139.199.248.156

Basic Info

City: Beijing

Region: Beijing

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd.

Hostname: unknown

Organization: Shenzhen Tencent Computer Systems Company Limited

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Jul 22 12:13:34 askasleikir sshd[139577]: Failed password for invalid user tr from 139.199.248.156 port 39005 ssh2	2020-07-23 01:47:42
attackbotsspam	Jul 20 14:39:34 server1 sshd\[7882\]: Invalid user tom from 139.199.248.156 Jul 20 14:39:34 server1 sshd\[7882\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.156 Jul 20 14:39:36 server1 sshd\[7882\]: Failed password for invalid user tom from 139.199.248.156 port 43739 ssh2 Jul 20 14:42:36 server1 sshd\[8950\]: Invalid user wq from 139.199.248.156 Jul 20 14:42:36 server1 sshd\[8950\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.156 ...	2020-07-21 06:39:53
attack	2020-07-05T16:31:01.895176xentho-1 sshd[878329]: Failed password for invalid user debian from 139.199.248.156 port 34981 ssh2 2020-07-05T16:32:49.038264xentho-1 sshd[878358]: Invalid user charles from 139.199.248.156 port 42707 2020-07-05T16:32:49.045081xentho-1 sshd[878358]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.156 2020-07-05T16:32:49.038264xentho-1 sshd[878358]: Invalid user charles from 139.199.248.156 port 42707 2020-07-05T16:32:51.038544xentho-1 sshd[878358]: Failed password for invalid user charles from 139.199.248.156 port 42707 ssh2 2020-07-05T16:34:51.549769xentho-1 sshd[878372]: Invalid user postgres from 139.199.248.156 port 50437 2020-07-05T16:34:51.555723xentho-1 sshd[878372]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.156 2020-07-05T16:34:51.549769xentho-1 sshd[878372]: Invalid user postgres from 139.199.248.156 port 50437 2020-07-05T16:34:52.962376xenth ...	2020-07-06 04:48:52
attackbotsspam	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-07-04 19:06:34
attack	Jun 14 23:25:00 dev0-dcde-rnet sshd[18785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.156 Jun 14 23:25:01 dev0-dcde-rnet sshd[18785]: Failed password for invalid user vipul from 139.199.248.156 port 46407 ssh2 Jun 14 23:28:13 dev0-dcde-rnet sshd[18796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.156	2020-06-15 06:09:21
attackspambots	$f2bV_matches	2020-06-04 02:33:55
attackspambots	Invalid user hp from 139.199.248.156 port 43654	2020-05-28 15:34:35
attackspam	Invalid user admin from 139.199.248.156 port 51392	2020-05-27 14:34:48
attackspam	Apr 22 18:46:52 php1 sshd\[18106\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.156 user=root Apr 22 18:46:53 php1 sshd\[18106\]: Failed password for root from 139.199.248.156 port 44474 ssh2 Apr 22 18:50:55 php1 sshd\[18495\]: Invalid user testftp from 139.199.248.156 Apr 22 18:50:55 php1 sshd\[18495\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.156 Apr 22 18:50:57 php1 sshd\[18495\]: Failed password for invalid user testftp from 139.199.248.156 port 44840 ssh2	2020-04-23 12:57:15
attackspambots	Apr 22 20:20:27 : SSH login attempts with invalid user	2020-04-23 07:56:27
attackspam	Apr 6 06:32:48 localhost sshd\[26163\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.156 user=root Apr 6 06:32:50 localhost sshd\[26163\]: Failed password for root from 139.199.248.156 port 46411 ssh2 Apr 6 06:37:06 localhost sshd\[26440\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.156 user=root Apr 6 06:37:07 localhost sshd\[26440\]: Failed password for root from 139.199.248.156 port 48057 ssh2 Apr 6 06:41:58 localhost sshd\[26799\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.156 user=root ...	2020-04-06 15:16:27
attack	Mar 25 06:23:49 xeon sshd[19791]: Failed password for invalid user gr from 139.199.248.156 port 55065 ssh2	2020-03-25 14:16:57
attack	Mar 23 19:49:55 sachi sshd\[13100\]: Invalid user siva from 139.199.248.156 Mar 23 19:49:55 sachi sshd\[13100\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.156 Mar 23 19:49:57 sachi sshd\[13100\]: Failed password for invalid user siva from 139.199.248.156 port 33530 ssh2 Mar 23 19:52:54 sachi sshd\[13307\]: Invalid user nagios from 139.199.248.156 Mar 23 19:52:54 sachi sshd\[13307\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.156	2020-03-24 16:17:39
attackspam	Mar 12 17:44:43 vps58358 sshd\[19055\]: Failed password for sys from 139.199.248.156 port 34415 ssh2Mar 12 17:46:51 vps58358 sshd\[19081\]: Failed password for root from 139.199.248.156 port 48306 ssh2Mar 12 17:49:01 vps58358 sshd\[19101\]: Failed password for root from 139.199.248.156 port 33965 ssh2Mar 12 17:51:14 vps58358 sshd\[19138\]: Failed password for root from 139.199.248.156 port 47857 ssh2Mar 12 17:53:18 vps58358 sshd\[19157\]: Invalid user $$w0rd123@. from 139.199.248.156Mar 12 17:53:20 vps58358 sshd\[19157\]: Failed password for invalid user $$w0rd123@. from 139.199.248.156 port 33516 ssh2 ...	2020-03-13 02:41:50
attackspambots	Invalid user jji from 139.199.248.156 port 36208	2020-02-14 09:18:51
attack	Feb 5 19:26:34 firewall sshd[8836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.156 Feb 5 19:26:34 firewall sshd[8836]: Invalid user taylor from 139.199.248.156 Feb 5 19:26:36 firewall sshd[8836]: Failed password for invalid user taylor from 139.199.248.156 port 58545 ssh2 ...	2020-02-06 06:29:33
attackbots	Unauthorized connection attempt detected from IP address 139.199.248.156 to port 2220 [J]	2020-01-16 13:30:47
attack	$f2bV_matches	2020-01-12 00:15:05
attackbotsspam	Dec 31 23:53:05 pornomens sshd\[26170\]: Invalid user kddi from 139.199.248.156 port 36085 Dec 31 23:53:05 pornomens sshd\[26170\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.156 Dec 31 23:53:06 pornomens sshd\[26170\]: Failed password for invalid user kddi from 139.199.248.156 port 36085 ssh2 ...	2020-01-01 07:11:12
attackspambots	Dec 23 07:53:12 eventyay sshd[23170]: Failed password for sync from 139.199.248.156 port 42435 ssh2 Dec 23 07:59:03 eventyay sshd[23340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.156 Dec 23 07:59:05 eventyay sshd[23340]: Failed password for invalid user daemon1234 from 139.199.248.156 port 37182 ssh2 ...	2019-12-23 15:07:50
attack	Dec 10 06:55:35 plusreed sshd[1795]: Invalid user elayne from 139.199.248.156 ...	2019-12-10 20:06:03
attackbotsspam	Automatic report - Banned IP Access	2019-08-23 15:19:55
attackspambots	2019-08-07T00:11:16.655535abusebot-5.cloudsearch.cf sshd\[6263\]: Invalid user adrian140489 from 139.199.248.156 port 57929	2019-08-07 14:51:41
attack	Aug 3 00:27:56 MK-Soft-VM6 sshd\[22976\]: Invalid user ntadmin from 139.199.248.156 port 51687 Aug 3 00:27:56 MK-Soft-VM6 sshd\[22976\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.156 Aug 3 00:27:57 MK-Soft-VM6 sshd\[22976\]: Failed password for invalid user ntadmin from 139.199.248.156 port 51687 ssh2 ...	2019-08-03 08:48:32
attack	Apr 16 17:43:01 ubuntu sshd[8538]: Failed password for invalid user adeniyi from 139.199.248.156 port 43161 ssh2 Apr 16 17:45:14 ubuntu sshd[8872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.156 Apr 16 17:45:16 ubuntu sshd[8872]: Failed password for invalid user hosts from 139.199.248.156 port 54076 ssh2 Apr 16 17:47:29 ubuntu sshd[8910]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.156	2019-08-01 00:18:47
attack	Jul 14 19:33:29 giegler sshd[16567]: Invalid user titan from 139.199.248.156 port 35525	2019-07-15 01:44:07
attack	Jul 14 09:54:32 giegler sshd[1140]: Invalid user jun from 139.199.248.156 port 51410	2019-07-14 16:02:51

Comments on same subnet:

IP	Type	Details	Datetime
139.199.248.199	attackbots	Oct 13 14:50:57 abendstille sshd\[20155\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 user=root Oct 13 14:51:00 abendstille sshd\[20155\]: Failed password for root from 139.199.248.199 port 10883 ssh2 Oct 13 14:54:34 abendstille sshd\[24210\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 user=root Oct 13 14:54:36 abendstille sshd\[24210\]: Failed password for root from 139.199.248.199 port 10883 ssh2 Oct 13 14:58:19 abendstille sshd\[28604\]: Invalid user kjayroe from 139.199.248.199 Oct 13 14:58:19 abendstille sshd\[28604\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 ...	2020-10-13 22:05:33
139.199.248.199	attack	Invalid user stef from 139.199.248.199 port 59134	2020-10-13 13:31:11
139.199.248.199	attack	Oct 13 00:06:01 OPSO sshd\[22015\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 user=root Oct 13 00:06:04 OPSO sshd\[22015\]: Failed password for root from 139.199.248.199 port 36686 ssh2 Oct 13 00:07:55 OPSO sshd\[22416\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 user=root Oct 13 00:07:57 OPSO sshd\[22416\]: Failed password for root from 139.199.248.199 port 36686 ssh2 Oct 13 00:09:53 OPSO sshd\[22793\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 user=root	2020-10-13 06:15:49
139.199.248.199	attack	Oct 9 21:07:24 icinga sshd[26025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 Oct 9 21:07:26 icinga sshd[26025]: Failed password for invalid user info from 139.199.248.199 port 41399 ssh2 Oct 9 21:18:38 icinga sshd[43665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 ...	2020-10-10 05:35:53
139.199.248.199	attack	SSH invalid-user multiple login try	2020-10-09 21:40:33
139.199.248.199	attackbots	2020-10-09T08:13:01.269383lavrinenko.info sshd[5012]: Failed password for root from 139.199.248.199 port 11669 ssh2 2020-10-09T08:15:19.592081lavrinenko.info sshd[5161]: Invalid user admin from 139.199.248.199 port 11669 2020-10-09T08:15:19.603000lavrinenko.info sshd[5161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 2020-10-09T08:15:19.592081lavrinenko.info sshd[5161]: Invalid user admin from 139.199.248.199 port 11669 2020-10-09T08:15:20.846107lavrinenko.info sshd[5161]: Failed password for invalid user admin from 139.199.248.199 port 11669 ssh2 ...	2020-10-09 13:30:02
139.199.248.57	attackspambots	Invalid user user10 from 139.199.248.57 port 57380	2020-09-09 21:30:22
139.199.248.57	attack	2020-09-09T01:22:02.1726641495-001 sshd[61593]: Invalid user ftpuser from 139.199.248.57 port 55488 2020-09-09T01:22:02.1759241495-001 sshd[61593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.57 2020-09-09T01:22:02.1726641495-001 sshd[61593]: Invalid user ftpuser from 139.199.248.57 port 55488 2020-09-09T01:22:03.9567861495-001 sshd[61593]: Failed password for invalid user ftpuser from 139.199.248.57 port 55488 ssh2 2020-09-09T01:24:33.8676091495-001 sshd[61709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.57 user=root 2020-09-09T01:24:35.3778291495-001 sshd[61709]: Failed password for root from 139.199.248.57 port 47838 ssh2 ...	2020-09-09 15:21:22
139.199.248.57	attackbots	2020-09-09T00:24:43.414395hostname sshd[70539]: Failed password for root from 139.199.248.57 port 34846 ssh2 ...	2020-09-09 07:30:35
139.199.248.199	attackbotsspam	SSH Bruteforce attack	2020-09-04 20:32:56
139.199.248.199	attackspam	Sep 4 01:59:26 mavik sshd[12489]: Failed password for invalid user testtest from 139.199.248.199 port 25660 ssh2 Sep 4 02:02:50 mavik sshd[12732]: Invalid user marcia from 139.199.248.199 Sep 4 02:02:50 mavik sshd[12732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 Sep 4 02:02:52 mavik sshd[12732]: Failed password for invalid user marcia from 139.199.248.199 port 18322 ssh2 Sep 4 02:06:12 mavik sshd[12972]: Invalid user cst from 139.199.248.199 ...	2020-09-04 12:12:07
139.199.248.199	attack	Sep 3 21:04:50 plg sshd[10150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 Sep 3 21:04:52 plg sshd[10150]: Failed password for invalid user ali from 139.199.248.199 port 19447 ssh2 Sep 3 21:05:46 plg sshd[10168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 Sep 3 21:05:48 plg sshd[10168]: Failed password for invalid user ajay from 139.199.248.199 port 52262 ssh2 Sep 3 21:06:49 plg sshd[10176]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 user=root Sep 3 21:06:51 plg sshd[10176]: Failed password for invalid user root from 139.199.248.199 port 63075 ssh2 ...	2020-09-04 04:43:56
139.199.248.199	attackspam	2020-08-18T03:55:23.499891randservbullet-proofcloud-66.localdomain sshd[31656]: Invalid user bodhi from 139.199.248.199 port 42154 2020-08-18T03:55:23.503882randservbullet-proofcloud-66.localdomain sshd[31656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.199 2020-08-18T03:55:23.499891randservbullet-proofcloud-66.localdomain sshd[31656]: Invalid user bodhi from 139.199.248.199 port 42154 2020-08-18T03:55:25.819504randservbullet-proofcloud-66.localdomain sshd[31656]: Failed password for invalid user bodhi from 139.199.248.199 port 42154 ssh2 ...	2020-08-18 14:06:53
139.199.248.199	attackspam	Aug 11 12:10:48 *** sshd[22499]: User root from 139.199.248.199 not allowed because not listed in AllowUsers	2020-08-11 23:33:07
139.199.248.199	attack	SSH Brute Force	2020-08-05 05:53:09

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.248.156
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30390
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.248.156.		IN	A

;; AUTHORITY SECTION:
.			1305	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040701 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 08 11:11:14 +08 2019
;; MSG SIZE  rcvd: 119

Host info

Host 156.248.199.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 156.248.199.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
77.232.128.87	attackbotsspam	Invalid user enrico from 77.232.128.87 port 38403	2019-10-27 03:53:44
182.73.245.70	attackbotsspam	Invalid user dy from 182.73.245.70 port 58252	2019-10-27 03:36:29
103.43.65.11	attackbotsspam	Invalid user supervisor from 103.43.65.11 port 64520	2019-10-27 03:21:37
197.46.254.54	attackspambots	Invalid user admin from 197.46.254.54 port 54625	2019-10-27 03:32:27
46.191.234.61	attackspambots	Invalid user aleja from 46.191.234.61 port 50572	2019-10-27 03:26:22
109.194.54.126	attackbots	Invalid user myshake from 109.194.54.126 port 39586	2019-10-27 03:17:10
106.75.174.87	attack	Oct 26 19:31:17 amit sshd\[22352\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.174.87 user=root Oct 26 19:31:19 amit sshd\[22352\]: Failed password for root from 106.75.174.87 port 39400 ssh2 Oct 26 19:36:02 amit sshd\[12701\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.174.87 user=root ...	2019-10-27 03:17:55
106.12.34.226	attackbots	Invalid user admin from 106.12.34.226 port 33486	2019-10-27 03:19:59
59.145.221.103	attack	Oct 26 19:45:38 hcbbdb sshd\[10840\]: Invalid user watson from 59.145.221.103 Oct 26 19:45:38 hcbbdb sshd\[10840\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.145.221.103 Oct 26 19:45:40 hcbbdb sshd\[10840\]: Failed password for invalid user watson from 59.145.221.103 port 55003 ssh2 Oct 26 19:50:28 hcbbdb sshd\[11480\]: Invalid user 123456456 from 59.145.221.103 Oct 26 19:50:29 hcbbdb sshd\[11480\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.145.221.103	2019-10-27 03:54:43
103.66.16.18	attack	Invalid user kuei from 103.66.16.18 port 50462	2019-10-27 03:50:45
62.173.149.58	attack	Oct 26 16:33:20 thevastnessof sshd[9466]: Failed password for root from 62.173.149.58 port 48900 ssh2 ...	2019-10-27 03:54:29
106.13.23.105	attackspam	Invalid user support from 106.13.23.105 port 55012	2019-10-27 03:49:18
121.227.152.235	attackspam	SSH/22 MH Probe, BF, Hack -	2019-10-27 03:47:31
106.13.48.157	attackbotsspam	Invalid user wu from 106.13.48.157 port 53504	2019-10-27 03:18:47
123.30.154.184	attack	Invalid user applmgr from 123.30.154.184 port 55428	2019-10-27 03:47:10

Recently Reported IPs

27.34.74.70	139.59.225.138	154.117.131.50	46.185.222.253
46.99.178.133	113.123.0.193	42.227.99.226	81.214.50.30
200.27.189.193	178.46.208.213	178.26.135.28	145.239.81.19
24.217.98.117	176.210.132.102	156.195.118.112	14.40.33.86
190.131.220.130	201.160.134.119	181.52.249.26	116.72.24.134