124.95.141.249

Basic Info

City: Shenyang

Region: Liaoning

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
124.95.141.149	attack	Port Scan detected from 124.95.141.149 (CN/China/-). 4 hits in the last 50 seconds	2020-08-22 15:55:05
124.95.141.149	attackbotsspam	TCP (SYN) 124.95.141.149:45046 -> port 7002, len 60	2020-07-01 14:46:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.95.141.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13735
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.95.141.249.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Sep 17 23:51:32 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 249.141.95.124.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 249.141.95.124.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.27.24.127	attackspambots	2020-06-09T03:55:43.596744server.espacesoutien.com sshd[6991]: Invalid user qj from 118.27.24.127 port 47344 2020-06-09T03:55:43.613857server.espacesoutien.com sshd[6991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.27.24.127 2020-06-09T03:55:43.596744server.espacesoutien.com sshd[6991]: Invalid user qj from 118.27.24.127 port 47344 2020-06-09T03:55:45.943585server.espacesoutien.com sshd[6991]: Failed password for invalid user qj from 118.27.24.127 port 47344 ssh2 ...	2020-06-09 13:47:34
49.88.112.110	attackbots	Jun 9 06:47:38 server sshd[45354]: Failed password for root from 49.88.112.110 port 21995 ssh2 Jun 9 06:47:41 server sshd[45354]: Failed password for root from 49.88.112.110 port 21995 ssh2 Jun 9 06:47:45 server sshd[45354]: Failed password for root from 49.88.112.110 port 21995 ssh2	2020-06-09 13:39:27
45.250.64.136	attackspam	www.fahrschule-mihm.de 45.250.64.136 [09/Jun/2020:05:56:50 +0200] "POST /wp-login.php HTTP/1.1" 200 5938 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" www.fahrschule-mihm.de 45.250.64.136 [09/Jun/2020:05:56:52 +0200] "POST /wp-login.php HTTP/1.1" 200 5967 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-09 12:59:12
193.112.154.159	attackspam	Failed password for root from 193.112.154.159 port 54894 ssh2	2020-06-09 13:23:33
185.210.219.156	attackspambots	Many_bad_calls	2020-06-09 13:05:54
139.219.0.102	attackspambots	Jun 9 06:27:56 ns381471 sshd[1659]: Failed password for root from 139.219.0.102 port 45720 ssh2	2020-06-09 12:59:42
87.248.110.82	attackbots	X-MD-FROM: jblipx@gmail.com X-MD-TO: Received: from sonic302-19.consmr.mail.ir2.yahoo.com ([87.248.110.82])	2020-06-09 13:05:20
88.130.64.27	attack	detected by Fail2Ban	2020-06-09 13:17:41
104.248.192.145	attack	Jun 9 05:08:37 hcbbdb sshd\[1034\]: Invalid user gq from 104.248.192.145 Jun 9 05:08:37 hcbbdb sshd\[1034\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 Jun 9 05:08:39 hcbbdb sshd\[1034\]: Failed password for invalid user gq from 104.248.192.145 port 35100 ssh2 Jun 9 05:11:55 hcbbdb sshd\[1417\]: Invalid user xl from 104.248.192.145 Jun 9 05:11:55 hcbbdb sshd\[1417\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145	2020-06-09 13:27:56
118.24.145.89	attackbots	Fail2Ban	2020-06-09 13:02:39
103.63.212.164	attackbots	Jun 9 05:51:21 [host] sshd[5896]: pam_unix(sshd:a Jun 9 05:51:23 [host] sshd[5896]: Failed password Jun 9 05:56:22 [host] sshd[6180]: Invalid user wu	2020-06-09 13:23:18
203.6.149.195	attackspambots	Jun 9 07:43:23 lukav-desktop sshd\[27621\]: Invalid user admin from 203.6.149.195 Jun 9 07:43:23 lukav-desktop sshd\[27621\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.6.149.195 Jun 9 07:43:25 lukav-desktop sshd\[27621\]: Failed password for invalid user admin from 203.6.149.195 port 51914 ssh2 Jun 9 07:47:19 lukav-desktop sshd\[27653\]: Invalid user b2 from 203.6.149.195 Jun 9 07:47:19 lukav-desktop sshd\[27653\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.6.149.195	2020-06-09 13:18:31
120.151.222.78	attackbots	Jun 9 03:27:41 localhost sshd\[29365\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.151.222.78 user=root Jun 9 03:27:44 localhost sshd\[29365\]: Failed password for root from 120.151.222.78 port 44654 ssh2 Jun 9 03:56:24 localhost sshd\[29842\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.151.222.78 user=root ...	2020-06-09 13:21:32
51.178.78.152	attackbots	Jun 9 07:55:34 debian kernel: [581091.420104] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:be:e4:65:08:e8:4f:6e:48:0c:08:00 SRC=51.178.78.152 DST=89.252.131.35 LEN=40 TOS=0x00 PREC=0x00 TTL=237 ID=54321 PROTO=TCP SPT=48877 DPT=8881 WINDOW=65535 RES=0x00 SYN URGP=0	2020-06-09 13:00:03
106.52.188.43	attack	Jun 9 06:40:01 lnxded63 sshd[1650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.188.43	2020-06-09 13:13:43

Recently Reported IPs

52.166.30.113	88.27.250.165	181.208.55.124	213.46.122.86
211.10.239.200	11.245.197.244	149.56.30.149	51.91.37.17
200.6.232.202	190.89.111.166	191.189.30.241	30.170.58.229
116.52.20.193	178.62.77.224	42.58.207.210	85.70.99.16
156.81.166.88	108.166.33.21	211.159.3.253	18.116.114.83