103.124.136.73

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
103.124.136.230	attack	(smtpauth) Failed SMTP AUTH login from 103.124.136.230 (ID/Indonesia/host-103.124.136-230.gmdp.net.id): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-06-29 15:38:19 plain authenticator failed for ([103.124.136.230]) [103.124.136.230]: 535 Incorrect authentication data (set_id=info)	2020-06-30 01:51:14
103.124.136.230	attackspambots	May 13 14:11:37 mail.srvfarm.net postfix/smtps/smtpd[553700]: warning: unknown[103.124.136.230]: SASL PLAIN authentication failed: May 13 14:11:37 mail.srvfarm.net postfix/smtps/smtpd[553700]: lost connection after AUTH from unknown[103.124.136.230] May 13 14:17:34 mail.srvfarm.net postfix/smtps/smtpd[553681]: warning: unknown[103.124.136.230]: SASL PLAIN authentication failed: May 13 14:17:35 mail.srvfarm.net postfix/smtps/smtpd[553681]: lost connection after AUTH from unknown[103.124.136.230] May 13 14:18:20 mail.srvfarm.net postfix/smtps/smtpd[553700]: warning: unknown[103.124.136.230]: SASL PLAIN authentication failed:	2020-05-14 02:50:55

Type

Details

Datetime

103.124.136.230

attack

(smtpauth) Failed SMTP AUTH login from 103.124.136.230 (ID/Indonesia/host-103.124.136-230.gmdp.net.id): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-06-29 15:38:19 plain authenticator failed for ([103.124.136.230]) [103.124.136.230]: 535 Incorrect authentication data (set_id=info)

2020-06-30 01:51:14

103.124.136.230

attackspambots

May 13 14:11:37 mail.srvfarm.net postfix/smtps/smtpd[553700]: warning: unknown[103.124.136.230]: SASL PLAIN authentication failed: 
May 13 14:11:37 mail.srvfarm.net postfix/smtps/smtpd[553700]: lost connection after AUTH from unknown[103.124.136.230]
May 13 14:17:34 mail.srvfarm.net postfix/smtps/smtpd[553681]: warning: unknown[103.124.136.230]: SASL PLAIN authentication failed: 
May 13 14:17:35 mail.srvfarm.net postfix/smtps/smtpd[553681]: lost connection after AUTH from unknown[103.124.136.230]
May 13 14:18:20 mail.srvfarm.net postfix/smtps/smtpd[553700]: warning: unknown[103.124.136.230]: SASL PLAIN authentication failed:

2020-05-14 02:50:55

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.124.136.73
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32144
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.124.136.73.			IN	A

;; AUTHORITY SECTION:
.			452	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 112 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 16:30:02 CST 2022
;; MSG SIZE  rcvd: 107

Host info

73.136.124.103.in-addr.arpa domain name pointer host-103.124.136-73.gmdp.net.id.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
73.136.124.103.in-addr.arpa	name = host-103.124.136-73.gmdp.net.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.19.2.226	attack	Jun 4 13:25:58 mail.srvfarm.net postfix/smtps/smtpd[2492409]: warning: unknown[185.19.2.226]: SASL PLAIN authentication failed: Jun 4 13:25:58 mail.srvfarm.net postfix/smtps/smtpd[2492409]: lost connection after AUTH from unknown[185.19.2.226] Jun 4 13:27:30 mail.srvfarm.net postfix/smtps/smtpd[2492274]: warning: unknown[185.19.2.226]: SASL PLAIN authentication failed: Jun 4 13:27:30 mail.srvfarm.net postfix/smtps/smtpd[2492274]: lost connection after AUTH from unknown[185.19.2.226] Jun 4 13:28:48 mail.srvfarm.net postfix/smtps/smtpd[2492274]: warning: unknown[185.19.2.226]: SASL PLAIN authentication failed:	2020-06-05 03:23:37
195.231.3.146	attackspambots	Jun 4 20:41:31 web01.agentur-b-2.de postfix/smtpd[280183]: warning: unknown[195.231.3.146]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 4 20:41:31 web01.agentur-b-2.de postfix/smtpd[280183]: lost connection after AUTH from unknown[195.231.3.146] Jun 4 20:45:19 web01.agentur-b-2.de postfix/smtpd[280183]: warning: unknown[195.231.3.146]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 4 20:45:19 web01.agentur-b-2.de postfix/smtpd[280183]: lost connection after AUTH from unknown[195.231.3.146] Jun 4 20:49:32 web01.agentur-b-2.de postfix/smtpd[280183]: warning: unknown[195.231.3.146]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-06-05 03:19:56
199.249.230.169	attack	xmlrpc attack	2020-06-05 03:07:07
200.189.11.175	attack	Jun 4 13:23:43 mail.srvfarm.net postfix/smtps/smtpd[2492275]: warning: unknown[200.189.11.175]: SASL PLAIN authentication failed: Jun 4 13:23:43 mail.srvfarm.net postfix/smtps/smtpd[2492275]: lost connection after AUTH from unknown[200.189.11.175] Jun 4 13:26:42 mail.srvfarm.net postfix/smtps/smtpd[2492411]: warning: unknown[200.189.11.175]: SASL PLAIN authentication failed: Jun 4 13:26:42 mail.srvfarm.net postfix/smtps/smtpd[2492411]: lost connection after AUTH from unknown[200.189.11.175] Jun 4 13:28:36 mail.srvfarm.net postfix/smtpd[2494759]: warning: unknown[200.189.11.175]: SASL PLAIN authentication failed:	2020-06-05 03:19:25
191.53.133.19	attack	Jun 4 13:49:14 mail.srvfarm.net postfix/smtpd[2497942]: warning: unknown[191.53.133.19]: SASL PLAIN authentication failed: Jun 4 13:49:15 mail.srvfarm.net postfix/smtpd[2497942]: lost connection after AUTH from unknown[191.53.133.19] Jun 4 13:54:44 mail.srvfarm.net postfix/smtps/smtpd[2498060]: warning: unknown[191.53.133.19]: SASL PLAIN authentication failed: Jun 4 13:54:44 mail.srvfarm.net postfix/smtps/smtpd[2498060]: lost connection after AUTH from unknown[191.53.133.19] Jun 4 13:55:39 mail.srvfarm.net postfix/smtps/smtpd[2498062]: warning: unknown[191.53.133.19]: SASL PLAIN authentication failed:	2020-06-05 03:12:00
195.97.5.66	attackspambots	Unauthorized connection attempt from IP address 195.97.5.66 on Port 445(SMB)	2020-06-05 03:00:42
187.57.157.3	attackbots	Unauthorized connection attempt from IP address 187.57.157.3 on Port 445(SMB)	2020-06-05 03:10:18
108.91.145.51	attackbots	DATE:2020-06-04 14:01:42, IP:108.91.145.51, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-06-05 03:09:28
119.96.171.162	attackbots	Jun 4 20:33:46 home sshd[19439]: Failed password for root from 119.96.171.162 port 36104 ssh2 Jun 4 20:36:29 home sshd[19703]: Failed password for root from 119.96.171.162 port 36428 ssh2 ...	2020-06-05 02:54:13
179.189.206.94	attackspambots	Jun 4 13:52:49 mail.srvfarm.net postfix/smtpd[2502231]: warning: unknown[179.189.206.94]: SASL PLAIN authentication failed: Jun 4 13:52:50 mail.srvfarm.net postfix/smtpd[2502231]: lost connection after AUTH from unknown[179.189.206.94] Jun 4 13:58:55 mail.srvfarm.net postfix/smtps/smtpd[2499237]: warning: unknown[179.189.206.94]: SASL PLAIN authentication failed: Jun 4 13:58:56 mail.srvfarm.net postfix/smtps/smtpd[2499237]: lost connection after AUTH from unknown[179.189.206.94] Jun 4 13:59:46 mail.srvfarm.net postfix/smtpd[2502680]: warning: unknown[179.189.206.94]: SASL PLAIN authentication failed:	2020-06-05 03:12:46
190.227.164.50	attackspambots	Jun 4 13:31:08 mail.srvfarm.net postfix/smtpd[2495360]: warning: host50.190-227-164.telecom.net.ar[190.227.164.50]: SASL PLAIN authentication failed: Jun 4 13:31:08 mail.srvfarm.net postfix/smtpd[2495360]: lost connection after AUTH from host50.190-227-164.telecom.net.ar[190.227.164.50] Jun 4 13:37:28 mail.srvfarm.net postfix/smtpd[2495361]: warning: host50.190-227-164.telecom.net.ar[190.227.164.50]: SASL PLAIN authentication failed: Jun 4 13:37:29 mail.srvfarm.net postfix/smtpd[2495361]: lost connection after AUTH from host50.190-227-164.telecom.net.ar[190.227.164.50] Jun 4 13:40:52 mail.srvfarm.net postfix/smtps/smtpd[2497786]: warning: host50.190-227-164.telecom.net.ar[190.227.164.50]: SASL PLAIN authentication failed:	2020-06-05 03:20:34
185.180.56.34	attack	Unauthorized connection attempt from IP address 185.180.56.34 on Port 445(SMB)	2020-06-05 03:03:47
201.77.10.163	attack	Jun 4 13:31:29 mail.srvfarm.net postfix/smtps/smtpd[2497770]: warning: 163-10-77-201.rgprovider.com.br[201.77.10.163]: SASL PLAIN authentication failed: Jun 4 13:31:29 mail.srvfarm.net postfix/smtps/smtpd[2497770]: lost connection after AUTH from 163-10-77-201.rgprovider.com.br[201.77.10.163] Jun 4 13:37:51 mail.srvfarm.net postfix/smtpd[2495366]: warning: 163-10-77-201.rgprovider.com.br[201.77.10.163]: SASL PLAIN authentication failed: Jun 4 13:37:52 mail.srvfarm.net postfix/smtpd[2495366]: lost connection after AUTH from 163-10-77-201.rgprovider.com.br[201.77.10.163] Jun 4 13:38:28 mail.srvfarm.net postfix/smtps/smtpd[2498764]: warning: 163-10-77-201.rgprovider.com.br[201.77.10.163]: SASL PLAIN authentication failed:	2020-06-05 03:18:34
193.169.212.201	attackspam	SpamScore above: 10.0	2020-06-05 02:55:33
190.64.137.173	attack	Jun 4 20:20:53 server sshd[14173]: Failed password for root from 190.64.137.173 port 57799 ssh2 Jun 4 20:34:10 server sshd[24252]: Failed password for root from 190.64.137.173 port 49000 ssh2 Jun 4 20:38:15 server sshd[27476]: Failed password for root from 190.64.137.173 port 49755 ssh2	2020-06-05 03:03:27

Recently Reported IPs

103.124.136.105	1.2.176.85	103.124.137.107	103.124.136.99
103.124.137.129	103.124.137.109	103.124.136.41	103.124.137.163
103.124.137.155	103.124.137.186	103.124.137.173	103.124.137.191
103.124.137.189	103.124.137.200	1.2.176.86	103.124.137.235
103.124.137.23	103.124.137.255	103.124.137.45	103.124.137.5