103.119.66.87 - IPInfo

Basic Info

City: Jakarta

Region: Jakarta

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: PT. Eka Mas Republik

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
103.119.66.254	attackspambots	Brute forcing RDP port 3389	2020-08-11 01:46:01
103.119.66.31	attackspam	Dovecot Invalid User Login Attempt.	2020-07-10 22:11:25
103.119.66.56	attack	From CCTV User Interface Log ...::ffff:103.119.66.56 - - [11/May/2020:08:09:03 +0000] "GET / HTTP/1.1" 200 960 ...	2020-05-11 20:48:17
103.119.66.119	attackbots	Unauthorized connection attempt from IP address 103.119.66.119 on Port 445(SMB)	2020-04-07 04:12:42
103.119.66.74	attackbotsspam	Feb 9 23:06:35 h2177944 kernel: \[4484021.859575\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.119.66.74 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=117 ID=43325 DF PROTO=TCP SPT=22442 DPT=40 WINDOW=64240 RES=0x00 SYN URGP=0 Feb 9 23:06:35 h2177944 kernel: \[4484021.859591\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.119.66.74 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=117 ID=43325 DF PROTO=TCP SPT=22442 DPT=40 WINDOW=64240 RES=0x00 SYN URGP=0 Feb 9 23:06:36 h2177944 kernel: \[4484022.859664\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.119.66.74 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=117 ID=43326 DF PROTO=TCP SPT=22442 DPT=40 WINDOW=64240 RES=0x00 SYN URGP=0 Feb 9 23:06:36 h2177944 kernel: \[4484022.859678\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.119.66.74 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=117 ID=43326 DF PROTO=TCP SPT=22442 DPT=40 WINDOW=64240 RES=0x00 SYN URGP=0 Feb 9 23:06:36 h2177944 kernel: \[4484022.866537\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.119.66.74 DST=85.2	2020-02-10 08:25:09
103.119.66.247	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 26-11-2019 04:55:21.	2019-11-26 13:16:23
103.119.66.121	attack	Invalid user st from 103.119.66.121 port 57004	2019-07-28 06:23:14
103.119.66.34	attack	Automatic report - SSH Brute-Force Attack	2019-06-24 03:23:52
103.119.66.56	attackbotsspam	Unauthorized connection attempt from IP address 103.119.66.56 on Port 445(SMB)	2019-06-22 15:44:02

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.119.66.87
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2380
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.119.66.87.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050100 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Wed May 01 21:44:51 +08 2019
;; MSG SIZE  rcvd: 117

Host info

87.66.119.103.in-addr.arpa domain name pointer host-103-119-66-87.myrepublic.co.id.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
87.66.119.103.in-addr.arpa	name = host-103-119-66-87.myrepublic.co.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
176.252.132.5	attackspambots	Honeypot attack, port: 81, PTR: b0fc8405.bb.sky.com.	2019-09-26 02:53:34
81.22.45.29	attackspambots	Sep 25 21:02:29 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.29 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=4804 PROTO=TCP SPT=55785 DPT=11111 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-09-26 03:19:29
120.50.10.114	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/120.50.10.114/ BD - 1H : (67) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BD NAME ASN : ASN38712 IP : 120.50.10.114 CIDR : 120.50.10.0/24 PREFIX COUNT : 39 UNIQUE IP COUNT : 10240 WYKRYTE ATAKI Z ASN38712 : 1H - 1 3H - 3 6H - 3 12H - 3 24H - 3 INFO : SERVER - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery	2019-09-26 03:05:07
45.142.195.5	attackbots	Sep 25 20:58:59 andromeda postfix/smtpd\[53327\]: warning: unknown\[45.142.195.5\]: SASL LOGIN authentication failed: authentication failure Sep 25 20:59:06 andromeda postfix/smtpd\[42777\]: warning: unknown\[45.142.195.5\]: SASL LOGIN authentication failed: authentication failure Sep 25 20:59:43 andromeda postfix/smtpd\[53327\]: warning: unknown\[45.142.195.5\]: SASL LOGIN authentication failed: authentication failure Sep 25 20:59:52 andromeda postfix/smtpd\[53327\]: warning: unknown\[45.142.195.5\]: SASL LOGIN authentication failed: authentication failure Sep 25 20:59:59 andromeda postfix/smtpd\[42777\]: warning: unknown\[45.142.195.5\]: SASL LOGIN authentication failed: authentication failure	2019-09-26 03:01:20
121.62.107.64	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/121.62.107.64/ CN - 1H : (1629) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4134 IP : 121.62.107.64 CIDR : 121.60.0.0/14 PREFIX COUNT : 5430 UNIQUE IP COUNT : 106919680 WYKRYTE ATAKI Z ASN4134 : 1H - 20 3H - 65 6H - 114 12H - 227 24H - 639 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-09-26 03:22:56
121.160.198.198	attack	Sep 25 17:52:57 XXX sshd[6242]: Invalid user ofsaa from 121.160.198.198 port 53454	2019-09-26 03:09:59
144.217.164.70	attackbotsspam	Sep 25 09:02:10 aiointranet sshd\[522\]: Invalid user csgoserver from 144.217.164.70 Sep 25 09:02:10 aiointranet sshd\[522\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.ip-144-217-164.net Sep 25 09:02:12 aiointranet sshd\[522\]: Failed password for invalid user csgoserver from 144.217.164.70 port 47686 ssh2 Sep 25 09:06:51 aiointranet sshd\[943\]: Invalid user frappe from 144.217.164.70 Sep 25 09:06:51 aiointranet sshd\[943\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.ip-144-217-164.net	2019-09-26 03:23:34
143.208.180.212	attack	Sep 25 03:22:49 hpm sshd\[1239\]: Invalid user ftpuser from 143.208.180.212 Sep 25 03:22:49 hpm sshd\[1239\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=iflex.tigobusiness.com.gt Sep 25 03:22:51 hpm sshd\[1239\]: Failed password for invalid user ftpuser from 143.208.180.212 port 43138 ssh2 Sep 25 03:27:20 hpm sshd\[1628\]: Invalid user alexovh from 143.208.180.212 Sep 25 03:27:20 hpm sshd\[1628\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=iflex.tigobusiness.com.gt	2019-09-26 03:21:09
185.82.220.177	attack	Honeypot attack, port: 445, PTR: node.yumachide.com.	2019-09-26 03:02:34
5.39.92.185	attack	Sep 25 13:03:52 web8 sshd\[2641\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.92.185 user=nobody Sep 25 13:03:54 web8 sshd\[2641\]: Failed password for nobody from 5.39.92.185 port 36017 ssh2 Sep 25 13:08:29 web8 sshd\[4727\]: Invalid user db2adm1 from 5.39.92.185 Sep 25 13:08:29 web8 sshd\[4727\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.92.185 Sep 25 13:08:31 web8 sshd\[4727\]: Failed password for invalid user db2adm1 from 5.39.92.185 port 56599 ssh2	2019-09-26 02:58:51
91.106.97.88	attackspam	2019-09-24 14:24:43 server sshd[61413]: Failed password for invalid user junior from 91.106.97.88 port 39742 ssh2	2019-09-26 03:28:49
70.71.148.228	attack	2019-09-25T08:23:44.3208941495-001 sshd\[51785\]: Failed password for invalid user oracle from 70.71.148.228 port 55659 ssh2 2019-09-25T08:35:48.7504331495-001 sshd\[52992\]: Invalid user odroid from 70.71.148.228 port 32900 2019-09-25T08:35:48.7596951495-001 sshd\[52992\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=s01063c37866eee85.vs.shawcable.net 2019-09-25T08:35:50.5470491495-001 sshd\[52992\]: Failed password for invalid user odroid from 70.71.148.228 port 32900 ssh2 2019-09-25T08:39:58.2438281495-001 sshd\[53289\]: Invalid user xy from 70.71.148.228 port 53542 2019-09-25T08:39:58.2516071495-001 sshd\[53289\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=s01063c37866eee85.vs.shawcable.net ...	2019-09-26 03:06:58
41.36.124.250	attackbotsspam	Honeypot attack, port: 23, PTR: host-41.36.124.250.tedata.net.	2019-09-26 03:31:36
199.249.230.108	attackspam	Automatic report - Banned IP Access	2019-09-26 03:24:55
216.160.28.181	attack	9200/tcp [2019-09-25]1pkt	2019-09-26 03:03:32

Recently Reported IPs

205.109.198.166	221.4.54.100	188.85.231.244	184.69.90.186
216.207.37.134	118.252.157.203	118.184.26.134	35.120.110.56
47.212.60.167	61.82.104.236	193.80.124.130	79.163.97.32
120.14.22.156	73.225.184.50	186.150.251.63	214.4.218.68
123.205.62.189	190.72.237.170	111.93.130.83	200.96.64.101