103.14.45.168 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
103.14.45.66	attackspam	WordPress login Brute force / Web App Attack on client site.	2020-03-12 14:14:59
103.14.45.66	attackbotsspam	[munged]::443 103.14.45.66 - - [04/Mar/2020:18:24:18 +0100] "POST /[munged]: HTTP/1.1" 200 5568 "-" "-" [munged]::443 103.14.45.66 - - [04/Mar/2020:18:24:34 +0100] "POST /[munged]: HTTP/1.1" 200 5568 "-" "-" [munged]::443 103.14.45.66 - - [04/Mar/2020:18:24:34 +0100] "POST /[munged]: HTTP/1.1" 200 5568 "-" "-" [munged]::443 103.14.45.66 - - [04/Mar/2020:18:24:50 +0100] "POST /[munged]: HTTP/1.1" 200 5568 "-" "-" [munged]::443 103.14.45.66 - - [04/Mar/2020:18:24:50 +0100] "POST /[munged]: HTTP/1.1" 200 5568 "-" "-" [munged]::443 103.14.45.66 - - [04/Mar/2020:18:25:05 +0100] "POST /[munged]: HTTP/1.1" 200 5568 "-" "-"	2020-03-05 02:41:57
103.14.45.98	attack	email spam	2019-12-19 17:12:13
103.14.45.98	attackspam	A spam blank email was sent from this SMTP server. All To headers of this kind of spam emails were "To: undisclosed-recipients:;".	2019-12-04 05:13:40
103.14.45.98	attack	Autoban 103.14.45.98 AUTH/CONNECT	2019-11-18 20:11:18
103.14.45.98	attackbots	proto=tcp . spt=36677 . dpt=25 . (Found on Blocklist de Oct 31) (758)	2019-11-01 06:35:49
103.14.45.66	attackspambots	103.14.45.66 - - [17/Oct/2019:06:36:34 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.14.45.66 - - [17/Oct/2019:06:36:35 +0200] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.14.45.66 - - [17/Oct/2019:06:36:37 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.14.45.66 - - [17/Oct/2019:06:36:37 +0200] "POST /wp-login.php HTTP/1.1" 200 1607 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.14.45.66 - - [17/Oct/2019:06:36:40 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.14.45.66 - - [17/Oct/2019:06:36:41 +0200] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-10-17 14:32:21
103.14.45.98	attack	2019-09-26 22:45:02 H=(looneytours.it) [103.14.45.98]:55237 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/query/ip/103.14.45.98) 2019-09-26 22:45:03 H=(looneytours.it) [103.14.45.98]:55237 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/103.14.45.98) 2019-09-26 22:45:04 H=(looneytours.it) [103.14.45.98]:55237 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/103.14.45.98) ...	2019-09-27 20:09:54

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.14.45.168
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29365
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.14.45.168.			IN	A

;; AUTHORITY SECTION:
.			170	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 16:39:25 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 168.45.14.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 168.45.14.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
177.44.16.194	attackbots	(smtpauth) Failed SMTP AUTH login from 177.44.16.194 (BR/Brazil/177-44-16-194.ptu-wr.mastercabo.com.br): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-06-11 08:26:01 plain authenticator failed for ([177.44.16.194]) [177.44.16.194]: 535 Incorrect authentication data (set_id=foroosh@ajorkowsar.com)	2020-06-11 14:30:55
83.97.20.35	attackspambots	Jun 11 08:10:33 debian-2gb-nbg1-2 kernel: \[14114561.059962\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=83.97.20.35 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=59075 DPT=49154 WINDOW=65535 RES=0x00 SYN URGP=0	2020-06-11 14:35:42
195.54.160.166	attack	TCP (SYN) 195.54.160.166:46027 -> port 20198, len 44	2020-06-11 14:42:45
42.191.98.172	attack	(imapd) Failed IMAP login from 42.191.98.172 (MY/Malaysia/-): 1 in the last 3600 secs	2020-06-11 14:28:00
188.120.232.63	attackspambots	SQL Injection in QueryString parameter: r251111111111111' UNION SELECT CHAR(45,120,49,45,81,45),CHAR(45,120,50,45,81,45),CHAR(45,120,51,45,81,45),CHAR(45,120,52,45,81,45),CHAR(45,120,53,45,81,45),CHAR(45,120,54,45,81,45),CHAR(45,120,55,45,81,45),CHAR(45,120,56,45,81,45),CHAR(45,120,57,45,81,45),CHAR(45,120,49,48,45,81,45)--	2020-06-11 14:46:41
177.134.103.241	attackspam	$f2bV_matches	2020-06-11 14:20:52
62.107.102.131	attackspambots	Trying ports that it shouldn't be.	2020-06-11 14:50:51
178.62.104.59	attackspam	$f2bV_matches	2020-06-11 14:47:09
116.196.94.211	attackbots	k+ssh-bruteforce	2020-06-11 14:29:40
212.83.131.135	attackbotsspam	$f2bV_matches	2020-06-11 14:20:05
123.126.106.88	attack	$f2bV_matches	2020-06-11 14:47:55
121.160.139.118	attack	Jun 11 00:52:07 firewall sshd[25300]: Failed password for invalid user bopere from 121.160.139.118 port 51286 ssh2 Jun 11 00:55:36 firewall sshd[25494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.160.139.118 user=root Jun 11 00:55:38 firewall sshd[25494]: Failed password for root from 121.160.139.118 port 47882 ssh2 ...	2020-06-11 14:50:22
106.12.7.100	attackspambots	Jun 11 01:41:31 Host-KEWR-E sshd[6625]: Disconnected from invalid user root 106.12.7.100 port 44778 [preauth] ...	2020-06-11 14:24:13
168.194.207.58	attackbotsspam	Jun 11 05:45:53 jumpserver sshd[23309]: Invalid user ec2-user from 168.194.207.58 port 49580 Jun 11 05:45:55 jumpserver sshd[23309]: Failed password for invalid user ec2-user from 168.194.207.58 port 49580 ssh2 Jun 11 05:55:45 jumpserver sshd[23370]: Invalid user socal from 168.194.207.58 port 48532 ...	2020-06-11 14:28:30
112.211.65.115	attackspambots	SMB Server BruteForce Attack	2020-06-11 14:33:48

Recently Reported IPs

103.14.45.117	103.14.45.115	145.140.231.119	1.20.96.196
103.14.45.172	103.14.45.250	103.14.45.254	103.14.69.21
1.20.96.198	103.14.71.217	103.14.69.251	103.14.8.239
103.14.72.208	103.140.109.18	103.140.108.62	1.20.96.2
103.140.131.10	103.14.89.242	103.14.72.210	103.140.127.235