103.111.55.230

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT Jafri Sentosa

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-22 02:48:22,373 INFO [amun_request_handler] PortScan Detected on Port: 445 (103.111.55.230)	2019-07-22 18:26:12

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.111.55.230
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45048
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.111.55.230.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072200 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 22 18:26:01 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 230.55.111.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 230.55.111.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
40.92.69.11	attackspambots	Dec 16 01:49:04 debian-2gb-vpn-nbg1-1 kernel: [828515.395043] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=40.92.69.11 DST=78.46.192.101 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=52069 DF PROTO=TCP SPT=58246 DPT=25 WINDOW=0 RES=0x00 ACK RST URGP=0	2019-12-16 08:02:29
62.234.68.246	attackspambots	Dec 16 00:41:21 localhost sshd\[7145\]: Invalid user gierschick from 62.234.68.246 port 54800 Dec 16 00:41:21 localhost sshd\[7145\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.68.246 Dec 16 00:41:22 localhost sshd\[7145\]: Failed password for invalid user gierschick from 62.234.68.246 port 54800 ssh2	2019-12-16 07:54:21
129.204.199.91	attackbotsspam	2019-12-16T00:51:40.789516 sshd[11088]: Invalid user montseny from 129.204.199.91 port 55448 2019-12-16T00:51:40.802258 sshd[11088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.199.91 2019-12-16T00:51:40.789516 sshd[11088]: Invalid user montseny from 129.204.199.91 port 55448 2019-12-16T00:51:42.026806 sshd[11088]: Failed password for invalid user montseny from 129.204.199.91 port 55448 ssh2 2019-12-16T00:57:44.369641 sshd[11227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.199.91 user=root 2019-12-16T00:57:46.898819 sshd[11227]: Failed password for root from 129.204.199.91 port 35920 ssh2 ...	2019-12-16 08:19:03
188.131.179.87	attack	Dec 15 18:32:06 TORMINT sshd\[21532\]: Invalid user unshapen from 188.131.179.87 Dec 15 18:32:06 TORMINT sshd\[21532\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.179.87 Dec 15 18:32:08 TORMINT sshd\[21532\]: Failed password for invalid user unshapen from 188.131.179.87 port 54220 ssh2 ...	2019-12-16 07:44:58
190.202.54.12	attackbots	Dec 15 13:03:38 php1 sshd\[11128\]: Invalid user kafka from 190.202.54.12 Dec 15 13:03:38 php1 sshd\[11128\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.202.54.12 Dec 15 13:03:40 php1 sshd\[11128\]: Failed password for invalid user kafka from 190.202.54.12 port 29870 ssh2 Dec 15 13:10:46 php1 sshd\[12337\]: Invalid user asterisk from 190.202.54.12 Dec 15 13:10:46 php1 sshd\[12337\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.202.54.12	2019-12-16 07:44:28
40.92.67.60	attackbots	Dec 16 02:22:24 debian-2gb-vpn-nbg1-1 kernel: [830515.073663] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=40.92.67.60 DST=78.46.192.101 LEN=40 TOS=0x00 PREC=0x00 TTL=238 ID=50547 DF PROTO=TCP SPT=54279 DPT=25 WINDOW=0 RES=0x00 ACK RST URGP=0	2019-12-16 08:23:47
113.164.24.10	attack	445/tcp 1433/tcp [2019-12-06/15]2pkt	2019-12-16 08:07:21
5.181.233.100	attackbots	Brute force attack against VPN service	2019-12-16 07:47:39
203.196.24.22	attackspam	$f2bV_matches	2019-12-16 07:58:01
106.12.86.205	attackbotsspam	$f2bV_matches	2019-12-16 07:43:25
148.70.1.210	attack	Dec 4 17:23:19 microserver sshd[62382]: Invalid user ashley from 148.70.1.210 port 49470 Dec 4 17:23:19 microserver sshd[62382]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.1.210 Dec 4 17:23:21 microserver sshd[62382]: Failed password for invalid user ashley from 148.70.1.210 port 49470 ssh2 Dec 4 17:32:08 microserver sshd[63832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.1.210 user=root Dec 4 17:32:09 microserver sshd[63832]: Failed password for root from 148.70.1.210 port 59204 ssh2 Dec 4 18:06:47 microserver sshd[4141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.1.210 user=sys Dec 4 18:06:49 microserver sshd[4141]: Failed password for sys from 148.70.1.210 port 41670 ssh2 Dec 4 18:15:34 microserver sshd[5539]: Invalid user karlquist from 148.70.1.210 port 51396 Dec 4 18:15:34 microserver sshd[5539]: pam_unix(sshd:auth): authentication failure	2019-12-16 08:13:23
106.12.178.246	attackspambots	2019-12-16T00:04:59.951873shield sshd\[4043\]: Invalid user vcsa from 106.12.178.246 port 58936 2019-12-16T00:04:59.956061shield sshd\[4043\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.178.246 2019-12-16T00:05:01.872276shield sshd\[4043\]: Failed password for invalid user vcsa from 106.12.178.246 port 58936 ssh2 2019-12-16T00:11:26.248177shield sshd\[4900\]: Invalid user ftpusr from 106.12.178.246 port 56608 2019-12-16T00:11:26.252421shield sshd\[4900\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.178.246	2019-12-16 08:25:10
138.68.242.43	attackbotsspam	$f2bV_matches	2019-12-16 07:51:49
118.24.114.205	attack	Dec 16 05:49:09 itv-usvr-01 sshd[16854]: Invalid user rc from 118.24.114.205 Dec 16 05:49:09 itv-usvr-01 sshd[16854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.114.205 Dec 16 05:49:09 itv-usvr-01 sshd[16854]: Invalid user rc from 118.24.114.205 Dec 16 05:49:10 itv-usvr-01 sshd[16854]: Failed password for invalid user rc from 118.24.114.205 port 35532 ssh2	2019-12-16 07:52:02
129.204.94.81	attackspambots	Dec 16 01:36:08 server sshd\[2718\]: Invalid user admin from 129.204.94.81 Dec 16 01:36:08 server sshd\[2718\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 Dec 16 01:36:10 server sshd\[2718\]: Failed password for invalid user admin from 129.204.94.81 port 43032 ssh2 Dec 16 01:48:50 server sshd\[6238\]: Invalid user meyn from 129.204.94.81 Dec 16 01:48:50 server sshd\[6238\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 ...	2019-12-16 08:15:39

Recently Reported IPs

124.44.119.35	2a02:8108:8100:230:c15b:4b4e:7b47:bf49	2.183.163.246	209.248.237.253
203.142.64.93	174.38.62.21	212.130.119.120	79.140.20.253
1.55.175.17	169.50.59.141	14.232.208.135	212.156.56.34
113.160.113.157	50.179.144.131	132.219.141.32	16.139.248.76
250.132.190.195	169.0.176.2	202.80.215.107	123.21.32.22