139.199.170.242

Basic Info

City: Beijing

Region: Beijing

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd.

Hostname: unknown

Organization: Shenzhen Tencent Computer Systems Company Limited

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 139.199.170.242 to port 80 [J]	2020-03-02 20:58:20
attackbots	unauthorized connection attempt	2020-01-05 19:19:37
attack	Unauthorized connection attempt detected from IP address 139.199.170.242 to port 80	2020-01-02 20:30:04

Type

Details

Datetime

attack

Unauthorized connection attempt detected from IP address 139.199.170.242 to port 80 [J]

2020-03-02 20:58:20

attackbots

unauthorized connection attempt

2020-01-05 19:19:37

attack

Unauthorized connection attempt detected from IP address 139.199.170.242 to port 80

2020-01-02 20:30:04

Comments on same subnet:

IP	Type	Details	Datetime
139.199.170.101	attackspambots	SSH Brute-Force Attack	2020-10-12 20:57:40
139.199.170.101	attack	Oct 12 04:21:26 game-panel sshd[25338]: Failed password for root from 139.199.170.101 port 42150 ssh2 Oct 12 04:26:15 game-panel sshd[25555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.170.101 Oct 12 04:26:17 game-panel sshd[25555]: Failed password for invalid user wo from 139.199.170.101 port 38612 ssh2	2020-10-12 12:26:40
139.199.170.101	attack	SSH brutforce	2020-10-05 07:45:26
139.199.170.101	attack	Oct 4 13:56:05 abendstille sshd\[3409\]: Invalid user ps from 139.199.170.101 Oct 4 13:56:05 abendstille sshd\[3409\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.170.101 Oct 4 13:56:06 abendstille sshd\[3409\]: Failed password for invalid user ps from 139.199.170.101 port 57362 ssh2 Oct 4 14:01:07 abendstille sshd\[7928\]: Invalid user openhab from 139.199.170.101 Oct 4 14:01:07 abendstille sshd\[7928\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.170.101 ...	2020-10-05 00:04:09
139.199.170.101	attack	Time: Mon Aug 31 06:06:43 2020 +0200 IP: 139.199.170.101 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Aug 31 05:42:53 mail-01 sshd[31099]: Invalid user magno from 139.199.170.101 port 40666 Aug 31 05:42:56 mail-01 sshd[31099]: Failed password for invalid user magno from 139.199.170.101 port 40666 ssh2 Aug 31 06:02:56 mail-01 sshd[4373]: Invalid user test5 from 139.199.170.101 port 36880 Aug 31 06:02:58 mail-01 sshd[4373]: Failed password for invalid user test5 from 139.199.170.101 port 36880 ssh2 Aug 31 06:06:38 mail-01 sshd[4558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.170.101 user=root	2020-08-31 13:50:23
139.199.170.101	attackspambots	SSH Invalid Login	2020-08-23 07:10:40
139.199.170.101	attackspam	Aug 1 04:28:52 scw-tender-jepsen sshd[5478]: Failed password for root from 139.199.170.101 port 56170 ssh2	2020-08-01 16:08:48
139.199.170.101	attackbots	Jul 7 13:33:55 plex-server sshd[524692]: Invalid user admin from 139.199.170.101 port 38064 Jul 7 13:33:55 plex-server sshd[524692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.170.101 Jul 7 13:33:55 plex-server sshd[524692]: Invalid user admin from 139.199.170.101 port 38064 Jul 7 13:33:57 plex-server sshd[524692]: Failed password for invalid user admin from 139.199.170.101 port 38064 ssh2 Jul 7 13:35:49 plex-server sshd[524820]: Invalid user PPSNEPL from 139.199.170.101 port 58358 ...	2020-07-07 22:15:05
139.199.170.101	attackspam	Jun 20 15:52:18 h1745522 sshd[22963]: Invalid user pc from 139.199.170.101 port 57462 Jun 20 15:52:18 h1745522 sshd[22963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.170.101 Jun 20 15:52:18 h1745522 sshd[22963]: Invalid user pc from 139.199.170.101 port 57462 Jun 20 15:52:19 h1745522 sshd[22963]: Failed password for invalid user pc from 139.199.170.101 port 57462 ssh2 Jun 20 15:56:04 h1745522 sshd[23068]: Invalid user phil from 139.199.170.101 port 42698 Jun 20 15:56:04 h1745522 sshd[23068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.170.101 Jun 20 15:56:04 h1745522 sshd[23068]: Invalid user phil from 139.199.170.101 port 42698 Jun 20 15:56:06 h1745522 sshd[23068]: Failed password for invalid user phil from 139.199.170.101 port 42698 ssh2 Jun 20 15:59:55 h1745522 sshd[23250]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.170.101 u ...	2020-06-20 22:07:58
139.199.170.101	attackbotsspam	May 22 03:59:42 ws12vmsma01 sshd[7871]: Invalid user biz from 139.199.170.101 May 22 03:59:44 ws12vmsma01 sshd[7871]: Failed password for invalid user biz from 139.199.170.101 port 36014 ssh2 May 22 04:03:45 ws12vmsma01 sshd[8518]: Invalid user koq from 139.199.170.101 ...	2020-05-22 17:47:21

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.170.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49503
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.170.242.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061200 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jun 12 15:59:42 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 242.170.199.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 242.170.199.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
94.253.13.235	attackbots	unauthorized connection attempt	2020-01-22 16:51:36
185.51.92.103	attackbots	spam	2020-01-22 16:47:42
91.92.79.234	attackspam	spam	2020-01-22 16:34:04
23.129.64.211	attackbotsspam	spam	2020-01-22 16:43:56
77.233.10.37	attackbotsspam	spam	2020-01-22 16:39:02
89.234.174.47	attackspambots	spam	2020-01-22 17:05:39
88.12.49.249	attack	spam	2020-01-22 16:34:37
77.95.60.155	attackbotsspam	spam	2020-01-22 16:39:29
92.255.202.72	attack	email spam	2020-01-22 17:05:05
193.151.12.117	attack	spam	2020-01-22 16:59:20
89.40.115.119	attackspambots	email spam	2020-01-22 16:52:48
212.233.213.29	attack	spam	2020-01-22 16:57:26
23.129.64.154	attackspam	spam	2020-01-22 16:44:22
85.175.5.6	attack	spam	2020-01-22 16:35:33
109.169.65.145	attackspam	spam	2020-01-22 17:03:43

Recently Reported IPs

152.214.119.105	77.3.33.195	55.61.154.70	113.173.167.229
145.158.7.152	45.108.220.221	2.93.23.48	12.181.198.8
113.203.175.215	49.140.126.180	188.19.254.45	98.100.206.238
158.201.12.183	39.159.246.72	203.235.73.160	91.126.99.0
100.158.224.2	95.169.30.120	36.184.244.46	128.241.12.89