JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 158.160.139.213

158.160.139.213 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 70%: ?

70%

ISP	Yandex.Cloud LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200350
Domain Name	yandex.net
Country	🇷🇺 Russian Federation
City	Moscow, Moscow

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 158.160.139.213

Whois 158.160.139.213

IP Abuse Reports for 158.160.139.213:

This IP address has been reported a total of 12 times from 11 distinct sources. 158.160.139.213 was first reported on June 3rd 2026, and the most recent report was 19 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-03 17:26:47 (19 hours ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇫🇷 DiLenaTech	2026-06-03 16:05:28 (20 hours ago)	2026-06-03T17:04:55.040371voip.dilenatech.com sshd[9586]: pam_unix(sshd:auth): authentication failur ... show more 2026-06-03T17:04:55.040371voip.dilenatech.com sshd[9586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.160.139.213 2026-06-03T17:04:57.968351voip.dilenatech.com sshd[9586]: Failed password for invalid user admin from 158.160.139.213 port 46966 ssh2 2026-06-03T17:05:28.494505voip.dilenatech.com sshd[9592]: Invalid user orangepi from 158.160.139.213 port 34428 ... show less	Brute-Force SSH
🇹🇼 kk_it_man	2026-06-03 16:03:07 (20 hours ago)	ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 ET EXPLOIT Apache HTTP ... show more ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 ET EXPLOIT Apache HTTP Server 2.4.49 - Path Traversal Attempt (CVE-2021-41773) M2 ET WEB_SERVER /bin/sh In URI Possible Shell Command Execution Attempt ET WEB_SERVER Generic PHP Remote File Include ET WEB_SERVER PHP tags in HTTP POST ET WEB_SERVER PHP.//Input in HTTP POST ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body ET WEB_SERVER ThinkPHP RCE Exploitation Attempt ET WEB_SERVER allow_url_include PHP config option in uri ET WEB_SERVER auto_prepend_file PHP config option in uri ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) GPL WEB_SERVER 403 Forbidden show less	Port Scan
Anonymous	2026-06-03 15:12:07 (21 hours ago)	2026-06-03T17:11:34.204032+02:00 luspi-server sshd-session[3163401]: Invalid user admin from 158.160 ... show more 2026-06-03T17:11:34.204032+02:00 luspi-server sshd-session[3163401]: Invalid user admin from 158.160.139.213 port 54852 2026-06-03T17:12:04.472721+02:00 luspi-server sshd-session[3163945]: Invalid user orangepi from 158.160.139.213 port 59244 ... show less	Brute-Force SSH
🇵🇱 UMP-PL	2026-06-03 15:11:23 (21 hours ago)	Webserver scan (backups, phpadmin, etc.)	Web App Attack
Anonymous	2026-06-03 14:19:59 (22 hours ago)	Unauthorized connection attempt on Port 23	Port Scan Hacking Exploited Host
Anonymous	2026-06-03 14:10:32 (22 hours ago)	$f2bV_matches	Brute-Force SSH
🇺🇸 technojoe99	2026-06-03 13:58:30 (22 hours ago)	Attempted SSH connection from 158.160.139.213 port 53506 asn outside arin; no valid users in that as ... show more Attempted SSH connection from 158.160.139.213 port 53506 asn outside arin; no valid users in that asn show less	Port Scan SSH
🇷🇺 ago.su	2026-06-03 13:48:41 (23 hours ago)	F2B blocked SSH BF [otd.dev]	Brute-Force SSH
🇵🇱 Wepted	2026-06-03 13:14:36 (23 hours ago)	2026-06-03T15:10:30.151776+02:00 axisverse sshd-session[118022]: Invalid user admin from 158.160.139 ... show more 2026-06-03T15:10:30.151776+02:00 axisverse sshd-session[118022]: Invalid user admin from 158.160.139.213 port 33864 2026-06-03T15:11:00.814697+02:00 axisverse sshd-session[118740]: Invalid user orangepi from 158.160.139.213 port 60200 2026-06-03T15:14:35.727732+02:00 axisverse sshd-session[123526]: Invalid user test from 158.160.139.213 port 51550 ... show less	Brute-Force SSH
🇨🇦 craftxbox	2026-06-03 12:51:50 (1 day ago)	2026-06-03T12:46:01.741381rednet sshd[1847845]: Invalid user admin from 158.160.139.213 port 37428 2 ... show more 2026-06-03T12:46:01.741381rednet sshd[1847845]: Invalid user admin from 158.160.139.213 port 37428 2026-06-03T12:46:33.006355rednet sshd[1847947]: Invalid user orangepi from 158.160.139.213 port 39102 2026-06-03T12:50:13.582157rednet sshd[1848040]: Invalid user test from 158.160.139.213 port 56148 2026-06-03T12:50:45.235095rednet sshd[1848042]: Invalid user user from 158.160.139.213 port 47590 2026-06-03T12:51:49.370967rednet sshd[1848534]: Invalid user admin from 158.160.139.213 port 48498 ... show less	Brute-Force SSH
🇬🇧 PeravixGroup	2026-06-03 12:36:23 (1 day ago)	Honeypot detection: SSH brute-force authentication attempt on port 22. Severity: MEDIUM. Aaran.cloud	SSH Brute-Force

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 189.111.22.75

🇲🇽 187.230.115.212

🇮🇳 182.60.68.148

🇺🇸 104.248.53.91

🇺🇬 102.218.89.110

🇩🇪 69.5.169.246

🇺🇸 64.62.156.215

🇺🇸 45.132.115.119

🇬🇧 35.203.211.61

🇺🇸 34.70.193.8

🇺🇸 2620:171:e1:f0::251

🇲🇽 187.184.242.92

🇳🇱 176.65.139.126

🇳🇱 176.65.139.66

🇩🇪 167.94.146.72

🇨🇮 154.0.30.137

🇫🇮 147.185.133.252

🇳🇱 80.82.77.202

🇬🇧 35.203.210.156

🇦🇺 34.129.228.8