114.119.139.102

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
114.119.139.144	attackspambots	[Tue Jan 14 04:23:09.148005 2020] [:error] [pid 8950:tid 139978394781440] [client 114.119.139.144:49372] [client 114.119.139.144] ModSecurity: Access denied with code 403 (phase 4). Pattern match "^5\\\\d{2}$" at RESPONSE_STATUS. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/RESPONSE-950-DATA-LEAKAGES.conf"] [line "118"] [id "950100"] [msg "The Application Returned a 500-Level Status Code"] [data "Matched Data: 500 found within RESPONSE_STATUS: 500"] [severity "ERROR"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-disclosure"] [tag "WASCTC/WASC-13"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.6"] [tag "paranoia-level/2"] [hostname "staklim-malang.info"] [uri "/index.php/profil/meteorologi/list-of-all-tags/analisis-meteorologi"] [unique_id "XhzfuBogpKMFtT-hElbD8AAAALA"] ...	2020-01-14 07:04:02
114.119.139.96	attackspambots	badbot	2020-01-14 04:02:02
114.119.139.149	attackbots	badbot	2020-01-14 03:58:17
114.119.139.225	attack	badbot	2020-01-14 02:43:49
114.119.139.246	attackspambots	badbot	2020-01-13 22:42:53

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.119.139.102
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5944
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;114.119.139.102.		IN	A

;; AUTHORITY SECTION:
.			237	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 00:52:57 CST 2022
;; MSG SIZE  rcvd: 108

Host info

102.139.119.114.in-addr.arpa domain name pointer petalbot-114-119-139-102.petalsearch.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
102.139.119.114.in-addr.arpa	name = petalbot-114-119-139-102.petalsearch.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
92.249.143.33	attack	2019-09-02 12:37:10,402 fail2ban.actions [804]: NOTICE [sshd] Ban 92.249.143.33 2019-09-02 15:42:12,594 fail2ban.actions [804]: NOTICE [sshd] Ban 92.249.143.33 2019-09-02 18:49:25,713 fail2ban.actions [804]: NOTICE [sshd] Ban 92.249.143.33 ...	2019-09-23 02:09:44
51.254.99.208	attackbots	2019-09-20 22:13:47,291 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 51.254.99.208 2019-09-20 22:45:33,838 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 51.254.99.208 2019-09-20 23:16:22,805 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 51.254.99.208 2019-09-20 23:47:14,839 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 51.254.99.208 2019-09-21 00:18:14,256 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 51.254.99.208 ...	2019-09-23 02:28:40
124.156.168.84	attackspam	Sep 22 07:45:23 lcdev sshd\[31953\]: Invalid user rebeca from 124.156.168.84 Sep 22 07:45:23 lcdev sshd\[31953\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.168.84 Sep 22 07:45:25 lcdev sshd\[31953\]: Failed password for invalid user rebeca from 124.156.168.84 port 47952 ssh2 Sep 22 07:49:48 lcdev sshd\[32338\]: Invalid user bridge from 124.156.168.84 Sep 22 07:49:48 lcdev sshd\[32338\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.168.84	2019-09-23 02:06:25
199.195.252.213	attackbotsspam	Sep 22 18:25:03 master sshd[30382]: Failed password for invalid user bt1944server from 199.195.252.213 port 34540 ssh2 Sep 22 18:38:31 master sshd[30690]: Failed password for invalid user sysadmin from 199.195.252.213 port 46106 ssh2 Sep 22 18:42:21 master sshd[30694]: Failed password for invalid user voorhis from 199.195.252.213 port 59648 ssh2 Sep 22 18:46:12 master sshd[30707]: Failed password for invalid user picture from 199.195.252.213 port 44956 ssh2 Sep 22 18:49:57 master sshd[30711]: Failed password for invalid user ooooo from 199.195.252.213 port 58352 ssh2 Sep 22 18:53:52 master sshd[30713]: Failed password for invalid user test from 199.195.252.213 port 43650 ssh2 Sep 22 18:57:52 master sshd[30715]: Failed password for invalid user system from 199.195.252.213 port 57136 ssh2 Sep 22 19:01:42 master sshd[31023]: Failed password for invalid user test from 199.195.252.213 port 42320 ssh2 Sep 22 19:05:35 master sshd[31025]: Failed password for invalid user zhai from 199.195.252.213 port 55920 ssh2 Sep	2019-09-23 02:04:50
120.77.251.37	attack	Automatic report - Banned IP Access	2019-09-23 02:00:40
123.28.211.53	attackbots	Chat Spam	2019-09-23 02:27:35
159.203.190.189	attackbots	Triggered by Fail2Ban at Vostok web server	2019-09-23 02:24:34
23.254.228.123	attackbotsspam	Sep 22 14:35:52 mxgate1 postfix/postscreen[31585]: CONNECT from [23.254.228.123]:36568 to [176.31.12.44]:25 Sep 22 14:35:52 mxgate1 postfix/dnsblog[31608]: addr 23.254.228.123 listed by domain zen.spamhaus.org as 127.0.0.3 Sep 22 14:35:52 mxgate1 postfix/dnsblog[31611]: addr 23.254.228.123 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Sep 22 14:35:52 mxgate1 postfix/postscreen[31585]: PREGREET 32 after 0.1 from [23.254.228.123]:36568: EHLO 02d70005.dighostnamealantina.co Sep 22 14:35:52 mxgate1 postfix/dnsblog[31610]: addr 23.254.228.123 listed by domain b.barracudacentral.org as 127.0.0.2 Sep 22 14:35:52 mxgate1 postfix/postscreen[31585]: DNSBL rank 4 for [23.254.228.123]:36568 Sep x@x Sep 22 14:35:52 mxgate1 postfix/postscreen[31585]: DISCONNECT [23.254.228.123]:36568 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=23.254.228.123	2019-09-23 02:06:11
119.57.162.18	attackspam	Sep 22 20:26:39 markkoudstaal sshd[25732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.57.162.18 Sep 22 20:26:41 markkoudstaal sshd[25732]: Failed password for invalid user vic from 119.57.162.18 port 62277 ssh2 Sep 22 20:32:14 markkoudstaal sshd[26298]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.57.162.18	2019-09-23 02:36:16
77.247.110.213	attack	\[2019-09-22 14:08:21\] NOTICE\[2270\] chan_sip.c: Registration from '"477" \' failed for '77.247.110.213:6006' - Wrong password \[2019-09-22 14:08:21\] SECURITY\[2283\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-22T14:08:21.503-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="477",SessionID="0x7fcd8c0b0788",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.213/6006",Challenge="5b7e4f15",ReceivedChallenge="5b7e4f15",ReceivedHash="d267bd64cd72c2bbaed98171c8e73e19" \[2019-09-22 14:08:21\] NOTICE\[2270\] chan_sip.c: Registration from '"477" \' failed for '77.247.110.213:6006' - Wrong password \[2019-09-22 14:08:21\] SECURITY\[2283\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-22T14:08:21.601-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="477",SessionID="0x7fcd8c0c3438",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/7	2019-09-23 02:20:32
177.220.131.210	attackspam	2019-09-22T19:10:38.760058 sshd[2999]: Invalid user yuanwd from 177.220.131.210 port 35349 2019-09-22T19:10:38.775251 sshd[2999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.220.131.210 2019-09-22T19:10:38.760058 sshd[2999]: Invalid user yuanwd from 177.220.131.210 port 35349 2019-09-22T19:10:40.295217 sshd[2999]: Failed password for invalid user yuanwd from 177.220.131.210 port 35349 ssh2 2019-09-22T19:15:29.437945 sshd[3114]: Invalid user liprod from 177.220.131.210 port 55188 ...	2019-09-23 02:19:55
62.219.3.57	attackbots	Reported by AbuseIPDB proxy server.	2019-09-23 02:29:33
41.32.37.250	attack	SSH invalid-user multiple login try	2019-09-23 02:16:38
115.29.11.56	attackspam	Sep 22 07:41:18 lcprod sshd\[27427\]: Invalid user gaurav from 115.29.11.56 Sep 22 07:41:18 lcprod sshd\[27427\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.29.11.56 Sep 22 07:41:20 lcprod sshd\[27427\]: Failed password for invalid user gaurav from 115.29.11.56 port 49415 ssh2 Sep 22 07:45:58 lcprod sshd\[27889\]: Invalid user cm from 115.29.11.56 Sep 22 07:45:58 lcprod sshd\[27889\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.29.11.56	2019-09-23 02:02:17
80.48.183.166	attackspambots	postfix	2019-09-23 02:35:23

Recently Reported IPs

167.172.235.83	114.236.216.72	198.74.62.104	37.1.83.180
222.77.215.65	101.132.165.50	179.24.230.213	95.83.44.253
89.221.58.226	108.58.239.170	115.46.100.217	24.210.122.130
180.245.127.115	27.72.75.22	185.34.107.184	106.75.172.166
82.142.12.228	114.119.130.105	186.33.83.40	201.219.248.4