139.199.221.240

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Aug 29 11:27:55 * sshd[22827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.221.240 Aug 29 11:27:56 * sshd[22827]: Failed password for invalid user bilder from 139.199.221.240 port 48422 ssh2	2019-08-29 19:31:01
attackspambots	Aug 21 09:42:03 root sshd[30285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.221.240 Aug 21 09:42:05 root sshd[30285]: Failed password for invalid user cvs from 139.199.221.240 port 50572 ssh2 Aug 21 09:45:31 root sshd[30307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.221.240 ...	2019-08-21 16:28:49
attack	Aug 16 06:21:38 MK-Soft-VM7 sshd\[9651\]: Invalid user agnes from 139.199.221.240 port 34182 Aug 16 06:21:38 MK-Soft-VM7 sshd\[9651\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.221.240 Aug 16 06:21:40 MK-Soft-VM7 sshd\[9651\]: Failed password for invalid user agnes from 139.199.221.240 port 34182 ssh2 ...	2019-08-16 20:26:39
attackbotsspam	Aug 13 00:17:13 microserver sshd[20544]: Invalid user bot1 from 139.199.221.240 port 46570 Aug 13 00:17:13 microserver sshd[20544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.221.240 Aug 13 00:17:15 microserver sshd[20544]: Failed password for invalid user bot1 from 139.199.221.240 port 46570 ssh2 Aug 13 00:22:23 microserver sshd[21266]: Invalid user bi from 139.199.221.240 port 36272 Aug 13 00:22:23 microserver sshd[21266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.221.240 Aug 13 00:32:38 microserver sshd[22737]: Invalid user ts from 139.199.221.240 port 43890 Aug 13 00:32:38 microserver sshd[22737]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.221.240 Aug 13 00:32:40 microserver sshd[22737]: Failed password for invalid user ts from 139.199.221.240 port 43890 ssh2 Aug 13 00:37:49 microserver sshd[23431]: Invalid user sun from 139.199.221.240 port 33596	2019-08-13 06:58:50
attackspambots	Jul 27 01:11:12 SilenceServices sshd[31237]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.221.240 Jul 27 01:11:14 SilenceServices sshd[31237]: Failed password for invalid user 123123123qaz from 139.199.221.240 port 45410 ssh2 Jul 27 01:13:38 SilenceServices sshd[1427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.221.240	2019-07-27 07:53:39
attack	Jul 10 21:36:37 herz-der-gamer sshd[10441]: Failed password for invalid user admin from 139.199.221.240 port 36414 ssh2 ...	2019-07-11 06:08:47
attack	Jul 2 16:11:16 cac1d2 sshd\[24647\]: Invalid user chris from 139.199.221.240 port 34174 Jul 2 16:11:16 cac1d2 sshd\[24647\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.221.240 Jul 2 16:11:18 cac1d2 sshd\[24647\]: Failed password for invalid user chris from 139.199.221.240 port 34174 ssh2 ...	2019-07-03 11:33:44

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.221.240
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62269
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.221.240.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070201 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 03 11:33:36 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 240.221.199.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 240.221.199.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
142.93.240.62	spamattack	PHISHING AND SPAM ATTACK FROM "Casino For You - newsletter@app.ksinergy.biz -" : SUBJECT "Join today and receive an amazing welcome bonus " : RECEIVED "from mail-02.ksinergy.biz ([142.93.240.62]:57421) " : DATE/TIMESENT "Tue, 23 Feb 2021 01:27:07 "	2021-02-23 04:32:24
35.243.23.172	spambotsattackproxynormal	He hack my account on PlayStation	2021-03-01 11:01:42
35.243.23.172	spambotsattackproxynormal	He hack my account on PlayStation	2021-03-01 11:01:18
115.241.1.66	botsattack	Feb 4 00:14:25 h2909433 sshd[13512]: Invalid user ej from 115.241.1.66 port 57822 Feb 4 00:14:25 sshd[13512]: pam_unix(sshd:auth): check pass; user unknown Feb 4 00:14:25 sshd[13512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.241.1.66 Feb 4 00:14:27 sshd[13512]: Failed password for invalid user ej from 115.241.1.66 port 57822 ssh2	2021-02-04 07:21:00
154.28.188.156	normal	... hat auch 2 x versucht auf das admin-Konto zuzugreifen	2021-02-10 05:04:50
185.63.253.200	normal	IP Normal	2021-02-04 00:52:22
185.63.253.223	spambotsattackproxynormal	153.63.253.200	2021-03-02 00:00:33
23.247.75.67	spamattack	PHISHING AND SPAM ATTACK FROM "EBook Creator - DigitalBusinessTODAY@lepton.live -" : SUBJECT "[NEW] Ebook Creator Software (2018)! " : RECEIVED "from tayman.verapitan.com ([23.247.75.67]:56703 helo=romeo.lepton.live) " : DATE/TIMESENT "Wed, 24 Feb 2021 04:33:49 "	2021-02-24 04:14:25
84.45.228.196	attack	postfix/smtpd[---]: connect from 84-45-228-196.static.enta.net[84.45.228.196] Feb 3 04:15:58 h1234 postfix/smtpd[1234]: NOQUEUE: reject: RCPT from 84-45-228-196.static.enta.net[84.45.228.196]: 554 5.7.1 : Relay access denied; from= to= proto=ESMTP helo= Feb 3 04:15:58 h1234 postfix/smtpd[123]: disconnect from 84-45-228-196.static.enta.net[84.45.228.196] ehlo=1 mail=1 rcpt=0/1 rset=1 quit=1 commands=4/5	2021-02-04 06:24:00
161.35.111.0	spamattack	PHISHING AND SPAM ATTACK FROM "Casino For You " : SUBJECT "Join today and receive an amazing welcome bonus" : RECEIVED "from mail.elmyar.co.in ([161.35.111.0]:52885) " : DATE/TIMESENT "Sat, 20 Feb 2021 09:07:50 "	2021-02-21 07:52:55
23.247.75.102	spamattack	PHISHING AND SPAM ATTACK FROM "Wireless Earbuds - WirelessEarbuds@hellfire.cyou -" : SUBJECT "New Apple H1 headphone chip delivers faster wireless connection to your devices " : RECEIVED "from kvotes.rotonat.com ([23.247.75.102]:60098 helo=gull.hellfire.cyou) " : DATE/TIMESENT "Sat, 27 Feb 2021 23:52:46 " IP ADDRESS "NetRange: 23.247.75.0 - 23.247.75.255 Customer: Andrew Horton (C04842071)"	2021-02-28 05:48:44
23.247.75.104	spamattack	PHISHING AND SPAM ATTACK FROM "Speechelo - Speechelo@speechgrow.cyou -" : SUBJECT "HEAR THIS: Create ‘Human’ Voice-Overs " : RECEIVED "rom prosos.royaguage.com ([23.247.75.104]:37489 helo=papa.speechgrow.cyou) " : DATE/TIMESENT "Tue, 23 Feb 2021 01:07:20 "	2021-02-23 04:28:29
185.252.103.217	spambotsattackproxynormal	حسنا نعم	2021-02-18 05:03:25
91.220.206.28	spambotsattackproxy	http://91.220.206.28/ Взламывает страницы в контакте!!!! ПРИМИТЕ МЕРЫ ПО ПРИВЛЕЧЕНИЮ К ответственности!!!	2021-02-01 07:07:10
78.99.34.59	normal	its a normal IP	2021-02-08 05:40:26

Recently Reported IPs

153.118.239.196	85.221.159.150	221.202.253.209	191.102.76.74
95.18.116.131	37.49.230.10	36.85.208.158	27.72.78.220
95.190.4.224	203.156.183.241	180.242.27.191	223.18.179.58
94.182.191.23	202.40.178.42	187.162.246.143	116.104.249.172
81.22.45.114	67.165.155.238	117.89.173.33	178.46.167.102