City: Navi Mumbai
Region: Maharashtra
Country: India
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '103.159.84.0 - 103.159.85.255'
% Abuse contact for '103.159.84.0 - 103.159.85.255' is 'abuse@worldhost.group'
inetnum: 103.159.84.0 - 103.159.85.255
netname: KRUNALSHAH-IN
descr: Krunalshah Software Private Limited
country: IN
org: ORG-KSPL7-AP
admin-c: KSPL4-AP
tech-c: KSPL4-AP
abuse-c: AK1277-AP
status: ALLOCATED PORTABLE
remarks: --------------------------------------------------------
remarks: To report network abuse, please contact mnt-irt
remarks: For troubleshooting, please contact tech-c and admin-c
remarks: Report invalid contact via www.apnic.net/invalidcontact
remarks: --------------------------------------------------------
mnt-by: APNIC-HM
mnt-lower: MAINT-KRUNALSHAH-IN
mnt-routes: MAINT-KRUNALSHAH-IN
mnt-irt: IRT-KRUNALSHAH-IN
last-modified: 2020-11-26T06:46:36Z
source: APNIC
irt: IRT-KRUNALSHAH-IN
address: 03 Meghmala Society, Opp R.R. Drivedi School,, Vejalpur Ahmedabad, Gujarat 380051
e-mail: abuse@worldhost.group
abuse-mailbox: abuse@worldhost.group
admin-c: KSPL4-AP
tech-c: KSPL4-AP
auth: # Filtered
remarks: abuse@worldhost.group is invalid
mnt-by: MAINT-KRUNALSHAH-IN
last-modified: 2025-11-18T00:34:08Z
source: APNIC
organisation: ORG-KSPL7-AP
org-name: Krunalshah Software Private Limited
org-type: LIR
country: IN
address: 03 Meghmala Society, Opp R.R. Drivedi School,
phone: +91-7892806859
e-mail: info@Krunalshah.in
mnt-ref: APNIC-HM
mnt-by: APNIC-HM
last-modified: 2023-09-05T02:18:22Z
source: APNIC
role: ABUSE KRUNALSHAHIN
country: ZZ
address: 03 Meghmala Society, Opp R.R. Drivedi School,, Vejalpur Ahmedabad, Gujarat 380051
phone: +000000000
e-mail: abuse@worldhost.group
admin-c: KSPL4-AP
tech-c: KSPL4-AP
nic-hdl: AK1277-AP
remarks: Generated from irt object IRT-KRUNALSHAH-IN
remarks: abuse@worldhost.group is invalid
abuse-mailbox: abuse@worldhost.group
mnt-by: APNIC-ABUSE
last-modified: 2025-03-19T13:10:54Z
source: APNIC
role: Krunalshah Software Private Limited administrator
address: 03 Meghmala Society, Opp R.R. Drivedi School,, Vejalpur Ahmedabad, Gujarat 380051
country: IN
phone: +91-7892806859
e-mail: abuse@Krunalshah.in
admin-c: KSPL4-AP
tech-c: KSPL4-AP
nic-hdl: KSPL4-AP
mnt-by: MAINT-KRUNALSHAH-IN
last-modified: 2020-11-25T11:30:56Z
source: APNIC
% Information related to '103.159.84.0/23AS141004'
route: 103.159.84.0/23
origin: AS141004
descr: Ovi Hosting Pvt Ltd
No.5, 2nd Floor, Saraswathamma Complex, TC Playa Main Road, Bangalore
mnt-by: MAINT-KRUNALSHAH-IN
last-modified: 2021-08-17T10:03:50Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5); <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.159.84.73
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33937
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;103.159.84.73. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026020101 1800 900 604800 86400
;; Query time: 42 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 02 02:56:07 CST 2026
;; MSG SIZE rcvd: 10673.84.159.103.in-addr.arpa domain name pointer vps.theghostkitchen.in.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
73.84.159.103.in-addr.arpa name = vps.theghostkitchen.in.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 59.124.90.113 | attackbots | Aug 10 21:35:02 scw-6657dc sshd[3906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.124.90.113 user=root Aug 10 21:35:02 scw-6657dc sshd[3906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.124.90.113 user=root Aug 10 21:35:04 scw-6657dc sshd[3906]: Failed password for root from 59.124.90.113 port 57758 ssh2 ... |
2020-08-11 08:24:11 |
| 194.26.25.105 | attackbots | ET DROP Dshield Block Listed Source group 1 - port: 38978 proto: tcp cat: Misc Attackbytes: 60 |
2020-08-11 08:00:14 |
| 46.161.27.75 | attackbotsspam | firewall-block, port(s): 3376/tcp, 9969/tcp |
2020-08-11 08:08:06 |
| 45.129.33.155 | attack | firewall-block, port(s): 7510/tcp, 7558/tcp, 7580/tcp, 7584/tcp |
2020-08-11 07:52:42 |
| 157.230.230.215 | attack | 2020-08-11 02:46:44 dovecot_login authenticator failed for \(User\) \[157.230.230.215\]: 535 Incorrect authentication data \(set_id=usuario\)2020-08-11 02:53:21 dovecot_login authenticator failed for \(User\) \[157.230.230.215\]: 535 Incorrect authentication data \(set_id=web97p4\)2020-08-11 02:53:35 dovecot_login authenticator failed for \(User\) \[157.230.230.215\]: 535 Incorrect authentication data \(set_id=confluence\) ... |
2020-08-11 08:22:48 |
| 45.129.33.48 | attackspambots | ET DROP Dshield Block Listed Source group 1 - port: 2198 proto: tcp cat: Misc Attackbytes: 60 |
2020-08-11 07:55:22 |
| 132.145.90.22 | attackbotsspam | Aug 10 23:20:05 lukav-desktop sshd\[4216\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.90.22 user=root Aug 10 23:20:08 lukav-desktop sshd\[4216\]: Failed password for root from 132.145.90.22 port 57730 ssh2 Aug 10 23:24:32 lukav-desktop sshd\[7405\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.90.22 user=root Aug 10 23:24:34 lukav-desktop sshd\[7405\]: Failed password for root from 132.145.90.22 port 38914 ssh2 Aug 10 23:28:57 lukav-desktop sshd\[10594\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.90.22 user=root |
2020-08-11 08:23:18 |
| 193.32.249.135 | attack | 2020/08/11 01:43:18 [error] 4856#4856: *112932 "/usr/share/nginx/html/phpmyadmin/index.html" is not found (2: No such file or directory), client: 193.32.249.135, server: _, request: "GET /phpmyadmin/ HTTP/1.1", host: "horstkeller.net" 2020/08/11 01:43:18 [error] 4856#4856: *112932 "/usr/share/nginx/html/phpMyAdmin/index.html" is not found (2: No such file or directory), client: 193.32.249.135, server: _, request: "GET /phpMyAdmin/ HTTP/1.1", host: "horstkeller.net" 2020/08/11 01:43:18 [error] 4856#4856: *112932 open() "/usr/share/nginx/html/wp-login.php" failed (2: No such file or directory), client: 193.32.249.135, server: _, request: "GET /wp-login.php HTTP/1.1", host: "horstkeller.net" |
2020-08-11 08:00:32 |
| 45.129.33.47 | attack | ET DROP Dshield Block Listed Source group 1 - port: 2046 proto: tcp cat: Misc Attackbytes: 60 |
2020-08-11 07:55:38 |
| 92.118.161.17 | attack | Unauthorized connection attempt detected from IP address 92.118.161.17 to port 8530 [T] |
2020-08-11 08:05:00 |
| 45.227.255.204 | attackspambots | ET SCAN Potential SSH Scan - port: 22 proto: tcp cat: Attempted Information Leakbytes: 370 |
2020-08-11 08:08:25 |
| 201.48.40.153 | attackspambots | ssh intrusion attempt |
2020-08-11 08:16:39 |
| 94.102.49.193 | attackspam | Honeypot hit. |
2020-08-11 08:04:02 |
| 203.160.169.59 | attackbotsspam | Unauthorized connection attempt |
2020-08-11 08:23:44 |
| 212.42.122.75 | attackspambots | Port probing on unauthorized port 1433 |
2020-08-11 08:15:30 |