103.39.242.148

Basic Info

City: unknown

Region: unknown

Country: India

Internet Service Provider: Wefe Technology Pvt Ltd

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	IP: 103.39.242.148 ASN: AS133695 Wefe Technology Pvt Ltd Port: http protocol over TLS/SSL 443 Found in one or more Blacklists Date: 28/06/2019 5:24:17 AM UTC	2019-06-28 18:47:38

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.39.242.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43605
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.39.242.148.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jun 28 18:47:32 CST 2019
;; MSG SIZE  rcvd: 118

Host info

148.242.39.103.in-addr.arpa domain name pointer 148-242-39-103.static.wefeinternet.com.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
148.242.39.103.in-addr.arpa	name = 148-242-39-103.static.wefeinternet.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
69.94.158.44	attackbotsspam	TCP src-port=35558 dst-port=25 Listed on zen-spamhaus spam-sorbs unsubscore (871)	2019-10-13 02:44:22
49.88.112.115	attack	Oct 12 07:57:36 php1 sshd\[12119\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115 user=root Oct 12 07:57:38 php1 sshd\[12119\]: Failed password for root from 49.88.112.115 port 50977 ssh2 Oct 12 07:58:22 php1 sshd\[12189\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115 user=root Oct 12 07:58:24 php1 sshd\[12189\]: Failed password for root from 49.88.112.115 port 38303 ssh2 Oct 12 07:59:08 php1 sshd\[12243\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115 user=root	2019-10-13 02:07:37
120.208.209.206	attackspam	Unsolicited bulk porn & phishing - varying ISPs (primarily Chinanet); repetitive redirects from blacklisted IP 92.63.192.124 & .151; spam volume up to 15/day. Spam link 4-gkb.ru = 92.63.192.151 NVFOPServer-net (previous IP 92.63.192.124) - repetitive redirects: - www.benaughty.com = 2.17.43.33, 2.17.43.17 Akamai - walkondates.com = 52.57.168.236, 52.58.193.171 Amazon - retargetcore.com = 52.29.68.89, 35.158.186.87 Amazon - t.insigit.com = 52.28.205.175, 54.93.35.219 Amazon - uf.noclef.com = 3.121.133.104, 52.59.105.243 Amazon Unsolicited bulk spam - unimplemented.likethin.eu, China Mobile Communications Corporation - 120.208.209.206 Sender domain harmsenheftrucks.nl = 136.144.206.196 TransIP BV	2019-10-13 02:10:15
192.227.252.23	attackbots	Oct 12 18:03:58 *** sshd[2772]: User root from 192.227.252.23 not allowed because not listed in AllowUsers	2019-10-13 02:16:55
203.211.75.97	attackspam	Spam Timestamp : 12-Oct-19 14:29 BlockList Provider combined abuse (872)	2019-10-13 02:40:08
178.128.68.121	attackbots	Automatic report - XMLRPC Attack	2019-10-13 02:19:52
212.103.50.78	attack	Automatic report - Banned IP Access	2019-10-13 02:45:03
206.81.11.216	attack	Oct 12 20:21:35 v22019058497090703 sshd[16697]: Failed password for root from 206.81.11.216 port 47608 ssh2 Oct 12 20:25:45 v22019058497090703 sshd[17013]: Failed password for root from 206.81.11.216 port 59096 ssh2 ...	2019-10-13 02:30:53
5.188.84.130	attackbots	Automatic report - Banned IP Access	2019-10-13 02:43:03
187.72.124.65	attack	Oct 12 20:14:18 vps647732 sshd[4542]: Failed password for root from 187.72.124.65 port 4967 ssh2 ...	2019-10-13 02:23:12
138.68.50.18	attack	Lines containing failures of 138.68.50.18 Oct 8 10:54:58 shared10 sshd[25902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.50.18 user=r.r Oct 8 10:55:00 shared10 sshd[25902]: Failed password for r.r from 138.68.50.18 port 39356 ssh2 Oct 8 10:55:00 shared10 sshd[25902]: Received disconnect from 138.68.50.18 port 39356:11: Bye Bye [preauth] Oct 8 10:55:00 shared10 sshd[25902]: Disconnected from authenticating user r.r 138.68.50.18 port 39356 [preauth] Oct 8 11:15:17 shared10 sshd[2113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.50.18 user=r.r Oct 8 11:15:19 shared10 sshd[2113]: Failed password for r.r from 138.68.50.18 port 54370 ssh2 Oct 8 11:15:20 shared10 sshd[2113]: Received disconnect from 138.68.50.18 port 54370:11: Bye Bye [preauth] Oct 8 11:15:20 shared10 sshd[2113]: Disconnected from authenticating user r.r 138.68.50.18 port 54370 [preauth] Oct 8 11:1........ ------------------------------	2019-10-13 02:31:24
222.186.175.151	attackbots	Oct 12 20:16:56 ks10 sshd[29440]: Failed password for root from 222.186.175.151 port 47020 ssh2 Oct 12 20:17:00 ks10 sshd[29440]: Failed password for root from 222.186.175.151 port 47020 ssh2 ...	2019-10-13 02:18:41
50.63.166.50	attack	Automatic report - Banned IP Access	2019-10-13 02:11:07
110.188.70.99	attack	Oct 12 08:15:17 kapalua sshd\[434\]: Invalid user Debian123!@\# from 110.188.70.99 Oct 12 08:15:17 kapalua sshd\[434\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.188.70.99 Oct 12 08:15:19 kapalua sshd\[434\]: Failed password for invalid user Debian123!@\# from 110.188.70.99 port 43440 ssh2 Oct 12 08:20:24 kapalua sshd\[1014\]: Invalid user !@\#\$%QWERT from 110.188.70.99 Oct 12 08:20:24 kapalua sshd\[1014\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.188.70.99	2019-10-13 02:29:51
82.241.62.175	attackbots	Oct 12 18:23:29 markkoudstaal sshd[21277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.241.62.175 Oct 12 18:23:31 markkoudstaal sshd[21277]: Failed password for invalid user Montecarlo1@3 from 82.241.62.175 port 45870 ssh2 Oct 12 18:31:30 markkoudstaal sshd[21907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.241.62.175	2019-10-13 02:40:39

Recently Reported IPs

113.87.46.67	187.33.87.134	37.114.187.205	23.108.233.248
178.214.207.50	41.232.214.115	112.78.176.17	168.228.148.195
138.122.38.190	14.251.49.143	212.7.222.222	200.23.239.24
14.186.44.192	77.111.40.252	54.240.11.40	179.127.75.18
37.120.147.233	14.234.202.136	168.232.129.208	203.162.31.112