139.199.133.160

Basic Info

City: Beijing

Region: Beijing

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd.

Hostname: unknown

Organization: Shenzhen Tencent Computer Systems Company Limited

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Apr 11 02:27:53 ny01 sshd[17565]: Failed password for root from 139.199.133.160 port 49756 ssh2 Apr 11 02:32:43 ny01 sshd[18301]: Failed password for root from 139.199.133.160 port 46704 ssh2	2020-04-11 14:40:37
attack	Automatic report - Banned IP Access	2020-04-04 02:45:35
attackbots	2020-03-12T22:07:14.940059abusebot-5.cloudsearch.cf sshd[23817]: Invalid user mmr from 139.199.133.160 port 48438 2020-03-12T22:07:14.946220abusebot-5.cloudsearch.cf sshd[23817]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160 2020-03-12T22:07:14.940059abusebot-5.cloudsearch.cf sshd[23817]: Invalid user mmr from 139.199.133.160 port 48438 2020-03-12T22:07:16.895435abusebot-5.cloudsearch.cf sshd[23817]: Failed password for invalid user mmr from 139.199.133.160 port 48438 ssh2 2020-03-12T22:13:35.835631abusebot-5.cloudsearch.cf sshd[23878]: Invalid user tester from 139.199.133.160 port 36224 2020-03-12T22:13:35.840764abusebot-5.cloudsearch.cf sshd[23878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160 2020-03-12T22:13:35.835631abusebot-5.cloudsearch.cf sshd[23878]: Invalid user tester from 139.199.133.160 port 36224 2020-03-12T22:13:38.095964abusebot-5.cloudsearch.cf sshd[2387 ...	2020-03-13 07:28:52
attack	Unauthorized connection attempt detected from IP address 139.199.133.160 to port 2220 [J]	2020-01-24 04:13:43
attackspam	Jan 16 00:21:43 ny01 sshd[9620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160 Jan 16 00:21:45 ny01 sshd[9620]: Failed password for invalid user 1 from 139.199.133.160 port 57432 ssh2 Jan 16 00:24:47 ny01 sshd[9917]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160	2020-01-16 13:40:31
attackbots	Jan 1 01:21:05 v22018086721571380 sshd[7131]: Failed password for invalid user conti from 139.199.133.160 port 45654 ssh2	2020-01-01 09:07:37
attackbots	2019-12-04T07:42:30.489578scmdmz1 sshd\[5866\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160 user=root 2019-12-04T07:42:31.812913scmdmz1 sshd\[5866\]: Failed password for root from 139.199.133.160 port 54940 ssh2 2019-12-04T07:49:03.015099scmdmz1 sshd\[6607\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160 user=root ...	2019-12-04 15:18:51
attackbots	Nov 29 06:58:34 mail1 sshd\[31031\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160 user=root Nov 29 06:58:36 mail1 sshd\[31031\]: Failed password for root from 139.199.133.160 port 44650 ssh2 Nov 29 07:23:57 mail1 sshd\[10504\]: Invalid user psz from 139.199.133.160 port 43060 Nov 29 07:23:57 mail1 sshd\[10504\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160 Nov 29 07:24:00 mail1 sshd\[10504\]: Failed password for invalid user psz from 139.199.133.160 port 43060 ssh2 ...	2019-11-29 18:25:21
attackspambots	Nov 26 18:22:38 localhost sshd\[27273\]: Invalid user Passwort@12345 from 139.199.133.160 port 34252 Nov 26 18:22:38 localhost sshd\[27273\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160 Nov 26 18:22:41 localhost sshd\[27273\]: Failed password for invalid user Passwort@12345 from 139.199.133.160 port 34252 ssh2	2019-11-27 02:55:39
attackspam	Nov 26 07:05:32 vtv3 sshd[8620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160 Nov 26 07:05:35 vtv3 sshd[8620]: Failed password for invalid user universal from 139.199.133.160 port 55524 ssh2 Nov 26 07:12:21 vtv3 sshd[11425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160 Nov 26 07:25:58 vtv3 sshd[17998]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160 Nov 26 07:26:00 vtv3 sshd[17998]: Failed password for invalid user rognerud from 139.199.133.160 port 36024 ssh2 Nov 26 07:33:01 vtv3 sshd[20938]: Failed password for root from 139.199.133.160 port 38954 ssh2 Nov 26 07:46:47 vtv3 sshd[27251]: Failed password for root from 139.199.133.160 port 44764 ssh2 Nov 26 07:53:55 vtv3 sshd[30366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160 Nov 26 07:53:58 vtv3 sshd[30366]: Failed password f	2019-11-26 14:21:07
attackbotsspam	2019-11-23T08:49:59.754395abusebot.cloudsearch.cf sshd\[20281\]: Invalid user badass from 139.199.133.160 port 55666 2019-11-23T08:49:59.758596abusebot.cloudsearch.cf sshd\[20281\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160	2019-11-23 17:17:24
attackspam	Nov 15 22:23:59 XXXXXX sshd[54135]: Invalid user admin from 139.199.133.160 port 55038	2019-11-16 07:10:35
attack	2019-11-01T07:37:10.657704abusebot-8.cloudsearch.cf sshd\[1898\]: Invalid user tolarian from 139.199.133.160 port 58972	2019-11-01 16:32:51
attack	Oct 31 15:14:47 ns381471 sshd[4568]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160 Oct 31 15:14:49 ns381471 sshd[4568]: Failed password for invalid user ze from 139.199.133.160 port 56070 ssh2	2019-11-01 00:40:11
attack	Oct 28 08:27:59 MK-Soft-VM3 sshd[7482]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160 Oct 28 08:28:01 MK-Soft-VM3 sshd[7482]: Failed password for invalid user cyrus from 139.199.133.160 port 33358 ssh2 ...	2019-10-28 15:32:08
attack	Triggered by Fail2Ban at Ares web server	2019-10-27 14:51:24
attackspam	Oct 21 12:19:52 nextcloud sshd\[13053\]: Invalid user devorne from 139.199.133.160 Oct 21 12:19:52 nextcloud sshd\[13053\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160 Oct 21 12:19:53 nextcloud sshd\[13053\]: Failed password for invalid user devorne from 139.199.133.160 port 58260 ssh2 ...	2019-10-21 19:24:35
attackspam	Oct 6 18:11:59 eddieflores sshd\[2228\]: Invalid user 111@abcd from 139.199.133.160 Oct 6 18:11:59 eddieflores sshd\[2228\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160 Oct 6 18:12:01 eddieflores sshd\[2228\]: Failed password for invalid user 111@abcd from 139.199.133.160 port 46366 ssh2 Oct 6 18:16:37 eddieflores sshd\[2656\]: Invalid user Admin@005 from 139.199.133.160 Oct 6 18:16:37 eddieflores sshd\[2656\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160	2019-10-07 12:17:29
attack	Oct 6 09:46:46 vps691689 sshd[5398]: Failed password for root from 139.199.133.160 port 50748 ssh2 Oct 6 09:51:39 vps691689 sshd[5483]: Failed password for root from 139.199.133.160 port 55384 ssh2 ...	2019-10-06 15:55:37
attack	Sep 30 19:21:19 microserver sshd[48728]: Invalid user musicbot from 139.199.133.160 port 48092 Sep 30 19:21:19 microserver sshd[48728]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160 Sep 30 19:21:21 microserver sshd[48728]: Failed password for invalid user musicbot from 139.199.133.160 port 48092 ssh2 Sep 30 19:26:27 microserver sshd[49361]: Invalid user oracle from 139.199.133.160 port 50306 Sep 30 19:26:27 microserver sshd[49361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160 Sep 30 19:36:59 microserver sshd[50644]: Invalid user hiperg from 139.199.133.160 port 54730 Sep 30 19:36:59 microserver sshd[50644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160 Sep 30 19:37:01 microserver sshd[50644]: Failed password for invalid user hiperg from 139.199.133.160 port 54730 ssh2 Sep 30 19:42:02 microserver sshd[51506]: Invalid user titan from 139.1	2019-10-01 03:43:47
attackbotsspam	Sep 29 06:55:16 MK-Soft-Root2 sshd[17073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.160 Sep 29 06:55:18 MK-Soft-Root2 sshd[17073]: Failed password for invalid user danilo from 139.199.133.160 port 58808 ssh2 ...	2019-09-29 15:05:50
attackbots	Sep 21 23:57:34 dedicated sshd[17082]: Invalid user lucasb from 139.199.133.160 port 34000	2019-09-22 06:05:17
attackbots	2019-08-27T00:05:14.032647abusebot-5.cloudsearch.cf sshd\[12568\]: Invalid user dresden from 139.199.133.160 port 46378	2019-08-27 14:54:46
attackspam	Aug 23 01:52:23 raspberrypi sshd\[10063\]: Invalid user bot from 139.199.133.160Aug 23 01:52:25 raspberrypi sshd\[10063\]: Failed password for invalid user bot from 139.199.133.160 port 58018 ssh2Aug 23 01:56:34 raspberrypi sshd\[10178\]: Invalid user otis from 139.199.133.160 ...	2019-08-23 11:12:16
attackbots	Brute force SMTP login attempted. ...	2019-08-10 01:46:03

Comments on same subnet:

IP	Type	Details	Datetime
139.199.133.222	attack	SSH Brute Force, server-1 sshd[18398]: Failed password for invalid user tomcat from 139.199.133.222 port 60526 ssh2	2019-07-22 12:33:13
139.199.133.222	attackspam	SSH Bruteforce Attack	2019-07-07 14:09:41
139.199.133.222	attack	Jul 5 02:18:46 mail sshd\[21041\]: Invalid user cycle from 139.199.133.222 port 40454 Jul 5 02:18:46 mail sshd\[21041\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.222 Jul 5 02:18:47 mail sshd\[21041\]: Failed password for invalid user cycle from 139.199.133.222 port 40454 ssh2 Jul 5 02:21:02 mail sshd\[21376\]: Invalid user teamspeak3 from 139.199.133.222 port 35102 Jul 5 02:21:02 mail sshd\[21376\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.222	2019-07-05 13:20:12
139.199.133.222	attackbotsspam	Jun 21 21:42:30 mail1 sshd\[27507\]: Invalid user zhuang from 139.199.133.222 port 37772 Jun 21 21:42:30 mail1 sshd\[27507\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.222 Jun 21 21:42:31 mail1 sshd\[27507\]: Failed password for invalid user zhuang from 139.199.133.222 port 37772 ssh2 Jun 21 21:45:57 mail1 sshd\[29161\]: Invalid user tester from 139.199.133.222 port 43510 Jun 21 21:45:57 mail1 sshd\[29161\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.133.222 ...	2019-06-22 05:01:46

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.133.160
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40323
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.133.160.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041301 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun Apr 14 07:20:21 +08 2019
;; MSG SIZE  rcvd: 119

Host info

Host 160.133.199.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 160.133.199.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.255.49.92	attackbots	$f2bV_matches	2020-01-04 00:35:05
63.83.78.103	attackspam	Jan 3 14:03:51 smtp postfix/smtpd[59229]: NOQUEUE: reject: RCPT from happen.saparel.com[63.83.78.103]: 554 5.7.1 Service unavailable; Client host [63.83.78.103] blocked using zen.spamhaus.org; from= to= proto=ESMTP helo=	2020-01-04 00:32:06
159.89.100.75	attackspambots	Unauthorized connection attempt detected from IP address 159.89.100.75 to port 22	2020-01-04 00:36:01
183.106.241.27	attackbots	port scan and connect, tcp 81 (hosts2-ns)	2020-01-04 00:44:43
106.13.74.93	attack	Unauthorized connection attempt detected from IP address 106.13.74.93 to port 22	2020-01-04 00:01:03
117.161.3.205	attackspam	Jan 3 10:04:05 vps34202 sshd[2400]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.161.3.205 user=r.r Jan 3 10:04:06 vps34202 sshd[2400]: Failed password for r.r from 117.161.3.205 port 40896 ssh2 Jan 3 10:04:06 vps34202 sshd[2400]: Received disconnect from 117.161.3.205: 11: Bye Bye [preauth] Jan 3 10:04:08 vps34202 sshd[2402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.161.3.205 user=r.r Jan 3 10:04:11 vps34202 sshd[2402]: Failed password for r.r from 117.161.3.205 port 43616 ssh2 Jan 3 10:04:11 vps34202 sshd[2402]: Received disconnect from 117.161.3.205: 11: Bye Bye [preauth] Jan 3 10:04:13 vps34202 sshd[2404]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.161.3.205 user=r.r Jan 3 10:04:14 vps34202 sshd[2404]: Failed password for r.r from 117.161.3.205 port 47380 ssh2 Jan 3 10:04:15 vps34202 sshd[2404]: Received disco........ -------------------------------	2020-01-04 00:37:13
222.186.175.215	attackbotsspam	$f2bV_matches	2020-01-04 00:20:37
106.75.55.123	attack	ssh failed login	2020-01-04 00:12:41
141.8.188.171	attackspam	port scan and connect, tcp 443 (https)	2020-01-04 00:45:12
106.12.109.89	attackspambots	Jan 3 14:48:38 plex sshd[6125]: Invalid user admin from 106.12.109.89 port 50496	2020-01-04 00:38:50
177.91.80.162	attackspam	Invalid user utp from 177.91.80.162 port 59524 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.91.80.162 Failed password for invalid user utp from 177.91.80.162 port 59524 ssh2 Invalid user rwa from 177.91.80.162 port 49168 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.91.80.162	2020-01-04 00:31:04
113.15.66.8	attackbotsspam	01/03/2020-08:04:50.485090 113.15.66.8 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-01-04 00:03:01
89.107.60.7	attackbotsspam	Port 22 Scan, PTR: None	2020-01-04 00:37:55
163.172.84.202	attackbots	Jan 3 14:41:03 mc1 kernel: \[2217639.392550\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=163.172.84.202 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=53165 PROTO=TCP SPT=60000 DPT=5443 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 3 14:41:26 mc1 kernel: \[2217661.678010\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=163.172.84.202 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=17560 PROTO=TCP SPT=60000 DPT=8081 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 3 14:46:50 mc1 kernel: \[2217985.630415\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=163.172.84.202 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=209 PROTO=TCP SPT=60000 DPT=5900 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2020-01-04 00:35:38
129.204.72.57	attack	invalid user	2020-01-04 00:34:37

Recently Reported IPs

211.107.45.121	222.164.111.4	95.188.75.162	194.118.113.49
144.217.14.167	111.38.26.156	186.86.12.142	76.201.57.187
103.91.143.244	212.114.58.32	190.232.106.76	35.243.211.249
190.64.71.38	183.166.190.6	77.243.31.91	191.100.30.204
159.65.186.239	122.14.209.213	5.173.249.71	211.206.124.57