AbuseIPDB » 103.139.213.234

103.139.213.234 was found in our database!

This IP was reported 316 times. Confidence of Abuse is 51%: ?

51%

ISP	Yunduan Interchange (Beijing) Computer Technology Co. Ltd.
Usage Type	Data Center/Web Hosting/Transit
Domain Name	ucache.cn
Country	China
City	Beijing, Beijing

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 103.139.213.234

Whois 103.139.213.234

IP Abuse Reports for 103.139.213.234:

This IP address has been reported a total of 316 times from 102 distinct sources. 103.139.213.234 was first reported on June 16th 2021, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	Date	Comment	Categories
Parth Maniar	23 May 2022	SSH login attempts (SSH bruteforce attack). For more information, or to report interesting/incorrect ... show moreSSH login attempts (SSH bruteforce attack). For more information, or to report interesting/incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Brute-Force SSH
Emily	23 May 2022	May 23 09:46:03 box kernel: [334519.614449] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=103.139.213.23 ... show moreMay 23 09:46:03 box kernel: [334519.614449] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=103.139.213.234 DST=[munged] LEN=44 TOS=0x00 PREC=0x00 TTL=245 ID=64768 PROTO=TCP SPT=65317 DPT=8081 WINDOW=512 RES=0x00 SYN URGP=0 May 23 09:46:03 box kernel: [334519.614532] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=103.139.213.234 DST=[munged] LEN=44 TOS=0x00 PREC=0x00 TTL=245 ID=64763 PROTO=TCP SPT=65318 DPT=8008 WINDOW=512 RES=0x00 SYN URGP=0 May 23 09:46:03 box kernel: [334519.614566] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=103.139.213.234 DST=[munged] LEN=44 TOS=0x00 PREC=0x00 TTL=245 ID=65080 PROTO=TCP SPT=65318 DPT=8088 WINDOW=512 RES=0x00 SYN URGP=0 May 23 09:46:03 box kernel: [334519.615230] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=103.139.213.234 DST=[munged] LEN=44 TOS=0x00 PREC=0x00 TTL=245 ID=65045 PROTO=TCP SPT=65318 DPT=8080 WINDOW=512 RES=0x00 SYN URGP=0 May 23 09:46:03 box kernel: [334519.615688] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=103.139.213.234 DST=[munged] LEN=44 TOS=0x00 PREC=0x00 TTL=24 show less	Port Scan
ozisp.com.au	21 May 2022	CN_China Networks Inter-Exchange_<33>1653147963 [1:2403492:74565] ET CINS Active Threat Intelligence ... show moreCN_China Networks Inter-Exchange_<33>1653147963 [1:2403492:74565] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 97 [Classification: Misc Attack] [Priority: 2] {TCP} 103.139.213.234:65530 show less	Hacking
ISPLtd	20 May 2022	May 20 07:09:02 SRC=103.139.213.234 PROTO=TCP SPT=65330 DPT=8443 SYN May 20 07:09:13 SRC=103.1 ... show moreMay 20 07:09:02 SRC=103.139.213.234 PROTO=TCP SPT=65330 DPT=8443 SYN May 20 07:09:13 SRC=103.139.213.234 PROTO=TCP SPT=65330 DPT=8443 SYN May 20 07:09:24 SRC=103.139.213.234 PROTO=TCP SPT=65330 DPT=8443 ... show less	Port Scan
nfrelink	19 May 2022	SSH login attempts (endlessh): May 19 23:34:25 xxxx.1rs.eu endlessh[727]: 2022-05-19T23:34:25.225Z A ... show moreSSH login attempts (endlessh): May 19 23:34:25 xxxx.1rs.eu endlessh[727]: 2022-05-19T23:34:25.225Z ACCEPT host=::ffff:103.139.213.234 port=65307 fd=4 n=1/4096 show less	Brute-Force SSH
kumiko	19 May 2022	[2022-05-20 01:11:10] Unauthorized port scan/probing (3 times on port 22) Blocked by UFW	Port Scan SSH
rodion-network.com	19 May 2022	May 19 15:38:35 serverargentina sshd[25640]: Did not receive identification string from 103.139.213. ... show moreMay 19 15:38:35 serverargentina sshd[25640]: Did not receive identification string from 103.139.213.234 port 65437 ... show less	Brute-Force SSH
rodion-network.com	19 May 2022	IP Address: 103.139.213.234 triggered Attack on Port 3389.	Port Scan Hacking
kumiko	19 May 2022	[2022-05-19 14:21:07] Unauthorized port scan/probing (3 times on port 5060) Blocked by UFW	Port Scan
security.rdmc.fr	19 May 2022	Automatic report - VoIP Attack proto:TCP src:65530 dst:5060	Fraud VoIP Port Scan
Anonymous	19 May 2022	port scan and connect, tcp 80 (http)	Port Scan
kumiko	19 May 2022	[2022-05-19 10:17:37] Unauthorized port scan/probing (3 times on port 7547) Blocked by UFW	Port Scan
Anonymous	19 May 2022	port scan and connect, tcp 443 (https)	Port Scan
www.serverprotection.dev	19 May 2022	Attempt to access port 22 by IP 103.139.213.234	Port Scan
QUADEMU Abuse	19 May 2022	Noxious/Nuisible/вредоносный Host.	Port Scan Brute-Force

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩