103.139.2.142 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
103.139.212.208	attackbotsspam	[H1.VM10] Blocked by UFW	2020-10-01 03:04:53
103.139.212.208	attackspambots	[H1.VM10] Blocked by UFW	2020-09-30 19:18:22
103.139.212.205	attackbots	Found on Alienvault / proto=6 . srcport=4051 . dstport=8443 . (3339)	2020-09-25 07:10:18
103.139.212.213	attackspam	443	2020-09-02 05:08:44
103.139.219.20	attackbotsspam	Sep 1 14:21:28 inter-technics sshd[19038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.139.219.20 user=ts3 Sep 1 14:21:29 inter-technics sshd[19038]: Failed password for ts3 from 103.139.219.20 port 33042 ssh2 Sep 1 14:29:33 inter-technics sshd[19391]: Invalid user nexus from 103.139.219.20 port 40660 Sep 1 14:29:33 inter-technics sshd[19391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.139.219.20 Sep 1 14:29:33 inter-technics sshd[19391]: Invalid user nexus from 103.139.219.20 port 40660 Sep 1 14:29:35 inter-technics sshd[19391]: Failed password for invalid user nexus from 103.139.219.20 port 40660 ssh2 ...	2020-09-02 01:17:21
103.139.212.212	attackspambots	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-09-01 02:36:38
103.139.212.8	attack	Attempted connection to port 1433.	2020-08-27 17:28:54
103.139.212.213	attackspam	Excessive Port-Scanning	2020-08-23 12:05:32
103.139.219.20	attack	$f2bV_matches	2020-08-19 16:42:30
103.139.208.128	attackbotsspam	Port Scan ...	2020-08-18 19:08:36
103.139.219.20	attackbotsspam	Aug 17 03:58:46 IngegnereFirenze sshd[9061]: Failed password for invalid user administrator from 103.139.219.20 port 40654 ssh2 ...	2020-08-17 14:19:18
103.139.219.20	attackbotsspam	Bruteforce detected by fail2ban	2020-08-15 07:26:01
103.139.219.20	attack	Aug 7 00:56:38 jane sshd[30273]: Failed password for root from 103.139.219.20 port 44166 ssh2 ...	2020-08-07 07:36:11
103.139.219.20	attack	Aug 4 20:30:57 haigwepa sshd[326]: Failed password for root from 103.139.219.20 port 37648 ssh2 ...	2020-08-05 03:55:00
103.139.219.20	attack	SSH Brute Force	2020-08-01 15:39:15

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.139.2.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41018
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.139.2.142.			IN	A

;; AUTHORITY SECTION:
.			217	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022041001 1800 900 604800 86400

;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 11 06:59:32 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 142.2.139.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.2.139.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.143.72.16	attackspambots	Jun 21 17:19:33 v22019058497090703 postfix/smtpd[8775]: warning: unknown[185.143.72.16]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 21 17:21:05 v22019058497090703 postfix/smtpd[8775]: warning: unknown[185.143.72.16]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 21 17:22:34 v22019058497090703 postfix/smtpd[8775]: warning: unknown[185.143.72.16]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-21 23:23:24
103.131.71.63	attack	(mod_security) mod_security (id:210730) triggered by 103.131.71.63 (VN/Vietnam/bot-103-131-71-63.coccoc.com): 5 in the last 3600 secs	2020-06-21 23:24:49
125.227.237.242	attackbotsspam	Honeypot attack, port: 445, PTR: 125-227-237-242.HINET-IP.hinet.net.	2020-06-21 23:39:33
82.178.250.236	attackspambots	1592741658 - 06/21/2020 14:14:18 Host: 82.178.250.236/82.178.250.236 Port: 445 TCP Blocked	2020-06-21 23:41:46
60.179.170.11	attackspam	Honeypot attack, port: 81, PTR: 11.170.179.60.broad.nb.zj.dynamic.163data.com.cn.	2020-06-21 23:27:43
46.38.145.5	attackspambots	Jun 21 16:37:45 blackbee postfix/smtpd\[19431\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: authentication failure Jun 21 16:38:30 blackbee postfix/smtpd\[19431\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: authentication failure Jun 21 16:39:15 blackbee postfix/smtpd\[19431\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: authentication failure Jun 21 16:40:02 blackbee postfix/smtpd\[19431\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: authentication failure Jun 21 16:40:45 blackbee postfix/smtpd\[19431\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: authentication failure ...	2020-06-21 23:50:08
128.70.48.248	attackbotsspam	Honeypot attack, port: 445, PTR: 128-70-48-248.broadband.corbina.ru.	2020-06-21 23:21:42
36.22.187.34	attack	Unauthorized access or intrusion attempt detected from Thor banned IP	2020-06-21 23:14:25
103.145.12.166	attackspam	[2020-06-21 11:23:18] NOTICE[1273][C-000036e7] chan_sip.c: Call from '' (103.145.12.166:64886) to extension '14900046542208930' rejected because extension not found in context 'public'. [2020-06-21 11:23:18] SECURITY[1288] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-06-21T11:23:18.488-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="14900046542208930",SessionID="0x7f31c02f97a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.145.12.166/64886",ACLName="no_extension_match" [2020-06-21 11:23:37] NOTICE[1273][C-000036e9] chan_sip.c: Call from '' (103.145.12.166:51494) to extension '14910046542208930' rejected because extension not found in context 'public'. [2020-06-21 11:23:37] SECURITY[1288] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-06-21T11:23:37.117-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="14910046542208930",SessionID="0x7f31c018ea98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress ...	2020-06-21 23:24:23
62.234.162.95	attack	Jun 21 14:27:06 eventyay sshd[14642]: Failed password for root from 62.234.162.95 port 53120 ssh2 Jun 21 14:31:29 eventyay sshd[14763]: Failed password for root from 62.234.162.95 port 45314 ssh2 Jun 21 14:35:51 eventyay sshd[14917]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.162.95 ...	2020-06-21 23:56:38
190.129.27.26	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-06-21 23:17:04
46.200.73.236	attackbotsspam	SSH brutforce	2020-06-21 23:15:39
218.92.0.173	attackbotsspam	Jun 21 12:04:44 firewall sshd[16045]: Failed password for root from 218.92.0.173 port 17402 ssh2 Jun 21 12:04:48 firewall sshd[16045]: Failed password for root from 218.92.0.173 port 17402 ssh2 Jun 21 12:04:51 firewall sshd[16045]: Failed password for root from 218.92.0.173 port 17402 ssh2 ...	2020-06-21 23:38:32
177.105.35.51	attackbotsspam	Jun 21 16:10:14 dev0-dcde-rnet sshd[25326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.105.35.51 Jun 21 16:10:16 dev0-dcde-rnet sshd[25326]: Failed password for invalid user andi from 177.105.35.51 port 57738 ssh2 Jun 21 16:14:35 dev0-dcde-rnet sshd[25342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.105.35.51	2020-06-21 23:41:03
111.92.104.148	attackbotsspam	Honeypot attack, port: 81, PTR: 148.104.92.111.asianet.co.in.	2020-06-21 23:56:11

Recently Reported IPs

103.139.103.146	103.139.203.3	103.139.233.11	103.139.244.90
103.139.245.108	103.139.3.6	103.139.48.100	103.139.48.102
103.139.48.115	103.139.48.116	103.139.48.128	103.139.48.131
103.139.48.163	103.139.48.17	103.139.48.175	43.191.105.149
103.139.48.177	103.139.48.193	103.139.48.200	103.139.48.46