103.30.199.21 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Cambodia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
103.30.199.82	attackspam	Jul 20 22:43:16 debian-2gb-nbg1-2 kernel: \[17536334.155603\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=103.30.199.82 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=43306 DF PROTO=TCP SPT=62791 DPT=8080 WINDOW=14600 RES=0x00 SYN URGP=0	2020-07-21 06:04:25

Type

Details

Datetime

103.30.199.82

attackspam

Jul 20 22:43:16 debian-2gb-nbg1-2 kernel: \[17536334.155603\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=103.30.199.82 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=43306 DF PROTO=TCP SPT=62791 DPT=8080 WINDOW=14600 RES=0x00 SYN URGP=0

2020-07-21 06:04:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.30.199.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62733
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.30.199.21.			IN	A

;; AUTHORITY SECTION:
.			149	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 23:50:32 CST 2022
;; MSG SIZE  rcvd: 106

Host info

21.199.30.103.in-addr.arpa domain name pointer ezecom.103.30.199.0.21.ezecom.com.kh.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
21.199.30.103.in-addr.arpa	name = ezecom.103.30.199.0.21.ezecom.com.kh.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
114.88.153.172	attackbots	2020-05-16T12:03:23.607422shield sshd\[32012\]: Invalid user amanda from 114.88.153.172 port 36572 2020-05-16T12:03:23.612613shield sshd\[32012\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.88.153.172 2020-05-16T12:03:25.665623shield sshd\[32012\]: Failed password for invalid user amanda from 114.88.153.172 port 36572 ssh2 2020-05-16T12:07:25.701524shield sshd\[601\]: Invalid user mathew from 114.88.153.172 port 64440 2020-05-16T12:07:25.705344shield sshd\[601\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.88.153.172	2020-05-17 04:27:55
159.65.196.65	attackspambots	srv02 Mass scanning activity detected Target: 4996 ..	2020-05-17 04:44:22
198.108.67.26	attackbotsspam	05/16/2020-13:02:57.168706 198.108.67.26 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-05-17 04:20:40
42.233.251.22	attackspam	May 15 13:13:18 server6 sshd[4853]: reveeclipse mapping checking getaddrinfo for hn.kd.ny.adsl [42.233.251.22] failed - POSSIBLE BREAK-IN ATTEMPT! May 15 13:13:20 server6 sshd[4853]: Failed password for invalid user rpcuser from 42.233.251.22 port 47192 ssh2 May 15 13:13:20 server6 sshd[4853]: Received disconnect from 42.233.251.22: 11: Bye Bye [preauth] May 15 13:19:21 server6 sshd[11011]: reveeclipse mapping checking getaddrinfo for hn.kd.ny.adsl [42.233.251.22] failed - POSSIBLE BREAK-IN ATTEMPT! May 15 13:19:23 server6 sshd[11011]: Failed password for invalid user jairhostnameo from 42.233.251.22 port 39362 ssh2 May 15 13:19:23 server6 sshd[11011]: Received disconnect from 42.233.251.22: 11: Bye Bye [preauth] May 15 13:21:52 server6 sshd[13839]: reveeclipse mapping checking getaddrinfo for hn.kd.ny.adsl [42.233.251.22] failed - POSSIBLE BREAK-IN ATTEMPT! May 15 13:21:54 server6 sshd[13839]: Failed password for invalid user hadoop from 42.233.251.22 port 3202 ssh2 Ma........ -------------------------------	2020-05-17 04:23:52
178.128.217.58	attackbotsspam	May 16 22:35:26 jane sshd[16349]: Failed password for root from 178.128.217.58 port 45844 ssh2 ...	2020-05-17 04:49:23
93.170.36.5	attack	May 16 21:51:23 pve1 sshd[14416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.170.36.5 May 16 21:51:25 pve1 sshd[14416]: Failed password for invalid user ftpuser from 93.170.36.5 port 36442 ssh2 ...	2020-05-17 04:21:58
218.92.0.212	attackspam	May 16 22:52:26 server sshd[55296]: Failed none for root from 218.92.0.212 port 9250 ssh2 May 16 22:52:28 server sshd[55296]: Failed password for root from 218.92.0.212 port 9250 ssh2 May 16 22:52:31 server sshd[55296]: Failed password for root from 218.92.0.212 port 9250 ssh2	2020-05-17 04:57:37
51.83.77.224	attackspambots	2020-05-16T23:34:13.671530afi-git.jinr.ru sshd[17405]: Failed password for invalid user hadoop from 51.83.77.224 port 39586 ssh2 2020-05-16T23:37:59.049895afi-git.jinr.ru sshd[18582]: Invalid user mysql from 51.83.77.224 port 47122 2020-05-16T23:37:59.053082afi-git.jinr.ru sshd[18582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=224.ip-51-83-77.eu 2020-05-16T23:37:59.049895afi-git.jinr.ru sshd[18582]: Invalid user mysql from 51.83.77.224 port 47122 2020-05-16T23:38:00.842023afi-git.jinr.ru sshd[18582]: Failed password for invalid user mysql from 51.83.77.224 port 47122 ssh2 ...	2020-05-17 04:46:22
51.161.12.231	attackbots	05/16/2020-16:37:48.771755 51.161.12.231 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-05-17 04:58:21
167.114.92.50	attackbotsspam	C1,DEF GET /wp-config.php.1	2020-05-17 04:36:54
61.92.142.142	attackbotsspam	Spam sent to honeypot address	2020-05-17 04:40:16
34.85.110.55	attackbots	May 16 17:07:08 server sshd[12415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.85.110.55 May 16 17:07:10 server sshd[12415]: Failed password for invalid user homer from 34.85.110.55 port 49268 ssh2 May 16 17:10:18 server sshd[12967]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.85.110.55 ...	2020-05-17 04:38:53
95.85.9.94	attack	May 16 21:54:16 srv01 sshd[6333]: Invalid user imc from 95.85.9.94 port 39528 May 16 21:54:16 srv01 sshd[6333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.85.9.94 May 16 21:54:16 srv01 sshd[6333]: Invalid user imc from 95.85.9.94 port 39528 May 16 21:54:19 srv01 sshd[6333]: Failed password for invalid user imc from 95.85.9.94 port 39528 ssh2 May 16 22:01:51 srv01 sshd[6507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.85.9.94 user=root May 16 22:01:53 srv01 sshd[6507]: Failed password for root from 95.85.9.94 port 44066 ssh2 ...	2020-05-17 04:30:42
217.146.78.169	attackspam	May 16 22:17:40 host sshd[59620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=uvn-78-169.tll07.zonevs.eu user=root May 16 22:17:42 host sshd[59620]: Failed password for root from 217.146.78.169 port 60616 ssh2 ...	2020-05-17 04:18:35
142.93.216.68	attack	May 16 22:14:06 lukav-desktop sshd\[26380\]: Invalid user git from 142.93.216.68 May 16 22:14:06 lukav-desktop sshd\[26380\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.68 May 16 22:14:08 lukav-desktop sshd\[26380\]: Failed password for invalid user git from 142.93.216.68 port 47592 ssh2 May 16 22:17:52 lukav-desktop sshd\[26456\]: Invalid user deploy from 142.93.216.68 May 16 22:17:52 lukav-desktop sshd\[26456\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.68	2020-05-17 04:29:34

Recently Reported IPs

103.30.199.180	103.30.199.35	103.30.199.38	103.30.199.29
103.150.227.78	103.30.199.46	103.30.199.40	103.30.199.37
244.222.111.227	103.30.199.42	103.30.199.60	103.30.199.52
103.30.199.56	103.30.199.59	103.30.222.17	103.150.227.90
103.30.222.41	103.30.222.49	103.30.222.97	103.30.222.33