JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 36.111.149.139

36.111.149.139 was found in our database!

This IP was reported 350 times. Confidence of Abuse is 0%: ?

ISP	CHINANET Zhejiang province network
Usage Type	Commercial
ASN	AS23724
Domain Name	hz.zj.cn
Country	🇨🇳 China
City	Tianjin, Tianjin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 36.111.149.139

Whois 36.111.149.139

IP Abuse Reports for 36.111.149.139:

This IP address has been reported a total of 350 times from 225 distinct sources. 36.111.149.139 was first reported on April 24th 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Linuxmalwarehuntingnl	2024-06-30 09:44:37 (1 year ago)	Unauthorized connection attempt	Brute-Force
🇳🇱 Linuxmalwarehuntingnl	2024-06-30 09:40:59 (1 year ago)	Unauthorized connection attempt	Brute-Force
🇳🇱 Linuxmalwarehuntingnl	2024-06-24 14:09:20 (1 year ago)	Unauthorized connection attempt	Brute-Force
🇳🇱 Linuxmalwarehuntingnl	2024-06-24 13:40:23 (1 year ago)	Honeypot HIT	Brute-Force
🇳🇱 bitosis	2024-06-24 10:19:57 (1 year ago)	Jun 24 12:06:38 jumphost sshd[480820]: User root from 36.111.149.139 not allowed because none of use ... show more Jun 24 12:06:38 jumphost sshd[480820]: User root from 36.111.149.139 not allowed because none of user's groups are listed in AllowGroups Jun 24 12:19:21 jumphost sshd[481272]: Invalid user dspace from 36.111.149.139 port 59604 Jun 24 12:19:56 jumphost sshd[481288]: Invalid user ftpuser from 36.111.149.139 port 55948 ... show less	Brute-Force SSH
🇺🇸 shaunc	2024-06-24 10:14:26 (1 year ago)	Jun 24 05:09:11 [redacted] sshd[19901]: Failed password for root from 36.111.149.139 port 54512 ssh2 ... show more Jun 24 05:09:11 [redacted] sshd[19901]: Failed password for root from 36.111.149.139 port 54512 ssh2 Jun 24 05:09:13 [redacted] sshd[19901]: Disconnected from 36.111.149.139 port 54512 [preauth] Jun 24 05:14:23 [redacted] sshd[20054]: Did not receive identification string from 36.111.149.139 port 44820 show less	Brute-Force SSH
🇬🇧 openstrike.co.uk	2024-06-24 07:29:34 (1 year ago)	7 packets to port 10000	Port Scan
🇬🇧 paradoxnetworks	2024-06-24 05:46:39 (1 year ago)	2024-06-24T05:43:03.833188+00:00 edge-thn-lhr01.int.pdx.net.uk sshd[274735]: Invalid user minecraft ... show more 2024-06-24T05:43:03.833188+00:00 edge-thn-lhr01.int.pdx.net.uk sshd[274735]: Invalid user minecraft from 36.111.149.139 port 33558 2024-06-24T05:44:51.608987+00:00 edge-thn-lhr01.int.pdx.net.uk sshd[274836]: Invalid user sysadmin from 36.111.149.139 port 42558 2024-06-24T05:46:38.404040+00:00 edge-thn-lhr01.int.pdx.net.uk sshd[274914]: Invalid user frappe from 36.111.149.139 port 36838 ... show less	Brute-Force SSH
🇩🇪 Heathrxw	2024-06-24 03:28:33 (1 year ago)	Jun 24 05:28:31 hetzner sshd[32314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 eui ... show more Jun 24 05:28:31 hetzner sshd[32314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.111.149.139 Jun 24 05:28:33 hetzner sshd[32314]: Failed password for invalid user r00t from 36.111.149.139 port 43504 ssh2 ... show less	Brute-Force SSH
🇩🇪 Neoloop	2024-06-24 02:35:42 (1 year ago)	Jun 24 04:34:16 maximus sshd[96330]: Failed password for invalid user esuser from 36.111.149.139 por ... show more Jun 24 04:34:16 maximus sshd[96330]: Failed password for invalid user esuser from 36.111.149.139 port 42186 ssh2 Jun 24 04:34:56 maximus sshd[96492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.111.149.139 user=root Jun 24 04:34:59 maximus sshd[96492]: Failed password for root from 36.111.149.139 port 37244 ssh2 Jun 24 04:35:39 maximus sshd[96702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.111.149.139 user=root Jun 24 04:35:41 maximus sshd[96702]: Failed password for root from 36.111.149.139 port 41318 ssh2 ... show less	Brute-Force SSH
🇳🇱 wolfemium	2024-06-24 02:27:04 (1 year ago)	2024-06-24T05:23:30.714233+03:00 wolfemium sshd[3111975]: pam_unix(sshd:auth): authentication failur ... show more 2024-06-24T05:23:30.714233+03:00 wolfemium sshd[3111975]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.111.149.139 user=root 2024-06-24T05:23:33.091107+03:00 wolfemium sshd[3111975]: Failed password for root from 36.111.149.139 port 55246 ssh2 2024-06-24T05:26:25.763617+03:00 wolfemium sshd[3111981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.111.149.139 user=root 2024-06-24T05:26:27.499804+03:00 wolfemium sshd[3111981]: Failed password for root from 36.111.149.139 port 58354 ssh2 2024-06-24T05:27:03.849439+03:00 wolfemium sshd[3111983]: Invalid user erp from 36.111.149.139 port 58484 ... show less	Brute-Force SSH
🇩🇪 Neoloop	2024-06-24 02:22:53 (1 year ago)	Jun 24 04:20:48 maximus sshd[93321]: Invalid user postgres from 36.111.149.139 port 37904 Jun 24 04: ... show more Jun 24 04:20:48 maximus sshd[93321]: Invalid user postgres from 36.111.149.139 port 37904 Jun 24 04:20:48 maximus sshd[93321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.111.149.139 Jun 24 04:20:51 maximus sshd[93321]: Failed password for invalid user postgres from 36.111.149.139 port 37904 ssh2 Jun 24 04:22:50 maximus sshd[93776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.111.149.139 user=root Jun 24 04:22:51 maximus sshd[93776]: Failed password for root from 36.111.149.139 port 48120 ssh2 ... show less	Brute-Force SSH
🇨🇿 lp	2024-06-24 01:56:30 (1 year ago)	SSH brute force: 5 attempts were recorded from 36.111.149.139 2024-06-24T03:46:40.162503+02:00 from ... show more SSH brute force: 5 attempts were recorded from 36.111.149.139 2024-06-24T03:46:40.162503+02:00 from 36.111.149.139 port 52698 [preauth] 2024-06-24T03:55:43.569140+02:00 from 36.111.149.139 port 49380 on <redacted> port 22 2024-06-24T03:56:01.154112+02:00 closed by 36.111.149.139 port 49380 [preauth] 2024-06-24T03:56:18.194076+02:00 from 36.111.149.139 port 48588 on <redacted> port 22 2024-06-24T03:56:19.072898+02:00 root from 36.111.149.139 not allowed because none of user's groups are listed in AllowGroups show less	Brute-Force SSH
🇩🇪 dwmp	2024-06-24 00:50:13 (1 year ago)	Jun 24 02:44:33 webcore sshd[520475]: Invalid user davy from 36.111.149.139 port 33860 Jun 24 02:44: ... show more Jun 24 02:44:33 webcore sshd[520475]: Invalid user davy from 36.111.149.139 port 33860 Jun 24 02:44:33 webcore sshd[520475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.111.149.139 Jun 24 02:44:35 webcore sshd[520475]: Failed password for invalid user davy from 36.111.149.139 port 33860 ssh2 Jun 24 02:50:11 webcore sshd[521553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.111.149.139 user=root Jun 24 02:50:13 webcore sshd[521553]: Failed password for root from 36.111.149.139 port 53636 ssh2 ... show less	Brute-Force SSH
🇩🇪 Onur K	2024-06-23 11:00:24 (1 year ago)	Jun 23 12:53:18 netcup sshd[1328263]: Invalid user ubuntu from 36.111.149.139 port 55206 Jun 23 12:5 ... show more Jun 23 12:53:18 netcup sshd[1328263]: Invalid user ubuntu from 36.111.149.139 port 55206 Jun 23 12:55:50 netcup sshd[1328403]: Invalid user adminsys from 36.111.149.139 port 53834 Jun 23 12:56:39 netcup sshd[1328456]: Invalid user mytest from 36.111.149.139 port 34270 Jun 23 13:00:24 netcup sshd[1328631]: Invalid user postgres from 36.111.149.139 port 43930 ... show less	Brute-Force SSH

Showing 1 to 15 of 350 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2604:a880:400:d1:0:4:9e88:b001

🇭🇰 223.197.178.95

🇳🇱 176.65.139.56

🇺🇸 172.253.216.22

🇨🇦 139.28.218.155

🇨🇳 120.85.116.226

🇺🇸 91.230.168.189

🇺🇸 91.230.168.23

🇺🇸 91.230.168.22

🇸🇬 47.79.11.138

🇯🇵 46.250.248.108

🇲🇽 187.191.48.23

🇰🇷 125.138.148.6

🇰🇷 121.184.144.232

🇻🇳 103.60.242.169

🇫🇷 91.231.89.228

🇫🇷 91.231.89.72

🇺🇸 91.230.168.140

🇫🇷 91.196.152.25

🇮🇳 38.137.11.14