103.141.138.134

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: PTV Telecom Services Company Limited

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Oct 25 15:47:19 localhost sshd\[5538\]: Invalid user admin from 103.141.138.134 port 62255 Oct 25 15:47:19 localhost sshd\[5538\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.141.138.134 Oct 25 15:47:21 localhost sshd\[5538\]: Failed password for invalid user admin from 103.141.138.134 port 62255 ssh2	2019-10-25 21:53:55

Type

Details

Datetime

attackbotsspam

Oct 25 15:47:19 localhost sshd\[5538\]: Invalid user admin from 103.141.138.134 port 62255
Oct 25 15:47:19 localhost sshd\[5538\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.141.138.134
Oct 25 15:47:21 localhost sshd\[5538\]: Failed password for invalid user admin from 103.141.138.134 port 62255 ssh2

2019-10-25 21:53:55

Comments on same subnet:

IP	Type	Details	Datetime
103.141.138.124	attackspam	Postfix SMTP rejection	2020-09-22 03:05:08
103.141.138.124	attack	Postfix SMTP rejection	2020-09-21 18:50:40
103.141.138.228	attackspambots	Port scan denied	2020-08-28 17:15:41
103.141.138.228	attackspam	SmallBizIT.US 1 packets to tcp(3389)	2020-08-18 08:00:43
103.141.138.127	attackbotsspam	(smtpauth) Failed SMTP AUTH login from 103.141.138.127 (VN/Vietnam/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-08-13 08:25:29 login authenticator failed for (Q8VSmPHTN) [103.141.138.127]: 535 Incorrect authentication data (set_id=info)	2020-08-13 13:21:04
103.141.138.127	attackbotsspam	VN VN/Vietnam/- Failures: 5 smtpauth	2020-08-05 19:52:25
103.141.138.117	attackspam	2019-12-05T07:29:35.815078scmdmz1 sshd\[30678\]: Invalid user user from 103.141.138.117 port 60532 2019-12-05T07:29:35.818814scmdmz1 sshd\[30678\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.141.138.117 2019-12-05T07:29:37.964302scmdmz1 sshd\[30678\]: Failed password for invalid user user from 103.141.138.117 port 60532 ssh2 ...	2019-12-05 16:52:47
103.141.138.119	attackspambots	Oct 30 00:50:45 server sshd\[18755\]: Invalid user support from 103.141.138.119 Oct 30 00:50:45 server sshd\[18755\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.141.138.119 Oct 30 00:50:47 server sshd\[18755\]: Failed password for invalid user support from 103.141.138.119 port 53904 ssh2 Oct 30 00:51:17 server sshd\[18856\]: Invalid user support from 103.141.138.119 Oct 30 00:51:17 server sshd\[18856\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.141.138.119 ...	2019-10-30 07:47:22
103.141.138.119	attackbotsspam	Oct 29 04:54:20 mail sshd[11629]: Invalid user support from 103.141.138.119 ...	2019-10-29 14:51:03
103.141.138.131	attackspam	Oct 29 00:21:38 MK-Soft-VM3 sshd[14856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.141.138.131 Oct 29 00:21:40 MK-Soft-VM3 sshd[14856]: Failed password for invalid user admin from 103.141.138.131 port 63803 ssh2 ...	2019-10-29 08:09:00
103.141.138.121	attackspam	Oct 28 18:32:01 mail sshd\[31785\]: Invalid user 1234 from 103.141.138.121 Oct 28 18:32:01 mail sshd\[31785\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.141.138.121 Oct 28 18:32:03 mail sshd\[31785\]: Failed password for invalid user 1234 from 103.141.138.121 port 58347 ssh2 ...	2019-10-29 03:59:05
103.141.138.133	attackspam	Oct 28 10:31:13 vpn01 sshd[30004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.141.138.133 Oct 28 10:31:15 vpn01 sshd[30004]: Failed password for invalid user ftp from 103.141.138.133 port 53559 ssh2 ...	2019-10-28 19:49:42
103.141.138.125	attackspam	2019-10-27T19:08:21.076458enmeeting.mahidol.ac.th sshd\[1272\]: User root from 103.141.138.125 not allowed because not listed in AllowUsers 2019-10-27T19:08:21.199731enmeeting.mahidol.ac.th sshd\[1272\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.141.138.125 user=root 2019-10-27T19:08:23.359930enmeeting.mahidol.ac.th sshd\[1272\]: Failed password for invalid user root from 103.141.138.125 port 65086 ssh2 ...	2019-10-27 21:10:18
103.141.138.131	attackbots	Oct 26 22:38:40 debian64 sshd\[2982\]: Invalid user admin from 103.141.138.131 port 63076 Oct 26 22:38:40 debian64 sshd\[2982\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.141.138.131 Oct 26 22:38:42 debian64 sshd\[2982\]: Failed password for invalid user admin from 103.141.138.131 port 63076 ssh2 ...	2019-10-27 04:45:21
103.141.138.119	attackbots	[portscan] tcp/22 [SSH] [scan/connect: 4 time(s)] in blocklist.de:'listed [ssh]' in spfbl.net:'listed' *(RWIN=8192)(10261102)	2019-10-26 19:54:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.141.138.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6562
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.141.138.134.		IN	A

;; AUTHORITY SECTION:
.			354	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102500 1800 900 604800 86400

;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 25 21:53:49 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 134.138.141.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 134.138.141.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
201.113.26.144	attackbotsspam	Unauthorised access (Dec 5) SRC=201.113.26.144 LEN=52 TTL=116 ID=26457 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-06 00:19:23
139.59.14.239	attack	Dec 5 14:51:42 vtv3 sshd[5440]: Failed password for root from 139.59.14.239 port 33158 ssh2 Dec 5 14:58:56 vtv3 sshd[8691]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.14.239 Dec 5 14:58:58 vtv3 sshd[8691]: Failed password for invalid user guest from 139.59.14.239 port 44002 ssh2 Dec 5 15:14:59 vtv3 sshd[16726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.14.239 Dec 5 15:15:01 vtv3 sshd[16726]: Failed password for invalid user server from 139.59.14.239 port 37466 ssh2 Dec 5 15:22:27 vtv3 sshd[20428]: Failed password for root from 139.59.14.239 port 48312 ssh2 Dec 5 15:38:21 vtv3 sshd[27984]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.14.239 Dec 5 15:38:23 vtv3 sshd[27984]: Failed password for invalid user bahaa from 139.59.14.239 port 41778 ssh2 Dec 5 15:45:58 vtv3 sshd[31927]: Failed password for root from 139.59.14.239 port 52624 ssh2 Dec 5 16	2019-12-06 00:35:13
222.186.175.147	attack	Dec 5 17:30:19 root sshd[7102]: Failed password for root from 222.186.175.147 port 64722 ssh2 Dec 5 17:30:23 root sshd[7102]: Failed password for root from 222.186.175.147 port 64722 ssh2 Dec 5 17:30:27 root sshd[7102]: Failed password for root from 222.186.175.147 port 64722 ssh2 Dec 5 17:30:31 root sshd[7102]: Failed password for root from 222.186.175.147 port 64722 ssh2 ...	2019-12-06 00:36:01
95.110.235.17	attackbots	Dec 5 18:56:34 hosting sshd[10901]: Invalid user zuuk from 95.110.235.17 port 50310 ...	2019-12-06 00:40:00
171.100.156.254	attackspambots	Portscan detected	2019-12-06 00:07:48
37.187.99.3	attackspambots	Dec 5 16:36:31 eventyay sshd[7975]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.99.3 Dec 5 16:36:33 eventyay sshd[7975]: Failed password for invalid user home from 37.187.99.3 port 41068 ssh2 Dec 5 16:43:16 eventyay sshd[8193]: Failed password for root from 37.187.99.3 port 52424 ssh2 ...	2019-12-06 00:14:55
92.63.194.69	attack	Attack to ftp login	2019-12-06 00:40:17
143.208.181.32	attackspam	Dec 5 08:56:16 dallas01 sshd[28300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.208.181.32 Dec 5 08:56:19 dallas01 sshd[28300]: Failed password for invalid user hansoo from 143.208.181.32 port 53164 ssh2 Dec 5 09:02:52 dallas01 sshd[30361]: Failed password for root from 143.208.181.32 port 34760 ssh2	2019-12-06 00:36:26
51.68.230.54	attack	Dec 5 15:55:04 *** sshd[19398]: User root from 51.68.230.54 not allowed because not listed in AllowUsers	2019-12-06 00:01:41
106.54.97.214	attack	Dec 5 11:26:34 linuxvps sshd\[30194\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.97.214 user=root Dec 5 11:26:36 linuxvps sshd\[30194\]: Failed password for root from 106.54.97.214 port 33292 ssh2 Dec 5 11:33:51 linuxvps sshd\[34219\]: Invalid user mounier from 106.54.97.214 Dec 5 11:33:51 linuxvps sshd\[34219\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.97.214 Dec 5 11:33:52 linuxvps sshd\[34219\]: Failed password for invalid user mounier from 106.54.97.214 port 36450 ssh2	2019-12-06 00:43:05
116.31.105.198	attackspambots	Dec 5 16:46:49 MK-Soft-Root1 sshd[4212]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.31.105.198 Dec 5 16:46:52 MK-Soft-Root1 sshd[4212]: Failed password for invalid user domo from 116.31.105.198 port 43752 ssh2 ...	2019-12-06 00:44:08
36.155.113.199	attackbotsspam	Dec 5 21:58:33 itv-usvr-01 sshd[32704]: Invalid user ram from 36.155.113.199 Dec 5 21:58:33 itv-usvr-01 sshd[32704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.113.199 Dec 5 21:58:33 itv-usvr-01 sshd[32704]: Invalid user ram from 36.155.113.199 Dec 5 21:58:35 itv-usvr-01 sshd[32704]: Failed password for invalid user ram from 36.155.113.199 port 56686 ssh2 Dec 5 22:05:25 itv-usvr-01 sshd[527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.113.199 user=root Dec 5 22:05:27 itv-usvr-01 sshd[527]: Failed password for root from 36.155.113.199 port 51458 ssh2	2019-12-06 00:02:45
5.249.131.161	attackspam	2019-12-05T16:29:38.266042centos sshd\[16158\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.249.131.161 user=root 2019-12-05T16:29:39.781632centos sshd\[16158\]: Failed password for root from 5.249.131.161 port 13354 ssh2 2019-12-05T16:38:28.557239centos sshd\[16481\]: Invalid user admin from 5.249.131.161 port 44026	2019-12-06 00:41:45
119.190.234.172	attack	Telnet/23 MH Probe, BF, Hack -	2019-12-06 00:21:13
159.65.158.229	attackbotsspam	Dec 5 06:06:09 hpm sshd\[15018\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.158.229 user=root Dec 5 06:06:11 hpm sshd\[15018\]: Failed password for root from 159.65.158.229 port 51470 ssh2 Dec 5 06:12:30 hpm sshd\[16029\]: Invalid user jabber from 159.65.158.229 Dec 5 06:12:30 hpm sshd\[16029\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.158.229 Dec 5 06:12:32 hpm sshd\[16029\]: Failed password for invalid user jabber from 159.65.158.229 port 60860 ssh2	2019-12-06 00:27:51

Recently Reported IPs

5.140.163.118	165.73.133.102	81.60.178.17	54.184.147.198
222.189.55.138	194.65.122.241	177.242.28.157	170.84.45.237
52.164.224.11	178.27.15.248	104.36.71.146	178.66.46.7
178.46.56.48	66.110.216.252	185.153.199.102	106.12.81.182
177.125.163.74	47.137.166.8	94.51.163.252	192.250.197.2