103.120.168.45

Basic Info

City: Jakarta

Region: Jakarta

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: PT. Eka Mas Republik

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
103.120.168.28	attack	Unauthorized accessed to online acct. ordered $418 and shipped me an envelope. Merchant name is Agletzenith a Walmart market seller. The envelope is considered the product and bank won’t validate dispute.	2022-08-07 13:12:09
103.120.168.55	attackspam	xmlrpc attack	2020-04-25 13:33:40
103.120.168.41	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 15-04-2020 13:10:09.	2020-04-15 23:40:28
103.120.168.125	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 13-04-2020 18:20:08.	2020-04-14 02:19:00
103.120.168.126	attackspam	kp-sea2-01 recorded 2 login violations from 103.120.168.126 and was blocked at 2020-02-28 13:31:21. 103.120.168.126 has been blocked on 0 previous occasions. 103.120.168.126's first attempt was recorded at 2020-02-28 13:31:21	2020-02-29 00:15:09

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.120.168.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13380
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.120.168.45.			IN	A

;; AUTHORITY SECTION:
.			281	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072700 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 27 23:40:20 CST 2019
;; MSG SIZE  rcvd: 118

Host info

45.168.120.103.in-addr.arpa has no PTR record

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
45.168.120.103.in-addr.arpa	name = host-103-120-168-45.myrepublic.co.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
116.52.41.29	attackbotsspam	116.52.41.29 - - \[11/Apr/2020:14:12:07 +0200\] "GET http://api.gxout.com/proxy/check.aspx HTTP/1.1" 400 666 "http://api.gxout.com/proxy/check.aspx" "Mozilla/4.0 $compatible\; MSIE 6.0\; Windows NT 5.1$" ...	2020-04-12 04:12:43
112.198.194.11	attackbots	Invalid user test from 112.198.194.11 port 55762	2020-04-12 04:06:19
134.175.204.181	attackspambots	SSH invalid-user multiple login try	2020-04-12 04:13:57
91.220.53.217	attackbots	2020-04-11T18:56:02.741244dmca.cloudsearch.cf sshd[8218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.220.53.217 user=root 2020-04-11T18:56:05.242154dmca.cloudsearch.cf sshd[8218]: Failed password for root from 91.220.53.217 port 50965 ssh2 2020-04-11T19:00:02.884145dmca.cloudsearch.cf sshd[8561]: Invalid user user from 91.220.53.217 port 55144 2020-04-11T19:00:02.890339dmca.cloudsearch.cf sshd[8561]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.220.53.217 2020-04-11T19:00:02.884145dmca.cloudsearch.cf sshd[8561]: Invalid user user from 91.220.53.217 port 55144 2020-04-11T19:00:05.004973dmca.cloudsearch.cf sshd[8561]: Failed password for invalid user user from 91.220.53.217 port 55144 ssh2 2020-04-11T19:04:03.471646dmca.cloudsearch.cf sshd[8910]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.220.53.217 user=root 2020-04-11T19:04:05.671631dmca.clouds ...	2020-04-12 04:10:39
94.254.125.44	attack	Invalid user ubuntu from 94.254.125.44 port 43300	2020-04-12 04:20:30
175.24.106.77	attackspambots	$f2bV_matches	2020-04-12 04:16:46
180.76.172.227	attack	Brute force SMTP login attempted. ...	2020-04-12 04:35:15
83.167.87.198	attack	Fail2Ban Ban Triggered	2020-04-12 04:22:34
175.16.165.208	attack	Unauthorised access (Apr 11) SRC=175.16.165.208 LEN=40 TTL=49 ID=62780 TCP DPT=8080 WINDOW=19056 SYN Unauthorised access (Apr 11) SRC=175.16.165.208 LEN=40 TTL=49 ID=17210 TCP DPT=8080 WINDOW=19056 SYN	2020-04-12 04:28:35
134.209.194.217	attack	Apr 11 21:20:13 mail sshd\[18191\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.194.217 user=root Apr 11 21:20:15 mail sshd\[18191\]: Failed password for root from 134.209.194.217 port 40420 ssh2 Apr 11 21:24:40 mail sshd\[18237\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.194.217 user=root ...	2020-04-12 04:17:25
66.220.149.2	attackbotsspam	[Sat Apr 11 19:12:34.543703 2020] [:error] [pid 7575:tid 139985730885376] [client 66.220.149.2:51290] [client 66.220.149.2] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/images/Klimatologi/Analisis/02-Analisis_Dasarian/Analisis_Monitoring_Hari_Tanpa_Hujan_Berturut-Turut_Dasarian/Analisis_Monitoring_Hari_Tanpa_Hujan_Berturut-Turut_Dasarian_Provinsi_Jawa_Timur/2020/04_April_2020/Das-I/Peta_Analisis_Dasarian_Monitoring_Hari_Tanpa_Hujan_Berturut-Turut_Update ...	2020-04-12 03:58:37
35.215.235.85	attackspam	Apr 12 01:39:36 itv-usvr-02 sshd[14628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.215.235.85 user=root Apr 12 01:39:37 itv-usvr-02 sshd[14628]: Failed password for root from 35.215.235.85 port 42432 ssh2 Apr 12 01:44:43 itv-usvr-02 sshd[14933]: Invalid user cyclone from 35.215.235.85 port 51916 Apr 12 01:44:43 itv-usvr-02 sshd[14933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.215.235.85 Apr 12 01:44:43 itv-usvr-02 sshd[14933]: Invalid user cyclone from 35.215.235.85 port 51916 Apr 12 01:44:45 itv-usvr-02 sshd[14933]: Failed password for invalid user cyclone from 35.215.235.85 port 51916 ssh2	2020-04-12 04:14:59
151.80.61.70	attackspambots	SSH Login Bruteforce	2020-04-12 04:00:48
205.213.138.130	attackspambots	Trying ports that it shouldn't be.	2020-04-12 04:15:26
81.169.179.211	attack	Apr 11 19:08:11 cvbnet sshd[29619]: Failed password for root from 81.169.179.211 port 22536 ssh2 ...	2020-04-12 04:02:12

Recently Reported IPs

203.20.188.193	82.223.66.95	132.238.189.33	78.191.32.75
117.168.145.70	64.60.248.226	73.131.102.208	59.0.226.239
42.126.119.171	69.241.95.132	5.252.169.75	58.118.188.6
148.63.36.111	70.21.96.128	49.234.206.45	42.192.238.146
50.33.95.106	2.186.57.98	40.115.116.186	159.219.122.72