103.144.21.189

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT Rajawali Sinergi Group

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	SSH Invalid Login	2020-09-09 20:53:07
attackspambots	SSH Invalid Login	2020-09-09 07:01:21
attack	$f2bV_matches	2020-08-29 07:38:26
attackspam	Aug 22 18:25:04 NPSTNNYC01T sshd[24538]: Failed password for root from 103.144.21.189 port 48168 ssh2 Aug 22 18:32:46 NPSTNNYC01T sshd[25615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.144.21.189 Aug 22 18:32:48 NPSTNNYC01T sshd[25615]: Failed password for invalid user hg from 103.144.21.189 port 52536 ssh2 ...	2020-08-23 06:32:58
attackbots	2020-08-17T18:47:10.441916vps773228.ovh.net sshd[2675]: Invalid user service from 103.144.21.189 port 54334 2020-08-17T18:47:10.458620vps773228.ovh.net sshd[2675]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.144.21.189 2020-08-17T18:47:10.441916vps773228.ovh.net sshd[2675]: Invalid user service from 103.144.21.189 port 54334 2020-08-17T18:47:12.036730vps773228.ovh.net sshd[2675]: Failed password for invalid user service from 103.144.21.189 port 54334 ssh2 2020-08-17T18:56:08.401919vps773228.ovh.net sshd[2763]: Invalid user matlab from 103.144.21.189 port 35422 ...	2020-08-18 01:39:15
attackspambots	Aug 15 10:31:45 mout sshd[11603]: Connection closed by 103.144.21.189 port 59588 [preauth]	2020-08-15 16:55:05
attackspam	Aug 13 08:43:16 vm0 sshd[17727]: Failed password for root from 103.144.21.189 port 43538 ssh2 ...	2020-08-13 14:55:52
attackbots	Aug 5 11:55:16 ns382633 sshd\[23150\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.144.21.189 user=root Aug 5 11:55:18 ns382633 sshd\[23150\]: Failed password for root from 103.144.21.189 port 47766 ssh2 Aug 5 12:05:13 ns382633 sshd\[25388\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.144.21.189 user=root Aug 5 12:05:14 ns382633 sshd\[25388\]: Failed password for root from 103.144.21.189 port 41836 ssh2 Aug 5 12:14:15 ns382633 sshd\[26698\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.144.21.189 user=root	2020-08-05 20:12:14
attackspam	2020-08-03T21:48[Censored Hostname] sshd[20689]: Failed password for root from 103.144.21.189 port 50860 ssh2 2020-08-03T21:54[Censored Hostname] sshd[23709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.144.21.189 user=root 2020-08-03T21:54[Censored Hostname] sshd[23709]: Failed password for root from 103.144.21.189 port 35840 ssh2[...]	2020-08-04 04:22:05
attackbots	(sshd) Failed SSH login from 103.144.21.189 (ID/Indonesia/herminahospitals-189-21.fiber.net.id): 10 in the last 3600 secs	2020-07-27 20:39:31
attack	Invalid user max from 103.144.21.189 port 60942	2020-07-04 13:15:45
attackspambots	Jun 2 14:51:11 inter-technics sshd[20684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.144.21.189 user=root Jun 2 14:51:13 inter-technics sshd[20684]: Failed password for root from 103.144.21.189 port 43072 ssh2 Jun 2 14:52:56 inter-technics sshd[20799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.144.21.189 user=root Jun 2 14:52:59 inter-technics sshd[20799]: Failed password for root from 103.144.21.189 port 53556 ssh2 Jun 2 14:55:04 inter-technics sshd[20879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.144.21.189 user=root Jun 2 14:55:06 inter-technics sshd[20879]: Failed password for root from 103.144.21.189 port 35812 ssh2 ...	2020-06-02 21:10:23

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.144.21.189
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31770
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.144.21.189.			IN	A

;; AUTHORITY SECTION:
.			546	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060200 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 02 21:10:14 CST 2020
;; MSG SIZE  rcvd: 118

Host info

189.21.144.103.in-addr.arpa domain name pointer herminahospitals-189-21-fiber.net.id.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
189.21.144.103.in-addr.arpa	name = herminahospitals-189-21-fiber.net.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
112.85.42.176	attackspam	Feb 19 14:40:13 legacy sshd[24998]: Failed password for root from 112.85.42.176 port 21023 ssh2 Feb 19 14:40:27 legacy sshd[24998]: error: maximum authentication attempts exceeded for root from 112.85.42.176 port 21023 ssh2 [preauth] Feb 19 14:40:35 legacy sshd[25001]: Failed password for root from 112.85.42.176 port 52984 ssh2 ...	2020-02-19 21:51:27
149.202.4.243	attackspam	$f2bV_matches	2020-02-19 21:45:24
170.210.136.56	attackspambots	Invalid user www from 170.210.136.56 port 49463	2020-02-19 21:32:12
193.112.108.135	attackbotsspam	detected by Fail2Ban	2020-02-19 21:50:23
145.236.86.93	attackspambots	Automatic report - Port Scan Attack	2020-02-19 21:27:44
158.174.171.23	attack	Feb 19 14:38:13 cloud sshd[1214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=h-171-23.a857.priv.bahnhof.se ...	2020-02-19 21:39:21
105.247.230.225	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-19 21:44:32
59.127.180.60	attackspambots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-02-19 21:22:45
119.145.102.234	attack	1433/tcp 1433/tcp 1433/tcp... [2020-01-03/02-19]5pkt,1pt.(tcp)	2020-02-19 21:42:46
161.0.233.62	attackbotsspam	unauthorized connection attempt	2020-02-19 21:18:32
14.207.124.134	attack	unauthorized connection attempt	2020-02-19 21:13:59
192.241.227.94	attackspam	Port 63485 scan denied	2020-02-19 21:17:25
218.173.53.86	attack	Port probing on unauthorized port 4567	2020-02-19 21:07:33
114.34.233.25	attackbotsspam	445/tcp 445/tcp 445/tcp [2020-01-11/02-19]3pkt	2020-02-19 21:44:13
118.173.10.202	attackspam	unauthorized connection attempt	2020-02-19 21:37:58

Recently Reported IPs

34.89.224.149	49.112.27.56	67.211.44.238	80.44.174.234
141.131.190.38	184.100.0.47	204.175.141.165	205.70.3.24
86.206.114.196	24.11.96.181	94.84.217.126	92.153.254.86
120.49.168.144	184.2.140.119	107.174.49.3	18.134.227.48
169.158.130.115	129.211.10.5	101.143.168.167	52.88.68.84