103.197.94.140

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.197.94.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16959
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.197.94.140.			IN	A

;; AUTHORITY SECTION:
.			225	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 93 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 17:01:16 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 140.94.197.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 140.94.197.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
66.228.38.85	attackspam	Found on CINS badguys / proto=6 . srcport=44773 . dstport=9633 . (2745)	2020-10-10 03:53:00
106.12.40.74	attackspambots	ET SCAN NMAP -sS window 1024	2020-10-10 03:29:54
90.48.166.141	attackbots	Port Scan: TCP/443	2020-10-10 03:40:32
139.194.225.62	attack	Oct 8 22:24:18 kunden sshd[25644]: Address 139.194.225.62 maps to fm-dyn-139-194-225-62.fast.net.id, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 8 22:24:18 kunden sshd[25644]: Invalid user admin from 139.194.225.62 Oct 8 22:24:19 kunden sshd[25644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.194.225.62 Oct 8 22:24:21 kunden sshd[25644]: Failed password for invalid user admin from 139.194.225.62 port 45508 ssh2 Oct 8 22:24:21 kunden sshd[25644]: Connection closed by 139.194.225.62 [preauth] Oct 8 22:24:25 kunden sshd[25649]: Address 139.194.225.62 maps to fm-dyn-139-194-225-62.fast.net.id, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 8 22:24:25 kunden sshd[25649]: Invalid user admin from 139.194.225.62 Oct 8 22:24:26 kunden sshd[25649]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.194.225.62 Oct 8 22:24:28........ -------------------------------	2020-10-10 03:26:02
123.149.212.142	attackspambots	(sshd) Failed SSH login from 123.149.212.142 (CN/China/-): 5 in the last 3600 secs	2020-10-10 03:27:10
106.12.126.114	attackbots	ET SCAN NMAP -sS window 1024	2020-10-10 03:29:42
147.135.203.181	attackbotsspam	Oct 9 12:37:46 vps1 sshd[18892]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.135.203.181 user=root Oct 9 12:37:48 vps1 sshd[18892]: Failed password for invalid user root from 147.135.203.181 port 46424 ssh2 Oct 9 12:41:02 vps1 sshd[19014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.135.203.181 user=root Oct 9 12:41:03 vps1 sshd[19014]: Failed password for invalid user root from 147.135.203.181 port 52038 ssh2 Oct 9 12:44:24 vps1 sshd[19087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.135.203.181 Oct 9 12:44:27 vps1 sshd[19087]: Failed password for invalid user admin from 147.135.203.181 port 57650 ssh2 ...	2020-10-10 03:21:51
178.62.50.212	attack	178.62.50.212 - - [09/Oct/2020:15:17:22 +0100] "POST /wp-login.php HTTP/1.1" 200 2132 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.62.50.212 - - [09/Oct/2020:15:17:28 +0100] "POST /wp-login.php HTTP/1.1" 200 2180 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.62.50.212 - - [09/Oct/2020:15:17:34 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-10 03:20:35
157.230.230.152	attackspam	Oct 9 20:17:52 con01 sshd[1191863]: Invalid user web from 157.230.230.152 port 42366 Oct 9 20:17:52 con01 sshd[1191863]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.230.152 Oct 9 20:17:52 con01 sshd[1191863]: Invalid user web from 157.230.230.152 port 42366 Oct 9 20:17:54 con01 sshd[1191863]: Failed password for invalid user web from 157.230.230.152 port 42366 ssh2 Oct 9 20:19:10 con01 sshd[1194145]: Invalid user admin from 157.230.230.152 port 37192 ...	2020-10-10 03:47:48
46.174.191.31	attack	TCP (SYN) 46.174.191.31:28471 -> port 8080, len 48	2020-10-10 03:54:39
122.51.134.202	attackbotsspam	prod8 ...	2020-10-10 03:56:51
51.15.8.87	attack	Oct 9 20:03:23 mail sshd[1117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.8.87	2020-10-10 03:58:49
106.12.121.179	attackbotsspam	Brute-force attempt banned	2020-10-10 03:44:36
74.112.143.27	attack	Oct 8 22:24:40 kunden sshd[25670]: Address 74.112.143.27 maps to wireless-143-27.galena.il.jcwifi.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 8 22:24:40 kunden sshd[25670]: Invalid user admin from 74.112.143.27 Oct 8 22:24:41 kunden sshd[25670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.112.143.27 Oct 8 22:24:43 kunden sshd[25670]: Failed password for invalid user admin from 74.112.143.27 port 37551 ssh2 Oct 8 22:24:44 kunden sshd[25670]: Connection closed by 74.112.143.27 [preauth] Oct 8 22:24:47 kunden sshd[25688]: Address 74.112.143.27 maps to wireless-143-27.galena.il.jcwifi.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 8 22:24:47 kunden sshd[25688]: Invalid user admin from 74.112.143.27 Oct 8 22:24:47 kunden sshd[25688]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.112.143.27 Oct 8 22:24:49 k........ -------------------------------	2020-10-10 03:33:10
159.89.151.199	attackbots	Port scan denied	2020-10-10 03:58:04

Recently Reported IPs

103.198.126.237	103.198.137.6	103.197.94.2	103.198.136.119
100.25.205.88	103.197.94.142	103.197.94.145	103.198.137.97
103.198.139.3	103.198.166.124	103.198.166.120	103.198.166.126
103.198.166.112	103.198.166.116	103.198.139.202	103.198.139.33
100.25.22.133	103.198.167.129	103.198.167.130	103.198.166.114