139.223.200.208 - IP in Taiwan, - Comments and Complaints

Lookup

Enter IP, Hostname or Email

IP: 139.223.200.208 Taiwan

Location: Taiwan

IP: 139.223.200.208
Country : Taiwan
B Class:139.223.0.0 - 139.223.255.255
Latitude : 24
Longitude : 121

Whois information

NetRange: 139.223.0.0 - 139.223.255.255
CIDR: 139.223.0.0/16
NetName: APNIC-ERX-139-223-0-0
NetHandle: NET-139-223-0-0-1
Parent: NET139 (NET-139-0-0-0-0)
NetType: Early Registrations, Transferred to APNIC
OriginAS:
Organization: Asia Pacific Network Information Centre (APNIC)
RegDate: 2004-03-03
Updated: 2009-10-08
Comment: This IP address range is not registered in the ARIN database.
Comment: This range was transferred to the APNIC Whois Database as
Comment: part of the ERX (Early Registration Transfer) project.
Comment: For details, refer to the APNIC Whois Database via
Comment: WHOIS.APNIC.NET or http://wq.apnic.net/apnic-bin/whois.pl
Comment:
Comment: ** IMPORTANT NOTE: APNIC is the Regional Internet Registry
Comment: for the Asia Pacific region. APNIC does not operate networks
Comment: using this IP address range and is not able to investigate
Comment: spam or abuse reports relating to these addresses. For more
Comment: help, refer to http://www.apnic.net/apnic-info/whois_search2/abuse-and-spamming
Ref: https://rdap.arin.net/registry/ip/139.223.0.0

ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois.apnic.net

OrgName: Asia Pacific Network Information Centre
OrgId: APNIC
Address: PO Box 3646
City: South Brisbane
StateProv: QLD
PostalCode: 4101
Country: AU
RegDate:
Updated: 2012-01-24
Ref: https://rdap.arin.net/registry/entity/APNIC

ReferralServer: whois://whois.apnic.net
ResourceLink: https://apps.db.ripe.net/db-web-ui/query

OrgAbuseHandle: AWC12-ARIN
OrgAbuseName: APNIC Whois Contact
OrgAbusePhone: +61 7 3858 3188
OrgAbuseEmail: search-apnic-not-arin@apnic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN

OrgTechHandle: AWC12-ARIN
OrgTechName: APNIC Whois Contact
OrgTechPhone: +61 7 3858 3188
OrgTechEmail: search-apnic-not-arin@apnic.net
OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN

DNS BlackList results:

BL.SPAMCOP.NET Not Listed
SBL.SPAMHAUS.ORG Listed
B.BARRACUDACENTRAL.ORG Not Listed
SPAM.SPAMRATS.COM Not Listed
Z.MAILSPIKE.NET Not Listed
CBL.ABUSEAT.ORG Listed

Most recent complaints

Complaint by Gunnar :

Ip 139.223.200.208 did try to hack my server at 2012-08-24.

Reported on: 24th, Aug. 2012

Complaint by Deelip :

Dec 16 04:50:12 master sshd[19883]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.223.200.208 user=root The above ip tried to hack our server .Please blacklist the ip

Reported on: 17th, Dec. 2012

Complaint by southoz :

023320: Dec 18 03:47:33.687 UTC: %SEC-6-IPACCESSLOGP: list sl_def_acl denied tcp 139.223.200.208(57753) -> 0.0.0.0(22), 1 packet 023321: Dec 18 03:47:35.535 UTC: %SEC-6-IPACCESSLOGP: list sl_def_acl denied tcp 139.223.200.208(57928) -> 0.0.0.0(22), 1 packet 023322: Dec 18 03:47:36.543 UTC: %SEC-6-IPACCESSLOGP: list sl_def_acl denied tcp 139.223.200.208(58002) -> 0.0.0.0(22), 1 packet 023323: Dec 18 03:47:37.567 UTC: %SEC-6-IPACCESSLOGP: list sl_def_acl denied tcp 139.223.200.208(58088) -> 0.0.0.0(22), 1 packet 023324: Dec 18 03:47:39.539 UTC: %SEC-6-IPACCESSLOGP: list sl_def_acl denied tcp 139.223.200.208(58255) -> 0.0.0.0(22), 1 packet 023325: Dec 18 03:47:40.555 UTC: %SEC-6-IPACCESSLOGP: list sl_def_acl denied tcp 139.223.200.208(58352) -> 0.0.0.0(22), 1 packet 023326: Dec 18 03:47:41.647 UTC: %SEC_LOGIN-5-QUIET_MODE_OFF: Quiet Mode is OFF, because block period timed out at 14:47:41 AEDST Tue Dec 18 2012 023327: Dec 18 03:48:00.087 UTC: %SEC_LOGIN-4-LOGIN_FAILED: Login failed [user: root] [Source: 139.223.200.208] [localport: 22] [Reason: Login Authentication Failed] at 14:48:00 AEDST Tue Dec 18 2012 023328: Dec 18 03:48:18.259 UTC: %SEC_LOGIN-4-LOGIN_FAILED: Login failed [user: root] [Source: 139.223.200.208] [localport: 22] [Reason: Login Authentication Failed] at 14:48:18 AEDST Tue Dec 18 2012 023329: Dec 18 03:48:18.259 UTC: %SEC_LOGIN-1-QUIET_MODE_ON: Still timeleft for watching failures is 1 secs, [user: root] [Source: 139.223.200.208] [localport: 22] [Reason: Login Authentication Failed] [ACL: sl_def_acl] at 14:48:18 AEDST Tue Dec 18 2012 023330: Dec 18 03:48:19.295 UTC: %SEC-6-IPACCESSLOGP: list sl_def_acl denied tcp 139.223.200.208(48945) -> 0.0.0.0(22), 1 packet 023331: Dec 18 03:48:21.171 UTC: %SEC-6-IPACCESSLOGP: list sl_def_acl denied tcp 139.223.200.208(49102) -> 0.0.0.0(22), 1 packet 023332: Dec 18 03:48:22.207 UTC: %SEC-6-IPACCESSLOGP: list sl_def_acl denied tcp 139.223.200.208(49176) -> 0.0.0.0(22), 1 packet 023333: Dec 18 03:48:24.179 UTC: %SEC-6-IPACCESSLOGP: list sl_def_acl denied tcp 139.223.200.208(49342) -> 0.0.0.0(22), 1 packet 023334: Dec 18 03:48:26.063 UTC: %SEC-6-IPACCESSLOGP: list sl_def_acl denied tcp 139.223.200.208(49490) -> 0.0.0.0(22), 1 packet 023335: Dec 18 03:48:27.931 UTC: %SEC-6-IPACCESSLOGP: list sl_def_acl denied tcp 139.223.200.208(49648) -> 0.0.0.0(22), 1 packet 023336: Dec 18 03:48:28.947 UTC: %SEC-6-IPACCESSLOGP: list sl_def_acl denied tcp 139.223.200.208(49720) -> 0.0.0.0(22), 1 packet 023337: Dec 18 03:48:30.939 UTC: %SEC-6-IPACCESSLOGP: list sl_def_acl denied tcp 139.223.200.208(49873) -> 0.0.0.0(22), 1 packet

Reported on: 18th, Dec. 2012

Complaint by Richard :

Many attempts at root login. ## Logwatch 7.3.6 ## Processing Initiated: Fri Jan 18 04:02:02 2013 ----- pam_unix Begin --- sshd: Authentication Failures: root (139.223.200.208): 138 Time(s)

Reported on: 18th, Jan. 2013

Please help us keep Internet safer and cleaner by leaving a descriptive comment about 139.223.200.208 IP address

DNSBL* - is a list of IP addresses published through the Internet Domain Name Service (DNS) either as a zone file that can be used by DNS server software, or as a live DNS zone that can be queried in real-time. DNSBLs are most often used to publish the addresses of computers or networks linked to spamming; most mail server software can be configured to reject or flag messages which have been sent from a site listed on one or more such lists.

WHOIS** - is a query/response protocol that is widely used for querying databases in order to determine the registrant or assignee of Internet resources, such as a domain name, an IP address block, or an autonomous system number. WHOIS lookups were traditionally performed with a command line interface application, and network administrators predominantly still use this method, but many simplified web-based tools exist. WHOIS services are typically communicated using the Transmission Control Protocol (TCP). Servers listen to requests on the well-known port number 43.

** Approximate Geographic Location - This is NOT the exact geographical location of the person/organization with the given IP address. However, this should still give you a good idea about the area/region where this person/orgranization is located.

Whois information

DNS BlackList results:

Most recent complaints

Complaint by Gunnar :

Complaint by Deelip :

Complaint by southoz :

Complaint by Richard :

Please help us keep Internet safer and cleaner by leaving a descriptive comment about 139.223.200.208 IP address

FAQ

IP addresses with same latency:

IP Address Details

Whois information

DNS BlackList results:

Most recent complaints

Complaint by Gunnar :

Complaint by Deelip :

Complaint by southoz :

Complaint by Richard :

Please help us keep Internet safer and cleaner by leaving a descriptive comment about 139.223.200.208 IP address

FAQ

IP addresses with same latency: