141.105.104.195

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
141.105.104.193	attack	Sep 26 22:38:28 andromeda sshd\[12737\]: Invalid user admin from 141.105.104.193 port 47771 Sep 26 22:38:35 andromeda sshd\[12992\]: Invalid user admin from 141.105.104.193 port 47785 Sep 26 22:38:36 andromeda sshd\[12992\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.105.104.193	2020-09-28 06:09:36
141.105.104.193	attackbotsspam	Sep 26 22:38:28 andromeda sshd\[12737\]: Invalid user admin from 141.105.104.193 port 47771 Sep 26 22:38:35 andromeda sshd\[12992\]: Invalid user admin from 141.105.104.193 port 47785 Sep 26 22:38:36 andromeda sshd\[12992\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.105.104.193	2020-09-27 22:31:42
141.105.104.193	attack	Sep 26 22:38:28 andromeda sshd\[12737\]: Invalid user admin from 141.105.104.193 port 47771 Sep 26 22:38:35 andromeda sshd\[12992\]: Invalid user admin from 141.105.104.193 port 47785 Sep 26 22:38:36 andromeda sshd\[12992\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.105.104.193	2020-09-27 14:25:04
141.105.104.175	attackbotsspam	Fail2Ban automatic report: SSH suspicious user names: Sep 20 19:04:10 serw sshd[23861]: Connection closed by invalid user admin 141.105.104.175 port 41940 [preauth]	2020-09-21 20:16:59
141.105.104.175	attack	Fail2Ban automatic report: SSH suspicious user names: Sep 20 19:04:10 serw sshd[23861]: Connection closed by invalid user admin 141.105.104.175 port 41940 [preauth]	2020-09-21 12:08:51
141.105.104.175	attackbots	Fail2Ban automatic report: SSH suspicious user names: Sep 20 19:04:10 serw sshd[23861]: Connection closed by invalid user admin 141.105.104.175 port 41940 [preauth]	2020-09-21 03:59:58

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 141.105.104.195
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38581
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;141.105.104.195.		IN	A

;; AUTHORITY SECTION:
.			380	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 09:24:08 CST 2022
;; MSG SIZE  rcvd: 108

Host info

195.104.105.141.in-addr.arpa has no PTR record

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 195.104.105.141.in-addr.arpa.: No answer

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
2.56.254.98	attackbots	SQL injection attempt.	2020-06-24 20:22:31
46.38.150.193	attack	2020-06-24 12:10:02 auth_plain authenticator failed for (User) [46.38.150.193]: 535 Incorrect authentication data (set_id=meena@csmailer.org) 2020-06-24 12:10:30 auth_plain authenticator failed for (User) [46.38.150.193]: 535 Incorrect authentication data (set_id=mssqladmin@csmailer.org) 2020-06-24 12:11:01 auth_plain authenticator failed for (User) [46.38.150.193]: 535 Incorrect authentication data (set_id=webdisk.mail@csmailer.org) 2020-06-24 12:11:30 auth_plain authenticator failed for (User) [46.38.150.193]: 535 Incorrect authentication data (set_id=metropolitan@csmailer.org) 2020-06-24 12:12:01 auth_plain authenticator failed for (User) [46.38.150.193]: 535 Incorrect authentication data (set_id=hurricane@csmailer.org) ...	2020-06-24 20:19:25
49.235.141.203	attackspam	Jun 24 12:06:06 onepixel sshd[2094455]: Invalid user mariana from 49.235.141.203 port 46248 Jun 24 12:06:06 onepixel sshd[2094455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.141.203 Jun 24 12:06:06 onepixel sshd[2094455]: Invalid user mariana from 49.235.141.203 port 46248 Jun 24 12:06:08 onepixel sshd[2094455]: Failed password for invalid user mariana from 49.235.141.203 port 46248 ssh2 Jun 24 12:09:46 onepixel sshd[2096337]: Invalid user cloudera from 49.235.141.203 port 42770	2020-06-24 20:35:25
212.29.210.123	attack	Invalid user cc from 212.29.210.123 port 55088	2020-06-24 20:09:38
77.78.22.122	attackspambots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-06-24 20:08:43
94.131.204.40	attackspam	Hit honeypot r.	2020-06-24 20:32:42
199.83.207.76	attack	GPON Home Routers Remote Code Execution Vulnerability CVE 2018-10562, PTR: dynamic-199-83-207-76.gosfieldtel.com.	2020-06-24 20:18:40
77.122.171.25	attack	Jun 24 13:00:14 gestao sshd[8601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.122.171.25 Jun 24 13:00:16 gestao sshd[8601]: Failed password for invalid user lwy from 77.122.171.25 port 37262 ssh2 Jun 24 13:10:00 gestao sshd[8917]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.122.171.25 ...	2020-06-24 20:17:40
49.88.112.73	attackbots	Logfile match	2020-06-24 20:01:04
106.13.21.199	attackspambots	Jun 24 15:03:50 journals sshd\[115122\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.21.199 user=support Jun 24 15:03:51 journals sshd\[115122\]: Failed password for support from 106.13.21.199 port 59928 ssh2 Jun 24 15:06:56 journals sshd\[115546\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.21.199 user=root Jun 24 15:06:58 journals sshd\[115546\]: Failed password for root from 106.13.21.199 port 42118 ssh2 Jun 24 15:09:46 journals sshd\[115883\]: Invalid user bot from 106.13.21.199 ...	2020-06-24 20:34:31
177.154.238.43	attackspambots	Jun 24 14:07:15 xeon postfix/smtpd[53977]: warning: unknown[177.154.238.43]: SASL PLAIN authentication failed: authentication failure	2020-06-24 20:16:17
139.219.1.209	attackbots	Jun 23 15:23:03 zulu1842 sshd[16577]: Invalid user leo from 139.219.1.209 Jun 23 15:23:03 zulu1842 sshd[16577]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.1.209 Jun 23 15:23:05 zulu1842 sshd[16577]: Failed password for invalid user leo from 139.219.1.209 port 44636 ssh2 Jun 23 15:23:05 zulu1842 sshd[16577]: Received disconnect from 139.219.1.209: 11: Bye Bye [preauth] Jun 23 15:34:34 zulu1842 sshd[20583]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.1.209 user=r.r Jun 23 15:34:36 zulu1842 sshd[20583]: Failed password for r.r from 139.219.1.209 port 48546 ssh2 Jun 23 15:34:36 zulu1842 sshd[20583]: Received disconnect from 139.219.1.209: 11: Bye Bye [preauth] Jun 23 15:37:40 zulu1842 sshd[21731]: Invalid user renato from 139.219.1.209 Jun 23 15:37:40 zulu1842 sshd[21731]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.1........ -------------------------------	2020-06-24 20:12:36
173.232.33.169	spam	Aggressive email spammer on subnet 173.232.33.*	2020-06-24 20:12:14
59.34.233.229	attackbots	Banned for a week because repeated abuses, for example SSH, but not only	2020-06-24 20:05:09
119.161.98.132	attack	Microsoft SQL Server User Authentication Brute Force Attempt , PTR: PTR record not found	2020-06-24 20:29:48

Recently Reported IPs

141.105.105.37	141.105.105.34	141.105.107.156	141.105.102.226
128.0.249.44	118.96.174.26	30.89.58.232	118.96.174.31
118.96.174.33	118.96.174.41	118.96.174.65	141.105.47.79
141.105.64.132	141.105.42.97	141.105.67.118	141.105.50.146
141.105.65.93	141.105.65.253	141.105.66.241	141.105.67.17