103.114.105.139

Basic Info

City: unknown

Region: unknown

Country: Vietnam

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
103.114.105.83	attackbots	Oct 10 19:35:45 mx postfix/postscreen\[2794\]: PREGREET 11 after 0.33 from \[103.114.105.83\]:46631: EHLO User ...	2020-10-11 01:46:14
103.114.105.83	attackbots	Flood attack with unknown AUTH parameters	2020-09-21 22:56:00
103.114.105.83	attack	Sep 21 00:22:14 zeus postfix/smtpd[10932]: warning: unknown[103.114.105.83]: SASL LOGIN authentication failed: authentication failure Sep 21 02:15:18 zeus postfix/smtpd[1213]: warning: unknown[103.114.105.83]: SASL LOGIN authentication failed: authentication failure Sep 21 04:09:06 zeus postfix/smtpd[26473]: warning: unknown[103.114.105.83]: SASL LOGIN authentication failed: authentication failure ...	2020-09-21 14:41:10
103.114.105.83	attackbotsspam	Fail2Ban - SMTP Bruteforce Attempt	2020-07-18 12:19:23
103.114.105.238	attackbots	Jun 13 05:26:37 mail postfix/postscreen[18464]: DNSBL rank 3 for [103.114.105.238]:61576 ...	2020-06-29 05:25:29
103.114.105.9	attack	Bad Postfix AUTH attempts ...	2019-11-26 01:17:32
103.114.105.9	attackspam	Lines containing failures of 103.114.105.9 /var/log/apache/pucorp.org.log:103.114.105.9 - - [19/Nov/2019:08:37:44 +0100] "GET / HTTP/1.1" 301 685 "-" "Mozilla/4.0 (compatible; MSIE 5.0; Windows NT; DigExt; DTS Agent" ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.114.105.9	2019-11-25 01:56:51
103.114.105.73	attackbots	Sep 26 22:33:35 itv-usvr-01 sshd[7617]: Invalid user admin from 103.114.105.73	2019-09-27 00:19:29
103.114.105.73	attackbotsspam	Aug 1 10:25:05 itv-usvr-01 sshd[1041]: Invalid user admin from 103.114.105.73	2019-08-01 17:35:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.114.105.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13973
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.114.105.139.		IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025042900 1800 900 604800 86400

;; Query time: 34 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 29 15:30:26 CST 2025
;; MSG SIZE  rcvd: 108

Host info

Host 139.105.114.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.105.114.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.180.6	attackspam	2020-09-08T20:29:50.483881 sshd[3916154]: Unable to negotiate with 222.186.180.6 port 61444: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] 2020-09-08T20:29:50.485595 sshd[3916155]: Unable to negotiate with 222.186.180.6 port 11060: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] 2020-09-08T20:32:56.910124 sshd[3917953]: Unable to negotiate with 222.186.180.6 port 14552: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth]	2020-09-09 02:35:02
84.108.185.0	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-09 02:41:00
218.92.0.165	attackspambots	Sep 8 20:41:35 markkoudstaal sshd[4295]: Failed password for root from 218.92.0.165 port 18309 ssh2 Sep 8 20:41:39 markkoudstaal sshd[4295]: Failed password for root from 218.92.0.165 port 18309 ssh2 Sep 8 20:41:42 markkoudstaal sshd[4295]: Failed password for root from 218.92.0.165 port 18309 ssh2 Sep 8 20:41:46 markkoudstaal sshd[4295]: Failed password for root from 218.92.0.165 port 18309 ssh2 ...	2020-09-09 02:44:40
194.6.231.122	attackspam	SSH BruteForce Attack	2020-09-09 02:12:27
218.92.0.203	attack	2020-09-08T11:40:05.248490xentho-1 sshd[569887]: Failed password for root from 218.92.0.203 port 20554 ssh2 2020-09-08T11:40:02.576503xentho-1 sshd[569887]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.203 user=root 2020-09-08T11:40:05.248490xentho-1 sshd[569887]: Failed password for root from 218.92.0.203 port 20554 ssh2 2020-09-08T11:40:08.598685xentho-1 sshd[569887]: Failed password for root from 218.92.0.203 port 20554 ssh2 2020-09-08T11:40:02.576503xentho-1 sshd[569887]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.203 user=root 2020-09-08T11:40:05.248490xentho-1 sshd[569887]: Failed password for root from 218.92.0.203 port 20554 ssh2 2020-09-08T11:40:08.598685xentho-1 sshd[569887]: Failed password for root from 218.92.0.203 port 20554 ssh2 2020-09-08T11:40:11.810235xentho-1 sshd[569887]: Failed password for root from 218.92.0.203 port 20554 ssh2 2020-09-08T11:42:16.713279xent ...	2020-09-09 02:13:32
157.245.154.123	attack	Lines containing failures of 157.245.154.123 Sep 7 11:20:49 zabbix sshd[63069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.154.123 user=r.r Sep 7 11:20:51 zabbix sshd[63069]: Failed password for r.r from 157.245.154.123 port 32908 ssh2 Sep 7 11:20:53 zabbix sshd[63069]: Connection closed by authenticating user r.r 157.245.154.123 port 32908 [preauth] Sep 7 11:29:50 zabbix sshd[63645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.154.123 user=r.r Sep 7 11:29:51 zabbix sshd[63645]: Failed password for r.r from 157.245.154.123 port 55786 ssh2 Sep 7 11:29:52 zabbix sshd[63645]: Connection closed by authenticating user r.r 157.245.154.123 port 55786 [preauth] Sep 7 11:34:26 zabbix sshd[64044]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.154.123 user=r.r Sep 7 11:34:28 zabbix sshd[64044]: Failed password for r.r ........ ------------------------------	2020-09-09 02:24:54
61.223.107.21	attackspambots	Honeypot attack, port: 445, PTR: 61-223-107-21.dynamic-ip.hinet.net.	2020-09-09 02:11:17
210.195.6.6	attack	Sep 7 16:46:37 instance-2 sshd[15137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.195.6.6 Sep 7 16:46:39 instance-2 sshd[15137]: Failed password for invalid user nagios from 210.195.6.6 port 56097 ssh2 Sep 7 16:48:45 instance-2 sshd[15206]: Failed password for root from 210.195.6.6 port 57871 ssh2	2020-09-09 02:21:25
5.188.84.228	attackspambots	contact form abuse 15x	2020-09-09 02:09:22
89.115.245.50	attackspam	89.115.245.50 - - [08/Sep/2020:10:28:31 +0200] "GET /wp-login.php HTTP/1.1" 200 8558 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 89.115.245.50 - - [08/Sep/2020:10:28:32 +0200] "POST /wp-login.php HTTP/1.1" 200 8809 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 89.115.245.50 - - [08/Sep/2020:10:28:33 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-09 02:35:21
49.88.226.240	attackbots	Sep 7 18:48:28 icecube postfix/smtpd[56668]: NOQUEUE: reject: RCPT from unknown[49.88.226.240]: 554 5.7.1 Service unavailable; Client host [49.88.226.240] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/49.88.226.240 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=	2020-09-09 02:34:31
183.87.198.72	attackspambots	Sep 9 00:07:39 our-server-hostname postfix/smtpd[24219]: connect from unknown[183.87.198.72] Sep x@x Sep x@x Sep x@x Sep 9 00:07:41 our-server-hostname postfix/smtpd[24219]: lost connection after DATA from unknown[183.87.198.72] Sep 9 00:07:41 our-server-hostname postfix/smtpd[24219]: disconnect from unknown[183.87.198.72] Sep 9 00:07:42 our-server-hostname postfix/smtpd[22863]: connect from unknown[183.87.198.72] Sep x@x Sep x@x Sep 9 00:07:43 our-server-hostname postfix/smtpd[22863]: lost connection after DATA from unknown[183.87.198.72] Sep 9 00:07:43 our-server-hostname postfix/smtpd[22863]: disconnect from unknown[183.87.198.72] Sep 9 00:07:44 our-server-hostname postfix/smtpd[22864]: connect from unknown[183.87.198.72] Sep x@x Sep 9 00:07:46 our-server-hostname postfix/smtpd[22864]: lost connection after DATA from unknown[183.87.198.72] Sep 9 00:07:46 our-server-hostname postfix/smtpd[22864]: disconnect from unknown[183.87.198.72] Sep 9 00:07:47 our-serv........ -------------------------------	2020-09-09 02:23:24
171.117.129.246	attack	TCP (SYN) 171.117.129.246:6652 -> port 23, len 40	2020-09-09 02:46:51
85.92.121.230	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-09 02:08:49
118.24.214.45	attack	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-09 02:43:21

Recently Reported IPs

134.148.105.52	5.206.237.109	110.174.252.170	104.234.115.146
135.119.105.81	192.168.4.208	110.85.184.196	194.50.157.216
133.231.109.94	23.177.40.78	151.2.153.127	150.43.176.217
133.218.2.130	195.83.98.178	8.222.147.122	213.114.113.14
242.129.161.161	205.210.31.170	139.59.33.159	61.143.231.206