103.105.69.138

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: CV. Panca Sinar Utama

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	" "	2019-11-24 19:07:52

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.105.69.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37019
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.105.69.138.			IN	A

;; AUTHORITY SECTION:
.			511	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112400 1800 900 604800 86400

;; Query time: 253 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Nov 24 19:07:47 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 138.69.105.103.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 100.100.2.136, trying next server
;; Got SERVFAIL reply from 100.100.2.138, trying next server
Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 138.69.105.103.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.186.163.161	attackbots	Lines containing failures of 14.186.163.161 2019-11-07 07:20:07 dovecot_plain authenticator failed for ([127.0.0.1]) [14.186.163.161]: 535 Incorrect authentication data (set_id=marcel) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.186.163.161	2019-11-07 19:56:58
5.88.155.130	attackspam	SSH Brute Force, server-1 sshd[13225]: Failed password for invalid user ubuntu from 5.88.155.130 port 33618 ssh2	2019-11-07 20:16:18
157.230.209.220	attackbots	Nov 7 16:39:23 gw1 sshd[25293]: Failed password for sshd from 157.230.209.220 port 32788 ssh2 Nov 7 16:42:55 gw1 sshd[25435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.209.220 ...	2019-11-07 19:46:44
185.15.37.55	attackbotsspam	[portscan] Port scan	2019-11-07 20:13:41
222.186.190.92	attackbotsspam	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.92 user=root Failed password for root from 222.186.190.92 port 39234 ssh2 Failed password for root from 222.186.190.92 port 39234 ssh2 Failed password for root from 222.186.190.92 port 39234 ssh2 Failed password for root from 222.186.190.92 port 39234 ssh2	2019-11-07 20:00:29
111.53.115.116	attackbotsspam	port scan and connect, tcp 1433 (ms-sql-s)	2019-11-07 19:57:21
190.144.14.170	attackspambots	SSH bruteforce (Triggered fail2ban)	2019-11-07 20:15:07
154.83.17.200	attack	$f2bV_matches	2019-11-07 19:45:01
51.77.200.101	attack	$f2bV_matches	2019-11-07 19:42:15
200.16.132.202	attack	SSH bruteforce	2019-11-07 19:54:02
78.204.123.164	attackspam	Nov 7 07:22:43 MK-Soft-VM7 sshd[14726]: Failed password for root from 78.204.123.164 port 40751 ssh2 ...	2019-11-07 19:58:24
206.189.153.178	attackspambots	2019-11-07T06:34:16.117306WS-Zach sshd[1753367]: User root from 206.189.153.178 not allowed because none of user's groups are listed in AllowGroups 2019-11-07T06:34:16.128166WS-Zach sshd[1753367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.153.178 user=root 2019-11-07T06:34:16.117306WS-Zach sshd[1753367]: User root from 206.189.153.178 not allowed because none of user's groups are listed in AllowGroups 2019-11-07T06:34:17.909737WS-Zach sshd[1753367]: Failed password for invalid user root from 206.189.153.178 port 38016 ssh2 2019-11-07T06:39:18.979466WS-Zach sshd[1753978]: Invalid user usuario from 206.189.153.178 port 51832 ...	2019-11-07 20:03:56
78.141.217.223	proxy	ssr://NzguMTQxLjIxNy4yMTE6MTE0Mzk6b3JpZ2luOnJjNC1tZDU6cGxhaW46YjNSaGNsbDIvP29iZnNwYXJhbT0mcHJvdG9wYXJhbT0mcmVtYXJrcz01NzJSNVoyQU9pQjNkM2N1YUdWcGVtaGhhUzV2Y21jZzZhdVk2TFNvNlllUDU2aXo1YTZhNXJpNDVvaVA2S2VHNmFLUk9DNDRPT2FjaUNCUk9qSXhPVGczTVRBd01ERSZncm91cD02YnVSNWE2Rg	2019-11-07 19:49:37
60.168.240.192	attackbots	Nov 7 01:08:45 eola postfix/smtpd[2126]: connect from unknown[60.168.240.192] Nov 7 01:08:46 eola postfix/smtpd[2126]: NOQUEUE: reject: RCPT from unknown[60.168.240.192]: 504 5.5.2 : Helo command rejected: need fully-qualified hostname; from=x@x helo= Nov 7 01:08:47 eola postfix/smtpd[2126]: disconnect from unknown[60.168.240.192] ehlo=1 mail=1 rcpt=0/1 quhostname=1 commands=3/4 Nov 7 01:08:47 eola postfix/smtpd[2126]: connect from unknown[60.168.240.192] Nov 7 01:08:48 eola postfix/smtpd[2126]: lost connection after AUTH from unknown[60.168.240.192] Nov 7 01:08:48 eola postfix/smtpd[2126]: disconnect from unknown[60.168.240.192] ehlo=1 auth=0/1 commands=1/2 Nov 7 01:08:48 eola postfix/smtpd[2126]: connect from unknown[60.168.240.192] Nov 7 01:08:49 eola postfix/smtpd[2126]: lost connection after AUTH from unknown[60.168.240.192] Nov 7 01:08:49 eola postfix/smtpd[2126]: disconnect from unknown[60.168.240.192] ehlo=1 auth=0/1 commands=1/2 Nov 7 01:08........ -------------------------------	2019-11-07 19:36:40
180.249.202.128	attack	Unauthorised access (Nov 7) SRC=180.249.202.128 LEN=52 TTL=115 ID=26195 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-07 19:47:09

Recently Reported IPs

179.137.101.48	135.127.72.185	92.21.105.189	219.17.98.250
48.165.27.123	149.229.187.205	119.25.161.188	96.16.78.138
132.161.27.30	254.172.202.58	148.91.194.163	187.135.183.116
210.128.203.207	89.238.64.237	116.102.118.198	91.238.72.77
194.171.23.4	117.205.195.243	115.148.80.93	192.236.176.197