103.139.2.142 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
103.139.212.208	attackbotsspam	[H1.VM10] Blocked by UFW	2020-10-01 03:04:53
103.139.212.208	attackspambots	[H1.VM10] Blocked by UFW	2020-09-30 19:18:22
103.139.212.205	attackbots	Found on Alienvault / proto=6 . srcport=4051 . dstport=8443 . (3339)	2020-09-25 07:10:18
103.139.212.213	attackspam	443	2020-09-02 05:08:44
103.139.219.20	attackbotsspam	Sep 1 14:21:28 inter-technics sshd[19038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.139.219.20 user=ts3 Sep 1 14:21:29 inter-technics sshd[19038]: Failed password for ts3 from 103.139.219.20 port 33042 ssh2 Sep 1 14:29:33 inter-technics sshd[19391]: Invalid user nexus from 103.139.219.20 port 40660 Sep 1 14:29:33 inter-technics sshd[19391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.139.219.20 Sep 1 14:29:33 inter-technics sshd[19391]: Invalid user nexus from 103.139.219.20 port 40660 Sep 1 14:29:35 inter-technics sshd[19391]: Failed password for invalid user nexus from 103.139.219.20 port 40660 ssh2 ...	2020-09-02 01:17:21
103.139.212.212	attackspambots	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-09-01 02:36:38
103.139.212.8	attack	Attempted connection to port 1433.	2020-08-27 17:28:54
103.139.212.213	attackspam	Excessive Port-Scanning	2020-08-23 12:05:32
103.139.219.20	attack	$f2bV_matches	2020-08-19 16:42:30
103.139.208.128	attackbotsspam	Port Scan ...	2020-08-18 19:08:36
103.139.219.20	attackbotsspam	Aug 17 03:58:46 IngegnereFirenze sshd[9061]: Failed password for invalid user administrator from 103.139.219.20 port 40654 ssh2 ...	2020-08-17 14:19:18
103.139.219.20	attackbotsspam	Bruteforce detected by fail2ban	2020-08-15 07:26:01
103.139.219.20	attack	Aug 7 00:56:38 jane sshd[30273]: Failed password for root from 103.139.219.20 port 44166 ssh2 ...	2020-08-07 07:36:11
103.139.219.20	attack	Aug 4 20:30:57 haigwepa sshd[326]: Failed password for root from 103.139.219.20 port 37648 ssh2 ...	2020-08-05 03:55:00
103.139.219.20	attack	SSH Brute Force	2020-08-01 15:39:15

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.139.2.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41018
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.139.2.142.			IN	A

;; AUTHORITY SECTION:
.			217	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022041001 1800 900 604800 86400

;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 11 06:59:32 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 142.2.139.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.2.139.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
203.205.55.238	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 03-11-2019 05:50:22.	2019-11-03 18:24:54
82.8.148.77	attack	C1,WP GET /comic/wp-login.php	2019-11-03 17:56:02
157.230.27.47	attack	Nov 3 08:14:04 vtv3 sshd\[30725\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.27.47 user=root Nov 3 08:14:05 vtv3 sshd\[30725\]: Failed password for root from 157.230.27.47 port 33604 ssh2 Nov 3 08:17:41 vtv3 sshd\[32542\]: Invalid user cele from 157.230.27.47 port 43898 Nov 3 08:17:41 vtv3 sshd\[32542\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.27.47 Nov 3 08:17:43 vtv3 sshd\[32542\]: Failed password for invalid user cele from 157.230.27.47 port 43898 ssh2 Nov 3 08:28:37 vtv3 sshd\[5506\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.27.47 user=root Nov 3 08:28:39 vtv3 sshd\[5506\]: Failed password for root from 157.230.27.47 port 46542 ssh2 Nov 3 08:32:22 vtv3 sshd\[7371\]: Invalid user huawei from 157.230.27.47 port 56846 Nov 3 08:32:22 vtv3 sshd\[7371\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ss	2019-11-03 17:51:57
112.80.54.62	attackbotsspam	F2B jail: sshd. Time: 2019-11-03 11:16:37, Reported by: VKReport	2019-11-03 18:23:10
81.22.45.133	attackbots	Port scan: Attack repeated for 24 hours	2019-11-03 18:10:02
210.117.126.130	attackspambots	2019-11-03T05:50:47Z - RDP login failed multiple times. (210.117.126.130)	2019-11-03 18:02:42
202.7.53.156	attackbots	postfix (unknown user, SPF fail or relay access denied)	2019-11-03 18:16:18
94.23.215.90	attack	Nov 3 10:54:31 dedicated sshd[13179]: Failed password for root from 94.23.215.90 port 56772 ssh2 Nov 3 10:58:01 dedicated sshd[13732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.215.90 user=root Nov 3 10:58:03 dedicated sshd[13732]: Failed password for root from 94.23.215.90 port 56896 ssh2 Nov 3 10:58:01 dedicated sshd[13732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.215.90 user=root Nov 3 10:58:03 dedicated sshd[13732]: Failed password for root from 94.23.215.90 port 56896 ssh2	2019-11-03 18:13:56
94.190.9.180	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 03-11-2019 05:50:25.	2019-11-03 18:20:01
171.224.181.83	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 03-11-2019 05:50:19.	2019-11-03 18:29:39
240e:f7:4f01:c::3	attackspambots	240e:00f7:4f01:000c:0000:0000:0000:0003 was recorded 21 times by 2 hosts attempting to connect to the following ports: 34567,10243,8112,20000,3299,9090,40000,33338,5009,1880,5985,10134,9030,8088,5672,9944. Incident counter (4h, 24h, all-time): 21, 135, 320	2019-11-03 18:19:18
138.68.250.76	attackbots	2019-11-03T08:51:04.803643abusebot-5.cloudsearch.cf sshd\[1237\]: Invalid user ubnt!@\# from 138.68.250.76 port 50008	2019-11-03 17:52:21
163.172.110.45	attackspambots	Lines containing failures of 163.172.110.45 Nov 2 00:35:55 smtp-out sshd[14125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.110.45 user=r.r Nov 2 00:35:57 smtp-out sshd[14125]: Failed password for r.r from 163.172.110.45 port 48326 ssh2 Nov 2 00:35:59 smtp-out sshd[14125]: Received disconnect from 163.172.110.45 port 48326:11: Bye Bye [preauth] Nov 2 00:35:59 smtp-out sshd[14125]: Disconnected from authenticating user r.r 163.172.110.45 port 48326 [preauth] Nov 2 00:43:14 smtp-out sshd[14409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.110.45 user=r.r Nov 2 00:43:15 smtp-out sshd[14409]: Failed password for r.r from 163.172.110.45 port 34238 ssh2 Nov 2 00:43:15 smtp-out sshd[14409]: Received disconnect from 163.172.110.45 port 34238:11: Bye Bye [preauth] Nov 2 00:43:15 smtp-out sshd[14409]: Disconnected from authenticating user r.r 163.172.110.45 port 34238........ ------------------------------	2019-11-03 18:26:53
46.166.151.47	attackspam	\[2019-11-03 05:02:45\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-03T05:02:45.161-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="0046462607509",SessionID="0x7fdf2c003608",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/64085",ACLName="no_extension_match" \[2019-11-03 05:05:48\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-03T05:05:48.393-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="00046462607509",SessionID="0x7fdf2c003608",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/56595",ACLName="no_extension_match" \[2019-11-03 05:12:31\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-03T05:12:31.472-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="90046462607509",SessionID="0x7fdf2c38eed8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/61225",ACLName="no_extensi	2019-11-03 18:27:22
191.248.237.237	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 03-11-2019 05:50:21.	2019-11-03 18:25:42

Recently Reported IPs

103.139.103.146	103.139.203.3	103.139.233.11	103.139.244.90
103.139.245.108	103.139.3.6	103.139.48.100	103.139.48.102
103.139.48.115	103.139.48.116	103.139.48.128	103.139.48.131
103.139.48.163	103.139.48.17	103.139.48.175	43.191.105.149
103.139.48.177	103.139.48.193	103.139.48.200	103.139.48.46