139.199.21.245

Basic Info

City: Beijing

Region: Beijing

Country: China

Internet Service Provider: V6Yun (Beijing) Network Co. Ltd

Hostname: unknown

Organization: Shenzhen Tencent Computer Systems Company Limited

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Jan 25 12:07:15 eddieflores sshd\[29110\]: Invalid user miner from 139.199.21.245 Jan 25 12:07:15 eddieflores sshd\[29110\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245 Jan 25 12:07:17 eddieflores sshd\[29110\]: Failed password for invalid user miner from 139.199.21.245 port 38719 ssh2 Jan 25 12:10:10 eddieflores sshd\[29526\]: Invalid user nagios from 139.199.21.245 Jan 25 12:10:10 eddieflores sshd\[29526\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245	2020-01-26 06:27:55
attackbotsspam	Jan 13 12:47:57 mout sshd[10441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245 user=root Jan 13 12:48:00 mout sshd[10441]: Failed password for root from 139.199.21.245 port 51893 ssh2	2020-01-13 19:59:07
attackbotsspam	$f2bV_matches	2020-01-12 00:17:32
attack	Jan 11 06:41:43 163-172-32-151 sshd[31132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245 user=root Jan 11 06:41:45 163-172-32-151 sshd[31132]: Failed password for root from 139.199.21.245 port 59847 ssh2 ...	2020-01-11 14:10:19
attack	Dec 23 15:59:58 tuxlinux sshd[38657]: Invalid user analizer from 139.199.21.245 port 45264 Dec 23 15:59:58 tuxlinux sshd[38657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245 Dec 23 15:59:58 tuxlinux sshd[38657]: Invalid user analizer from 139.199.21.245 port 45264 Dec 23 15:59:58 tuxlinux sshd[38657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245 Dec 23 15:59:58 tuxlinux sshd[38657]: Invalid user analizer from 139.199.21.245 port 45264 Dec 23 15:59:58 tuxlinux sshd[38657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245 Dec 23 16:00:00 tuxlinux sshd[38657]: Failed password for invalid user analizer from 139.199.21.245 port 45264 ssh2 ...	2019-12-23 23:04:13
attackspam	Dec 17 05:41:12 ovpn sshd\[31919\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245 user=root Dec 17 05:41:14 ovpn sshd\[31919\]: Failed password for root from 139.199.21.245 port 33174 ssh2 Dec 17 05:50:38 ovpn sshd\[1963\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245 user=root Dec 17 05:50:39 ovpn sshd\[1963\]: Failed password for root from 139.199.21.245 port 38191 ssh2 Dec 17 05:56:52 ovpn sshd\[3666\]: Invalid user tumacder from 139.199.21.245 Dec 17 05:56:52 ovpn sshd\[3666\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245	2019-12-17 13:04:00
attackspam	Dec 16 22:15:20 nextcloud sshd\[15056\]: Invalid user rogerio from 139.199.21.245 Dec 16 22:15:20 nextcloud sshd\[15056\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245 Dec 16 22:15:22 nextcloud sshd\[15056\]: Failed password for invalid user rogerio from 139.199.21.245 port 47046 ssh2 ...	2019-12-17 05:23:08
attackspam	Dec 16 12:38:44 gw1 sshd[1186]: Failed password for root from 139.199.21.245 port 49075 ssh2 ...	2019-12-16 15:50:12
attackspambots	Dec 14 01:01:17 dedicated sshd[22784]: Invalid user manager from 139.199.21.245 port 59608	2019-12-14 08:08:43
attack	Dec 13 21:41:01 lnxmysql61 sshd[22502]: Failed password for mysql from 139.199.21.245 port 53792 ssh2 Dec 13 21:41:01 lnxmysql61 sshd[22502]: Failed password for mysql from 139.199.21.245 port 53792 ssh2 Dec 13 21:45:46 lnxmysql61 sshd[23057]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245	2019-12-14 04:54:51
attackbots	Dec 09 05:24:57 askasleikir sshd[472936]: Failed password for invalid user dwright from 139.199.21.245 port 35931 ssh2	2019-12-09 20:51:15
attackbots	SSH Brute Force, server-1 sshd[27201]: Failed password for invalid user midtlang from 139.199.21.245 port 52667 ssh2	2019-11-25 03:00:56
attack	Nov 13 21:36:14 ns41 sshd[20852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245	2019-11-14 05:18:03
attack	$f2bV_matches	2019-11-12 04:05:32
attack	Oct 8 04:04:33 php1 sshd\[7606\]: Invalid user Pizza@2017 from 139.199.21.245 Oct 8 04:04:33 php1 sshd\[7606\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245 Oct 8 04:04:35 php1 sshd\[7606\]: Failed password for invalid user Pizza@2017 from 139.199.21.245 port 33890 ssh2 Oct 8 04:09:02 php1 sshd\[8453\]: Invalid user RootPass2019 from 139.199.21.245 Oct 8 04:09:02 php1 sshd\[8453\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245	2019-10-08 23:25:29
attack	Oct 5 07:04:29 www sshd\[3039\]: Invalid user Salve2017 from 139.199.21.245 Oct 5 07:04:29 www sshd\[3039\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245 Oct 5 07:04:30 www sshd\[3039\]: Failed password for invalid user Salve2017 from 139.199.21.245 port 47481 ssh2 ...	2019-10-05 18:09:01
attack	2019-10-02T21:54:02.428403abusebot.cloudsearch.cf sshd\[29053\]: Invalid user gold from 139.199.21.245 port 59766 2019-10-02T21:54:02.434116abusebot.cloudsearch.cf sshd\[29053\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245	2019-10-03 08:41:56
attack	Sep 29 19:03:51 eddieflores sshd\[24945\]: Invalid user uy from 139.199.21.245 Sep 29 19:03:51 eddieflores sshd\[24945\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245 Sep 29 19:03:53 eddieflores sshd\[24945\]: Failed password for invalid user uy from 139.199.21.245 port 58625 ssh2 Sep 29 19:09:32 eddieflores sshd\[25492\]: Invalid user sinusbot from 139.199.21.245 Sep 29 19:09:32 eddieflores sshd\[25492\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245	2019-09-30 13:11:37
attackbotsspam	Sep 26 23:56:10 TORMINT sshd\[4834\]: Invalid user admin from 139.199.21.245 Sep 26 23:56:10 TORMINT sshd\[4834\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245 Sep 26 23:56:12 TORMINT sshd\[4834\]: Failed password for invalid user admin from 139.199.21.245 port 42070 ssh2 ...	2019-09-27 12:20:46
attackbotsspam	Sep 25 06:45:16 php1 sshd\[9891\]: Invalid user asi from 139.199.21.245 Sep 25 06:45:16 php1 sshd\[9891\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245 Sep 25 06:45:19 php1 sshd\[9891\]: Failed password for invalid user asi from 139.199.21.245 port 58431 ssh2 Sep 25 06:50:19 php1 sshd\[10291\]: Invalid user view from 139.199.21.245 Sep 25 06:50:19 php1 sshd\[10291\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245	2019-09-26 00:51:00
attackspam	Sep 24 02:27:57 plusreed sshd[13118]: Invalid user hp from 139.199.21.245 ...	2019-09-24 16:25:05
attack	Sep 14 17:12:12 hpm sshd\[11164\]: Invalid user gq from 139.199.21.245 Sep 14 17:12:12 hpm sshd\[11164\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245 Sep 14 17:12:14 hpm sshd\[11164\]: Failed password for invalid user gq from 139.199.21.245 port 59463 ssh2 Sep 14 17:16:32 hpm sshd\[11573\]: Invalid user roland from 139.199.21.245 Sep 14 17:16:32 hpm sshd\[11573\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245	2019-09-15 11:28:30
attackbotsspam	Invalid user radio from 139.199.21.245 port 34614	2019-09-13 10:19:46
attackspam	Aug 27 06:27:00 kapalua sshd\[6577\]: Invalid user daniel from 139.199.21.245 Aug 27 06:27:00 kapalua sshd\[6577\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245 Aug 27 06:27:02 kapalua sshd\[6577\]: Failed password for invalid user daniel from 139.199.21.245 port 59281 ssh2 Aug 27 06:32:35 kapalua sshd\[7017\]: Invalid user help from 139.199.21.245 Aug 27 06:32:35 kapalua sshd\[7017\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245	2019-08-28 02:47:33
attackbotsspam	Aug 21 03:58:18 web1 sshd\[12545\]: Invalid user ftptest from 139.199.21.245 Aug 21 03:58:18 web1 sshd\[12545\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245 Aug 21 03:58:20 web1 sshd\[12545\]: Failed password for invalid user ftptest from 139.199.21.245 port 52472 ssh2 Aug 21 04:03:11 web1 sshd\[13017\]: Invalid user yu from 139.199.21.245 Aug 21 04:03:11 web1 sshd\[13017\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245	2019-08-22 02:07:20
attackbotsspam	Jul 13 21:11:13 vps647732 sshd[10672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245 Jul 13 21:11:14 vps647732 sshd[10672]: Failed password for invalid user QNUDECPU from 139.199.21.245 port 34581 ssh2 ...	2019-07-14 03:16:37

Comments on same subnet:

IP	Type	Details	Datetime
139.199.219.235	attackspam	Feb 16 21:19:36 server sshd\[22281\]: Invalid user coleen from 139.199.219.235 Feb 16 21:19:36 server sshd\[22281\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.219.235 Feb 16 21:19:39 server sshd\[22281\]: Failed password for invalid user coleen from 139.199.219.235 port 36022 ssh2 Feb 16 21:27:33 server sshd\[23829\]: Invalid user student from 139.199.219.235 Feb 16 21:27:33 server sshd\[23829\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.219.235 ...	2020-02-17 04:09:14
139.199.219.235	attack	Feb 4 19:10:06 pornomens sshd\[32488\]: Invalid user kenzo from 139.199.219.235 port 47550 Feb 4 19:10:06 pornomens sshd\[32488\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.219.235 Feb 4 19:10:08 pornomens sshd\[32488\]: Failed password for invalid user kenzo from 139.199.219.235 port 47550 ssh2 ...	2020-02-05 03:47:00
139.199.219.235	attack	Automatic report - SSH Brute-Force Attack	2020-01-31 21:32:37
139.199.219.235	attackspam	$f2bV_matches	2020-01-12 00:16:12
139.199.219.235	attack	Invalid user nginx from 139.199.219.235 port 55142	2020-01-10 23:42:38
139.199.212.193	attackbotsspam	fail2ban honeypot	2019-12-27 23:27:07
139.199.219.235	attackspambots	Invalid user gabat from 139.199.219.235 port 35536	2019-12-27 08:38:54
139.199.219.235	attack	Dec 14 13:21:04 areeb-Workstation sshd[10906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.219.235 Dec 14 13:21:06 areeb-Workstation sshd[10906]: Failed password for invalid user sressler from 139.199.219.235 port 33796 ssh2 ...	2019-12-14 15:54:44
139.199.219.235	attack	Dec 6 09:39:20 vps647732 sshd[19522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.219.235 Dec 6 09:39:21 vps647732 sshd[19522]: Failed password for invalid user plesk from 139.199.219.235 port 37994 ssh2 ...	2019-12-06 20:12:41
139.199.219.235	attackbots	Dec 3 06:49:54 meumeu sshd[32644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.219.235 Dec 3 06:49:57 meumeu sshd[32644]: Failed password for invalid user ftpuser from 139.199.219.235 port 43954 ssh2 Dec 3 06:56:38 meumeu sshd[1161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.219.235 ...	2019-12-03 14:16:49
139.199.219.235	attack	Too many connections or unauthorized access detected from Arctic banned ip	2019-12-01 04:27:07
139.199.219.2	attackbotsspam	SSH login attempts with user root.	2019-11-30 06:29:52
139.199.219.235	attackbots	Nov 28 08:39:13 server sshd\[2367\]: Invalid user admin from 139.199.219.235 Nov 28 08:39:13 server sshd\[2367\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.219.235 Nov 28 08:39:15 server sshd\[2367\]: Failed password for invalid user admin from 139.199.219.235 port 57238 ssh2 Nov 28 09:28:39 server sshd\[15133\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.219.235 user=root Nov 28 09:28:41 server sshd\[15133\]: Failed password for root from 139.199.219.235 port 36634 ssh2 ...	2019-11-28 16:06:09
139.199.219.235	attackbots	Nov 28 03:25:38 ws24vmsma01 sshd[117684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.219.235 Nov 28 03:25:39 ws24vmsma01 sshd[117684]: Failed password for invalid user admin from 139.199.219.235 port 36246 ssh2 ...	2019-11-28 14:28:34
139.199.219.235	attack	Nov 20 07:25:54 jane sshd[15978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.219.235 Nov 20 07:25:56 jane sshd[15978]: Failed password for invalid user storhaug from 139.199.219.235 port 50590 ssh2 ...	2019-11-20 18:08:15

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.21.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 274
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.21.245.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun Apr 07 20:08:48 +08 2019
;; MSG SIZE  rcvd: 118

Host info

Host 245.21.199.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 245.21.199.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
187.4.112.242	attackspambots	email spam	2019-12-19 17:25:29
190.7.253.138	attackbots	email spam	2019-12-19 17:24:30
50.196.126.233	attackspambots	email spam	2019-12-19 17:18:11
45.186.145.106	attackbotsspam	email spam	2019-12-19 17:40:59
186.67.248.8	attack	--- report --- Dec 19 05:37:40 sshd: Connection from 186.67.248.8 port 33017 Dec 19 05:38:03 sshd: Invalid user oracle from 186.67.248.8 Dec 19 05:38:05 sshd: Failed password for invalid user oracle from 186.67.248.8 port 33017 ssh2 Dec 19 05:38:05 sshd: Received disconnect from 186.67.248.8: 11: Bye Bye [preauth]	2019-12-19 17:26:45
195.243.159.138	attack	email spam	2019-12-19 17:49:25
92.187.228.47	attackspam	email spam	2019-12-19 17:36:28
185.57.82.216	attack	email spam	2019-12-19 17:27:59
196.11.80.154	attackspambots	email spam	2019-12-19 17:22:58
82.147.116.201	attackspambots	email spam	2019-12-19 17:16:06
194.8.136.62	attackspam	email spam	2019-12-19 17:50:52
82.142.147.174	attack	email spam	2019-12-19 17:16:23
176.221.104.2	attack	email spam	2019-12-19 17:30:01
46.99.133.169	attackspambots	email spam	2019-12-19 17:19:13
203.99.116.250	attack	email spam	2019-12-19 17:22:11

Recently Reported IPs

132.232.20.113	45.55.176.173	138.68.82.220	14.243.83.69
181.30.26.40	192.144.185.175	185.229.243.109	132.232.116.82
14.226.104.97	132.232.104.106	179.184.161.53	77.234.46.201
132.145.155.184	139.193.10.30	221.3.68.187	117.97.248.28
121.184.64.15	83.219.136.101	200.42.255.162	178.187.245.38