141.103.148.124

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: Lapan

Hostname: unknown

Organization: unknown

Usage Type: Government

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	[SPAM] what are your plans for the weekend?	2020-07-03 21:04:19

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 141.103.148.124
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23323
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;141.103.148.124.		IN	A

;; AUTHORITY SECTION:
.			390	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070300 1800 900 604800 86400

;; Query time: 109 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jul 03 21:04:11 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 124.148.103.141.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 124.148.103.141.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
141.255.162.34	attackspambots	pfaffenroth-photographie.de:80 141.255.162.34 - - \[22/Oct/2019:22:08:49 +0200\] "POST /xmlrpc.php HTTP/1.0" 301 521 "-" "Mozilla/5.0 \(Macintosh\; Intel Mac OS X 10_12_6\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/68.0.3440.106 Safari/537.36" pfaffenroth-photographie.de 141.255.162.34 \[22/Oct/2019:22:08:50 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 4513 "-" "Mozilla/5.0 \(Macintosh\; Intel Mac OS X 10_12_6\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/68.0.3440.106 Safari/537.36"	2019-10-23 06:56:01
220.80.138.118	attackspam	11382/tcp 11384/tcp 11385/tcp... [2019-10-12/22]68pkt,26pt.(tcp)	2019-10-23 06:30:18
189.174.125.132	attackspam	445/tcp 1433/tcp... [2019-10-16/22]4pkt,2pt.(tcp)	2019-10-23 06:38:49
80.211.86.96	attack	Oct 22 22:05:20 MK-Soft-Root2 sshd[5783]: Failed password for root from 80.211.86.96 port 43460 ssh2 ...	2019-10-23 06:44:48
42.51.194.4	attack	Oct 23 01:43:16 server sshd\[29595\]: Invalid user long from 42.51.194.4 port 32908 Oct 23 01:43:16 server sshd\[29595\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.51.194.4 Oct 23 01:43:19 server sshd\[29595\]: Failed password for invalid user long from 42.51.194.4 port 32908 ssh2 Oct 23 01:47:59 server sshd\[2979\]: User root from 42.51.194.4 not allowed because listed in DenyUsers Oct 23 01:47:59 server sshd\[2979\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.51.194.4 user=root	2019-10-23 06:51:22
196.52.43.60	attackbots	Automatic report - Port Scan Attack	2019-10-23 07:02:44
185.251.249.21	attackspam	Oct 21 00:43:44 nbi-636 sshd[27507]: User r.r from 185.251.249.21 not allowed because not listed in AllowUsers Oct 21 00:43:44 nbi-636 sshd[27507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.251.249.21 user=r.r Oct 21 00:43:46 nbi-636 sshd[27507]: Failed password for invalid user r.r from 185.251.249.21 port 38294 ssh2 Oct 21 00:43:46 nbi-636 sshd[27507]: Received disconnect from 185.251.249.21 port 38294:11: Bye Bye [preauth] Oct 21 00:43:46 nbi-636 sshd[27507]: Disconnected from 185.251.249.21 port 38294 [preauth] Oct 21 00:53:03 nbi-636 sshd[29456]: Invalid user com from 185.251.249.21 port 43456 Oct 21 00:53:05 nbi-636 sshd[29456]: Failed password for invalid user com from 185.251.249.21 port 43456 ssh2 Oct 21 00:53:05 nbi-636 sshd[29456]: Received disconnect from 185.251.249.21 port 43456:11: Bye Bye [preauth] Oct 21 00:53:05 nbi-636 sshd[29456]: Disconnected from 185.251.249.21 port 43456 [preauth] Oct 21 00:57:22 ........ -------------------------------	2019-10-23 07:05:57
139.59.108.237	attack	2019-10-22T20:41:40.550512shield sshd\[15941\]: Invalid user Pass@1234 from 139.59.108.237 port 56834 2019-10-22T20:41:40.554920shield sshd\[15941\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.108.237 2019-10-22T20:41:42.472519shield sshd\[15941\]: Failed password for invalid user Pass@1234 from 139.59.108.237 port 56834 ssh2 2019-10-22T20:46:10.713572shield sshd\[17112\]: Invalid user 123QWE!@\#ZXC from 139.59.108.237 port 40126 2019-10-22T20:46:10.718039shield sshd\[17112\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.108.237	2019-10-23 06:37:05
185.156.73.52	attack	10/22/2019-18:42:14.124515 185.156.73.52 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-10-23 06:42:30
106.12.156.160	attackbots	Oct 22 22:55:22 OPSO sshd\[4395\]: Invalid user konic from 106.12.156.160 port 55526 Oct 22 22:55:22 OPSO sshd\[4395\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.156.160 Oct 22 22:55:23 OPSO sshd\[4395\]: Failed password for invalid user konic from 106.12.156.160 port 55526 ssh2 Oct 22 22:59:21 OPSO sshd\[4921\]: Invalid user test7 from 106.12.156.160 port 36132 Oct 22 22:59:21 OPSO sshd\[4921\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.156.160	2019-10-23 06:54:38
61.230.44.16	attackspam	Honeypot attack, port: 23, PTR: 61-230-44-16.dynamic-ip.hinet.net.	2019-10-23 06:51:39
43.242.125.185	attackspambots	Invalid user cacti from 43.242.125.185 port 54209	2019-10-23 06:41:46
122.160.88.216	attackspam	1433/tcp 445/tcp [2019-10-20/22]2pkt	2019-10-23 06:59:51
163.172.72.190	attack	Oct 22 21:54:48 mail1 sshd\[32001\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.72.190 user=root Oct 22 21:54:50 mail1 sshd\[32001\]: Failed password for root from 163.172.72.190 port 44868 ssh2 Oct 22 22:05:17 mail1 sshd\[4714\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.72.190 user=root Oct 22 22:05:19 mail1 sshd\[4714\]: Failed password for root from 163.172.72.190 port 39576 ssh2 Oct 22 22:08:46 mail1 sshd\[6283\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.72.190 user=root ...	2019-10-23 07:01:04
103.31.82.122	attack	Automatic report - Banned IP Access	2019-10-23 06:33:10

Recently Reported IPs

92.71.138.156	69.245.223.224	68.114.232.165	20.150.126.56
103.134.205.225	41.230.238.42	41.101.31.232	200.20.136.114
161.252.188.47	103.151.125.180	79.42.47.173	51.89.198.166
23.254.240.207	147.201.206.196	138.64.189.73	94.163.10.216
126.187.192.47	66.176.189.132	51.205.217.80	51.205.86.113