159.138.149.74

Basic Info

City: Nanjing

Region: Jiangsu

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
159.138.149.210	attackspam	do not respect robot.txt	2020-02-29 03:33:45
159.138.149.47	attackbotsspam	Looking for resource vulnerabilities	2020-01-15 09:23:48
159.138.149.148	attackspambots	badbot	2020-01-07 22:29:13
159.138.149.42	attack	Unauthorized access detected from banned ip	2020-01-01 13:13:04
159.138.149.214	attackbots	Unauthorized access detected from banned ip	2019-12-28 16:06:13
159.138.149.107	attack	[Fri Dec 20 21:47:05.500811 2019] [ssl:info] [pid 23331:tid 140202395809536] [client 159.138.149.107:41419] AH02033: No hostname was provided via SNI for a name based virtual host ...	2019-12-21 06:23:57
159.138.149.62	attack	badbot	2019-11-27 06:21:04
159.138.149.52	attack	badbot	2019-11-27 03:31:07
159.138.149.34	attackspam	badbot	2019-11-25 14:44:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.138.149.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54763
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;159.138.149.74.			IN	A

;; AUTHORITY SECTION:
.			105	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022032302 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 24 12:16:29 CST 2022
;; MSG SIZE  rcvd: 107

Host info

74.149.138.159.in-addr.arpa domain name pointer ecs-159-138-149-74.compute.hwclouds-dns.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
74.149.138.159.in-addr.arpa	name = ecs-159-138-149-74.compute.hwclouds-dns.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
67.205.162.223	attackspam	Invalid user ubuntu from 67.205.162.223 port 32796	2020-09-28 07:27:05
222.186.173.142	attackbotsspam	Sep 28 01:25:17 server sshd[41216]: Failed none for root from 222.186.173.142 port 22782 ssh2 Sep 28 01:25:19 server sshd[41216]: Failed password for root from 222.186.173.142 port 22782 ssh2 Sep 28 01:25:23 server sshd[41216]: Failed password for root from 222.186.173.142 port 22782 ssh2	2020-09-28 07:30:27
157.92.49.151	attackbots	Failed password for root from 157.92.49.151 port 42728 ssh2	2020-09-28 07:39:34
188.168.231.173	attackspambots	1601152660 - 09/26/2020 22:37:40 Host: 188.168.231.173/188.168.231.173 Port: 445 TCP Blocked	2020-09-28 07:19:41
152.136.36.250	attackspam	Sep 27 23:08:08 staging sshd[124893]: Invalid user gustavo from 152.136.36.250 port 16965 Sep 27 23:08:08 staging sshd[124893]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.36.250 Sep 27 23:08:08 staging sshd[124893]: Invalid user gustavo from 152.136.36.250 port 16965 Sep 27 23:08:10 staging sshd[124893]: Failed password for invalid user gustavo from 152.136.36.250 port 16965 ssh2 ...	2020-09-28 07:32:16
182.121.206.49	attackspam	DATE:2020-09-27 05:21:51, IP:182.121.206.49, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-09-28 07:43:44
122.114.14.153	attackspambots	Sep 27 21:43:51 vlre-nyc-1 sshd\[8807\]: Invalid user ftpuser from 122.114.14.153 Sep 27 21:43:51 vlre-nyc-1 sshd\[8807\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.14.153 Sep 27 21:43:53 vlre-nyc-1 sshd\[8807\]: Failed password for invalid user ftpuser from 122.114.14.153 port 38238 ssh2 Sep 27 21:48:56 vlre-nyc-1 sshd\[8894\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.14.153 user=root Sep 27 21:48:58 vlre-nyc-1 sshd\[8894\]: Failed password for root from 122.114.14.153 port 34006 ssh2 ...	2020-09-28 07:51:14
182.18.144.99	attackspambots	Sep 27 20:23:59 ift sshd\[709\]: Failed password for invalid user admin from 182.18.144.99 port 56600 ssh2Sep 27 20:28:07 ift sshd\[1334\]: Invalid user rancid from 182.18.144.99Sep 27 20:28:09 ift sshd\[1334\]: Failed password for invalid user rancid from 182.18.144.99 port 36250 ssh2Sep 27 20:32:14 ift sshd\[2192\]: Invalid user socks from 182.18.144.99Sep 27 20:32:16 ift sshd\[2192\]: Failed password for invalid user socks from 182.18.144.99 port 44124 ssh2 ...	2020-09-28 07:25:01
52.188.148.170	attackbots	invalid user hidar from 52.188.148.170 port 5455 ssh2	2020-09-28 07:33:06
217.27.117.136	attack	$f2bV_matches	2020-09-28 07:29:22
36.133.87.7	attack	Sep 27 12:15:35 h2779839 sshd[19466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.133.87.7 user=root Sep 27 12:15:36 h2779839 sshd[19466]: Failed password for root from 36.133.87.7 port 49820 ssh2 Sep 27 12:20:10 h2779839 sshd[19568]: Invalid user pi from 36.133.87.7 port 42940 Sep 27 12:20:10 h2779839 sshd[19568]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.133.87.7 Sep 27 12:20:10 h2779839 sshd[19568]: Invalid user pi from 36.133.87.7 port 42940 Sep 27 12:20:13 h2779839 sshd[19568]: Failed password for invalid user pi from 36.133.87.7 port 42940 ssh2 Sep 27 12:24:42 h2779839 sshd[19654]: Invalid user openvpn from 36.133.87.7 port 36060 Sep 27 12:24:42 h2779839 sshd[19654]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.133.87.7 Sep 27 12:24:42 h2779839 sshd[19654]: Invalid user openvpn from 36.133.87.7 port 36060 Sep 27 12:24:44 h2779839 sshd[1965 ...	2020-09-28 07:49:01
13.88.63.201	attackbotsspam	invalid user engine3 from 13.88.63.201 port 8520 ssh2	2020-09-28 07:33:35
51.91.159.46	attack	Tried sshing with brute force.	2020-09-28 07:46:53
185.74.5.156	attack	Sep 28 00:58:21 ns392434 sshd[16082]: Invalid user ts3 from 185.74.5.156 port 52620 Sep 28 00:58:21 ns392434 sshd[16082]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.74.5.156 Sep 28 00:58:21 ns392434 sshd[16082]: Invalid user ts3 from 185.74.5.156 port 52620 Sep 28 00:58:22 ns392434 sshd[16082]: Failed password for invalid user ts3 from 185.74.5.156 port 52620 ssh2 Sep 28 01:10:24 ns392434 sshd[16520]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.74.5.156 user=root Sep 28 01:10:26 ns392434 sshd[16520]: Failed password for root from 185.74.5.156 port 54540 ssh2 Sep 28 01:15:05 ns392434 sshd[16663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.74.5.156 user=root Sep 28 01:15:07 ns392434 sshd[16663]: Failed password for root from 185.74.5.156 port 34210 ssh2 Sep 28 01:19:36 ns392434 sshd[16889]: Invalid user james from 185.74.5.156 port 42114	2020-09-28 07:40:41
180.76.51.143	attackspam	Sep 28 01:35:05 sso sshd[29372]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.51.143 Sep 28 01:35:07 sso sshd[29372]: Failed password for invalid user dl from 180.76.51.143 port 46584 ssh2 ...	2020-09-28 07:44:40

Recently Reported IPs

2.95.21.153	32.98.217.107	235.135.137.19	228.122.30.17
124.170.110.209	136.56.215.89	238.128.53.139	141.225.154.176
17.225.174.41	222.75.190.174	136.247.193.246	23.53.154.244
121.185.106.69	205.119.168.55	133.134.186.29	188.168.230.177
226.149.222.134	125.60.120.152	218.194.179.7	194.31.98.154