103.119.45.147

Basic Info

City: Central

Region: Central and Western District

Country: Hong Kong

Internet Service Provider: Guangdong Dahai Network Information Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	SASL Brute Force	2019-10-01 02:30:35

Comments on same subnet:

IP	Type	Details	Datetime
103.119.45.72	attack	Unauthorized connection attempt from IP address 103.119.45.72 on Port 445(SMB)	2019-11-05 03:23:47
103.119.45.161	attackbots	SASL Brute Force	2019-10-01 01:38:51
103.119.45.178	attack	port scan and connect, tcp 143 (imap)	2019-09-20 07:27:31
103.119.45.244	attackspambots	NAME : GDNITCL-CN CIDR : 103.119.44.0/22 DDoS attack China - block certain countries :) IP: 103.119.45.244 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-06-30 11:33:30
103.119.45.80	attack	攻击IP 103.119.45.80 - - [31/Mar/2019:21:06:23 +0800] "GET /MyAdmin/index.php HTTP/1.1" 301 194 "-" "Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0)" 103.119.45.80 - - [31/Mar/2019:21:06:23 +0800] "GET /phpMyAdmin1/index.php HTTP/1.1" 301 194 "-" "Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0)" 103.119.45.80 - - [31/Mar/2019:21:06:23 +0800] "GET /phpMyAdmin123/index.php HTTP/1.1" 301 194 "-" "Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0)"	2019-03-31 21:17:36

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.119.45.147
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28824
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.119.45.147.			IN	A

;; AUTHORITY SECTION:
.			239	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019093002 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 01 02:30:27 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 147.45.119.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 147.45.119.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
31.168.21.75	attack	Unauthorized connection attempt from IP address 31.168.21.75 on Port 445(SMB)	2019-11-05 01:57:36
106.12.56.143	attack	Nov 4 04:47:13 sachi sshd\[2000\]: Invalid user ftpuser123 from 106.12.56.143 Nov 4 04:47:13 sachi sshd\[2000\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.56.143 Nov 4 04:47:15 sachi sshd\[2000\]: Failed password for invalid user ftpuser123 from 106.12.56.143 port 43322 ssh2 Nov 4 04:52:26 sachi sshd\[2415\]: Invalid user Stone123 from 106.12.56.143 Nov 4 04:52:26 sachi sshd\[2415\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.56.143	2019-11-05 01:22:01
180.253.53.166	attackspam	Unauthorized connection attempt from IP address 180.253.53.166 on Port 445(SMB)	2019-11-05 01:28:03
185.45.103.189	attackspambots	Unauthorized connection attempt from IP address 185.45.103.189 on Port 445(SMB)	2019-11-05 01:55:27
51.75.190.151	attackbots	Nov 4 19:06:58 www sshd\[60408\]: Invalid user suzanne from 51.75.190.151Nov 4 19:07:00 www sshd\[60408\]: Failed password for invalid user suzanne from 51.75.190.151 port 55378 ssh2Nov 4 19:10:52 www sshd\[60548\]: Invalid user zang from 51.75.190.151 ...	2019-11-05 01:33:08
181.111.181.50	attackbotsspam	Nov 4 14:32:58 sshgateway sshd\[31136\]: Invalid user admin from 181.111.181.50 Nov 4 14:32:58 sshgateway sshd\[31136\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.111.181.50 Nov 4 14:33:01 sshgateway sshd\[31136\]: Failed password for invalid user admin from 181.111.181.50 port 35792 ssh2	2019-11-05 01:15:23
3.13.223.138	attackbots	Nov 4 20:27:05 microserver sshd[39876]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.13.223.138 user=root Nov 4 20:27:08 microserver sshd[39876]: Failed password for root from 3.13.223.138 port 46094 ssh2 Nov 4 20:30:40 microserver sshd[40458]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.13.223.138 user=root Nov 4 20:30:41 microserver sshd[40458]: Failed password for root from 3.13.223.138 port 56806 ssh2 Nov 4 20:34:17 microserver sshd[40676]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.13.223.138 user=root Nov 4 20:45:11 microserver sshd[42410]: Invalid user sg123459 from 3.13.223.138 port 43212 Nov 4 20:45:11 microserver sshd[42410]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.13.223.138 Nov 4 20:45:13 microserver sshd[42410]: Failed password for invalid user sg123459 from 3.13.223.138 port 43212 ssh2 Nov 4 20:48:5	2019-11-05 01:52:05
114.143.210.139	attackbotsspam	Unauthorized connection attempt from IP address 114.143.210.139 on Port 445(SMB)	2019-11-05 01:42:46
1.172.231.130	attackbots	Portscan detected	2019-11-05 01:41:30
62.210.144.167	attack	web-1 [ssh_2] SSH Attack	2019-11-05 01:47:22
45.82.153.76	attackbots	2019-11-04T18:11:45.376681mail01 postfix/smtpd[18229]: warning: unknown[45.82.153.76]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-04T18:12:01.427962mail01 postfix/smtpd[18228]: warning: unknown[45.82.153.76]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-04T18:12:34.419099mail01 postfix/smtpd[14627]: warning: unknown[45.82.153.76]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-05 01:14:03
106.13.67.22	attack	Nov 4 17:36:36 vmanager6029 sshd\[23728\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.67.22 user=root Nov 4 17:36:38 vmanager6029 sshd\[23728\]: Failed password for root from 106.13.67.22 port 38128 ssh2 Nov 4 17:41:30 vmanager6029 sshd\[23911\]: Invalid user l4d2 from 106.13.67.22 port 43462 Nov 4 17:41:30 vmanager6029 sshd\[23911\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.67.22	2019-11-05 01:21:32
61.160.215.24	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 54 - port: 3306 proto: TCP cat: Misc Attack	2019-11-05 01:16:37
45.178.1.11	attackbotsspam	Unauthorised access (Nov 4) SRC=45.178.1.11 LEN=52 TOS=0x10 PREC=0x40 TTL=109 ID=31160 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-05 01:16:57
187.174.164.99	attackbots	Unauthorized connection attempt from IP address 187.174.164.99 on Port 445(SMB)	2019-11-05 01:30:07

Recently Reported IPs

182.136.11.126	60.50.70.249	85.228.12.201	188.204.83.254
83.237.82.112	134.181.169.62	85.118.126.237	91.150.231.77
166.89.224.166	102.97.14.243	2600:8800:3a00:15b8:b1bc:d5e8:7dcc:3c4b	223.149.230.151
58.3.127.118	185.50.196.127	39.237.115.16	44.85.47.33
177.193.237.78	214.127.243.95	99.92.80.166	131.71.198.117