvr-01 sshd[3248]: Invalid user mfg from 94.191.115.174 Sep 1 17:27:01 itv-usvr-01 sshd[3248]: Failed password for invalid user mfg from 94.191.115.174 port 50716 ssh2	2019-09-04 22:25:30
58.214.0.70	attack	Sep 4 03:23:34 sachi sshd\[14973\]: Invalid user webrun from 58.214.0.70 Sep 4 03:23:34 sachi sshd\[14973\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.214.0.70 Sep 4 03:23:36 sachi sshd\[14973\]: Failed password for invalid user webrun from 58.214.0.70 port 50601 ssh2 Sep 4 03:29:10 sachi sshd\[15470\]: Invalid user walker from 58.214.0.70 Sep 4 03:29:10 sachi sshd\[15470\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.214.0.70	2019-09-04 21:37:31
202.75.62.141	attackspambots	Sep 4 16:28:22 pkdns2 sshd\[54843\]: Address 202.75.62.141 maps to ww5.netkl.org, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Sep 4 16:28:22 pkdns2 sshd\[54843\]: Invalid user username from 202.75.62.141Sep 4 16:28:24 pkdns2 sshd\[54843\]: Failed password for invalid user username from 202.75.62.141 port 51108 ssh2Sep 4 16:34:01 pkdns2 sshd\[55081\]: Address 202.75.62.141 maps to ww5.netkl.org, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Sep 4 16:34:01 pkdns2 sshd\[55081\]: Invalid user mika from 202.75.62.141Sep 4 16:34:03 pkdns2 sshd\[55081\]: Failed password for invalid user mika from 202.75.62.141 port 39768 ssh2 ...	2019-09-04 21:49:35
159.89.163.235	attackbotsspam	Sep 4 15:37:21 vps691689 sshd[2817]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.163.235 Sep 4 15:37:23 vps691689 sshd[2817]: Failed password for invalid user kadrir from 159.89.163.235 port 53546 ssh2 ...	2019-09-04 21:50:19
198.199.78.169	attackspambots	Sep 4 13:52:29 localhost sshd\[13057\]: Invalid user shah from 198.199.78.169 port 39364 Sep 4 13:52:29 localhost sshd\[13057\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.78.169 Sep 4 13:52:31 localhost sshd\[13057\]: Failed password for invalid user shah from 198.199.78.169 port 39364 ssh2 Sep 4 13:58:16 localhost sshd\[13225\]: Invalid user ns from 198.199.78.169 port 55076 Sep 4 13:58:16 localhost sshd\[13225\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.78.169 ...	2019-09-04 22:15:00
43.226.40.60	attack	Sep 4 14:47:53 debian sshd\[10358\]: Invalid user test from 43.226.40.60 port 55314 Sep 4 14:47:53 debian sshd\[10358\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.226.40.60 ...	2019-09-04 21:55:14
91.233.205.36	attackbots	TCP src-port=10365 dst-port=25 abuseat-org barracuda spamcop (Project Honey Pot rated Suspicious) (1043)	2019-09-04 22:01:53
209.97.169.204	attack	Sep 4 16:11:22 www sshd\[31337\]: Invalid user aok from 209.97.169.204 Sep 4 16:11:22 www sshd\[31337\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.169.204 Sep 4 16:11:23 www sshd\[31337\]: Failed password for invalid user aok from 209.97.169.204 port 58606 ssh2 ...	2019-09-04 21:58:28
27.128.229.236	attackbotsspam	Sep 4 15:06:57 meumeu sshd[19514]: Failed password for root from 27.128.229.236 port 43035 ssh2 Sep 4 15:11:46 meumeu sshd[20046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.128.229.236 Sep 4 15:11:48 meumeu sshd[20046]: Failed password for invalid user skkb from 27.128.229.236 port 60920 ssh2 ...	2019-09-04 21:26:54
142.44.146.140	attack	fail2ban honeypot	2019-09-04 22:05:11

Recently Reported IPs

2.95.21.153	32.98.217.107	235.135.137.19	228.122.30.17
124.170.110.209	136.56.215.89	238.128.53.139	141.225.154.176
17.225.174.41	222.75.190.174	136.247.193.246	23.53.154.244
121.185.106.69	205.119.168.55	133.134.186.29	188.168.230.177
226.149.222.134	125.60.120.152	218.194.179.7	194.31.98.154