103.21.143.102

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Shanghai Meicheng Technology Information Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Jun 29 07:36:41 home sshd[5161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.143.102 Jun 29 07:36:43 home sshd[5161]: Failed password for invalid user deploy from 103.21.143.102 port 60308 ssh2 Jun 29 07:38:35 home sshd[5331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.143.102 ...	2020-06-29 13:42:53
attackbots	fail2ban/Jun 24 06:21:26 h1962932 sshd[10428]: Invalid user userftp from 103.21.143.102 port 47856 Jun 24 06:21:26 h1962932 sshd[10428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.143.102 Jun 24 06:21:26 h1962932 sshd[10428]: Invalid user userftp from 103.21.143.102 port 47856 Jun 24 06:21:28 h1962932 sshd[10428]: Failed password for invalid user userftp from 103.21.143.102 port 47856 ssh2 Jun 24 06:27:00 h1962932 sshd[10552]: Invalid user bruno from 103.21.143.102 port 56492	2020-06-24 16:23:22
attack	(sshd) Failed SSH login from 103.21.143.102 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 15 14:06:56 amsweb01 sshd[32002]: Invalid user marimo from 103.21.143.102 port 50264 Jun 15 14:06:58 amsweb01 sshd[32002]: Failed password for invalid user marimo from 103.21.143.102 port 50264 ssh2 Jun 15 14:15:30 amsweb01 sshd[1016]: Invalid user mabel from 103.21.143.102 port 41228 Jun 15 14:15:32 amsweb01 sshd[1016]: Failed password for invalid user mabel from 103.21.143.102 port 41228 ssh2 Jun 15 14:20:35 amsweb01 sshd[1851]: Invalid user ai from 103.21.143.102 port 35810	2020-06-15 22:07:24
attackspambots	Jun 13 00:43:13 php1 sshd\[2861\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.143.102 user=root Jun 13 00:43:15 php1 sshd\[2861\]: Failed password for root from 103.21.143.102 port 46020 ssh2 Jun 13 00:48:04 php1 sshd\[3267\]: Invalid user ddl from 103.21.143.102 Jun 13 00:48:04 php1 sshd\[3267\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.143.102 Jun 13 00:48:06 php1 sshd\[3267\]: Failed password for invalid user ddl from 103.21.143.102 port 38180 ssh2	2020-06-13 18:57:48

Comments on same subnet:

IP	Type	Details	Datetime
103.21.143.192	attack	May 26 17:17:58 ncomp sshd[19833]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.143.192 user=root May 26 17:18:00 ncomp sshd[19833]: Failed password for root from 103.21.143.192 port 56368 ssh2 May 26 17:49:45 ncomp sshd[21222]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.143.192 user=root May 26 17:49:47 ncomp sshd[21222]: Failed password for root from 103.21.143.192 port 43768 ssh2	2020-05-27 05:25:08
103.21.143.205	attackbots	2020-05-22T06:53:42.677421linuxbox-skyline sshd[67109]: Invalid user lol from 103.21.143.205 port 39540 ...	2020-05-22 23:25:37
103.21.143.129	attackbots	May 19 11:43:12 ns41 sshd[3383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.143.129 May 19 11:43:12 ns41 sshd[3383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.143.129 May 19 11:43:15 ns41 sshd[3383]: Failed password for invalid user yea from 103.21.143.129 port 33360 ssh2	2020-05-20 02:28:59
103.21.143.192	attackbots	May 15 22:49:16 melroy-server sshd[27150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.143.192 May 15 22:49:18 melroy-server sshd[27150]: Failed password for invalid user admin from 103.21.143.192 port 48570 ssh2 ...	2020-05-16 06:26:00
103.21.143.205	attackspam	Invalid user solicit from 103.21.143.205 port 56554	2020-05-15 14:02:01
103.21.143.200	attackbots	May 13 06:57:44 meumeu sshd[1034]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.143.200 May 13 06:57:46 meumeu sshd[1034]: Failed password for invalid user simon from 103.21.143.200 port 48212 ssh2 May 13 07:04:47 meumeu sshd[5520]: Failed password for root from 103.21.143.200 port 39814 ssh2 ...	2020-05-13 16:08:32
103.21.143.205	attackspambots	May 9 06:04:01 webhost01 sshd[11956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.143.205 May 9 06:04:03 webhost01 sshd[11956]: Failed password for invalid user serverpilot from 103.21.143.205 port 50200 ssh2 ...	2020-05-09 07:29:52
103.21.143.129	attackspambots	May 8 23:52:50 vps639187 sshd\[18971\]: Invalid user ao from 103.21.143.129 port 35586 May 8 23:52:50 vps639187 sshd\[18971\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.143.129 May 8 23:52:52 vps639187 sshd\[18971\]: Failed password for invalid user ao from 103.21.143.129 port 35586 ssh2 ...	2020-05-09 06:16:37
103.21.143.161	attack	May 5 08:14:03 sip sshd[119300]: Failed password for invalid user vyos from 103.21.143.161 port 55524 ssh2 May 5 08:23:58 sip sshd[119406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.143.161 user=root May 5 08:24:00 sip sshd[119406]: Failed password for root from 103.21.143.161 port 59354 ssh2 ...	2020-05-05 14:50:44
103.21.143.161	attackbotsspam	(sshd) Failed SSH login from 103.21.143.161 (CN/China/-): 5 in the last 3600 secs	2020-05-04 07:12:09
103.21.143.161	attackbots	ssh intrusion attempt	2020-04-22 01:27:48
103.21.143.161	attackbotsspam	Invalid user postgres from 103.21.143.161 port 53706	2020-04-20 20:01:52

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.21.143.102
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25189
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.21.143.102.			IN	A

;; AUTHORITY SECTION:
.			276	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061300 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 13 18:57:43 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 102.143.21.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 102.143.21.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
213.135.239.146	attackbots	SSH-BruteForce	2019-08-09 06:33:24
104.154.157.70	attackspambots	Aug 9 01:35:06 www sshd\[117190\]: Invalid user norm from 104.154.157.70 Aug 9 01:35:06 www sshd\[117190\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.154.157.70 Aug 9 01:35:09 www sshd\[117190\]: Failed password for invalid user norm from 104.154.157.70 port 40684 ssh2 ...	2019-08-09 06:37:59
106.12.202.192	attack	SSH Bruteforce attempt	2019-08-09 06:30:01
49.88.112.68	attackspambots	Failed password for root from 49.88.112.68 port 10291 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.68 user=root Failed password for root from 49.88.112.68 port 41970 ssh2 Failed password for root from 49.88.112.68 port 41970 ssh2 Failed password for root from 49.88.112.68 port 41970 ssh2	2019-08-09 06:48:30
106.13.9.75	attack	Aug 8 18:27:17 xtremcommunity sshd\[18045\]: Invalid user labs from 106.13.9.75 port 38114 Aug 8 18:27:17 xtremcommunity sshd\[18045\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.9.75 Aug 8 18:27:19 xtremcommunity sshd\[18045\]: Failed password for invalid user labs from 106.13.9.75 port 38114 ssh2 Aug 8 18:31:54 xtremcommunity sshd\[18159\]: Invalid user demo from 106.13.9.75 port 49936 Aug 8 18:31:54 xtremcommunity sshd\[18159\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.9.75 ...	2019-08-09 06:47:53
198.245.50.81	attack	v+ssh-bruteforce	2019-08-09 06:33:51
111.93.140.158	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-08 21:47:04,542 INFO [amun_request_handler] PortScan Detected on Port: 445 (111.93.140.158)	2019-08-09 07:13:36
118.24.50.253	attackbotsspam	Aug 9 01:02:02 localhost sshd\[18042\]: Invalid user xx from 118.24.50.253 port 60352 Aug 9 01:02:02 localhost sshd\[18042\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.50.253 Aug 9 01:02:04 localhost sshd\[18042\]: Failed password for invalid user xx from 118.24.50.253 port 60352 ssh2	2019-08-09 07:10:56
116.240.199.23	attack	9 failed attempt(s) in the last 24h	2019-08-09 07:10:24
112.135.234.39	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-08 21:51:26,697 INFO [amun_request_handler] PortScan Detected on Port: 445 (112.135.234.39)	2019-08-09 07:00:50
92.118.161.53	attack	08.08.2019 21:58:37 Connection to port 3389 blocked by firewall	2019-08-09 07:00:34
190.145.233.82	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-08 21:49:35,416 INFO [amun_request_handler] PortScan Detected on Port: 445 (190.145.233.82)	2019-08-09 07:06:30
37.190.61.192	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-08 21:51:42,982 INFO [amun_request_handler] PortScan Detected on Port: 445 (37.190.61.192)	2019-08-09 06:58:57
178.128.221.237	attackbots	Aug 8 18:16:00 plusreed sshd[14267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.221.237 user=root Aug 8 18:16:02 plusreed sshd[14267]: Failed password for root from 178.128.221.237 port 46676 ssh2 ...	2019-08-09 06:35:11
117.192.119.88	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-08 21:47:57,703 INFO [amun_request_handler] PortScan Detected on Port: 445 (117.192.119.88)	2019-08-09 07:09:08

Recently Reported IPs

218.211.255.198	203.239.41.4	18.191.226.239	177.16.161.174
171.244.22.78	195.154.199.159	115.79.141.225	52.188.162.156
183.83.160.169	182.122.23.141	181.43.7.127	129.211.86.49
45.9.61.45	128.199.105.100	91.90.36.174	59.60.209.12
107.170.48.64	13.125.150.239	212.124.187.192	50.2.209.26