139.199.80.75 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: V6Yun (Beijing) Network Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Search Engine Spider

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Oct 13 18:23:08 h2865660 sshd[13814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.75 user=root Oct 13 18:23:10 h2865660 sshd[13814]: Failed password for root from 139.199.80.75 port 50350 ssh2 Oct 13 18:28:53 h2865660 sshd[14043]: Invalid user db from 139.199.80.75 port 47038 Oct 13 18:28:53 h2865660 sshd[14043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.75 Oct 13 18:28:53 h2865660 sshd[14043]: Invalid user db from 139.199.80.75 port 47038 Oct 13 18:28:55 h2865660 sshd[14043]: Failed password for invalid user db from 139.199.80.75 port 47038 ssh2 ...	2020-10-14 02:56:27
attack	k+ssh-bruteforce	2020-10-13 18:11:39
attackbots	Aug 17 22:03:50 NG-HHDC-SVS-001 sshd[29998]: Invalid user email from 139.199.80.75 ...	2020-08-17 23:45:11
attackbots	Aug 12 06:55:39 fhem-rasp sshd[16810]: Failed password for root from 139.199.80.75 port 37230 ssh2 Aug 12 06:55:40 fhem-rasp sshd[16810]: Disconnected from authenticating user root 139.199.80.75 port 37230 [preauth] ...	2020-08-12 16:13:24
attack	Aug 10 22:31:20 cosmoit sshd[21412]: Failed password for root from 139.199.80.75 port 54370 ssh2	2020-08-11 05:25:06
attackspam	leo_www	2020-08-09 14:55:08
attackspam	Aug 6 22:00:06 webhost01 sshd[15408]: Failed password for root from 139.199.80.75 port 57984 ssh2 ...	2020-08-07 03:22:41
attack	IP blocked	2020-07-28 19:58:09
attackbotsspam	Jul 19 05:50:12 meumeu sshd[993644]: Invalid user user from 139.199.80.75 port 42778 Jul 19 05:50:12 meumeu sshd[993644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.75 Jul 19 05:50:12 meumeu sshd[993644]: Invalid user user from 139.199.80.75 port 42778 Jul 19 05:50:14 meumeu sshd[993644]: Failed password for invalid user user from 139.199.80.75 port 42778 ssh2 Jul 19 05:54:58 meumeu sshd[993788]: Invalid user nfsnobody from 139.199.80.75 port 48144 Jul 19 05:54:58 meumeu sshd[993788]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.75 Jul 19 05:54:58 meumeu sshd[993788]: Invalid user nfsnobody from 139.199.80.75 port 48144 Jul 19 05:55:00 meumeu sshd[993788]: Failed password for invalid user nfsnobody from 139.199.80.75 port 48144 ssh2 Jul 19 05:59:36 meumeu sshd[993986]: Invalid user support from 139.199.80.75 port 53474 ...	2020-07-19 12:00:34
attackbots	Jun 28 08:22:49 [host] sshd[12637]: Invalid user e Jun 28 08:22:49 [host] sshd[12637]: pam_unix(sshd: Jun 28 08:22:51 [host] sshd[12637]: Failed passwor	2020-06-28 17:40:40
attackbots	$f2bV_matches	2020-06-06 20:17:36
attackbotsspam	2020-05-26T19:35:57.340040lavrinenko.info sshd[17819]: Invalid user test from 139.199.80.75 port 35830 2020-05-26T19:35:57.351614lavrinenko.info sshd[17819]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.75 2020-05-26T19:35:57.340040lavrinenko.info sshd[17819]: Invalid user test from 139.199.80.75 port 35830 2020-05-26T19:35:59.342139lavrinenko.info sshd[17819]: Failed password for invalid user test from 139.199.80.75 port 35830 ssh2 2020-05-26T19:37:49.445248lavrinenko.info sshd[17858]: Invalid user vlug from 139.199.80.75 port 56590 ...	2020-05-27 07:13:21
attackspambots	Bruteforce detected by fail2ban	2020-05-16 17:23:08
attack	Apr 19 08:20:41 ns382633 sshd\[19696\]: Invalid user u from 139.199.80.75 port 51306 Apr 19 08:20:41 ns382633 sshd\[19696\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.75 Apr 19 08:20:43 ns382633 sshd\[19696\]: Failed password for invalid user u from 139.199.80.75 port 51306 ssh2 Apr 19 08:38:54 ns382633 sshd\[23686\]: Invalid user docker from 139.199.80.75 port 45760 Apr 19 08:38:54 ns382633 sshd\[23686\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.75	2020-04-19 17:39:21
attackbotsspam	SSH bruteforce (Triggered fail2ban)	2020-04-12 17:42:32
attackspam	Apr 8 09:59:49 h2829583 sshd[21209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.75	2020-04-08 17:27:59

Comments on same subnet:

IP	Type	Details	Datetime
139.199.80.67	attackspambots	Sep 28 20:26:23 jane sshd[7663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.67 Sep 28 20:26:26 jane sshd[7663]: Failed password for invalid user applmgr from 139.199.80.67 port 33488 ssh2 ...	2020-09-29 06:21:31
139.199.80.67	attackspambots	Aug 25 05:49:32 srv-ubuntu-dev3 sshd[82638]: Invalid user oracle from 139.199.80.67 Aug 25 05:49:32 srv-ubuntu-dev3 sshd[82638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.67 Aug 25 05:49:32 srv-ubuntu-dev3 sshd[82638]: Invalid user oracle from 139.199.80.67 Aug 25 05:49:35 srv-ubuntu-dev3 sshd[82638]: Failed password for invalid user oracle from 139.199.80.67 port 52646 ssh2 Aug 25 05:54:13 srv-ubuntu-dev3 sshd[83202]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.67 user=root Aug 25 05:54:15 srv-ubuntu-dev3 sshd[83202]: Failed password for root from 139.199.80.67 port 46772 ssh2 Aug 25 05:58:46 srv-ubuntu-dev3 sshd[83669]: Invalid user hduser from 139.199.80.67 Aug 25 05:58:46 srv-ubuntu-dev3 sshd[83669]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.67 Aug 25 05:58:46 srv-ubuntu-dev3 sshd[83669]: Invalid user hduser from 1 ...	2020-08-25 13:05:41
139.199.80.67	attackbots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-09T20:12:41Z and 2020-08-09T20:24:16Z	2020-08-10 06:40:42
139.199.80.67	attack	Fail2Ban	2020-08-09 16:04:24
139.199.80.67	attackspambots	Aug 2 12:37:23 vps-51d81928 sshd[393833]: Failed password for root from 139.199.80.67 port 46592 ssh2 Aug 2 12:38:34 vps-51d81928 sshd[393850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.67 user=root Aug 2 12:38:36 vps-51d81928 sshd[393850]: Failed password for root from 139.199.80.67 port 58464 ssh2 Aug 2 12:39:50 vps-51d81928 sshd[393864]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.67 user=root Aug 2 12:39:52 vps-51d81928 sshd[393864]: Failed password for root from 139.199.80.67 port 42112 ssh2 ...	2020-08-03 00:34:31
139.199.80.67	attackspam	Jul 27 07:46:54 vps1 sshd[30011]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.67 Jul 27 07:46:56 vps1 sshd[30011]: Failed password for invalid user mh from 139.199.80.67 port 46434 ssh2 Jul 27 07:50:02 vps1 sshd[30062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.67 Jul 27 07:50:04 vps1 sshd[30062]: Failed password for invalid user postgres from 139.199.80.67 port 51574 ssh2 Jul 27 07:53:06 vps1 sshd[30109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.67 Jul 27 07:53:07 vps1 sshd[30109]: Failed password for invalid user admin from 139.199.80.67 port 56718 ssh2 Jul 27 07:56:12 vps1 sshd[30157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.67 ...	2020-07-27 15:42:14
139.199.80.67	attackspambots	Invalid user evangeline from 139.199.80.67 port 42662	2020-07-19 15:22:39
139.199.80.67	attackbotsspam	Jun 16 14:43:29 electroncash sshd[20443]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.67 Jun 16 14:43:29 electroncash sshd[20443]: Invalid user griselda from 139.199.80.67 port 49426 Jun 16 14:43:31 electroncash sshd[20443]: Failed password for invalid user griselda from 139.199.80.67 port 49426 ssh2 Jun 16 14:47:24 electroncash sshd[21518]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.67 user=root Jun 16 14:47:27 electroncash sshd[21518]: Failed password for root from 139.199.80.67 port 36962 ssh2 ...	2020-06-16 21:20:13
139.199.80.67	attack	Jun 8 18:09:00 vpn01 sshd[10931]: Failed password for root from 139.199.80.67 port 48854 ssh2 ...	2020-06-09 01:39:29
139.199.80.67	attackspam	Jun 8 10:43:48 itv-usvr-01 sshd[10735]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.67 user=root Jun 8 10:43:50 itv-usvr-01 sshd[10735]: Failed password for root from 139.199.80.67 port 39974 ssh2 Jun 8 10:48:14 itv-usvr-01 sshd[10918]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.67 user=root Jun 8 10:48:16 itv-usvr-01 sshd[10918]: Failed password for root from 139.199.80.67 port 57096 ssh2 Jun 8 10:52:27 itv-usvr-01 sshd[11080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.67 user=root Jun 8 10:52:29 itv-usvr-01 sshd[11080]: Failed password for root from 139.199.80.67 port 45970 ssh2	2020-06-08 14:47:36
139.199.80.67	attackbotsspam	prod11 ...	2020-06-03 23:31:03
139.199.80.67	attackspambots	" "	2020-05-29 19:20:52
139.199.80.67	attackspam	May 28 15:59:48 odroid64 sshd\[457\]: User root from 139.199.80.67 not allowed because not listed in AllowUsers May 28 15:59:48 odroid64 sshd\[457\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.67 user=root ...	2020-05-29 02:06:27
139.199.80.67	attack	Invalid user dahlman from 139.199.80.67 port 51264	2020-05-28 16:36:08
139.199.80.67	attackspam	May 21 19:12:13 dhoomketu sshd[86720]: Invalid user iiq from 139.199.80.67 port 60764 May 21 19:12:13 dhoomketu sshd[86720]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.67 May 21 19:12:13 dhoomketu sshd[86720]: Invalid user iiq from 139.199.80.67 port 60764 May 21 19:12:15 dhoomketu sshd[86720]: Failed password for invalid user iiq from 139.199.80.67 port 60764 ssh2 May 21 19:14:05 dhoomketu sshd[86747]: Invalid user bga from 139.199.80.67 port 52546 ...	2020-05-21 21:54:29

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.199.80.75
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48760
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.199.80.75.			IN	A

;; AUTHORITY SECTION:
.			360	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040800 1800 900 604800 86400

;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 08 17:27:49 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 75.80.199.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 75.80.199.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.72.45.0	attack	TCP (SYN) 118.72.45.0:46492 -> port 8080, len 40	2020-10-01 20:09:08
85.204.246.185	attack	Oct 1 05:38:15 mavik sshd[409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.204.246.185 user=root Oct 1 05:38:17 mavik sshd[409]: Failed password for root from 85.204.246.185 port 37592 ssh2 Oct 1 05:44:09 mavik sshd[732]: Invalid user testbed from 85.204.246.185 Oct 1 05:44:09 mavik sshd[732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.204.246.185 Oct 1 05:44:10 mavik sshd[732]: Failed password for invalid user testbed from 85.204.246.185 port 48130 ssh2 ...	2020-10-01 19:57:53
222.186.42.137	attackspam	Oct 1 08:03:57 NPSTNNYC01T sshd[29132]: Failed password for root from 222.186.42.137 port 13390 ssh2 Oct 1 08:03:59 NPSTNNYC01T sshd[29132]: Failed password for root from 222.186.42.137 port 13390 ssh2 Oct 1 08:04:01 NPSTNNYC01T sshd[29132]: Failed password for root from 222.186.42.137 port 13390 ssh2 ...	2020-10-01 20:06:02
47.115.54.160	attackbots	REQUESTED PAGE: /wp-login.php	2020-10-01 20:01:08
23.101.123.2	attack	23.101.123.2 - - [01/Oct/2020:12:12:32 +0100] "POST /wp-login.php HTTP/1.1" 200 2141 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 23.101.123.2 - - [01/Oct/2020:12:12:34 +0100] "POST /wp-login.php HTTP/1.1" 200 2113 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 23.101.123.2 - - [01/Oct/2020:12:12:34 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-01 19:48:46
58.87.127.93	attackspambots	Oct 1 08:30:28 Server sshd[970901]: Failed password for root from 58.87.127.93 port 44570 ssh2 Oct 1 08:31:27 Server sshd[970969]: Invalid user test1 from 58.87.127.93 port 54716 Oct 1 08:31:27 Server sshd[970969]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.127.93 Oct 1 08:31:27 Server sshd[970969]: Invalid user test1 from 58.87.127.93 port 54716 Oct 1 08:31:29 Server sshd[970969]: Failed password for invalid user test1 from 58.87.127.93 port 54716 ssh2 ...	2020-10-01 19:53:11
134.209.236.31	attackspambots	SSH login attempts.	2020-10-01 19:54:22
37.59.148.234	attackspam	timhelmke.de 37.59.148.234 [01/Oct/2020:09:50:00 +0200] "POST /wp-login.php HTTP/1.1" 200 6650 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" timhelmke.de 37.59.148.234 [01/Oct/2020:09:50:00 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4050 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-01 20:07:15
180.247.21.85	attackbotsspam	1433/tcp [2020-09-30]1pkt	2020-10-01 20:20:22
119.118.128.21	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-10-01 19:55:36
217.133.58.148	attackspam	217.133.58.148 (IT/Italy/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Oct 1 06:57:41 server2 sshd[980]: Failed password for root from 217.133.58.148 port 45157 ssh2 Oct 1 07:12:27 server2 sshd[14053]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.67.180 user=root Oct 1 07:02:24 server2 sshd[5303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.53.186.113 user=root Oct 1 07:02:26 server2 sshd[5303]: Failed password for root from 60.53.186.113 port 2840 ssh2 Oct 1 07:01:24 server2 sshd[4545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.121.38.246 user=root Oct 1 07:01:26 server2 sshd[4545]: Failed password for root from 117.121.38.246 port 58624 ssh2 IP Addresses Blocked:	2020-10-01 19:52:22
78.97.46.129	attack	Sep 30 22:41:54 mellenthin postfix/smtpd[21344]: NOQUEUE: reject: RCPT from unknown[78.97.46.129]: 554 5.7.1 Service unavailable; Client host [78.97.46.129] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/78.97.46.129 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<[78.97.46.129]>	2020-10-01 20:03:10
27.110.164.162	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-10-01 20:01:55
190.198.25.34	attackbotsspam	445/tcp [2020-09-30]1pkt	2020-10-01 20:02:25
34.70.66.188	attack	2020-09-30T23:05:03.602440devel sshd[16734]: Invalid user logview from 34.70.66.188 port 44986 2020-09-30T23:05:05.916839devel sshd[16734]: Failed password for invalid user logview from 34.70.66.188 port 44986 ssh2 2020-09-30T23:11:09.871676devel sshd[17209]: Invalid user admin from 34.70.66.188 port 37320	2020-10-01 20:17:33

Recently Reported IPs

249.219.73.220	154.2.196.2	213.161.235.205	130.89.160.147
226.175.44.183	201.160.18.195	238.8.32.46	89.78.153.124
97.77.140.7	121.209.147.160	221.169.183.97	255.137.116.25
45.64.161.65	46.212.177.177	221.203.209.105	222.194.206.133
108.5.106.139	51.236.235.12	157.16.88.201	92.77.204.200