103.140.126.13

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Zhong Shan Shi Ba Ai Yun Ji Suan Co. Limited

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Port scan detected on ports: 8433[TCP], 4433[TCP], 2433[TCP]	2020-04-02 17:08:32
attackspambots	139/tcp [2020-04-01]1pkt	2020-04-01 22:40:50

Comments on same subnet:

IP	Type	Details	Datetime
103.140.126.128	attackspambots	HK CN/China/- Failures: 5 smtpauth	2020-08-31 23:59:58
103.140.126.198	attackspam	Invalid user matt from 103.140.126.198 port 51198	2020-04-13 15:17:59
103.140.126.198	attack	Mar 11 18:38:34 ewelt sshd[26977]: Invalid user ZXC from 103.140.126.198 port 46974 Mar 11 18:38:34 ewelt sshd[26977]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.140.126.198 Mar 11 18:38:34 ewelt sshd[26977]: Invalid user ZXC from 103.140.126.198 port 46974 Mar 11 18:38:36 ewelt sshd[26977]: Failed password for invalid user ZXC from 103.140.126.198 port 46974 ssh2 ...	2020-03-12 02:28:19
103.140.126.198	attackbotsspam	2020-03-11T07:34:33.603804scmdmz1 sshd[29956]: Failed password for root from 103.140.126.198 port 56154 ssh2 2020-03-11T07:35:45.387592scmdmz1 sshd[30064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.140.126.198 user=root 2020-03-11T07:35:47.534907scmdmz1 sshd[30064]: Failed password for root from 103.140.126.198 port 47592 ssh2 ...	2020-03-11 14:47:16
103.140.126.198	attackspambots	Mar 9 05:11:50 xxxxxxx0 sshd[9323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.140.126.198 user=r.r Mar 9 05:11:53 xxxxxxx0 sshd[9323]: Failed password for r.r from 103.140.126.198 port 33144 ssh2 Mar 9 05:15:33 xxxxxxx0 sshd[11198]: Invalid user saslauth from 103.140.126.198 port 56926 Mar 9 05:15:33 xxxxxxx0 sshd[11198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.140.126.198 Mar 9 05:15:34 xxxxxxx0 sshd[11198]: Failed password for invalid user saslauth from 103.140.126.198 port 56926 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.140.126.198	2020-03-09 14:37:00
103.140.126.198	attackspambots	2020-03-08T21:28:27.879663shield sshd\[17712\]: Invalid user user05 from 103.140.126.198 port 57456 2020-03-08T21:28:27.883871shield sshd\[17712\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.140.126.198 2020-03-08T21:28:29.850438shield sshd\[17712\]: Failed password for invalid user user05 from 103.140.126.198 port 57456 ssh2 2020-03-08T21:34:05.145892shield sshd\[18789\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.140.126.198 user=root 2020-03-08T21:34:06.846648shield sshd\[18789\]: Failed password for root from 103.140.126.198 port 45936 ssh2	2020-03-09 05:46:51
103.140.126.198	attackbotsspam	Feb 20 19:35:14 sachi sshd\[19699\]: Invalid user asterisk from 103.140.126.198 Feb 20 19:35:14 sachi sshd\[19699\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.140.126.198 Feb 20 19:35:15 sachi sshd\[19699\]: Failed password for invalid user asterisk from 103.140.126.198 port 53276 ssh2 Feb 20 19:38:23 sachi sshd\[19951\]: Invalid user nisuser2 from 103.140.126.198 Feb 20 19:38:23 sachi sshd\[19951\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.140.126.198	2020-02-21 18:23:41
103.140.126.198	attackspambots	SSH invalid-user multiple login try	2020-02-20 15:17:00
103.140.126.198	attack	2020-02-13T05:48:54.165488 sshd[11179]: Invalid user contact from 103.140.126.198 port 43334 2020-02-13T05:48:54.178197 sshd[11179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.140.126.198 2020-02-13T05:48:54.165488 sshd[11179]: Invalid user contact from 103.140.126.198 port 43334 2020-02-13T05:48:56.065370 sshd[11179]: Failed password for invalid user contact from 103.140.126.198 port 43334 ssh2 2020-02-13T05:52:05.505677 sshd[11260]: Invalid user 12345 from 103.140.126.198 port 44690 ...	2020-02-13 15:50:08
103.140.126.198	attackbotsspam	Unauthorized connection attempt detected from IP address 103.140.126.198 to port 2220 [J]	2020-01-25 05:39:28

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.140.126.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10046
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.140.126.13.			IN	A

;; AUTHORITY SECTION:
.			460	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040100 1800 900 604800 86400

;; Query time: 87 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 01 22:40:34 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 13.126.140.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 13.126.140.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
171.103.140.130	attackspambots	$f2bV_matches	2019-12-24 23:11:51
177.71.62.85	attackbotsspam	Unauthorized connection attempt detected from IP address 177.71.62.85 to port 445	2019-12-24 23:49:16
148.70.249.72	attackspam	Dec 24 12:30:17 vpn01 sshd[31789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.249.72 Dec 24 12:30:19 vpn01 sshd[31789]: Failed password for invalid user admin from 148.70.249.72 port 38666 ssh2 ...	2019-12-24 23:14:04
212.109.29.46	attackbotsspam	Unauthorized connection attempt detected from IP address 212.109.29.46 to port 445	2019-12-24 23:46:02
103.114.48.8	attackspambots	Dec 24 10:33:45 plusreed sshd[933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.114.48.8 user=root Dec 24 10:33:48 plusreed sshd[933]: Failed password for root from 103.114.48.8 port 40742 ssh2 Dec 24 10:36:25 plusreed sshd[1547]: Invalid user ftp from 103.114.48.8 ...	2019-12-24 23:43:38
65.75.93.36	attack	Automatic report - Banned IP Access	2019-12-24 23:31:58
41.73.252.236	attackspambots	Dec 24 13:55:29 localhost sshd[14399]: Failed password for invalid user scalera from 41.73.252.236 port 50208 ssh2 Dec 24 14:19:11 localhost sshd[15762]: Failed password for root from 41.73.252.236 port 36162 ssh2 Dec 24 14:23:03 localhost sshd[15912]: User postgres from 41.73.252.236 not allowed because not listed in AllowUsers	2019-12-24 23:15:35
210.175.50.124	attackspambots	Dec 24 12:36:19 firewall sshd[29252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.175.50.124 Dec 24 12:36:19 firewall sshd[29252]: Invalid user poongothay from 210.175.50.124 Dec 24 12:36:21 firewall sshd[29252]: Failed password for invalid user poongothay from 210.175.50.124 port 10166 ssh2 ...	2019-12-24 23:45:09
103.223.5.212	attack	Dec 24 16:36:31 grey postfix/smtpd\[25452\]: NOQUEUE: reject: RCPT from unknown\[103.223.5.212\]: 554 5.7.1 Service unavailable\; Client host \[103.223.5.212\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[103.223.5.212\]\; from=\ to=\ proto=ESMTP helo=\<1fe593dd.prostatewell.xyz\> ...	2019-12-24 23:38:45
216.10.249.73	attackspambots	Dec 24 10:52:08 vps46666688 sshd[7199]: Failed password for backup from 216.10.249.73 port 48424 ssh2 ...	2019-12-24 23:16:44
112.196.49.250	attackbots	Fail2Ban Ban Triggered	2019-12-24 23:12:58
122.51.191.69	attack	Lines containing failures of 122.51.191.69 Dec 24 11:22:53 shared11 sshd[16606]: Invalid user operator from 122.51.191.69 port 37456 Dec 24 11:22:53 shared11 sshd[16606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.191.69 Dec 24 11:22:56 shared11 sshd[16606]: Failed password for invalid user operator from 122.51.191.69 port 37456 ssh2 Dec 24 11:22:56 shared11 sshd[16606]: Received disconnect from 122.51.191.69 port 37456:11: Bye Bye [preauth] Dec 24 11:22:56 shared11 sshd[16606]: Disconnected from invalid user operator 122.51.191.69 port 37456 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=122.51.191.69	2019-12-24 23:23:44
178.128.168.87	attack	Dec 24 13:51:59 ns381471 sshd[17774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.168.87 Dec 24 13:52:01 ns381471 sshd[17774]: Failed password for invalid user caillet from 178.128.168.87 port 53654 ssh2	2019-12-24 23:20:43
140.143.151.93	attackspambots	Dec 24 14:55:01 MK-Soft-Root1 sshd[29269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.151.93 Dec 24 14:55:04 MK-Soft-Root1 sshd[29269]: Failed password for invalid user ubnt from 140.143.151.93 port 54132 ssh2 ...	2019-12-24 23:19:39
71.42.195.210	attackbots	SIP/5060 Probe, BF, Hack -	2019-12-24 23:27:21

Recently Reported IPs

221.11.124.100	205.126.180.10	83.144.203.4	48.23.30.153
152.130.203.236	211.129.249.139	193.42.17.80	218.28.186.108
178.160.69.216	61.113.107.222	81.197.55.74	189.146.216.113
13.128.60.35	73.203.249.78	35.166.114.224	174.58.50.44
130.194.105.13	93.0.94.190	187.77.69.172	1.54.89.148