103.119.45.161

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Guangdong Dahai Network Information Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	SASL Brute Force	2019-10-01 01:38:51

Comments on same subnet:

IP	Type	Details	Datetime
103.119.45.72	attack	Unauthorized connection attempt from IP address 103.119.45.72 on Port 445(SMB)	2019-11-05 03:23:47
103.119.45.147	attack	SASL Brute Force	2019-10-01 02:30:35
103.119.45.178	attack	port scan and connect, tcp 143 (imap)	2019-09-20 07:27:31
103.119.45.244	attackspambots	NAME : GDNITCL-CN CIDR : 103.119.44.0/22 DDoS attack China - block certain countries :) IP: 103.119.45.244 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-06-30 11:33:30
103.119.45.80	attack	攻击IP 103.119.45.80 - - [31/Mar/2019:21:06:23 +0800] "GET /MyAdmin/index.php HTTP/1.1" 301 194 "-" "Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0)" 103.119.45.80 - - [31/Mar/2019:21:06:23 +0800] "GET /phpMyAdmin1/index.php HTTP/1.1" 301 194 "-" "Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0)" 103.119.45.80 - - [31/Mar/2019:21:06:23 +0800] "GET /phpMyAdmin123/index.php HTTP/1.1" 301 194 "-" "Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0)"	2019-03-31 21:17:36

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.119.45.161
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23171
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.119.45.161.			IN	A

;; AUTHORITY SECTION:
.			430	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019093002 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 01 01:38:45 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 161.45.119.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 161.45.119.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
95.216.150.5	attackbots	Jul 7 01:39:04 vps65 sshd\[5279\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.216.150.5 user=root Jul 7 01:39:06 vps65 sshd\[5279\]: Failed password for root from 95.216.150.5 port 36560 ssh2 ...	2019-07-07 08:35:11
2a0b:6900:2:1::b	attack	WordPress wp-login brute force :: 2a0b:6900:2:1::b 0.048 BYPASS [07/Jul/2019:09:13:26 1000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 4630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-07-07 08:36:50
203.190.128.143	attack	Reported by AbuseIPDB proxy server.	2019-07-07 08:58:03
139.219.107.11	attackspambots	Jul 7 01:34:54 vps sshd[28551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.107.11 Jul 7 01:34:56 vps sshd[28551]: Failed password for invalid user devhdfc from 139.219.107.11 port 44462 ssh2 Jul 7 01:50:23 vps sshd[29122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.107.11 ...	2019-07-07 08:56:51
210.73.212.35	attackspambots	Jul 7 01:13:49 ns41 sshd[2944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.73.212.35 Jul 7 01:13:49 ns41 sshd[2944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.73.212.35	2019-07-07 08:22:33
148.70.232.143	attack	Jul 7 02:09:05 ks10 sshd[26774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.232.143 Jul 7 02:09:07 ks10 sshd[26774]: Failed password for invalid user znc from 148.70.232.143 port 45992 ssh2 ...	2019-07-07 09:04:38
201.161.58.38	attack	Jul 7 01:12:42 vmd17057 sshd\[15959\]: Invalid user testuser1 from 201.161.58.38 port 59075 Jul 7 01:12:42 vmd17057 sshd\[15959\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.161.58.38 Jul 7 01:12:44 vmd17057 sshd\[15959\]: Failed password for invalid user testuser1 from 201.161.58.38 port 59075 ssh2 ...	2019-07-07 08:56:28
77.46.155.46	attack	Autoban 77.46.155.46 AUTH/CONNECT	2019-07-07 08:41:45
159.65.91.16	attackspambots	2019-07-06 UTC: 1x - root	2019-07-07 08:46:54
78.36.97.186	attackspam	Brute force attempt	2019-07-07 08:22:10
106.12.87.178	attackbots	Jul 6 23:13:06 unicornsoft sshd\[6912\]: Invalid user admin from 106.12.87.178 Jul 6 23:13:06 unicornsoft sshd\[6912\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.87.178 Jul 6 23:13:08 unicornsoft sshd\[6912\]: Failed password for invalid user admin from 106.12.87.178 port 39786 ssh2	2019-07-07 08:49:23
128.199.242.84	attack	2019-07-06T23:34:09.664570abusebot-3.cloudsearch.cf sshd\[11430\]: Invalid user jboss from 128.199.242.84 port 46901	2019-07-07 08:42:20
93.148.209.74	attack	Jul 7 00:13:35 mail sshd\[8824\]: Failed password for invalid user upload1 from 93.148.209.74 port 35940 ssh2 Jul 7 00:28:51 mail sshd\[8959\]: Invalid user cyp from 93.148.209.74 port 46660 Jul 7 00:28:51 mail sshd\[8959\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.148.209.74 ...	2019-07-07 08:33:07
188.158.103.72	attack	port scan and connect, tcp 80 (http)	2019-07-07 08:44:50
89.31.110.155	attackbots	proto=tcp . spt=44805 . dpt=25 . (listed on Blocklist de Jul 06) (13)	2019-07-07 08:31:07

Recently Reported IPs

58.182.216.112	203.212.100.56	185.12.68.195	118.24.255.109
115.207.108.199	183.82.36.176	107.93.141.205	35.157.75.50
197.193.232.93	213.165.94.254	124.192.66.186	5.176.228.22
178.235.227.1	35.236.144.97	117.112.219.229	115.175.136.10
182.180.120.162	158.69.243.99	27.54.252.182	139.9.195.23