JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.159.207.2

103.159.207.2 was found in our database!

This IP was reported 780 times. Confidence of Abuse is 61%: ?

61%

ISP	Taiwan Internet Technology Co., Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS31972
Domain Name	ttns.com.tw
Country	🇹🇼 Taiwan
City	Banqiao, Taipei

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.159.207.2

Whois 103.159.207.2

IP Abuse Reports for 103.159.207.2:

This IP address has been reported a total of 780 times from 123 distinct sources. 103.159.207.2 was first reported on December 1st 2025, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 RCL	2026-06-03 16:52:42 (6 days ago)	BrainPredict.ai (Hetzner NBG1, Estonia EU company). Jail: sshd-permanent. Permanently banned for aut ... show more BrainPredict.ai (Hetzner NBG1, Estonia EU company). Jail: sshd-permanent. Permanently banned for automated malicious activity. Evidence: no log evidence available show less	Brute-Force SSH
🇩🇪 RCL	2026-05-31 16:27:26 (1 week ago)	BrainPredict.ai (Hetzner NBG1, Estonia EU company). Jail: sshd-permanent. Permanently banned for aut ... show more BrainPredict.ai (Hetzner NBG1, Estonia EU company). Jail: sshd-permanent. Permanently banned for automated malicious activity. Evidence: no log evidence available show less	Brute-Force SSH
🇮🇳 evicky2002	2026-05-27 06:00:00 (1 week ago)	Confirmed malicious by STILWaters CTI platform (score=100, sources=1)	Hacking Brute-Force SSH
Anonymous	2026-05-19 11:25:53 (3 weeks ago)	Mar 20 01:52:00 mail fail2ban.actions [619]: NOTICE [sshd] Ban 103.159.207.2 Mar 20 03:51:30 ... show more Mar 20 01:52:00 mail fail2ban.actions [619]: NOTICE [sshd] Ban 103.159.207.2 Mar 20 03:51:30 mail fail2ban.actions [619]: NOTICE [sshd] Ban 103.159.207.2 Mar 20 05:48:27 mail fail2ban.actions [619]: NOTICE [sshd] Ban 103.159.207.2 show less	Brute-Force SSH
Anonymous	2026-05-15 13:26:31 (3 weeks ago)	Mar 20 01:52:00 mail fail2ban.actions [619]: NOTICE [sshd] Ban 103.159.207.2 Mar 20 03:51:30 ... show more Mar 20 01:52:00 mail fail2ban.actions [619]: NOTICE [sshd] Ban 103.159.207.2 Mar 20 03:51:30 mail fail2ban.actions [619]: NOTICE [sshd] Ban 103.159.207.2 Mar 20 05:48:27 mail fail2ban.actions [619]: NOTICE [sshd] Ban 103.159.207.2 show less	Brute-Force SSH
Anonymous	2026-05-04 03:24:09 (1 month ago)	Mar 20 01:52:00 mail fail2ban.actions [619]: NOTICE [sshd] Ban 103.159.207.2 Mar 20 03:51:30 ... show more Mar 20 01:52:00 mail fail2ban.actions [619]: NOTICE [sshd] Ban 103.159.207.2 Mar 20 03:51:30 mail fail2ban.actions [619]: NOTICE [sshd] Ban 103.159.207.2 Mar 20 05:48:27 mail fail2ban.actions [619]: NOTICE [sshd] Ban 103.159.207.2 show less	Brute-Force SSH
🇬🇧 andypiper	2026-05-01 01:00:04 (1 month ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇨🇳 ThreatBook.io	2026-05-01 00:17:00 (1 month ago)	ThreatBook Intelligence: Scanner,Gateway more details on https://threatbook.io/ip/103.159.207.2	SSH
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-29 21:40:34 (1 month ago)	Honeypot hit: Brute-force attack detected on 22/SSH • Credential used: root:q123456y • Number of log ... show more Honeypot hit: Brute-force attack detected on 22/SSH • Credential used: root:q123456y • Number of login attempts: 1 • Client: SSH-2.0-phpseclib_1.0 (openssl) show less	Hacking SSH
🇦🇺 LiftUp Hosting	2026-04-29 19:57:41 (1 month ago)	Honeypot hit: Brute-force attack detected on 22/SSH • Credential used: root:q123456y • Number of log ... show more Honeypot hit: Brute-force attack detected on 22/SSH • Credential used: root:q123456y • Number of login attempts: 1 • Client: SSH-2.0-phpseclib_1.0 (openssl) show less	SSH
🇧🇩 sakibmas	2026-04-29 18:00:53 (1 month ago)	Apr 30 00:00:50 rcloud sshd[1710660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 eu ... show more Apr 30 00:00:50 rcloud sshd[1710660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.159.207.2 Apr 30 00:00:52 rcloud sshd[1710660]: Failed password for invalid user ubuntu from 103.159.207.2 port 58986 ssh2 ... show less	Brute-Force SSH
🇧🇩 sakibmas	2026-04-29 16:43:52 (1 month ago)	2026-04-29T22:43:49.773674+06:00 passbolt sshd[1225867]: pam_unix(sshd:auth): authentication failure ... show more 2026-04-29T22:43:49.773674+06:00 passbolt sshd[1225867]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.159.207.2 2026-04-29T22:43:51.586602+06:00 passbolt sshd[1225867]: Failed password for invalid user ubuntu from 103.159.207.2 port 52812 ssh2 ... show less	Brute-Force SSH
🇭🇰 edisonjwa	2026-04-29 14:42:24 (1 month ago)	2026-04-28T15:38:42.621849+00:00 localhost sshd-session[138818]: error: PAM: Authentication failure ... show more 2026-04-28T15:38:42.621849+00:00 localhost sshd-session[138818]: error: PAM: Authentication failure for root from 103.159.207.2 2026-04-28T21:24:14.870871+00:00 localhost sshd-session[140592]: Invalid user ubuntu from 103.159.207.2 port 33254 2026-04-29T03:08:21.691026+00:00 localhost sshd-session[142549]: Invalid user ubuntu from 103.159.207.2 port 34496 2026-04-29T08:55:40.446255+00:00 localhost sshd-session[144298]: error: PAM: Authentication failure for root from 103.159.207.2 2026-04-29T14:42:22.800334+00:00 localhost sshd-session[146020]: Invalid user ubuntu from 103.159.207.2 port 48786 ... show less	Port Scan Brute-Force SSH
🇧🇩 sakibmas	2026-04-29 14:41:49 (1 month ago)	2026-04-29T20:41:46.210098+06:00 fs sshd[374103]: pam_unix(sshd:auth): authentication failure; logna ... show more 2026-04-29T20:41:46.210098+06:00 fs sshd[374103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.159.207.2 2026-04-29T20:41:48.034060+06:00 fs sshd[374103]: Failed password for invalid user ubuntu from 103.159.207.2 port 56246 ssh2 ... show less	Brute-Force SSH
🇦🇺 LiftUp Hosting	2026-04-29 08:27:30 (1 month ago)	Honeypot hit: Brute-force attack detected on 22/SSH • Credential used: root:root@localhost • Number ... show more Honeypot hit: Brute-force attack detected on 22/SSH • Credential used: root:root@localhost • Number of login attempts: 1 • Client: SSH-2.0-phpseclib_1.0 (openssl) show less	SSH

Showing 1 to 15 of 780 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.106.133.202

🇨🇴 190.216.132.206

🇫🇷 173.249.45.68

🇺🇸 23.94.14.160

🇹🇼 198.235.24.100

🇨🇳 103.56.155.148

🇺🇸 69.55.59.200

🇵🇰 223.123.72.142

🇺🇸 135.119.89.139

🇵🇰 39.44.9.181

🇨🇳 14.22.79.82

🇷🇴 2.57.122.177

🇨🇦 195.63.18.243

🇧🇷 179.184.160.50

🇺🇸 147.185.132.92

🇸🇬 128.199.231.249

🇨🇳 118.212.121.235

🇮🇹 34.154.182.38

🇨🇦 217.181.80.161

🇳🇱 185.226.197.13