JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.211.200.202

103.211.200.202 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 94%: ?

94%

ISP	NOVA SQUARE LIMITED
Usage Type	Data Center/Web Hosting/Transit
ASN	AS135918
Domain Name	novasquare.vn
Country	🇻🇳 Viet Nam
City	Ho Chi Minh City, Ho Chi Minh City (HCMC)

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.211.200.202

Whois 103.211.200.202

IP Abuse Reports for 103.211.200.202:

This IP address has been reported a total of 34 times from 28 distinct sources. 103.211.200.202 was first reported on October 14th 2024, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 ghostwarriors	2026-06-17 06:20:25 (3 days ago)	Unauthorized connection attempt detected, SSH Brute-Force	Brute-Force Port Scan SSH
🇨🇭 altux	2026-06-17 05:51:15 (3 days ago)	2026-06-17T07:51:06.071272webmail sshd[2289860]: Failed password for root from 103.211.200.202 port ... show more 2026-06-17T07:51:06.071272webmail sshd[2289860]: Failed password for root from 103.211.200.202 port 47754 ssh2 2026-06-17T07:51:08.073903webmail sshd[2290068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.211.200.202 user=root 2026-06-17T07:51:10.306459webmail sshd[2290068]: Failed password for root from 103.211.200.202 port 47762 ssh2 2026-06-17T07:51:12.102984webmail sshd[2290346]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.211.200.202 user=root 2026-06-17T07:51:13.884026webmail sshd[2290346]: Failed password for root from 103.211.200.202 port 41444 ssh2 ... show less	Brute-Force SSH
🇬🇧 kipfel★	2026-06-17 03:41:14 (3 days ago)	2026-06-17T04:41:11.226391+01:00 hh-vm-a14-5t-lon sshd-session[111459]: Invalid user user from 103.2 ... show more 2026-06-17T04:41:11.226391+01:00 hh-vm-a14-5t-lon sshd-session[111459]: Invalid user user from 103.211.200.202 port 52802 2026-06-17T04:41:12.643273+01:00 hh-vm-a14-5t-lon sshd-session[111461]: Invalid user user from 103.211.200.202 port 52812 2026-06-17T04:41:14.059618+01:00 hh-vm-a14-5t-lon sshd-session[111463]: Invalid user user from 103.211.200.202 port 52818 ... show less	Brute-Force SSH
🇮🇹 alph44	2026-06-17 03:33:01 (3 days ago)	SSH brute force attack detected: 5 failed attempts	Brute-Force
🇫🇮 bittiguru.fi	2026-06-17 03:20:18 (3 days ago)	Jun 17 06:20:14 www10 sshd[3591111]: Failed password for root from 103.211.200.202 port 40474 ssh2 J ... show more Jun 17 06:20:14 www10 sshd[3591111]: Failed password for root from 103.211.200.202 port 40474 ssh2 Jun 17 06:20:16 www10 sshd[3591113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.211.200.202 user=root Jun 17 06:20:18 www10 sshd[3591113]: Failed password for root from 103.211.200.202 port 40484 ssh2 ... show less	Brute-Force SSH
🇫🇮 bittiguru.fi	2026-06-17 03:05:04 (3 days ago)	Jun 17 06:04:59 www10 sshd[3590191]: Failed password for root from 103.211.200.202 port 46952 ssh2 J ... show more Jun 17 06:04:59 www10 sshd[3590191]: Failed password for root from 103.211.200.202 port 46952 ssh2 Jun 17 06:05:01 www10 sshd[3590195]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.211.200.202 user=root Jun 17 06:05:03 www10 sshd[3590195]: Failed password for root from 103.211.200.202 port 35382 ssh2 ... show less	Brute-Force SSH
🇺🇸 MPL	2026-06-17 02:19:07 (3 days ago)	tcp/22 (4 or more attempts)	Port Scan
🇳🇱 rrn4444	2026-06-17 01:34:28 (3 days ago)	$f2bV_matches	Brute-Force SSH
🇩🇪 kexol	2026-06-17 01:03:27 (3 days ago)	unauthorized ssh login attempt	Brute-Force SSH
🇺🇸 ras07	2026-06-17 01:00:11 (3 days ago)	Brute force SSH login attempts.	Brute-Force SSH
🇨🇦 Tanados	2026-06-17 00:25:21 (3 days ago)	Blocked by UFW [22/tcp] Source port: 50404 TTL: 43 Packet length: 60 TOS: 0x00 This report was gene ... show more Blocked by UFW [22/tcp] Source port: 50404 TTL: 43 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan SSH
Anonymous	2026-06-16 19:10:16 (3 days ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇨🇿 lp	2026-06-15 21:18:54 (4 days ago)	SSH Brute force: 91 attempts were recorded from 103.211.200.202 2026-06-15T23:07:52+02:00 Connection ... show more SSH Brute force: 91 attempts were recorded from 103.211.200.202 2026-06-15T23:07:52+02:00 Connection closed by authenticating user root 103.211.200.202 port 52470 [preauth] 2026-06-15T23:07:53+02:00 Connection closed by authenticating user root 103.211.200.202 port 52480 [preauth] 2026-06-15T23:07:54+02:00 Connection closed by authenticating user root 103.211.200.202 port 52486 [preauth] 2026-06-15T23:07:55+02:00 Connection closed by authenticating user root 103.211.200.202 port 45736 [preauth] 2026-06-15T23:07:57+02:00 Connection closed by authenticating user root 103.211.200.202 port 45738 [preauth] 2026-06-15T23:07:58+02:00 Connection closed by authenticating user root 103.211.200.202 port 45742 [preauth] 2026-06-15T23:07:59+02:00 Connection closed by authenticating user root 103.211.200.202 port 45744 [preauth] 2026-06-15T23:08:01+02:00 Connection closed by authenticating user root 1 show less	Brute-Force SSH
🇺🇸 Tect.host	2026-06-15 20:52:36 (4 days ago)	Brute-force SSH server detected by Fail2ban	Brute-Force SSH
🇦🇺 LiftUp Hosting	2026-06-15 19:38:05 (4 days ago)	Honeypot hit: Brute-force attack detected on 22/SSH • Credentials: root:ubuntu, root:debian, root:ce ... show more Honeypot hit: Brute-force attack detected on 22/SSH • Credentials: root:ubuntu, root:debian, root:centos, root:linux • Number of login attempts: 4 • 1 command(s) were executed during the session • Client: SSH-2.0-Go • Uploaded files: sshd show less	Brute-Force SSH Hacking

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 198.235.24.102

🇵🇱 2a05:f480:2400:1f3f:5400:4ff:fea6:6bdb

🇺🇸 216.25.89.156

🇹🇼 211.20.14.156

🇬🇧 194.50.235.135

🇮🇳 168.144.92.125

🇻🇳 103.200.22.154

🇱🇹 45.227.254.170

🇨🇳 14.116.172.42

🇷🇴 2.57.121.112

🇮🇳 202.141.101.5

🇧🇷 177.7.30.146

🇺🇸 107.152.44.215

🇲🇾 47.250.49.81

🇬🇪 2.57.217.229

🇺🇸 2001:19f0:8001:fc3:5400:4ff:fea6:6b5f

🇹🇼 198.235.24.8

🇮🇷 188.215.221.128

🇯🇵 172.81.102.139

🇩🇪 167.94.146.33