139.199.25.110

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: V6Yun (Beijing) Network Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	2020-08-10T05:46:12.614855centos sshd[18241]: Failed password for root from 139.199.25.110 port 45914 ssh2 2020-08-10T05:49:40.592654centos sshd[18845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.25.110 user=root 2020-08-10T05:49:42.762666centos sshd[18845]: Failed password for root from 139.199.25.110 port 51198 ssh2 ...	2020-08-10 18:12:33
attackspam	Aug 8 01:44:50 Host-KLAX-C sshd[2094]: User root from 139.199.25.110 not allowed because not listed in AllowUsers ...	2020-08-08 18:39:03
attack	Jun 29 22:15:42 home sshd[25908]: Failed password for root from 139.199.25.110 port 38232 ssh2 Jun 29 22:22:45 home sshd[26550]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.25.110 Jun 29 22:22:46 home sshd[26550]: Failed password for invalid user sun from 139.199.25.110 port 56798 ssh2 ...	2020-06-30 04:29:03
attack	$f2bV_matches	2020-06-29 13:11:13
attackbots	SSH Brute Force	2020-05-21 23:24:07
attackspam	202. On May 18 2020 experienced a Brute Force SSH login attempt -> 1 unique times by 139.199.25.110.	2020-05-20 16:47:24
attackspam	May 8 10:54:31 itv-usvr-02 sshd[29748]: Invalid user andes from 139.199.25.110 port 47928 May 8 10:54:31 itv-usvr-02 sshd[29748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.25.110 May 8 10:54:31 itv-usvr-02 sshd[29748]: Invalid user andes from 139.199.25.110 port 47928 May 8 10:54:33 itv-usvr-02 sshd[29748]: Failed password for invalid user andes from 139.199.25.110 port 47928 ssh2 May 8 10:57:48 itv-usvr-02 sshd[29832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.25.110 user=root May 8 10:57:50 itv-usvr-02 sshd[29832]: Failed password for root from 139.199.25.110 port 33568 ssh2	2020-05-08 13:02:41
attackspambots	Apr 26 20:02:08 mail sshd[8678]: Failed password for root from 139.199.25.110 port 37770 ssh2 Apr 26 20:05:56 mail sshd[9549]: Failed password for root from 139.199.25.110 port 38756 ssh2 Apr 26 20:09:45 mail sshd[10556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.25.110	2020-04-27 03:42:01
attackbots	...	2020-04-22 02:20:34
attack	$f2bV_matches	2020-04-20 20:21:31
attackspambots	SSH Authentication Attempts Exceeded	2020-04-06 06:16:14
attack	Mar 24 08:09:33 sshd[23171]: Failed password for invalid user ba from 139.199.25.110 port 59968 ssh2	2020-03-24 16:25:06
attackspambots	fail2ban -- 139.199.25.110 ...	2020-03-20 05:22:40
attackbots	fail2ban	2020-03-04 01:10:34
attackbots	Jan 1 17:31:04 server sshd\[23036\]: Invalid user yoyo from 139.199.25.110 Jan 1 17:31:04 server sshd\[23036\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.25.110 Jan 1 17:31:07 server sshd\[23036\]: Failed password for invalid user yoyo from 139.199.25.110 port 35564 ssh2 Jan 1 17:45:25 server sshd\[25745\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.25.110 user=root Jan 1 17:45:27 server sshd\[25745\]: Failed password for root from 139.199.25.110 port 43716 ssh2 ...	2020-01-02 04:07:48
attack	Dec 24 05:51:58 sd-53420 sshd\[463\]: Invalid user jelem from 139.199.25.110 Dec 24 05:51:58 sd-53420 sshd\[463\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.25.110 Dec 24 05:52:00 sd-53420 sshd\[463\]: Failed password for invalid user jelem from 139.199.25.110 port 32928 ssh2 Dec 24 05:54:25 sd-53420 sshd\[1425\]: Invalid user asterisk from 139.199.25.110 Dec 24 05:54:25 sd-53420 sshd\[1425\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.25.110 ...	2019-12-24 13:38:02
attack	Dec 15 09:31:51 MainVPS sshd[21220]: Invalid user admin from 139.199.25.110 port 42896 Dec 15 09:31:51 MainVPS sshd[21220]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.25.110 Dec 15 09:31:51 MainVPS sshd[21220]: Invalid user admin from 139.199.25.110 port 42896 Dec 15 09:31:53 MainVPS sshd[21220]: Failed password for invalid user admin from 139.199.25.110 port 42896 ssh2 Dec 15 09:38:11 MainVPS sshd[304]: Invalid user ftp from 139.199.25.110 port 34716 ...	2019-12-15 17:54:34
attack	Dec 13 22:51:29 master sshd[31338]: Failed password for root from 139.199.25.110 port 48996 ssh2	2019-12-14 05:03:19
attackbots	ssh failed login	2019-11-22 02:03:06
attackbots	SSH authentication failure x 6 reported by Fail2Ban ...	2019-11-15 22:14:41
attack	Nov 15 00:09:57 ny01 sshd[18827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.25.110 Nov 15 00:09:59 ny01 sshd[18827]: Failed password for invalid user wwwrun from 139.199.25.110 port 53348 ssh2 Nov 15 00:14:55 ny01 sshd[19683]: Failed password for backup from 139.199.25.110 port 60966 ssh2	2019-11-15 13:30:30
attackspambots	Nov 10 09:06:30 server sshd\[19317\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.25.110 user=root Nov 10 09:06:32 server sshd\[19317\]: Failed password for root from 139.199.25.110 port 48566 ssh2 Nov 10 09:22:52 server sshd\[23356\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.25.110 user=root Nov 10 09:22:53 server sshd\[23356\]: Failed password for root from 139.199.25.110 port 50188 ssh2 Nov 10 09:29:29 server sshd\[25032\]: Invalid user hal from 139.199.25.110 Nov 10 09:29:29 server sshd\[25032\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.25.110 ...	2019-11-10 17:09:22
attackspambots	Aug 19 20:58:23 * sshd[15563]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.25.110 Aug 19 20:58:25 * sshd[15563]: Failed password for invalid user user from 139.199.25.110 port 51080 ssh2	2019-08-20 03:50:17
attackspambots	Jul 30 07:46:58 vibhu-HP-Z238-Microtower-Workstation sshd\[8466\]: Invalid user losts from 139.199.25.110 Jul 30 07:46:58 vibhu-HP-Z238-Microtower-Workstation sshd\[8466\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.25.110 Jul 30 07:47:01 vibhu-HP-Z238-Microtower-Workstation sshd\[8466\]: Failed password for invalid user losts from 139.199.25.110 port 51028 ssh2 Jul 30 07:49:17 vibhu-HP-Z238-Microtower-Workstation sshd\[8512\]: Invalid user nico from 139.199.25.110 Jul 30 07:49:17 vibhu-HP-Z238-Microtower-Workstation sshd\[8512\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.25.110 ...	2019-07-30 17:52:34
attackspambots	[Aegis] @ 2019-07-26 20:46:03 0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-07-27 08:18:05

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.25.110
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56440
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.25.110.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072602 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jul 27 08:17:59 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 110.25.199.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 110.25.199.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
152.168.224.115	attackbots	Jul 19 19:43:54 ArkNodeAT sshd\[16094\]: Invalid user minecraft from 152.168.224.115 Jul 19 19:43:54 ArkNodeAT sshd\[16094\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.168.224.115 Jul 19 19:43:57 ArkNodeAT sshd\[16094\]: Failed password for invalid user minecraft from 152.168.224.115 port 42860 ssh2	2019-07-20 05:04:05
199.195.252.213	attackbotsspam	2019-07-19T20:53:33.517626abusebot-2.cloudsearch.cf sshd\[10775\]: Invalid user cloud from 199.195.252.213 port 33438	2019-07-20 05:23:34
189.7.129.60	attackbots	Jul 19 15:45:21 Tower sshd[34347]: Connection from 189.7.129.60 port 55943 on 192.168.10.220 port 22 Jul 19 15:45:23 Tower sshd[34347]: Invalid user nina from 189.7.129.60 port 55943 Jul 19 15:45:23 Tower sshd[34347]: error: Could not get shadow information for NOUSER Jul 19 15:45:23 Tower sshd[34347]: Failed password for invalid user nina from 189.7.129.60 port 55943 ssh2 Jul 19 15:45:23 Tower sshd[34347]: Received disconnect from 189.7.129.60 port 55943:11: Bye Bye [preauth] Jul 19 15:45:23 Tower sshd[34347]: Disconnected from invalid user nina 189.7.129.60 port 55943 [preauth]	2019-07-20 04:41:50
190.14.232.181	attackbots	445/tcp [2019-07-19]1pkt	2019-07-20 05:12:16
54.37.158.40	attackspam	Jul 19 22:50:15 dev0-dcde-rnet sshd[797]: Failed password for root from 54.37.158.40 port 34730 ssh2 Jul 19 22:54:47 dev0-dcde-rnet sshd[802]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.158.40 Jul 19 22:54:49 dev0-dcde-rnet sshd[802]: Failed password for invalid user bao from 54.37.158.40 port 33647 ssh2	2019-07-20 05:05:22
89.235.227.230	attackspambots	DATE:2019-07-19_18:41:32, IP:89.235.227.230, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-07-20 05:09:41
88.231.148.232	attackspambots	Automatic report - Port Scan Attack	2019-07-20 05:20:33
148.251.31.29	attackbotsspam	Brute force RDP, port 3389	2019-07-20 05:14:29
175.142.59.85	attackspam	Jul 19 23:07:13 v22018076622670303 sshd\[4086\]: Invalid user brian from 175.142.59.85 port 33368 Jul 19 23:07:13 v22018076622670303 sshd\[4086\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.142.59.85 Jul 19 23:07:15 v22018076622670303 sshd\[4086\]: Failed password for invalid user brian from 175.142.59.85 port 33368 ssh2 ...	2019-07-20 05:07:29
92.49.160.74	attackbotsspam	445/tcp [2019-07-19]1pkt	2019-07-20 05:16:10
189.51.203.137	attackbots	failed_logins	2019-07-20 04:43:55
142.93.141.59	attackspambots	Jul 19 23:07:04 tux-35-217 sshd\[461\]: Invalid user apache2 from 142.93.141.59 port 46528 Jul 19 23:07:04 tux-35-217 sshd\[461\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.141.59 Jul 19 23:07:06 tux-35-217 sshd\[461\]: Failed password for invalid user apache2 from 142.93.141.59 port 46528 ssh2 Jul 19 23:11:34 tux-35-217 sshd\[488\]: Invalid user test from 142.93.141.59 port 44176 Jul 19 23:11:34 tux-35-217 sshd\[488\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.141.59 ...	2019-07-20 05:20:48
45.119.208.232	attackbots	Jul 19 21:22:37 rpi sshd[31489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.119.208.232 Jul 19 21:22:39 rpi sshd[31489]: Failed password for invalid user master from 45.119.208.232 port 58900 ssh2	2019-07-20 05:03:07
123.30.25.50	attackspam	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2019-07-20 04:43:04
164.132.225.250	attackbots	Jul 19 22:30:44 mail sshd\[11541\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.225.250 user=root Jul 19 22:30:46 mail sshd\[11541\]: Failed password for root from 164.132.225.250 port 46336 ssh2 Jul 19 22:35:16 mail sshd\[12286\]: Invalid user wn from 164.132.225.250 port 44266 Jul 19 22:35:16 mail sshd\[12286\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.225.250 Jul 19 22:35:19 mail sshd\[12286\]: Failed password for invalid user wn from 164.132.225.250 port 44266 ssh2	2019-07-20 04:38:16

Recently Reported IPs

46.152.139.13	67.230.176.41	1.174.94.76	109.155.63.120
103.99.177.247	214.246.91.247	14.48.175.185	123.24.163.253
183.60.21.113	217.35.190.167	41.213.196.160	117.107.140.162
41.35.247.219	62.234.105.77	122.152.227.144	106.12.178.127
18.139.116.181	202.83.127.157	87.236.215.179	166.87.236.103