139.199.16.145

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: V6Yun (Beijing) Network Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Nov 30 07:54:09 ns3110291 sshd\[14796\]: Invalid user pendeho from 139.199.16.145 Nov 30 07:54:09 ns3110291 sshd\[14796\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.16.145 Nov 30 07:54:11 ns3110291 sshd\[14796\]: Failed password for invalid user pendeho from 139.199.16.145 port 35290 ssh2 Nov 30 07:57:53 ns3110291 sshd\[14884\]: Invalid user test from 139.199.16.145 Nov 30 07:57:53 ns3110291 sshd\[14884\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.16.145 ...	2019-11-30 15:35:32

Type

Details

Datetime

attackbotsspam

Nov 30 07:54:09 ns3110291 sshd\[14796\]: Invalid user pendeho from 139.199.16.145
Nov 30 07:54:09 ns3110291 sshd\[14796\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.16.145 
Nov 30 07:54:11 ns3110291 sshd\[14796\]: Failed password for invalid user pendeho from 139.199.16.145 port 35290 ssh2
Nov 30 07:57:53 ns3110291 sshd\[14884\]: Invalid user test from 139.199.16.145
Nov 30 07:57:53 ns3110291 sshd\[14884\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.16.145 
...

2019-11-30 15:35:32

Comments on same subnet:

IP	Type	Details	Datetime
139.199.165.189	attack	$f2bV_matches	2020-09-25 05:17:37
139.199.168.18	attackspam	Invalid user alvaro from 139.199.168.18 port 59516	2020-09-22 23:09:37
139.199.168.18	attackbotsspam	$f2bV_matches	2020-09-22 15:13:43
139.199.168.18	attack	3x Failed Password	2020-09-22 07:15:39
139.199.165.189	attack	5x Failed Password	2020-09-21 21:34:31
139.199.165.189	attack	2020-09-21T02:37:32.083551abusebot-4.cloudsearch.cf sshd[27406]: Invalid user ubuntu from 139.199.165.189 port 52482 2020-09-21T02:37:32.090709abusebot-4.cloudsearch.cf sshd[27406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.165.189 2020-09-21T02:37:32.083551abusebot-4.cloudsearch.cf sshd[27406]: Invalid user ubuntu from 139.199.165.189 port 52482 2020-09-21T02:37:33.806506abusebot-4.cloudsearch.cf sshd[27406]: Failed password for invalid user ubuntu from 139.199.165.189 port 52482 ssh2 2020-09-21T02:43:32.528729abusebot-4.cloudsearch.cf sshd[27712]: Invalid user ftptest from 139.199.165.189 port 60416 2020-09-21T02:43:32.535348abusebot-4.cloudsearch.cf sshd[27712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.165.189 2020-09-21T02:43:32.528729abusebot-4.cloudsearch.cf sshd[27712]: Invalid user ftptest from 139.199.165.189 port 60416 2020-09-21T02:43:34.341288abusebot-4.cloudsearch.c ...	2020-09-21 13:21:08
139.199.165.189	attackbotsspam	Invalid user brenden from 139.199.165.189 port 53158	2020-09-21 05:11:41
139.199.168.18	attackbotsspam	Automatic report - Banned IP Access	2020-09-15 02:16:19
139.199.168.18	attackspam	Sep 14 10:59:59 sso sshd[28819]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.168.18 Sep 14 11:00:01 sso sshd[28819]: Failed password for invalid user yuchen from 139.199.168.18 port 50638 ssh2 ...	2020-09-14 18:02:49
139.199.168.18	attackspam	Sep 12 08:32:13 root sshd[8507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.168.18 ...	2020-09-12 21:42:07
139.199.168.18	attackbots	Sep 12 04:57:55 roki-contabo sshd\[28745\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.168.18 user=root Sep 12 04:57:57 roki-contabo sshd\[28745\]: Failed password for root from 139.199.168.18 port 46434 ssh2 Sep 12 05:13:28 roki-contabo sshd\[28833\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.168.18 user=root Sep 12 05:13:29 roki-contabo sshd\[28833\]: Failed password for root from 139.199.168.18 port 57542 ssh2 Sep 12 05:17:33 roki-contabo sshd\[28854\]: Invalid user admin from 139.199.168.18 ...	2020-09-12 13:43:41
139.199.168.18	attackspam	Sep 11 21:04:46 sshgateway sshd\[11748\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.168.18 user=root Sep 11 21:04:47 sshgateway sshd\[11748\]: Failed password for root from 139.199.168.18 port 42214 ssh2 Sep 11 21:08:49 sshgateway sshd\[12150\]: Invalid user sshusr from 139.199.168.18	2020-09-12 05:31:46
139.199.168.18	attackbotsspam	Invalid user redmine from 139.199.168.18 port 50522	2020-09-01 19:38:32
139.199.168.18	attackbots	Invalid user wifi from 139.199.168.18 port 55564	2020-08-20 13:45:01
139.199.168.18	attackspam	Aug 15 12:20:58 onepixel sshd[1558886]: Failed password for root from 139.199.168.18 port 35578 ssh2 Aug 15 12:23:19 onepixel sshd[1560263]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.168.18 user=root Aug 15 12:23:21 onepixel sshd[1560263]: Failed password for root from 139.199.168.18 port 33648 ssh2 Aug 15 12:25:49 onepixel sshd[1561728]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.168.18 user=root Aug 15 12:25:52 onepixel sshd[1561728]: Failed password for root from 139.199.168.18 port 59954 ssh2	2020-08-15 20:35:23

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.16.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10793
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.16.145.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050101 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu May 02 12:32:48 +08 2019
;; MSG SIZE  rcvd: 118

Host info

Host 145.16.199.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 145.16.199.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
107.170.238.214	attack	22540/tcp 20/tcp 43307/tcp... [2019-05-01/06-30]52pkt,41pt.(tcp),5pt.(udp)	2019-07-01 05:09:08
200.24.70.78	attackbots	$f2bV_matches	2019-07-01 05:22:15
85.5.92.207	attackspam	Microsoft-Windows-Security-Auditing	2019-07-01 05:04:04
185.93.3.114	attackspambots	(From raphaeVapVasysoand@gmail.com) Good day! griffithchiropractic.com We advance Sending your commercial offer through the feedback form which can be found on the sites in the Communication partition. Contact form are filled in by our program and the captcha is solved. The superiority of this method is that messages sent through feedback forms are whitelisted. This technique improve the probability that your message will be read. Our database contains more than 25 million sites around the world to which we can send your message. The cost of one million messages 49 USD FREE TEST mailing of 50,000 messages to any country of your choice. This message is automatically generated to use our contacts for communication. Contact us. Telegram - @FeedbackFormEU Skype FeedbackForm2019 WhatsApp - +44 7598 509161 Email - FeedbackForm@make-success.com	2019-07-01 05:32:32
45.125.65.84	attack	brute force attempt on Postfix-auth	2019-07-01 04:54:54
158.251.88.99	attack	404 NOT FOUND	2019-07-01 04:46:56
107.170.203.106	attackbots	995/tcp 6667/tcp 2096/tcp... [2019-04-30/06-29]51pkt,38pt.(tcp),2pt.(udp)	2019-07-01 05:06:38
181.171.35.242	attackspambots	Triggered by Fail2Ban	2019-07-01 04:58:36
177.154.238.138	attackbots	$f2bV_matches	2019-07-01 05:30:14
152.168.224.232	attack	$f2bV_matches	2019-07-01 05:08:33
178.128.55.52	attack	Jul 1 03:08:07 itv-usvr-01 sshd[16786]: Invalid user qhsupport from 178.128.55.52 Jul 1 03:08:07 itv-usvr-01 sshd[16786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.55.52 Jul 1 03:08:07 itv-usvr-01 sshd[16786]: Invalid user qhsupport from 178.128.55.52 Jul 1 03:08:10 itv-usvr-01 sshd[16786]: Failed password for invalid user qhsupport from 178.128.55.52 port 53382 ssh2	2019-07-01 05:05:54
45.173.106.176	attackbotsspam	proto=tcp . spt=36284 . dpt=25 . (listed on Blocklist de Jun 29) (757)	2019-07-01 04:49:58
70.90.72.230	attackbotsspam	Brute force attempt	2019-07-01 04:55:21
107.170.240.8	attackbotsspam	Autoban 107.170.240.8 AUTH/CONNECT	2019-07-01 04:59:31
115.186.148.38	attack	Reported by AbuseIPDB proxy server.	2019-07-01 05:23:08

Recently Reported IPs

160.15.160.94	77.247.108.53	92.113.94.38	36.67.232.98
78.104.175.229	58.27.209.246	253.45.202.187	118.13.76.147
212.114.57.8	149.63.242.180	84.47.111.18	103.123.20.210
61.158.140.152	23.129.64.156	101.254.214.36	71.6.233.91
177.19.164.149	119.29.101.212	193.188.22.17	199.249.230.80