AbuseIPDB » 139.9.38.4

139.9.38.4 was found in our database!

This IP was reported 31 times. Confidence of Abuse is 65%: ?

65%

ISP	Huawei Public Cloud Service (Huawei Software Technologies Ltd.Co)
Usage Type	Data Center/Web Hosting/Transit
ASN	AS55990
Hostname(s)	ecs-139-9-38-4.compute.hwclouds-dns.com
Domain Name	huawei.com
Country	China
City	Guangzhou, Guangdong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 139.9.38.4

Whois 139.9.38.4

IP Abuse Reports for 139.9.38.4:

This IP address has been reported a total of 31 times from 18 distinct sources. 139.9.38.4 was first reported on June 17th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
SiyCah	2025-06-28 21:55:03 (1 week ago)	139.9.38.4 fell into Endlessh tarpit; 0/1 total connections are currently still open. Total time was ... show more139.9.38.4 fell into Endlessh tarpit; 0/1 total connections are currently still open. Total time wasted: 2s. Total bytes sent by tarpit: 122B. Report generated by Endlessh Report Generator v1.2.3 show less	Port Scan Hacking Brute-Force SSH
SiyCah	2025-06-27 21:55:02 (1 week ago)	139.9.38.4 fell into Endlessh tarpit; 0/1 total connections are currently still open. Total time was ... show more139.9.38.4 fell into Endlessh tarpit; 0/1 total connections are currently still open. Total time wasted: 2s. Total bytes sent by tarpit: 122B. Report generated by Endlessh Report Generator v1.2.3 show less	Port Scan Hacking Brute-Force SSH
SiyCah	2025-06-26 21:55:02 (2 weeks ago)	139.9.38.4 fell into Endlessh tarpit; 0/1 total connections are currently still open. Total time was ... show more139.9.38.4 fell into Endlessh tarpit; 0/1 total connections are currently still open. Total time wasted: 2s. Total bytes sent by tarpit: 122B. Report generated by Endlessh Report Generator v1.2.3 show less	Port Scan Hacking Brute-Force SSH
SiyCah	2025-06-25 21:55:02 (2 weeks ago)	139.9.38.4 fell into Endlessh tarpit; 0/1 total connections are currently still open. Total time was ... show more139.9.38.4 fell into Endlessh tarpit; 0/1 total connections are currently still open. Total time wasted: 2s. Total bytes sent by tarpit: 122B. Report generated by Endlessh Report Generator v1.2.3 show less	Port Scan Hacking Brute-Force SSH
Nov	2025-06-25 08:09:41 (2 weeks ago)	Unauthorized SSH access attempt (tcp/2222)	Port Scan SSH
さいとうあすか	2025-06-24 07:42:04 (2 weeks ago)	2025-06-24T15:42:01.331070+08:00 pbs sshd[39944]: pam_unix(sshd:auth): authentication failure; logna ... show more2025-06-24T15:42:01.331070+08:00 pbs sshd[39944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.9.38.4 user=root 2025-06-24T15:42:03.198383+08:00 pbs sshd[39944]: Failed password for root from 139.9.38.4 port 41504 ssh2 ... show less	Brute-Force SSH
ThreatBook.io	2025-06-24 00:13:37 (2 weeks ago)	ThreatBook Intelligence: IDC more details on http://threatbook.io/ip/139.9.38.4	SSH
Beta	2025-06-23 23:50:28 (2 weeks ago)	ports, 22/24H:1/7D:1	Port Scan
S.O.B.A. Dev.	2025-06-23 23:23:34 (2 weeks ago)	Repeated SSH login failures	Port Scan Brute-Force SSH
CGT Software Webmaster	2025-06-23 14:33:19 (2 weeks ago)	2025-06-23T14:33:17.953558+00:00 CVM51718 sshd[1830052]: Failed password for root from 139.9.38.4 po ... show more2025-06-23T14:33:17.953558+00:00 CVM51718 sshd[1830052]: Failed password for root from 139.9.38.4 port 48378 ssh2 2025-06-23T14:33:16.322449+00:00 CVM51718 sshd[1830054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.9.38.4 user=root 2025-06-23T14:33:18.754715+00:00 CVM51718 sshd[1830054]: Failed password for root from 139.9.38.4 port 48394 ssh2 ... show less	Port Scan Brute-Force
imlonghao	2025-06-23 12:34:55 (2 weeks ago)	Failed password for root from 139.9.38.4 port 39412 ssh2	Brute-Force SSH
Kinsei Engineering Inc.	2025-06-23 10:08:12 (2 weeks ago)	UFW:High-frequency access to non-released SSH or Telnet ports	Port Scan SSH
CGT Software Webmaster	2025-06-23 06:45:28 (2 weeks ago)	2025-06-23T06:45:27.637888+00:00 CVM51718 sshd[1826986]: Failed password for root from 139.9.38.4 po ... show more2025-06-23T06:45:27.637888+00:00 CVM51718 sshd[1826986]: Failed password for root from 139.9.38.4 port 49482 ssh2 2025-06-23T06:45:26.344636+00:00 CVM51718 sshd[1826988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.9.38.4 user=root 2025-06-23T06:45:28.252744+00:00 CVM51718 sshd[1826988]: Failed password for root from 139.9.38.4 port 49484 ssh2 ... show less	Port Scan Brute-Force
ThreatBook.io	2025-06-22 00:17:01 (2 weeks ago)	ThreatBook Intelligence: IDC more details on http://threatbook.io/ip/139.9.38.4	SSH
rtbh.com.tr	2025-06-21 20:07:16 (2 weeks ago)	list.rtbh.com.tr report: tcp/0	Brute-Force

Showing 1 to 15 of 31 reports

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩

Recently Reported IPs:

156.146.63.150

195.178.110.125

213.108.174.74

45.9.74.132

205.210.31.165

85.50.247.143

176.65.150.55

221.158.13.87

111.91.155.189

193.33.144.73

185.217.240.11

84.247.173.43

151.47.158.61

37.37.236.234

110.164.130.199

47.251.86.18

195.184.76.8

182.122.225.80

121.151.223.45

14.225.205.63