103.119.54.48 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
103.119.54.93	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 10-02-2020 22:10:16.	2020-02-11 09:44:43

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.119.54.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14454
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.119.54.48.			IN	A

;; AUTHORITY SECTION:
.			446	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 16:26:05 CST 2022
;; MSG SIZE  rcvd: 106

Host info

48.54.119.103.in-addr.arpa domain name pointer host-103-119-54-48.myrepublic.co.id.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
48.54.119.103.in-addr.arpa	name = host-103-119-54-48.myrepublic.co.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
187.163.122.210	attack	Automatic report - Port Scan Attack	2019-10-20 20:28:31
49.88.112.114	attackspambots	Oct 20 02:03:48 web9 sshd\[8423\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Oct 20 02:03:50 web9 sshd\[8423\]: Failed password for root from 49.88.112.114 port 48961 ssh2 Oct 20 02:04:50 web9 sshd\[8560\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Oct 20 02:04:51 web9 sshd\[8560\]: Failed password for root from 49.88.112.114 port 35279 ssh2 Oct 20 02:05:53 web9 sshd\[8697\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root	2019-10-20 20:17:28
112.186.77.126	attackbots	2019-10-20T12:05:36.368765abusebot-5.cloudsearch.cf sshd\[20200\]: Invalid user robert from 112.186.77.126 port 55874	2019-10-20 20:31:12
134.175.178.153	attackspam	2019-10-20T12:43:25.037346shield sshd\[6542\]: Invalid user admin from 134.175.178.153 port 60332 2019-10-20T12:43:25.041469shield sshd\[6542\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.178.153 2019-10-20T12:43:26.537262shield sshd\[6542\]: Failed password for invalid user admin from 134.175.178.153 port 60332 ssh2 2019-10-20T12:49:59.359008shield sshd\[7784\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.178.153 user=root 2019-10-20T12:50:01.612349shield sshd\[7784\]: Failed password for root from 134.175.178.153 port 40746 ssh2	2019-10-20 20:50:15
159.138.152.234	attackspam	/download/file.php?id=219&sid=92d3ffe10bd9005a31f4db93a21c1445	2019-10-20 20:12:25
45.40.167.6	attack	Automatic report - XMLRPC Attack	2019-10-20 20:22:43
188.93.235.226	attack	Oct 20 01:59:04 friendsofhawaii sshd\[29257\]: Invalid user P@SS123!@\# from 188.93.235.226 Oct 20 01:59:04 friendsofhawaii sshd\[29257\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.93.235.226 Oct 20 01:59:06 friendsofhawaii sshd\[29257\]: Failed password for invalid user P@SS123!@\# from 188.93.235.226 port 37456 ssh2 Oct 20 02:05:48 friendsofhawaii sshd\[29768\]: Invalid user chiritsasandu from 188.93.235.226 Oct 20 02:05:48 friendsofhawaii sshd\[29768\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.93.235.226	2019-10-20 20:20:08
113.106.8.55	attackbots	Oct 20 14:01:43 vps647732 sshd[15612]: Failed password for root from 113.106.8.55 port 39386 ssh2 Oct 20 14:05:56 vps647732 sshd[15673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.106.8.55 ...	2019-10-20 20:13:27
212.0.137.162	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 20-10-2019 13:05:19.	2019-10-20 20:40:56
210.56.20.181	attackbotsspam	2019-10-20T12:05:58.151282abusebot-5.cloudsearch.cf sshd\[20213\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.56.20.181 user=root	2019-10-20 20:11:43
185.209.0.31	attackbotsspam	10/20/2019-14:05:31.387316 185.209.0.31 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-20 20:32:36
185.40.12.110	attackspam	slow and persistent scanner	2019-10-20 20:07:33
94.177.224.127	attack	Oct 20 02:17:26 php1 sshd\[29294\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.224.127 user=root Oct 20 02:17:27 php1 sshd\[29294\]: Failed password for root from 94.177.224.127 port 36972 ssh2 Oct 20 02:21:28 php1 sshd\[29624\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.224.127 user=root Oct 20 02:21:31 php1 sshd\[29624\]: Failed password for root from 94.177.224.127 port 48578 ssh2 Oct 20 02:25:37 php1 sshd\[29970\]: Invalid user informix from 94.177.224.127	2019-10-20 20:38:37
145.239.23.8	attack	Oct 19 06:46:33 shadeyouvpn sshd[12209]: Failed password for r.r from 145.239.23.8 port 49876 ssh2 Oct 19 06:46:33 shadeyouvpn sshd[12209]: Received disconnect from 145.239.23.8: 11: Bye Bye [preauth] Oct 19 06:50:58 shadeyouvpn sshd[15837]: Failed password for r.r from 145.239.23.8 port 47238 ssh2 Oct 19 06:50:58 shadeyouvpn sshd[15837]: Received disconnect from 145.239.23.8: 11: Bye Bye [preauth] Oct 19 06:55:02 shadeyouvpn sshd[19056]: Failed password for r.r from 145.239.23.8 port 39224 ssh2 Oct 19 06:55:02 shadeyouvpn sshd[19056]: Received disconnect from 145.239.23.8: 11: Bye Bye [preauth] Oct 19 06:59:10 shadeyouvpn sshd[22083]: Invalid user haldaemon from 145.239.23.8 Oct 19 06:59:12 shadeyouvpn sshd[22083]: Failed password for invalid user haldaemon from 145.239.23.8 port 59840 ssh2 Oct 19 06:59:12 shadeyouvpn sshd[22083]: Received disconnect from 145.239.23.8: 11: Bye Bye [preauth] Oct 19 07:03:07 shadeyouvpn sshd[24498]: Invalid user test2 from 145.239.23.8 O........ -------------------------------	2019-10-20 20:18:58
185.250.44.68	attackbotsspam	185.250.44.68 - - [20/Oct/2019:08:05:49 -0400] "GET /?page=products&action=../../../../../../../etc/passwd&manufacturerID=12&productID=973&linkID=15902 HTTP/1.1" 200 17300 "https://newportbrassfaucets.com/?page=products&action=../../../../../../../etc/passwd&manufacturerID=12&productID=973&linkID=15902" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.132 Safari/537.36" ...	2019-10-20 20:17:56

Recently Reported IPs

103.119.45.51	103.119.54.53	103.119.54.188	103.119.55.216
103.119.55.28	103.119.64.228	103.119.58.73	103.119.60.38
103.119.58.15	103.119.66.231	103.119.78.224	1.198.110.202
103.119.78.55	103.119.78.14	103.12.100.36	103.119.78.228
103.119.78.108	103.12.114.50	103.12.112.69	103.12.114.61