Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: RM 107A Fuk Keung Industrial Bldg Mongkok Hong Kong

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:
Make a comment on this IP
Type Details Datetime
attack 
Sep 16 10:22:45 mc1 kernel: \[1172714.922862\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=103.56.139.241 DST=159.69.205.51 LEN=52 TOS=0x02 PREC=0x00 TTL=115 ID=23077 DF PROTO=TCP SPT=59461 DPT=80 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0 
Sep 16 10:22:48 mc1 kernel: \[1172717.919524\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=103.56.139.241 DST=159.69.205.51 LEN=52 TOS=0x02 PREC=0x00 TTL=115 ID=23078 DF PROTO=TCP SPT=59461 DPT=80 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0 
Sep 16 10:22:48 mc1 kernel: \[1172717.933460\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=103.56.139.241 DST=159.69.205.51 LEN=52 TOS=0x02 PREC=0x00 TTL=115 ID=23079 DF PROTO=TCP SPT=59915 DPT=8080 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0 
...
 2019-09-16 23:07:51
Comments on same subnet:
IP Type Details Datetime
103.56.139.41 attackspambots 
445/tcp 445/tcp 445/tcp
[2019-07-02/10]3pkt
 2019-07-10 22:34:19
103.56.139.41 attack 
Unauthorized connection attempt from IP address 103.56.139.41 on Port 445(SMB)
 2019-07-08 11:12:22
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.56.139.241
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27133
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.56.139.241.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091600 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Sep 16 23:07:18 CST 2019
;; MSG SIZE  rcvd: 118
Host info
Host 241.139.56.103.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 241.139.56.103.in-addr.arpa: NXDOMAIN
Related IP info:
103.56.139.2
103.56.139.88
103.56.139.140
103.56.139.190
103.56.139.236
103.56.139.171
103.56.139.216
103.56.139.155
103.56.139.151
103.56.139.168
103.56.139.1
103.56.139.33
103.56.139.224
103.56.139.161
103.56.139.109
103.56.139.181
103.56.139.40
103.56.139.5
103.56.139.121
103.56.139.170
103.56.139.138
103.56.139.215
103.56.139.65
103.56.139.114
103.56.139.62
103.56.139.24
103.56.139.139
103.56.139.129
103.56.139.52
103.56.139.106
103.56.139.75
103.56.139.79
103.56.139.44
103.56.139.57
103.56.139.38
103.56.139.115
103.56.139.193
103.56.139.136
103.56.139.247
103.56.139.191
103.56.139.117
103.56.139.58
103.56.139.198
103.56.139.66
103.56.139.126
103.56.139.107
103.56.139.165
103.56.139.203
103.56.139.22
103.56.139.116
103.56.139.74
103.56.139.197
103.56.139.119
103.56.139.108
103.56.139.172
103.56.139.67
103.56.139.98
103.56.139.42
103.56.139.101
103.56.139.27
103.56.139.55
103.56.139.71
103.56.139.182
103.56.139.32
103.56.139.207
103.56.139.162
103.56.139.194
103.56.139.222
103.56.139.20
103.56.139.217
103.56.139.183
103.56.139.209
103.56.139.113
103.56.139.61
103.56.139.238
103.56.139.23
103.56.139.231
103.56.139.248
103.56.139.189
103.56.139.86
103.56.139.15
103.56.139.250
103.56.139.118
103.56.139.47
103.56.139.19
103.56.139.102
103.56.139.146
103.56.139.213
103.56.139.72
103.56.139.10
103.56.139.6
103.56.139.76
103.56.139.135
103.56.139.244
103.56.139.110
103.56.139.206
103.56.139.178
103.56.139.186
103.56.139.147
103.56.139.169
103.56.139.149
103.56.139.218
103.56.139.89
103.56.139.35
103.56.139.26
103.56.139.210
103.56.139.242
103.56.139.228
103.56.139.49
103.56.139.152
103.56.139.174
103.56.139.90
103.56.139.100
103.56.139.81
103.56.139.54
103.56.139.142
103.56.139.3
103.56.139.124
103.56.139.84
103.56.139.195
103.56.139.69
103.56.139.87
103.56.139.99
103.56.139.12
103.56.139.68
103.56.139.112
103.56.139.80
103.56.139.7
103.56.139.148
103.56.139.225
103.56.139.202
103.56.139.130
103.56.139.254
103.56.139.53
103.56.139.131
103.56.139.93
103.56.139.132
103.56.139.4
103.56.139.134
103.56.139.230
103.56.139.199
103.56.139.153
103.56.139.188
103.56.139.177
103.56.139.85
103.56.139.30
103.56.139.82
103.56.139.125
103.56.139.91
103.56.139.211
103.56.139.221
103.56.139.48
103.56.139.163
103.56.139.220
103.56.139.175
103.56.139.133
103.56.139.212
103.56.139.154
103.56.139.9
103.56.139.184
103.56.139.232
103.56.139.252
103.56.139.233
103.56.139.246
103.56.139.34
103.56.139.25
103.56.139.95
103.56.139.83
103.56.139.31
103.56.139.201
103.56.139.46
103.56.139.156
103.56.139.105
103.56.139.200
103.56.139.167
103.56.139.180
103.56.139.8
103.56.139.150
103.56.139.77
103.56.139.17
103.56.139.245
103.56.139.253
103.56.139.50
103.56.139.13
103.56.139.51
103.56.139.45
103.56.139.123
103.56.139.185
103.56.139.166
103.56.139.237
103.56.139.14
103.56.139.208
103.56.139.196
103.56.139.73
103.56.139.41
103.56.139.240
103.56.139.96
103.56.139.144
103.56.139.11
103.56.139.127
103.56.139.145
103.56.139.214
103.56.139.159
103.56.139.227
103.56.139.137
103.56.139.128
103.56.139.39
103.56.139.143
103.56.139.78
103.56.139.43
103.56.139.179
103.56.139.226
103.56.139.157
103.56.139.29
103.56.139.63
103.56.139.192
103.56.139.21
103.56.139.173
103.56.139.59
103.56.139.111
103.56.139.103
103.56.139.234
103.56.139.176
103.56.139.239
103.56.139.18
103.56.139.70
103.56.139.204
103.56.139.223
103.56.139.28
103.56.139.56
103.56.139.164
103.56.139.205
103.56.139.235
103.56.139.158
103.56.139.141
103.56.139.16
103.56.139.120
103.56.139.94
103.56.139.37
103.56.139.219
103.56.139.36
103.56.139.249
103.56.139.104
103.56.139.229
103.56.139.92
103.56.139.64
103.56.139.97
103.56.139.60
103.56.139.243
103.56.139.187
103.56.139.122
103.56.139.251
103.56.139.160
103.56.139.241
Related comments:
IP Type Details Datetime
36.229.84.250 attackspam 
[portscan] tcp/23 [TELNET]
*(RWIN=54463)(08050931)
 2019-08-05 18:14:27
190.140.137.18 attack 
[portscan] tcp/23 [TELNET]
*(RWIN=13090)(08050931)
 2019-08-05 18:21:59
49.76.69.117 attackspam 
[portscan] tcp/23 [TELNET]
*(RWIN=36968)(08050931)
 2019-08-05 17:58:47
175.18.196.227 attackspam 
[portscan] tcp/23 [TELNET]
*(RWIN=29991)(08050931)
 2019-08-05 17:23:34
107.170.195.246 attackspam 
[portscan] tcp/26 [tcp/26]
*(RWIN=65535)(08050931)
 2019-08-05 18:32:41
36.224.107.180 attackspam 
[portscan] tcp/23 [TELNET]
*(RWIN=6980)(08050931)
 2019-08-05 17:38:53
200.113.19.251 attack 
[SMB remote code execution attempt: port tcp/445]
*(RWIN=1024)(08050931)
 2019-08-05 18:21:00
35.205.202.174 attackspambots 
[portscan] tcp/1433 [MsSQL]
*(RWIN=65535)(08050931)
 2019-08-05 18:39:27
154.90.10.85 attackspambots 
[SMB remote code execution attempt: port tcp/445]
*(RWIN=8192)(08050931)
 2019-08-05 18:26:46
105.208.59.102 attack 
[portscan] tcp/23 [TELNET]
*(RWIN=14600)(08050931)
 2019-08-05 18:33:13
81.12.94.122 attack 
[SMB remote code execution attempt: port tcp/445]
*(RWIN=1024)(08050931)
 2019-08-05 17:33:43
43.240.117.216 attackbots 
[SMB remote code execution attempt: port tcp/445]
*(RWIN=1024)(08050931)
 2019-08-05 17:36:07
35.195.6.14 attack 
[portscan] tcp/1433 [MsSQL]
*(RWIN=65535)(08050931)
 2019-08-05 18:40:04
82.147.149.42 attackbots 
[SMB remote code execution attempt: port tcp/445]
*(RWIN=1024)(08050931)
 2019-08-05 17:33:05
185.24.235.145 attack 
[SMB remote code execution attempt: port tcp/445]
*(RWIN=1024)(08050931)
 2019-08-05 17:47:05

Recently Reported IPs

236.247.90.230 180.101.125.226 170.185.255.224 54.29.93.176
86.180.251.119 17.199.100.2 113.110.126.122 196.244.50.46
129.65.72.130 155.94.222.154 124.231.140.236 75.195.73.81
36.33.230.221 233.245.162.211 233.94.76.161 35.133.166.154
233.137.84.130 137.144.214.53 135.112.55.201 91.199.99.95