103.122.104.146

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT. Mora Telematika Indonesia

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Unauthorized connection attempt from IP address 103.122.104.146 on Port 445(SMB)	2020-02-03 19:51:32

Comments on same subnet:

IP	Type	Details	Datetime
103.122.104.115	attack	Port Scan ...	2020-08-01 15:29:01
103.122.104.150	attackbots	Brute force RDP, port 3389	2019-10-14 20:35:57
103.122.104.106	attackbotsspam	Unauthorized connection attempt from IP address 103.122.104.106 on Port 445(SMB)	2019-07-14 20:21:55

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.122.104.146
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32915
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.122.104.146.		IN	A

;; AUTHORITY SECTION:
.			320	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020300 1800 900 604800 86400

;; Query time: 50 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 19:51:27 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 146.104.122.103.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 146.104.122.103.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
114.219.133.7	attackspam	Aug 28 16:18:32 abendstille sshd\[27698\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.219.133.7 user=root Aug 28 16:18:35 abendstille sshd\[27698\]: Failed password for root from 114.219.133.7 port 2324 ssh2 Aug 28 16:20:22 abendstille sshd\[29428\]: Invalid user kevin from 114.219.133.7 Aug 28 16:20:22 abendstille sshd\[29428\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.219.133.7 Aug 28 16:20:23 abendstille sshd\[29428\]: Failed password for invalid user kevin from 114.219.133.7 port 2325 ssh2 ...	2020-08-28 22:45:49
211.155.225.104	attackspam	Automatic report - Banned IP Access	2020-08-28 22:57:37
106.12.166.167	attackspam	Aug 28 14:05:46 root sshd[15349]: Failed password for root from 106.12.166.167 port 25023 ssh2 Aug 28 14:07:29 root sshd[15565]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.167 Aug 28 14:07:31 root sshd[15565]: Failed password for invalid user portal from 106.12.166.167 port 41863 ssh2 ...	2020-08-28 22:52:29
77.68.4.202	attackspam	Aug 27 15:24:29 josie sshd[31427]: Invalid user test from 77.68.4.202 Aug 27 15:24:29 josie sshd[31427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.68.4.202 Aug 27 15:24:31 josie sshd[31427]: Failed password for invalid user test from 77.68.4.202 port 39714 ssh2 Aug 27 15:24:31 josie sshd[31429]: Received disconnect from 77.68.4.202: 11: Bye Bye Aug 27 15:29:22 josie sshd[32356]: Invalid user internet from 77.68.4.202 Aug 27 15:29:22 josie sshd[32356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.68.4.202 Aug 27 15:29:25 josie sshd[32356]: Failed password for invalid user internet from 77.68.4.202 port 41034 ssh2 Aug 27 15:29:25 josie sshd[32358]: Received disconnect from 77.68.4.202: 11: Bye Bye Aug 27 15:32:49 josie sshd[539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.68.4.202 user=r.r Aug 27 15:32:50 josie sshd[539]: Failed........ -------------------------------	2020-08-28 23:04:40
114.119.161.142	attackspambots	[N10.H1.VM1] SPAM Detected Blocked by UFW	2020-08-28 23:06:00
106.13.34.173	attackbotsspam	Aug 28 16:04:20 jane sshd[8914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.34.173 Aug 28 16:04:22 jane sshd[8914]: Failed password for invalid user samba from 106.13.34.173 port 40556 ssh2 ...	2020-08-28 23:11:26
185.147.215.12	attack	[2020-08-28 10:41:16] NOTICE[1185] chan_sip.c: Registration from '' failed for '185.147.215.12:59350' - Wrong password [2020-08-28 10:41:16] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-28T10:41:16.076-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="9096",SessionID="0x7f10c405a408",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215.12/59350",Challenge="5d4b2f6d",ReceivedChallenge="5d4b2f6d",ReceivedHash="f2ee30ebfde391636abf6e187f9b139d" [2020-08-28 10:42:24] NOTICE[1185] chan_sip.c: Registration from '' failed for '185.147.215.12:65366' - Wrong password [2020-08-28 10:42:24] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-28T10:42:24.914-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="9376",SessionID="0x7f10c405a408",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.21 ...	2020-08-28 22:43:33
206.189.87.108	attackbots	Aug 28 14:07:11 sso sshd[29455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.87.108 Aug 28 14:07:13 sso sshd[29455]: Failed password for invalid user updater from 206.189.87.108 port 55912 ssh2 ...	2020-08-28 23:10:39
85.145.148.186	attackspambots	(sshd) Failed SSH login from 85.145.148.186 (NL/Netherlands/186-148-145-85.ftth.glasoperator.nl): 5 in the last 3600 secs	2020-08-28 22:46:12
113.160.161.15	attackspam	SMB Server BruteForce Attack	2020-08-28 23:07:18
78.123.66.176	attack	Aug 28 12:07:20 ssh2 sshd[81246]: Connection from 78.123.66.176 port 57045 on 192.240.101.3 port 22 Aug 28 12:07:21 ssh2 sshd[81246]: Invalid user supervisor from 78.123.66.176 port 57045 Aug 28 12:07:21 ssh2 sshd[81246]: Failed password for invalid user supervisor from 78.123.66.176 port 57045 ssh2 ...	2020-08-28 23:01:37
151.80.119.61	attack	$f2bV_matches	2020-08-28 22:50:05
91.144.173.197	attack	reported through recidive - multiple failed attempts(SSH)	2020-08-28 23:08:00
35.188.194.211	attackbotsspam	(sshd) Failed SSH login from 35.188.194.211 (US/United States/211.194.188.35.bc.googleusercontent.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 28 13:57:42 amsweb01 sshd[11747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.188.194.211 user=root Aug 28 13:57:44 amsweb01 sshd[11747]: Failed password for root from 35.188.194.211 port 33618 ssh2 Aug 28 14:04:13 amsweb01 sshd[12743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.188.194.211 user=root Aug 28 14:04:15 amsweb01 sshd[12743]: Failed password for root from 35.188.194.211 port 33572 ssh2 Aug 28 14:07:39 amsweb01 sshd[13168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.188.194.211 user=root	2020-08-28 22:43:56
129.226.67.92	attack	Port Scan detected from 129.226.67.92 (SG/Singapore/-/Singapore/-). 4 hits in the last 280 seconds	2020-08-28 22:59:05

Recently Reported IPs

51.79.68.213	217.95.128.61	194.74.242.240	101.4.253.57
41.41.249.35	194.113.237.184	14.185.8.9	34.6.130.217
103.139.244.184	27.79.130.19	58.216.3.230	145.137.43.1
158.217.173.20	152.255.110.174	14.166.21.9	103.244.242.233
180.252.192.126	180.249.247.78	115.229.192.14	119.42.94.133