103.14.45.99 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
103.14.45.66	attackspam	WordPress login Brute force / Web App Attack on client site.	2020-03-12 14:14:59
103.14.45.66	attackbotsspam	[munged]::443 103.14.45.66 - - [04/Mar/2020:18:24:18 +0100] "POST /[munged]: HTTP/1.1" 200 5568 "-" "-" [munged]::443 103.14.45.66 - - [04/Mar/2020:18:24:34 +0100] "POST /[munged]: HTTP/1.1" 200 5568 "-" "-" [munged]::443 103.14.45.66 - - [04/Mar/2020:18:24:34 +0100] "POST /[munged]: HTTP/1.1" 200 5568 "-" "-" [munged]::443 103.14.45.66 - - [04/Mar/2020:18:24:50 +0100] "POST /[munged]: HTTP/1.1" 200 5568 "-" "-" [munged]::443 103.14.45.66 - - [04/Mar/2020:18:24:50 +0100] "POST /[munged]: HTTP/1.1" 200 5568 "-" "-" [munged]::443 103.14.45.66 - - [04/Mar/2020:18:25:05 +0100] "POST /[munged]: HTTP/1.1" 200 5568 "-" "-"	2020-03-05 02:41:57
103.14.45.98	attack	email spam	2019-12-19 17:12:13
103.14.45.98	attackspam	A spam blank email was sent from this SMTP server. All To headers of this kind of spam emails were "To: undisclosed-recipients:;".	2019-12-04 05:13:40
103.14.45.98	attack	Autoban 103.14.45.98 AUTH/CONNECT	2019-11-18 20:11:18
103.14.45.98	attackbots	proto=tcp . spt=36677 . dpt=25 . (Found on Blocklist de Oct 31) (758)	2019-11-01 06:35:49
103.14.45.66	attackspambots	103.14.45.66 - - [17/Oct/2019:06:36:34 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.14.45.66 - - [17/Oct/2019:06:36:35 +0200] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.14.45.66 - - [17/Oct/2019:06:36:37 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.14.45.66 - - [17/Oct/2019:06:36:37 +0200] "POST /wp-login.php HTTP/1.1" 200 1607 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.14.45.66 - - [17/Oct/2019:06:36:40 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.14.45.66 - - [17/Oct/2019:06:36:41 +0200] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-10-17 14:32:21
103.14.45.98	attack	2019-09-26 22:45:02 H=(looneytours.it) [103.14.45.98]:55237 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/query/ip/103.14.45.98) 2019-09-26 22:45:03 H=(looneytours.it) [103.14.45.98]:55237 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/103.14.45.98) 2019-09-26 22:45:04 H=(looneytours.it) [103.14.45.98]:55237 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/103.14.45.98) ...	2019-09-27 20:09:54

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.14.45.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46779
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.14.45.99.			IN	A

;; AUTHORITY SECTION:
.			124	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011000 1800 900 604800 86400

;; Query time: 45 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 10 18:06:25 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 99.45.14.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 99.45.14.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.180.142	attackbotsspam	Aug 3 23:22:10 minden010 sshd[16830]: Failed password for root from 222.186.180.142 port 37288 ssh2 Aug 3 23:22:19 minden010 sshd[16881]: Failed password for root from 222.186.180.142 port 18096 ssh2 ...	2020-08-04 05:22:47
119.45.34.52	attack	Aug 3 22:26:45 havingfunrightnow sshd[6887]: Failed password for root from 119.45.34.52 port 59266 ssh2 Aug 3 22:32:47 havingfunrightnow sshd[7047]: Failed password for root from 119.45.34.52 port 35922 ssh2 ...	2020-08-04 05:30:36
52.143.154.147	attackbots	Brute forcing email accounts	2020-08-04 05:14:10
106.12.120.19	attackbots	Aug 3 22:51:58 buvik sshd[2085]: Failed password for root from 106.12.120.19 port 37762 ssh2 Aug 3 22:55:27 buvik sshd[2708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.120.19 user=root Aug 3 22:55:29 buvik sshd[2708]: Failed password for root from 106.12.120.19 port 58582 ssh2 ...	2020-08-04 05:02:29
177.22.35.126	attack	$f2bV_matches	2020-08-04 04:54:37
111.229.197.89	attack	20 attempts against mh-ssh on star	2020-08-04 05:17:51
222.186.30.112	attackspambots	nginx/honey/a4a6f	2020-08-04 05:32:08
188.170.13.225	attackbots	Aug 3 21:49:26 rocket sshd[31466]: Failed password for root from 188.170.13.225 port 60194 ssh2 Aug 3 21:53:15 rocket sshd[32171]: Failed password for root from 188.170.13.225 port 42630 ssh2 ...	2020-08-04 04:55:38
156.96.128.240	attack	[2020-08-03 16:49:32] NOTICE[1248][C-000037a9] chan_sip.c: Call from '' (156.96.128.240:65495) to extension '101146192777644' rejected because extension not found in context 'public'. [2020-08-03 16:49:32] SECURITY[1275] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-03T16:49:32.407-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="101146192777644",SessionID="0x7f27200c9798",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/156.96.128.240/65495",ACLName="no_extension_match" [2020-08-03 16:55:32] NOTICE[1248][C-000037b3] chan_sip.c: Call from '' (156.96.128.240:55547) to extension '101046192777644' rejected because extension not found in context 'public'. [2020-08-03 16:55:32] SECURITY[1275] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-03T16:55:32.852-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="101046192777644",SessionID="0x7f27205a5c28",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/U ...	2020-08-04 05:07:00
172.81.253.233	attackbots	Aug 3 22:31:32 ns382633 sshd\[18168\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.81.253.233 user=root Aug 3 22:31:34 ns382633 sshd\[18168\]: Failed password for root from 172.81.253.233 port 37870 ssh2 Aug 3 22:36:12 ns382633 sshd\[19157\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.81.253.233 user=root Aug 3 22:36:14 ns382633 sshd\[19157\]: Failed password for root from 172.81.253.233 port 38330 ssh2 Aug 3 22:37:27 ns382633 sshd\[19218\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.81.253.233 user=root	2020-08-04 05:05:45
112.85.42.104	attack	Aug 3 23:05:43 abendstille sshd\[11013\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.104 user=root Aug 3 23:05:46 abendstille sshd\[11013\]: Failed password for root from 112.85.42.104 port 41465 ssh2 Aug 3 23:05:53 abendstille sshd\[11150\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.104 user=root Aug 3 23:05:56 abendstille sshd\[11150\]: Failed password for root from 112.85.42.104 port 58386 ssh2 Aug 3 23:05:58 abendstille sshd\[11150\]: Failed password for root from 112.85.42.104 port 58386 ssh2 ...	2020-08-04 05:11:49
62.57.227.12	attackbotsspam	Aug 3 22:33:55 * sshd[25207]: Failed password for root from 62.57.227.12 port 39950 ssh2	2020-08-04 04:57:10
120.52.139.130	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-03T20:26:54Z and 2020-08-03T20:37:03Z	2020-08-04 05:24:36
156.96.128.222	attack	Unauthorized access on Port 443 [https]	2020-08-04 05:02:53
182.71.221.78	attack	[ssh] SSH attack	2020-08-04 05:25:55

Recently Reported IPs

22.185.55.117	129.191.5.162	161.194.162.224	148.110.254.215
128.136.236.96	172.74.44.163	107.206.211.139	54.78.218.22
106.228.187.108	212.131.146.94	79.255.253.23	160.128.116.184
148.212.65.82	160.140.142.151	206.171.92.199	229.237.76.141
100.173.138.102	136.93.231.92	145.237.79.242	137.139.35.206