141.136.8.34 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: North Macedonia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
141.136.87.250	attack	Unauthorized access to SSH at 17/Sep/2020:17:00:30 +0000.	2020-09-18 22:30:44
141.136.87.250	attack	Unauthorized access to SSH at 17/Sep/2020:17:00:30 +0000.	2020-09-18 14:46:04
141.136.87.250	attackbots	Unauthorized access to SSH at 17/Sep/2020:17:00:30 +0000.	2020-09-18 05:02:32
141.136.89.70	attack	Unauthorized connection attempt from IP address 141.136.89.70 on Port 445(SMB)	2020-07-16 02:12:43
141.136.89.72	attackspam	Honeypot attack, port: 445, PTR: host-72.89.136.141.ucom.am.	2020-06-21 05:22:36
141.136.80.159	attackbotsspam	Automatic report - XMLRPC Attack	2020-06-16 05:12:45
141.136.88.128	attack	1589881495 - 05/19/2020 11:44:55 Host: 141.136.88.128/141.136.88.128 Port: 445 TCP Blocked	2020-05-20 02:08:31
141.136.88.78	attackbots	Unauthorized connection attempt from IP address 141.136.88.78 on Port 445(SMB)	2020-03-25 04:10:33
141.136.83.189	attack	Unauthorized connection attempt from IP address 141.136.83.189 on Port 445(SMB)	2020-02-25 06:41:07
141.136.84.235	attack	Oct 13 13:46:56 mc1 kernel: \[2253597.520003\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=141.136.84.235 DST=159.69.205.51 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=50910 DF PROTO=TCP SPT=44072 DPT=5555 WINDOW=65535 RES=0x00 SYN URGP=0 Oct 13 13:46:57 mc1 kernel: \[2253598.116224\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=141.136.84.235 DST=159.69.205.51 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=50911 DF PROTO=TCP SPT=44072 DPT=5555 WINDOW=65535 RES=0x00 SYN URGP=0 Oct 13 13:46:59 mc1 kernel: \[2253600.104140\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=141.136.84.235 DST=159.69.205.51 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=50912 DF PROTO=TCP SPT=44072 DPT=5555 WINDOW=65535 RES=0x00 SYN URGP=0 ...	2019-10-14 02:14:18
141.136.83.183	attackspambots	Hits on port : 5555	2019-08-31 08:04:10

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 141.136.8.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30283
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;141.136.8.34.			IN	A

;; AUTHORITY SECTION:
.			294	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022041000 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 10 20:12:50 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 34.8.136.141.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 34.8.136.141.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
81.22.45.236	attackbots	09/26/2019-00:51:21.780338 81.22.45.236 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-09-26 13:16:01
193.112.62.85	attack	Sep 26 09:32:28 gw1 sshd[11474]: Failed password for sys from 193.112.62.85 port 44878 ssh2 Sep 26 09:37:39 gw1 sshd[11532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.62.85 ...	2019-09-26 12:53:57
185.100.87.129	attackbotsspam	Sep 26 03:57:20 thevastnessof sshd[24074]: Failed password for root from 185.100.87.129 port 47066 ssh2 ...	2019-09-26 12:47:47
49.88.112.80	attackbotsspam	Sep 26 06:47:07 localhost sshd\[415\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.80 user=root Sep 26 06:47:09 localhost sshd\[415\]: Failed password for root from 49.88.112.80 port 22958 ssh2 Sep 26 06:47:11 localhost sshd\[415\]: Failed password for root from 49.88.112.80 port 22958 ssh2	2019-09-26 12:48:38
222.186.30.152	attack	2019-09-26T12:08:41.936413enmeeting.mahidol.ac.th sshd\[8300\]: User root from 222.186.30.152 not allowed because not listed in AllowUsers 2019-09-26T12:08:42.313236enmeeting.mahidol.ac.th sshd\[8300\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.152 user=root 2019-09-26T12:08:44.830098enmeeting.mahidol.ac.th sshd\[8300\]: Failed password for invalid user root from 222.186.30.152 port 21881 ssh2 ...	2019-09-26 13:15:43
185.211.245.170	attackspambots	Sep 26 06:31:52 vmanager6029 postfix/smtpd\[12355\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 26 06:31:59 vmanager6029 postfix/smtpd\[12355\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-09-26 12:40:39
200.89.174.229	attackbots	15,45-12/02 [bc01/m40] concatform PostRequest-Spammer scoring: rome	2019-09-26 12:48:06
62.234.138.254	attack	Sep 25 18:52:01 php1 sshd\[5181\]: Invalid user alena from 62.234.138.254 Sep 25 18:52:01 php1 sshd\[5181\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.138.254 Sep 25 18:52:03 php1 sshd\[5181\]: Failed password for invalid user alena from 62.234.138.254 port 45707 ssh2 Sep 25 18:55:08 php1 sshd\[5880\]: Invalid user praveen from 62.234.138.254 Sep 25 18:55:08 php1 sshd\[5880\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.138.254	2019-09-26 13:08:50
64.91.227.156	attack	Sending out 419 type spam emails from IP 64.91.227.156 (liquidweb.com / sourcedns.com) "My friends have plundered so much of my wealth since my illness and I cannot live with the agony of entrusting this huge responsibility to any of them anymore, so I sold all my inherited belongings and deposited all the sum of 9m Pounds with my bank. All I need is an honest person who will use at least %60 of the funds as I instructed, then the rest %40 will go to you for helping me accomplish this mission because donating this money to charity is the only legacy I can leave behind after my death."	2019-09-26 13:22:27
37.25.108.217	attackspambots	Admin Joomla Attack	2019-09-26 12:41:47
222.186.15.101	attack	SSH Brute Force, server-1 sshd[9690]: Failed password for root from 222.186.15.101 port 60274 ssh2	2019-09-26 12:39:48
116.24.91.35	attackspam	" "	2019-09-26 13:17:15
132.145.170.174	attack	2019-09-26T05:52:06.237711lon01.zurich-datacenter.net sshd\[5171\]: Invalid user aj from 132.145.170.174 port 48904 2019-09-26T05:52:06.244310lon01.zurich-datacenter.net sshd\[5171\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.170.174 2019-09-26T05:52:08.143705lon01.zurich-datacenter.net sshd\[5171\]: Failed password for invalid user aj from 132.145.170.174 port 48904 ssh2 2019-09-26T05:56:13.805076lon01.zurich-datacenter.net sshd\[5241\]: Invalid user jhshin from 132.145.170.174 port 33958 2019-09-26T05:56:13.813637lon01.zurich-datacenter.net sshd\[5241\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.170.174 ...	2019-09-26 13:16:21
222.186.175.154	attack	Fail2Ban Ban Triggered	2019-09-26 13:02:11
51.77.147.95	attack	Sep 26 10:05:24 gw1 sshd[12067]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.147.95 Sep 26 10:05:26 gw1 sshd[12067]: Failed password for invalid user pm from 51.77.147.95 port 39208 ssh2 ...	2019-09-26 13:12:50

Recently Reported IPs

200.205.90.84	67.1.152.187	65.116.186.138	23.94.220.175
209.171.161.107	62.141.198.65	192.168.1.113	192.236.155.154
252.196.148.0	202.242.175.87	110.7.234.45	213.187.107.46
109.104.179.61	112.172.61.90	154.16.83.78	119.194.242.151
60.250.239.64	200.84.223.14	10.11.238.205	185.250.237.60