139.199.248.123

Basic Info

City: Beijing

Region: Beijing

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: Shenzhen Tencent Computer Systems Company Limited

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.199.248.199	attackbots	Oct 13 14:50:57 abendstille sshd\[20155\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 user=root Oct 13 14:51:00 abendstille sshd\[20155\]: Failed password for root from 139.199.248.199 port 10883 ssh2 Oct 13 14:54:34 abendstille sshd\[24210\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 user=root Oct 13 14:54:36 abendstille sshd\[24210\]: Failed password for root from 139.199.248.199 port 10883 ssh2 Oct 13 14:58:19 abendstille sshd\[28604\]: Invalid user kjayroe from 139.199.248.199 Oct 13 14:58:19 abendstille sshd\[28604\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 ...	2020-10-13 22:05:33
139.199.248.199	attack	Invalid user stef from 139.199.248.199 port 59134	2020-10-13 13:31:11
139.199.248.199	attack	Oct 13 00:06:01 OPSO sshd\[22015\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 user=root Oct 13 00:06:04 OPSO sshd\[22015\]: Failed password for root from 139.199.248.199 port 36686 ssh2 Oct 13 00:07:55 OPSO sshd\[22416\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 user=root Oct 13 00:07:57 OPSO sshd\[22416\]: Failed password for root from 139.199.248.199 port 36686 ssh2 Oct 13 00:09:53 OPSO sshd\[22793\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 user=root	2020-10-13 06:15:49
139.199.248.199	attack	Oct 9 21:07:24 icinga sshd[26025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 Oct 9 21:07:26 icinga sshd[26025]: Failed password for invalid user info from 139.199.248.199 port 41399 ssh2 Oct 9 21:18:38 icinga sshd[43665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 ...	2020-10-10 05:35:53
139.199.248.199	attack	SSH invalid-user multiple login try	2020-10-09 21:40:33
139.199.248.199	attackbots	2020-10-09T08:13:01.269383lavrinenko.info sshd[5012]: Failed password for root from 139.199.248.199 port 11669 ssh2 2020-10-09T08:15:19.592081lavrinenko.info sshd[5161]: Invalid user admin from 139.199.248.199 port 11669 2020-10-09T08:15:19.603000lavrinenko.info sshd[5161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 2020-10-09T08:15:19.592081lavrinenko.info sshd[5161]: Invalid user admin from 139.199.248.199 port 11669 2020-10-09T08:15:20.846107lavrinenko.info sshd[5161]: Failed password for invalid user admin from 139.199.248.199 port 11669 ssh2 ...	2020-10-09 13:30:02
139.199.248.57	attackspambots	Invalid user user10 from 139.199.248.57 port 57380	2020-09-09 21:30:22
139.199.248.57	attack	2020-09-09T01:22:02.1726641495-001 sshd[61593]: Invalid user ftpuser from 139.199.248.57 port 55488 2020-09-09T01:22:02.1759241495-001 sshd[61593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.57 2020-09-09T01:22:02.1726641495-001 sshd[61593]: Invalid user ftpuser from 139.199.248.57 port 55488 2020-09-09T01:22:03.9567861495-001 sshd[61593]: Failed password for invalid user ftpuser from 139.199.248.57 port 55488 ssh2 2020-09-09T01:24:33.8676091495-001 sshd[61709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.57 user=root 2020-09-09T01:24:35.3778291495-001 sshd[61709]: Failed password for root from 139.199.248.57 port 47838 ssh2 ...	2020-09-09 15:21:22
139.199.248.57	attackbots	2020-09-09T00:24:43.414395hostname sshd[70539]: Failed password for root from 139.199.248.57 port 34846 ssh2 ...	2020-09-09 07:30:35
139.199.248.199	attackbotsspam	SSH Bruteforce attack	2020-09-04 20:32:56
139.199.248.199	attackspam	Sep 4 01:59:26 mavik sshd[12489]: Failed password for invalid user testtest from 139.199.248.199 port 25660 ssh2 Sep 4 02:02:50 mavik sshd[12732]: Invalid user marcia from 139.199.248.199 Sep 4 02:02:50 mavik sshd[12732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 Sep 4 02:02:52 mavik sshd[12732]: Failed password for invalid user marcia from 139.199.248.199 port 18322 ssh2 Sep 4 02:06:12 mavik sshd[12972]: Invalid user cst from 139.199.248.199 ...	2020-09-04 12:12:07
139.199.248.199	attack	Sep 3 21:04:50 plg sshd[10150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 Sep 3 21:04:52 plg sshd[10150]: Failed password for invalid user ali from 139.199.248.199 port 19447 ssh2 Sep 3 21:05:46 plg sshd[10168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 Sep 3 21:05:48 plg sshd[10168]: Failed password for invalid user ajay from 139.199.248.199 port 52262 ssh2 Sep 3 21:06:49 plg sshd[10176]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 user=root Sep 3 21:06:51 plg sshd[10176]: Failed password for invalid user root from 139.199.248.199 port 63075 ssh2 ...	2020-09-04 04:43:56
139.199.248.199	attackspam	2020-08-18T03:55:23.499891randservbullet-proofcloud-66.localdomain sshd[31656]: Invalid user bodhi from 139.199.248.199 port 42154 2020-08-18T03:55:23.503882randservbullet-proofcloud-66.localdomain sshd[31656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 2020-08-18T03:55:23.499891randservbullet-proofcloud-66.localdomain sshd[31656]: Invalid user bodhi from 139.199.248.199 port 42154 2020-08-18T03:55:25.819504randservbullet-proofcloud-66.localdomain sshd[31656]: Failed password for invalid user bodhi from 139.199.248.199 port 42154 ssh2 ...	2020-08-18 14:06:53
139.199.248.199	attackspam	Aug 11 12:10:48 *** sshd[22499]: User root from 139.199.248.199 not allowed because not listed in AllowUsers	2020-08-11 23:33:07
139.199.248.199	attack	SSH Brute Force	2020-08-05 05:53:09

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.248.123
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41331
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.248.123.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061300 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 13 16:28:40 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 123.248.199.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 123.248.199.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
129.226.68.217	attack	Invalid user fannin from 129.226.68.217 port 53810	2019-11-28 01:50:55
196.52.43.109	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-28 02:00:18
201.24.185.199	attack	Nov 27 10:30:27 plusreed sshd[14867]: Invalid user ph from 201.24.185.199 ...	2019-11-28 01:44:23
194.182.86.126	attackbotsspam	Nov 27 19:10:42 mout sshd[13151]: Invalid user Jeanine@123 from 194.182.86.126 port 47738	2019-11-28 02:19:34
119.28.222.88	attackbotsspam	Nov 27 18:37:28 OPSO sshd\[22276\]: Invalid user poffel from 119.28.222.88 port 48590 Nov 27 18:37:28 OPSO sshd\[22276\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.222.88 Nov 27 18:37:30 OPSO sshd\[22276\]: Failed password for invalid user poffel from 119.28.222.88 port 48590 ssh2 Nov 27 18:44:39 OPSO sshd\[23331\]: Invalid user gggggggggg from 119.28.222.88 port 48376 Nov 27 18:44:39 OPSO sshd\[23331\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.222.88	2019-11-28 02:03:25
36.230.17.117	attack	UTC: 2019-11-26 port: 26/tcp	2019-11-28 02:16:08
196.52.43.111	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-28 01:54:46
192.236.233.17	attack	Nov 27 15:56:38 mxgate1 postfix/postscreen[28482]: CONNECT from [192.236.233.17]:43451 to [176.31.12.44]:25 Nov 27 15:56:38 mxgate1 postfix/dnsblog[28485]: addr 192.236.233.17 listed by domain zen.spamhaus.org as 127.0.0.3 Nov 27 15:56:38 mxgate1 postfix/postscreen[28482]: PREGREET 28 after 0.1 from [192.236.233.17]:43451: EHLO 02d70409.laserkey.icu Nov 27 15:56:38 mxgate1 postfix/postscreen[28482]: DNSBL rank 2 for [192.236.233.17]:43451 Nov x@x Nov 27 15:56:39 mxgate1 postfix/postscreen[28482]: DISCONNECT [192.236.233.17]:43451 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=192.236.233.17	2019-11-28 01:58:20
92.188.124.228	attackbots	Nov 27 17:14:49 localhost sshd\[48816\]: Invalid user peh from 92.188.124.228 port 46020 Nov 27 17:14:49 localhost sshd\[48816\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.188.124.228 Nov 27 17:14:52 localhost sshd\[48816\]: Failed password for invalid user peh from 92.188.124.228 port 46020 ssh2 Nov 27 17:17:49 localhost sshd\[48938\]: Invalid user alena from 92.188.124.228 port 51572 Nov 27 17:17:49 localhost sshd\[48938\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.188.124.228 ...	2019-11-28 01:46:07
218.238.86.24	attackbotsspam	UTC: 2019-11-26 port: 123/udp	2019-11-28 01:59:24
218.92.0.135	attack	Nov 27 18:50:17 nextcloud sshd\[31305\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.135 user=root Nov 27 18:50:19 nextcloud sshd\[31305\]: Failed password for root from 218.92.0.135 port 11039 ssh2 Nov 27 18:50:28 nextcloud sshd\[31305\]: Failed password for root from 218.92.0.135 port 11039 ssh2 ...	2019-11-28 01:52:52
222.87.147.62	attackspambots	Unauthorized SSH login attempts	2019-11-28 02:06:40
49.88.112.116	attackbotsspam	Nov 27 18:29:03 localhost sshd\[11620\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.116 user=root Nov 27 18:29:06 localhost sshd\[11620\]: Failed password for root from 49.88.112.116 port 10519 ssh2 Nov 27 18:29:07 localhost sshd\[11620\]: Failed password for root from 49.88.112.116 port 10519 ssh2	2019-11-28 01:41:13
203.195.159.186	attack	Lines containing failures of 203.195.159.186 Nov 27 15:35:40 shared10 sshd[1598]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.159.186 user=r.r Nov 27 15:35:42 shared10 sshd[1598]: Failed password for r.r from 203.195.159.186 port 58503 ssh2 Nov 27 15:35:43 shared10 sshd[1598]: Received disconnect from 203.195.159.186 port 58503:11: Bye Bye [preauth] Nov 27 15:35:43 shared10 sshd[1598]: Disconnected from authenticating user r.r 203.195.159.186 port 58503 [preauth] Nov 27 15:41:55 shared10 sshd[3407]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.159.186 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=203.195.159.186	2019-11-28 02:14:10
159.65.12.204	attackbots	2019-11-27T16:58:48.669516abusebot-3.cloudsearch.cf sshd\[31564\]: Invalid user alstergren from 159.65.12.204 port 59826	2019-11-28 01:47:48

Recently Reported IPs

94.89.92.15	189.112.182.244	128.8.108.225	188.219.9.104
193.180.210.9	110.101.135.147	116.53.56.13	31.28.161.20
151.61.62.173	119.132.70.142	91.247.199.148	218.5.135.88
37.54.189.255	136.121.156.72	62.99.69.71	96.235.50.66
153.167.152.187	159.65.132.77	183.166.99.3	126.90.164.68