103.39.21.70 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: New Zealand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
103.39.213.170	attackbots	Sep 28 10:14:32 plex-server sshd[3768203]: Invalid user factorio from 103.39.213.170 port 56456 Sep 28 10:14:32 plex-server sshd[3768203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.39.213.170 Sep 28 10:14:32 plex-server sshd[3768203]: Invalid user factorio from 103.39.213.170 port 56456 Sep 28 10:14:34 plex-server sshd[3768203]: Failed password for invalid user factorio from 103.39.213.170 port 56456 ssh2 Sep 28 10:16:57 plex-server sshd[3769152]: Invalid user rodrigo from 103.39.213.170 port 33728 ...	2020-09-28 20:37:12
103.39.213.170	attack	Sep 28 04:27:16 vps-51d81928 sshd[433170]: Invalid user adam from 103.39.213.170 port 58402 Sep 28 04:27:16 vps-51d81928 sshd[433170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.39.213.170 Sep 28 04:27:16 vps-51d81928 sshd[433170]: Invalid user adam from 103.39.213.170 port 58402 Sep 28 04:27:18 vps-51d81928 sshd[433170]: Failed password for invalid user adam from 103.39.213.170 port 58402 ssh2 Sep 28 04:29:20 vps-51d81928 sshd[433181]: Invalid user cai from 103.39.213.170 port 55372 ...	2020-09-28 12:43:58
103.39.213.133	attack	(sshd) Failed SSH login from 103.39.213.133 (CN/China/Guangdong/Shenzhen (Nanshan Qu)/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 24 18:59:26 atlas sshd[27333]: Invalid user toto from 103.39.213.133 port 44932 Sep 24 18:59:27 atlas sshd[27333]: Failed password for invalid user toto from 103.39.213.133 port 44932 ssh2 Sep 24 19:07:37 atlas sshd[29270]: Invalid user ds from 103.39.213.133 port 42272 Sep 24 19:07:39 atlas sshd[29270]: Failed password for invalid user ds from 103.39.213.133 port 42272 ssh2 Sep 24 19:17:09 atlas sshd[31435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.39.213.133 user=root	2020-09-25 10:36:42
103.39.216.123	attack	SSH brute force attempt	2020-08-30 01:41:01
103.39.216.123	attack	$f2bV_matches	2020-08-24 17:50:10
103.39.213.133	attack	2020-07-29T15:40[Censored Hostname] sshd[10166]: Invalid user liyuan from 103.39.213.133 port 42770 2020-07-29T15:40[Censored Hostname] sshd[10166]: Failed password for invalid user liyuan from 103.39.213.133 port 42770 ssh2 2020-07-29T15:46[Censored Hostname] sshd[13256]: Invalid user xuzhendong from 103.39.213.133 port 46304[...]	2020-07-30 00:15:30
103.39.219.76	attack	Invalid user mirc from 103.39.219.76 port 36312	2020-07-28 07:50:30
103.39.219.76	attackbotsspam	2020-07-25T19:23:02.456695afi-git.jinr.ru sshd[32062]: Invalid user 1234 from 103.39.219.76 port 34934 2020-07-25T19:23:02.459997afi-git.jinr.ru sshd[32062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.39.219.76 2020-07-25T19:23:02.456695afi-git.jinr.ru sshd[32062]: Invalid user 1234 from 103.39.219.76 port 34934 2020-07-25T19:23:04.301893afi-git.jinr.ru sshd[32062]: Failed password for invalid user 1234 from 103.39.219.76 port 34934 ssh2 2020-07-25T19:27:11.699191afi-git.jinr.ru sshd[778]: Invalid user testuser from 103.39.219.76 port 48252 ...	2020-07-26 01:01:53
103.39.219.76	attackspam	$f2bV_matches	2020-07-20 19:55:20
103.39.216.131	attack	$f2bV_matches	2020-07-05 01:47:12
103.39.213.133	attack	Fail2Ban - SSH Bruteforce Attempt	2020-07-04 08:58:49
103.39.211.122	attackbots	SSH invalid-user multiple login try	2020-07-02 02:08:04
103.39.217.240	attack	Jun 20 23:05:54 ift sshd\[49487\]: Failed password for root from 103.39.217.240 port 50388 ssh2Jun 20 23:10:48 ift sshd\[50406\]: Invalid user test from 103.39.217.240Jun 20 23:10:50 ift sshd\[50406\]: Failed password for invalid user test from 103.39.217.240 port 38994 ssh2Jun 20 23:13:28 ift sshd\[50663\]: Failed password for root from 103.39.217.240 port 38226 ssh2Jun 20 23:15:50 ift sshd\[51109\]: Invalid user prashant from 103.39.217.240 ...	2020-06-21 04:50:02
103.39.213.133	attackspambots	Jun 16 17:48:13 ws22vmsma01 sshd[127322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.39.213.133 Jun 16 17:48:15 ws22vmsma01 sshd[127322]: Failed password for invalid user gta from 103.39.213.133 port 48326 ssh2 ...	2020-06-17 05:10:48
103.39.219.76	attackspambots	Invalid user kc from 103.39.219.76 port 45158	2020-06-13 17:26:22

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.39.21.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15169
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.39.21.70.			IN	A

;; AUTHORITY SECTION:
.			48	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 23:52:56 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 70.21.39.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 70.21.39.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.192.76.196	attackbots	103.192.76.196 - admin \[23/Nov/2019:22:24:12 -0800\] "GET /rss/order/new HTTP/1.1" 401 25103.192.76.196 - admin \[23/Nov/2019:22:28:33 -0800\] "GET /rss/order/new HTTP/1.1" 401 25103.192.76.196 - admin \[23/Nov/2019:22:28:38 -0800\] "GET /rss/order/new HTTP/1.1" 401 25 ...	2019-11-24 15:31:22
222.252.25.241	attack	SSH brutforce	2019-11-24 15:34:32
166.62.39.236	attack	Automatic report - XMLRPC Attack	2019-11-24 15:42:19
182.16.103.136	attackbots	Nov 23 21:19:55 hanapaa sshd\[27642\]: Invalid user ching from 182.16.103.136 Nov 23 21:19:55 hanapaa sshd\[27642\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.16.103.136 Nov 23 21:19:57 hanapaa sshd\[27642\]: Failed password for invalid user ching from 182.16.103.136 port 41852 ssh2 Nov 23 21:24:40 hanapaa sshd\[28020\]: Invalid user sity from 182.16.103.136 Nov 23 21:24:40 hanapaa sshd\[28020\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.16.103.136	2019-11-24 15:34:52
78.128.113.123	attackbotsspam	Nov 20 10:01:55 xzibhostname postfix/smtpd[9657]: warning: hostname ip-113-123.4vendeta.com does not resolve to address 78.128.113.123: Name or service not known Nov 20 10:01:55 xzibhostname postfix/smtpd[9657]: connect from unknown[78.128.113.123] Nov 20 10:01:57 xzibhostname postfix/smtpd[9657]: warning: unknown[78.128.113.123]: SASL PLAIN authentication failed: authentication failure Nov 20 10:01:57 xzibhostname postfix/smtpd[9657]: lost connection after AUTH from unknown[78.128.113.123] Nov 20 10:01:57 xzibhostname postfix/smtpd[9657]: disconnect from unknown[78.128.113.123] Nov 20 10:01:57 xzibhostname postfix/smtpd[11470]: warning: hostname ip-113-123.4vendeta.com does not resolve to address 78.128.113.123: Name or service not known Nov 20 10:01:57 xzibhostname postfix/smtpd[11470]: connect from unknown[78.128.113.123] Nov 20 10:01:57 xzibhostname postfix/smtpd[9657]: warning: hostname ip-113-123.4vendeta.com does not resolve to address 78.128.113.123: Name or ser........ -------------------------------	2019-11-24 15:35:22
147.139.135.52	attackspam	Nov 24 01:28:10 TORMINT sshd\[18816\]: Invalid user vcsa from 147.139.135.52 Nov 24 01:28:10 TORMINT sshd\[18816\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.135.52 Nov 24 01:28:12 TORMINT sshd\[18816\]: Failed password for invalid user vcsa from 147.139.135.52 port 60160 ssh2 ...	2019-11-24 15:46:53
119.27.177.251	attackspam	Nov 24 06:53:38 localhost sshd\[22248\]: Invalid user !!!! from 119.27.177.251 port 48092 Nov 24 06:53:38 localhost sshd\[22248\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.27.177.251 Nov 24 06:53:40 localhost sshd\[22248\]: Failed password for invalid user !!!! from 119.27.177.251 port 48092 ssh2 Nov 24 07:02:22 localhost sshd\[22528\]: Invalid user 777777777 from 119.27.177.251 port 54942 Nov 24 07:02:22 localhost sshd\[22528\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.27.177.251 ...	2019-11-24 15:25:37
159.203.201.88	attack	Unauthorised access (Nov 24) SRC=159.203.201.88 LEN=40 PREC=0x20 TTL=241 ID=54321 TCP DPT=8080 WINDOW=65535 SYN	2019-11-24 15:21:23
152.136.40.21	attack	11/24/2019-02:36:54.534619 152.136.40.21 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-11-24 15:52:40
199.249.230.66	attackbots	[24/Nov/2019:07:28:12 +0100] Web-Request: "GET /administrator/index.php", User-Agent: "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/31.0.1623.0 Safari/537.36"	2019-11-24 15:45:15
177.189.244.193	attack	Nov 24 07:26:17 *** sshd[10007]: Invalid user dovecot from 177.189.244.193	2019-11-24 15:28:03
93.125.99.72	attackbotsspam	Automatic report - XMLRPC Attack	2019-11-24 15:24:36
106.13.16.205	attackspam	Nov 23 21:11:40 eddieflores sshd\[29348\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.16.205 user=root Nov 23 21:11:42 eddieflores sshd\[29348\]: Failed password for root from 106.13.16.205 port 52620 ssh2 Nov 23 21:20:23 eddieflores sshd\[29991\]: Invalid user ident from 106.13.16.205 Nov 23 21:20:23 eddieflores sshd\[29991\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.16.205 Nov 23 21:20:25 eddieflores sshd\[29991\]: Failed password for invalid user ident from 106.13.16.205 port 58324 ssh2	2019-11-24 15:23:01
115.159.122.190	attack	Nov 24 07:23:06 work-partkepr sshd\[15490\]: Invalid user stp from 115.159.122.190 port 39290 Nov 24 07:23:06 work-partkepr sshd\[15490\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.122.190 ...	2019-11-24 15:30:47
50.116.123.103	attack	" "	2019-11-24 15:33:08

Recently Reported IPs

103.150.61.58	103.39.211.134	103.39.212.122	103.39.215.115
103.39.215.120	103.39.215.122	103.39.215.125	103.39.215.118
103.39.215.130	103.39.215.108	103.150.61.85	103.39.215.116
103.39.215.134	103.39.215.136	103.39.215.198	103.39.236.138
103.39.215.132	103.150.61.99	103.39.237.113	103.39.237.246