103.242.106.119

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT Lintas Jaringan Nusantara

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 103.242.106.119 to port 445 [T]	2020-08-14 02:50:40

Comments on same subnet:

IP	Type	Details	Datetime
103.242.106.139	attack	20/5/3@23:58:59: FAIL: Alarm-Network address from=103.242.106.139 ...	2020-05-04 12:17:15
103.242.106.2	attackbotsspam	Feb 28 05:50:41 grey postfix/smtpd\[23504\]: NOQUEUE: reject: RCPT from unknown\[103.242.106.2\]: 554 5.7.1 Service unavailable\; Client host \[103.242.106.2\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?103.242.106.2\; from=\ to=\ proto=ESMTP helo=\<\[103.242.106.2\]\> ...	2020-02-28 19:05:09
103.242.106.172	attackbots	Jan 15 04:39:27 XXXXXX sshd[55063]: Invalid user guest from 103.242.106.172 port 50849	2020-01-15 15:04:56

Type

Details

Datetime

103.242.106.139

attack

20/5/3@23:58:59: FAIL: Alarm-Network address from=103.242.106.139
...

2020-05-04 12:17:15

103.242.106.2

attackbotsspam

Feb 28 05:50:41 grey postfix/smtpd\[23504\]: NOQUEUE: reject: RCPT from unknown\[103.242.106.2\]: 554 5.7.1 Service unavailable\; Client host \[103.242.106.2\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?103.242.106.2\; from=\ to=\ proto=ESMTP helo=\<\[103.242.106.2\]\>
...

2020-02-28 19:05:09

103.242.106.172

attackbots

Jan 15 04:39:27 XXXXXX sshd[55063]: Invalid user guest from 103.242.106.172 port 50849

2020-01-15 15:04:56

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.242.106.119
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36063
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.242.106.119.		IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081301 1800 900 604800 86400

;; Query time: 48 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Aug 14 02:50:36 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 119.106.242.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 119.106.242.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
157.230.116.99	attackbots	2019-08-30T19:38:35.980094abusebot-3.cloudsearch.cf sshd\[11861\]: Invalid user kevin from 157.230.116.99 port 42528 2019-08-30T19:38:35.984644abusebot-3.cloudsearch.cf sshd\[11861\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.116.99	2019-08-31 03:50:19
182.61.160.236	attackspambots	Aug 30 09:38:33 hiderm sshd\[25129\]: Invalid user emerola from 182.61.160.236 Aug 30 09:38:33 hiderm sshd\[25129\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.160.236 Aug 30 09:38:35 hiderm sshd\[25129\]: Failed password for invalid user emerola from 182.61.160.236 port 35690 ssh2 Aug 30 09:42:41 hiderm sshd\[25647\]: Invalid user admin from 182.61.160.236 Aug 30 09:42:41 hiderm sshd\[25647\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.160.236	2019-08-31 03:43:55
131.100.141.177	attackbotsspam	Honeypot hit.	2019-08-31 03:47:38
177.74.79.142	attack	2019-08-30T19:10:20.305754abusebot.cloudsearch.cf sshd\[392\]: Invalid user adixix from 177.74.79.142 port 54358	2019-08-31 03:36:42
14.23.168.178	attackbotsspam	Aug 30 19:40:16 MK-Soft-VM3 sshd\[29116\]: Invalid user netdump from 14.23.168.178 port 37922 Aug 30 19:40:16 MK-Soft-VM3 sshd\[29116\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.23.168.178 Aug 30 19:40:18 MK-Soft-VM3 sshd\[29116\]: Failed password for invalid user netdump from 14.23.168.178 port 37922 ssh2 ...	2019-08-31 03:49:29
118.24.37.81	attackbotsspam	Aug 30 19:30:25 MK-Soft-VM4 sshd\[8420\]: Invalid user max from 118.24.37.81 port 40930 Aug 30 19:30:25 MK-Soft-VM4 sshd\[8420\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.37.81 Aug 30 19:30:28 MK-Soft-VM4 sshd\[8420\]: Failed password for invalid user max from 118.24.37.81 port 40930 ssh2 ...	2019-08-31 04:05:16
37.6.167.218	attack	DATE:2019-08-30 18:26:19, IP:37.6.167.218, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2019-08-31 03:42:22
190.111.239.219	attack	Aug 30 19:17:27 localhost sshd\[46376\]: Invalid user ftpuser from 190.111.239.219 port 38420 Aug 30 19:17:27 localhost sshd\[46376\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.111.239.219 Aug 30 19:17:29 localhost sshd\[46376\]: Failed password for invalid user ftpuser from 190.111.239.219 port 38420 ssh2 Aug 30 19:22:29 localhost sshd\[46508\]: Invalid user ubuntu from 190.111.239.219 port 56026 Aug 30 19:22:29 localhost sshd\[46508\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.111.239.219 ...	2019-08-31 03:34:10
101.255.56.42	attack	Aug 30 15:52:46 vtv3 sshd\[21922\]: Invalid user sk from 101.255.56.42 port 38616 Aug 30 15:52:46 vtv3 sshd\[21922\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.255.56.42 Aug 30 15:52:48 vtv3 sshd\[21922\]: Failed password for invalid user sk from 101.255.56.42 port 38616 ssh2 Aug 30 15:58:52 vtv3 sshd\[24943\]: Invalid user wordpress from 101.255.56.42 port 60629 Aug 30 15:58:52 vtv3 sshd\[24943\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.255.56.42 Aug 30 16:10:03 vtv3 sshd\[30682\]: Invalid user eg from 101.255.56.42 port 48188 Aug 30 16:10:03 vtv3 sshd\[30682\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.255.56.42 Aug 30 16:10:06 vtv3 sshd\[30682\]: Failed password for invalid user eg from 101.255.56.42 port 48188 ssh2 Aug 30 16:15:46 vtv3 sshd\[1430\]: Invalid user cedric from 101.255.56.42 port 41968 Aug 30 16:15:46 vtv3 sshd\[1430\]: pam_unix\(sshd	2019-08-31 03:33:33
125.130.142.12	attackspambots	Aug 30 16:04:06 ny01 sshd[6868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.130.142.12 Aug 30 16:04:09 ny01 sshd[6868]: Failed password for invalid user nellie from 125.130.142.12 port 49006 ssh2 Aug 30 16:08:41 ny01 sshd[7592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.130.142.12	2019-08-31 04:10:33
103.52.16.35	attackspambots	Aug 30 06:41:03 hanapaa sshd\[16211\]: Invalid user rolo123 from 103.52.16.35 Aug 30 06:41:03 hanapaa sshd\[16211\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.52.16.35 Aug 30 06:41:04 hanapaa sshd\[16211\]: Failed password for invalid user rolo123 from 103.52.16.35 port 53960 ssh2 Aug 30 06:45:58 hanapaa sshd\[16657\]: Invalid user deploy from 103.52.16.35 Aug 30 06:45:58 hanapaa sshd\[16657\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.52.16.35	2019-08-31 03:41:49
150.242.110.5	attackbots	Aug 30 21:26:42 meumeu sshd[28595]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.110.5 Aug 30 21:26:44 meumeu sshd[28595]: Failed password for invalid user herbert from 150.242.110.5 port 37009 ssh2 Aug 30 21:31:46 meumeu sshd[29308]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.110.5 ...	2019-08-31 03:51:05
159.203.179.230	attack	Feb 12 05:18:39 vtv3 sshd\[3773\]: Invalid user varnish from 159.203.179.230 port 52934 Feb 12 05:18:39 vtv3 sshd\[3773\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.179.230 Feb 12 05:18:41 vtv3 sshd\[3773\]: Failed password for invalid user varnish from 159.203.179.230 port 52934 ssh2 Feb 12 05:23:14 vtv3 sshd\[5127\]: Invalid user openstack from 159.203.179.230 port 43060 Feb 12 05:23:14 vtv3 sshd\[5127\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.179.230 Feb 13 11:30:17 vtv3 sshd\[26604\]: Invalid user mc2 from 159.203.179.230 port 43456 Feb 13 11:30:17 vtv3 sshd\[26604\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.179.230 Feb 13 11:30:19 vtv3 sshd\[26604\]: Failed password for invalid user mc2 from 159.203.179.230 port 43456 ssh2 Feb 13 11:34:53 vtv3 sshd\[27207\]: Invalid user etherpad-lite from 159.203.179.230 port 33436 Feb 13 11:34:53	2019-08-31 03:43:23
101.71.51.192	attackbotsspam	Aug 30 19:30:05 MK-Soft-VM7 sshd\[8073\]: Invalid user owner from 101.71.51.192 port 39671 Aug 30 19:30:05 MK-Soft-VM7 sshd\[8073\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.71.51.192 Aug 30 19:30:07 MK-Soft-VM7 sshd\[8073\]: Failed password for invalid user owner from 101.71.51.192 port 39671 ssh2 ...	2019-08-31 03:41:16
94.231.136.154	attackspambots	Aug 30 21:41:43 OPSO sshd\[9931\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.231.136.154 user=root Aug 30 21:41:45 OPSO sshd\[9931\]: Failed password for root from 94.231.136.154 port 35676 ssh2 Aug 30 21:46:09 OPSO sshd\[10676\]: Invalid user kiki from 94.231.136.154 port 52374 Aug 30 21:46:09 OPSO sshd\[10676\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.231.136.154 Aug 30 21:46:10 OPSO sshd\[10676\]: Failed password for invalid user kiki from 94.231.136.154 port 52374 ssh2	2019-08-31 03:46:16

Recently Reported IPs

2.132.22.255	195.208.137.35	187.162.244.173	252.92.168.92
185.214.167.254	185.33.173.60	84.105.63.23	183.89.85.112
178.168.205.85	77.171.87.0	192.202.216.253	177.99.31.97
176.123.242.99	176.122.255.16	250.163.240.182	41.152.19.217
160.97.1.95	167.179.83.135	116.186.17.221	124.104.208.135