124.158.148.113

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
124.158.148.254	attackbotsspam	Unauthorized connection attempt detected from IP address 124.158.148.254 to port 1433 [J]	2020-02-29 18:54:02
124.158.148.254	attackbotsspam	Unauthorized connection attempt detected from IP address 124.158.148.254 to port 1433 [J]	2020-02-04 04:34:35
124.158.148.254	attackspam	firewall-block, port(s): 1433/tcp	2019-11-10 15:07:21

Type

Details

Datetime

124.158.148.254

attackbotsspam

Unauthorized connection attempt detected from IP address 124.158.148.254 to port 1433 [J]

2020-02-29 18:54:02

124.158.148.254

attackbotsspam

Unauthorized connection attempt detected from IP address 124.158.148.254 to port 1433 [J]

2020-02-04 04:34:35

124.158.148.254

attackspam

firewall-block, port(s): 1433/tcp

2019-11-10 15:07:21

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.158.148.113
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52707
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;124.158.148.113.		IN	A

;; AUTHORITY SECTION:
.			315	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030901 1800 900 604800 86400

;; Query time: 80 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 10 11:36:28 CST 2022
;; MSG SIZE  rcvd: 108

Host info

113.148.158.124.in-addr.arpa domain name pointer 113.148.158.124.in-addr.arpa.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
113.148.158.124.in-addr.arpa	name = 113.148.158.124.in-addr.arpa.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
92.118.161.21	attack	Automatic report - Port Scan Attack	2019-09-14 05:31:21
139.59.94.203	attackspam	fail2ban honeypot	2019-09-14 05:37:25
166.62.125.130	attack	WordPress brute force	2019-09-14 05:18:52
221.7.213.133	attack	Sep 13 10:58:45 ip-172-31-62-245 sshd\[15269\]: Invalid user 35 from 221.7.213.133\ Sep 13 10:58:47 ip-172-31-62-245 sshd\[15269\]: Failed password for invalid user 35 from 221.7.213.133 port 39629 ssh2\ Sep 13 11:03:41 ip-172-31-62-245 sshd\[15304\]: Invalid user 176 from 221.7.213.133\ Sep 13 11:03:43 ip-172-31-62-245 sshd\[15304\]: Failed password for invalid user 176 from 221.7.213.133 port 60152 ssh2\ Sep 13 11:08:24 ip-172-31-62-245 sshd\[15347\]: Invalid user admin from 221.7.213.133\	2019-09-14 05:23:31
191.8.190.32	attack	Invalid user postgres from 191.8.190.32 port 46832	2019-09-14 05:12:29
80.82.62.234	attackbots	Unauthorized connection attempt from IP address 80.82.62.234 on Port 445(SMB)	2019-09-14 05:21:28
222.252.16.68	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-13 10:48:56,694 INFO [amun_request_handler] PortScan Detected on Port: 445 (222.252.16.68)	2019-09-14 05:23:01
35.187.248.21	attackbots	Sep 13 17:37:03 vps200512 sshd\[15843\]: Invalid user snake from 35.187.248.21 Sep 13 17:37:03 vps200512 sshd\[15843\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.187.248.21 Sep 13 17:37:05 vps200512 sshd\[15843\]: Failed password for invalid user snake from 35.187.248.21 port 34474 ssh2 Sep 13 17:41:54 vps200512 sshd\[16009\]: Invalid user oy from 35.187.248.21 Sep 13 17:41:54 vps200512 sshd\[16009\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.187.248.21	2019-09-14 05:52:11
86.34.182.50	attackspambots	Sep 13 11:17:38 php1 sshd\[8105\]: Invalid user gitlab from 86.34.182.50 Sep 13 11:17:38 php1 sshd\[8105\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mx.frigorifer.ro Sep 13 11:17:39 php1 sshd\[8105\]: Failed password for invalid user gitlab from 86.34.182.50 port 44540 ssh2 Sep 13 11:23:32 php1 sshd\[8749\]: Invalid user ubuntu from 86.34.182.50 Sep 13 11:23:32 php1 sshd\[8749\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mx.frigorifer.ro	2019-09-14 05:29:14
128.199.82.144	attackspam	Sep 13 23:18:30 vps691689 sshd[22808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.82.144 Sep 13 23:18:32 vps691689 sshd[22808]: Failed password for invalid user minecraft from 128.199.82.144 port 40968 ssh2 ...	2019-09-14 05:41:49
41.223.142.211	attackbotsspam	Sep 13 15:35:54 vps647732 sshd[31052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.223.142.211 Sep 13 15:35:56 vps647732 sshd[31052]: Failed password for invalid user teste@123 from 41.223.142.211 port 33654 ssh2 ...	2019-09-14 05:16:45
49.88.112.113	attack	Sep 13 11:21:47 eddieflores sshd\[10556\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Sep 13 11:21:49 eddieflores sshd\[10556\]: Failed password for root from 49.88.112.113 port 53353 ssh2 Sep 13 11:22:37 eddieflores sshd\[10632\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Sep 13 11:22:40 eddieflores sshd\[10632\]: Failed password for root from 49.88.112.113 port 48348 ssh2 Sep 13 11:23:32 eddieflores sshd\[10694\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root	2019-09-14 05:29:38
104.40.2.56	attack	Triggered by Fail2Ban at Vostok web server	2019-09-14 05:44:09
203.69.6.190	attackspambots	Scanning random ports - tries to find possible vulnerable services	2019-09-14 05:24:15
218.92.0.191	attack	Sep 13 23:23:33 dcd-gentoo sshd[31408]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Sep 13 23:23:35 dcd-gentoo sshd[31408]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Sep 13 23:23:33 dcd-gentoo sshd[31408]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Sep 13 23:23:35 dcd-gentoo sshd[31408]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Sep 13 23:23:33 dcd-gentoo sshd[31408]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Sep 13 23:23:35 dcd-gentoo sshd[31408]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Sep 13 23:23:35 dcd-gentoo sshd[31408]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.191 port 36530 ssh2 ...	2019-09-14 05:27:04

Recently Reported IPs

124.158.147.74	124.158.148.114	124.158.148.34	124.158.149.145
124.158.149.146	124.158.149.66	124.158.149.74	124.158.150.100
124.158.150.18	124.158.150.203	124.158.150.204	124.158.151.202
124.158.152.138	124.158.152.234	124.158.153.49	124.158.153.50
124.158.154.106	124.158.154.110	124.158.171.26	124.158.172.44