103.139.212.213

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Yunduan Interchange (Beijing) Computer Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	443	2020-09-02 05:08:44
attackspam	Excessive Port-Scanning	2020-08-23 12:05:32

Comments on same subnet:

IP	Type	Details	Datetime
103.139.212.208	attackbotsspam	[H1.VM10] Blocked by UFW	2020-10-01 03:04:53
103.139.212.208	attackspambots	[H1.VM10] Blocked by UFW	2020-09-30 19:18:22
103.139.212.205	attackbots	Found on Alienvault / proto=6 . srcport=4051 . dstport=8443 . (3339)	2020-09-25 07:10:18
103.139.212.212	attackspambots	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-09-01 02:36:38
103.139.212.8	attack	Attempted connection to port 1433.	2020-08-27 17:28:54
103.139.212.21	attackbots	SSH Brute Force	2020-05-10 02:04:35
103.139.212.21	attackspam	SSH invalid-user multiple login try	2020-05-08 15:47:20
103.139.212.20	attackspam	Unauthorized connection attempt detected from IP address 103.139.212.20 to port 1433 [J]	2020-01-06 14:47:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.139.212.213
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61705
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.139.212.213.		IN	A

;; AUTHORITY SECTION:
.			141	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082201 1800 900 604800 86400

;; Query time: 28 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Aug 23 12:05:27 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 213.212.139.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 213.212.139.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
196.52.43.86	attack	[portscan] tcp/118 [sqlserv] *(RWIN=1024)(09040856)	2019-09-04 14:49:56
89.248.174.3	attack	Port scan: Attack repeated for 24 hours	2019-09-04 14:56:05
218.98.40.132	attackbotsspam	09/04/2019-02:21:14.892034 218.98.40.132 Protocol: 6 ET SCAN Potential SSH Scan	2019-09-04 15:02:18
196.52.43.62	attackspam	Automatic report - Port Scan Attack	2019-09-04 14:59:52
134.209.13.209	attackspambots	Sep 4 02:14:08 ny01 sshd[25955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.13.209 Sep 4 02:14:10 ny01 sshd[25955]: Failed password for invalid user aldo from 134.209.13.209 port 42968 ssh2 Sep 4 02:18:04 ny01 sshd[26639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.13.209	2019-09-04 14:29:30
92.223.159.3	attack	2019-09-04T05:40:43.318621abusebot-6.cloudsearch.cf sshd\[10297\]: Invalid user antonella from 92.223.159.3 port 57266	2019-09-04 14:36:40
175.175.73.173	attackspambots	" "	2019-09-04 14:26:01
196.52.43.56	attackspambots	37777/tcp 593/tcp 8443/tcp... [2019-07-05/09-03]64pkt,44pt.(tcp),4pt.(udp),1tp.(icmp)	2019-09-04 14:55:17
116.228.53.173	attackspambots	Sep 4 05:27:22 lnxded63 sshd[21796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.228.53.173	2019-09-04 14:15:49
106.13.88.44	attackbots	2019-09-04T06:46:44.948887abusebot-2.cloudsearch.cf sshd\[11151\]: Invalid user sasha from 106.13.88.44 port 57760	2019-09-04 15:01:11
185.222.211.114	attackbotsspam	7020/tcp 23432/tcp 3500/tcp... [2019-07-11/09-03]1757pkt,687pt.(tcp)	2019-09-04 14:28:54
23.129.64.209	attack	Automated report - ssh fail2ban: Sep 4 07:13:54 wrong password, user=root, port=50519, ssh2 Sep 4 07:13:57 wrong password, user=root, port=50519, ssh2 Sep 4 07:14:01 wrong password, user=root, port=50519, ssh2 Sep 4 07:14:06 wrong password, user=root, port=50519, ssh2	2019-09-04 14:13:34
81.22.45.219	attack	firewall-block, port(s): 5502/tcp, 9835/tcp	2019-09-04 14:14:40
184.105.139.67	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-09-04 14:15:04
121.162.131.223	attack	Sep 3 20:09:37 auw2 sshd\[26638\]: Invalid user np from 121.162.131.223 Sep 3 20:09:37 auw2 sshd\[26638\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.162.131.223 Sep 3 20:09:40 auw2 sshd\[26638\]: Failed password for invalid user np from 121.162.131.223 port 37769 ssh2 Sep 3 20:14:25 auw2 sshd\[27070\]: Invalid user test10 from 121.162.131.223 Sep 3 20:14:25 auw2 sshd\[27070\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.162.131.223	2019-09-04 14:31:37

Recently Reported IPs

156.96.154.53	154.221.1.129	185.51.125.42	190.207.103.32
176.121.13.247	91.211.246.151	119.181.19.21	77.32.33.53
5.135.177.230	192.241.232.157	94.154.106.131	2.180.79.33
112.95.173.94	120.201.2.137	80.224.44.248	111.72.196.198
113.242.164.94	49.234.57.117	153.126.146.133	101.51.246.176