103.107.245.150

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: Diskominfo Prov. Jawa Tengah

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-30 19:22:21

Comments on same subnet:

IP	Type	Details	Datetime
103.107.245.45	attack	445/tcp 1433/tcp... [2020-06-10/07-19]8pkt,2pt.(tcp)	2020-07-20 05:44:16
103.107.245.122	attack	May 14 05:05:41 new sshd[24360]: Failed password for invalid user admin1 from 103.107.245.122 port 62012 ssh2 May 14 05:05:42 new sshd[24362]: Failed password for invalid user admin1 from 103.107.245.122 port 62014 ssh2 May 14 05:05:42 new sshd[24364]: Failed password for invalid user admin1 from 103.107.245.122 port 62026 ssh2 May 14 05:05:42 new sshd[24360]: Connection closed by 103.107.245.122 [preauth] May 14 05:05:42 new sshd[24362]: Connection closed by 103.107.245.122 [preauth] May 14 05:05:42 new sshd[24364]: Connection closed by 103.107.245.122 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.107.245.122	2020-05-14 18:16:56
103.107.245.45	attackspam	firewall-block, port(s): 1433/tcp	2020-03-10 23:16:24
103.107.245.45	attackbotsspam	firewall-block, port(s): 445/tcp	2020-01-25 03:50:25
103.107.245.3	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-13 18:51:04
103.107.245.3	attackspambots	445/tcp 445/tcp 445/tcp... [2019-06-06/08-06]13pkt,1pt.(tcp)	2019-08-07 09:17:11

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.107.245.150
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47470
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.107.245.150.		IN	A

;; AUTHORITY SECTION:
.			366	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020033000 1800 900 604800 86400

;; Query time: 88 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 30 19:22:15 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 150.245.107.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 150.245.107.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.196.202.38	attackspam	Automatic report - Banned IP Access	2020-10-06 05:25:32
89.165.2.239	attackbots	Oct 5 22:40:32 ns382633 sshd\[26397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.165.2.239 user=root Oct 5 22:40:34 ns382633 sshd\[26397\]: Failed password for root from 89.165.2.239 port 47016 ssh2 Oct 5 22:54:48 ns382633 sshd\[28083\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.165.2.239 user=root Oct 5 22:54:51 ns382633 sshd\[28083\]: Failed password for root from 89.165.2.239 port 57457 ssh2 Oct 5 22:57:22 ns382633 sshd\[28354\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.165.2.239 user=root	2020-10-06 05:23:32
220.186.163.5	attack	Oct 5 22:36:39 * sshd[4572]: Failed password for root from 220.186.163.5 port 45088 ssh2	2020-10-06 05:30:05
51.254.49.99	attackbots	TCP (SYN) 51.254.49.99:63737 -> port 1521, len 60	2020-10-06 05:02:24
161.117.11.230	attackspambots	Oct 4 22:32:06 localhost sshd\[29908\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.117.11.230 user=root Oct 4 22:32:07 localhost sshd\[29908\]: Failed password for root from 161.117.11.230 port 48078 ssh2 Oct 4 22:36:21 localhost sshd\[30199\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.117.11.230 user=root Oct 4 22:36:23 localhost sshd\[30199\]: Failed password for root from 161.117.11.230 port 42554 ssh2 Oct 4 22:40:35 localhost sshd\[30520\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.117.11.230 user=root ...	2020-10-06 05:37:42
52.225.231.169	attack	ygcve.fxua.edu; zoomof.de	2020-10-06 05:25:45
111.229.118.227	attack	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-10-06 04:57:06
122.165.149.75	attack	Oct 5 18:28:58 vlre-nyc-1 sshd\[10224\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.165.149.75 user=root Oct 5 18:29:00 vlre-nyc-1 sshd\[10224\]: Failed password for root from 122.165.149.75 port 53612 ssh2 Oct 5 18:33:55 vlre-nyc-1 sshd\[10369\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.165.149.75 user=root Oct 5 18:33:57 vlre-nyc-1 sshd\[10369\]: Failed password for root from 122.165.149.75 port 60408 ssh2 Oct 5 18:38:52 vlre-nyc-1 sshd\[10504\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.165.149.75 user=root ...	2020-10-06 05:16:22
112.85.42.229	attack	Oct 5 16:27:43 abendstille sshd\[28902\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.229 user=root Oct 5 16:27:45 abendstille sshd\[28902\]: Failed password for root from 112.85.42.229 port 60475 ssh2 Oct 5 16:27:47 abendstille sshd\[28902\]: Failed password for root from 112.85.42.229 port 60475 ssh2 Oct 5 16:27:49 abendstille sshd\[28902\]: Failed password for root from 112.85.42.229 port 60475 ssh2 Oct 5 16:28:45 abendstille sshd\[29857\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.229 user=root ...	2020-10-06 05:11:53
188.219.117.26	attack	(sshd) Failed SSH login from 188.219.117.26 (IT/Italy/net-188-219-117-26.cust.vodafonedsl.it): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 5 12:52:34 optimus sshd[26614]: Failed password for root from 188.219.117.26 port 39211 ssh2 Oct 5 13:04:43 optimus sshd[2320]: Failed password for root from 188.219.117.26 port 46642 ssh2 Oct 5 13:26:59 optimus sshd[17774]: Failed password for root from 188.219.117.26 port 55353 ssh2 Oct 5 13:39:12 optimus sshd[26292]: Failed password for root from 188.219.117.26 port 34378 ssh2 Oct 5 13:51:24 optimus sshd[4749]: Failed password for root from 188.219.117.26 port 41207 ssh2	2020-10-06 05:14:42
114.67.104.59	attackspam	fail2ban: brute force SSH detected	2020-10-06 05:21:06
220.186.132.200	attack	Oct 5 22:51:22 mail sshd[14595]: Failed password for root from 220.186.132.200 port 44378 ssh2	2020-10-06 05:23:58
123.9.245.38	attackbotsspam	TCP (SYN) 123.9.245.38:46771 -> port 23, len 44	2020-10-06 05:17:26
213.175.77.10	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-10-06 05:00:55
116.59.25.201	attackbotsspam	Oct 5 22:45:33 host sshd[26507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116-59-25-201.emome-ip.hinet.net user=root Oct 5 22:45:34 host sshd[26507]: Failed password for root from 116.59.25.201 port 47390 ssh2 ...	2020-10-06 05:20:43

Recently Reported IPs

95.246.1.246	148.8.165.8	49.12.38.225	37.142.99.225
189.191.191.126	183.30.222.172	5.132.219.174	116.114.95.108
118.170.97.161	138.99.85.159	74.64.67.12	14.171.48.211
69.94.158.78	113.255.240.232	206.81.14.48	183.88.193.218
108.190.157.252	64.150.127.115	202.179.6.82	131.72.222.166