Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Flat 301 3/F Trans Asia Ctr

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:
Type Details Datetime
attackbotsspam
2020-10-04T22:06:47.101410yoshi.linuxbox.ninja sshd[451760]: Failed password for root from 103.45.70.58 port 55522 ssh2
2020-10-04T22:08:46.567372yoshi.linuxbox.ninja sshd[452954]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.70.58  user=root
2020-10-04T22:08:48.566074yoshi.linuxbox.ninja sshd[452954]: Failed password for root from 103.45.70.58 port 57088 ssh2
...
2020-10-06 05:50:42
attackbots
2020-10-04T22:06:47.101410yoshi.linuxbox.ninja sshd[451760]: Failed password for root from 103.45.70.58 port 55522 ssh2
2020-10-04T22:08:46.567372yoshi.linuxbox.ninja sshd[452954]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.70.58  user=root
2020-10-04T22:08:48.566074yoshi.linuxbox.ninja sshd[452954]: Failed password for root from 103.45.70.58 port 57088 ssh2
...
2020-10-05 21:55:25
attackbotsspam
2020-10-04T22:06:47.101410yoshi.linuxbox.ninja sshd[451760]: Failed password for root from 103.45.70.58 port 55522 ssh2
2020-10-04T22:08:46.567372yoshi.linuxbox.ninja sshd[452954]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.70.58  user=root
2020-10-04T22:08:48.566074yoshi.linuxbox.ninja sshd[452954]: Failed password for root from 103.45.70.58 port 57088 ssh2
...
2020-10-05 13:49:15
attackbots
Sep 28 22:46:16 minden010 sshd[15139]: Failed password for root from 103.45.70.58 port 49128 ssh2
Sep 28 22:50:15 minden010 sshd[16477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.70.58
Sep 28 22:50:18 minden010 sshd[16477]: Failed password for invalid user dropbox from 103.45.70.58 port 54306 ssh2
...
2020-09-29 05:22:03
attackbotsspam
Time:     Sun Sep 27 14:57:24 2020 +0000
IP:       103.45.70.58 (HK/Hong Kong/-)
Failures: 5 (sshd)
Interval: 3600 seconds
Blocked:  Permanent Block [LF_SSHD]

Log entries:

Sep 27 14:49:19 3 sshd[7854]: Failed password for invalid user oracle from 103.45.70.58 port 50534 ssh2
Sep 27 14:54:37 3 sshd[20834]: Invalid user emma from 103.45.70.58 port 55022
Sep 27 14:54:39 3 sshd[20834]: Failed password for invalid user emma from 103.45.70.58 port 55022 ssh2
Sep 27 14:57:16 3 sshd[29718]: Invalid user apc from 103.45.70.58 port 57264
Sep 27 14:57:18 3 sshd[29718]: Failed password for invalid user apc from 103.45.70.58 port 57264 ssh2
2020-09-28 21:40:59
attackbotsspam
SSH/22 MH Probe, BF, Hack -
2020-09-28 13:48:09
Comments on same subnet:
IP Type Details Datetime
103.45.70.63 attackbots
ET CINS Active Threat Intelligence Poor Reputation IP group 98 - port: 1433 proto: TCP cat: Misc Attack
2020-05-17 08:11:19
103.45.70.111 attackbotsspam
Unauthorized connection attempt detected from IP address 103.45.70.111 to port 1433
2019-12-20 04:19:58
103.45.70.8 attackspambots
[portscan] tcp/1433 [MsSQL]
in spfbl.net:'listed'
*(RWIN=1024)(10151156)
2019-10-16 00:24:09
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.45.70.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28217
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.45.70.58.			IN	A

;; AUTHORITY SECTION:
.			245	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020092701 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Sep 28 13:48:04 CST 2020
;; MSG SIZE  rcvd: 116
Host info
Host 58.70.45.103.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 58.70.45.103.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
118.25.78.202 attackspambots
Invalid user support from 118.25.78.202 port 52724
2020-01-10 22:35:29
213.141.22.34 attackbots
Jan 10 15:27:09 srv206 sshd[2159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.141.22.34  user=root
Jan 10 15:27:11 srv206 sshd[2159]: Failed password for root from 213.141.22.34 port 55694 ssh2
Jan 10 15:38:11 srv206 sshd[2277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.141.22.34  user=root
Jan 10 15:38:13 srv206 sshd[2277]: Failed password for root from 213.141.22.34 port 34226 ssh2
...
2020-01-10 22:51:07
129.211.131.152 attack
Invalid user user from 129.211.131.152 port 36207
2020-01-10 22:31:57
139.59.90.40 attackspambots
Invalid user pentakill from 139.59.90.40 port 14310
2020-01-10 23:07:54
180.76.141.184 attack
Jan 10 15:31:52 localhost sshd\[15618\]: Invalid user test3 from 180.76.141.184 port 40754
Jan 10 15:31:52 localhost sshd\[15618\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.141.184
Jan 10 15:31:54 localhost sshd\[15618\]: Failed password for invalid user test3 from 180.76.141.184 port 40754 ssh2
2020-01-10 23:00:04
139.199.122.210 attackbots
Jan 10 14:15:04 ws26vmsma01 sshd[88481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.122.210
Jan 10 14:15:06 ws26vmsma01 sshd[88481]: Failed password for invalid user training from 139.199.122.210 port 58342 ssh2
...
2020-01-10 23:07:07
162.243.41.112 attackbotsspam
Invalid user zxin from 162.243.41.112 port 41616
2020-01-10 23:04:00
175.6.133.182 attackspambots
Jan 10 15:56:35 karger postfix/smtpd[25195]: warning: unknown[175.6.133.182]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Jan 10 15:56:43 karger postfix/smtpd[25195]: warning: unknown[175.6.133.182]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Jan 10 15:56:54 karger postfix/smtpd[25195]: warning: unknown[175.6.133.182]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
...
2020-01-10 23:01:22
134.209.108.97 attackbotsspam
Invalid user admin from 134.209.108.97 port 55740
2020-01-10 23:08:55
111.231.141.221 attackbotsspam
Invalid user opn from 111.231.141.221 port 49506
2020-01-10 22:37:55
207.107.67.67 attackspam
Invalid user oracle from 207.107.67.67 port 36396
2020-01-10 22:52:14
107.170.249.6 attackspam
Invalid user ocadmin from 107.170.249.6 port 39037
2020-01-10 22:38:27
121.235.22.29 attackbotsspam
2020-01-10 06:58:46 dovecot_login authenticator failed for (wgvrq) [121.235.22.29]:65357 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=chengfei@lerctr.org)
2020-01-10 06:58:53 dovecot_login authenticator failed for (yjvhh) [121.235.22.29]:65357 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=chengfei@lerctr.org)
2020-01-10 06:59:04 dovecot_login authenticator failed for (ntyin) [121.235.22.29]:65357 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=chengfei@lerctr.org)
...
2020-01-10 22:33:25
168.126.85.225 attackbots
Invalid user cpanel from 168.126.85.225 port 39286
2020-01-10 23:02:39
195.117.101.79 attack
Invalid user otv from 195.117.101.79 port 65234
2020-01-10 22:54:50

Recently Reported IPs

222.130.221.17 136.230.135.37 162.251.250.121 117.64.154.91
107.151.159.206 82.92.189.25 112.85.42.98 131.236.187.41
122.194.229.54 1.172.239.197 160.16.143.29 107.172.43.217
47.176.38.253 39.109.115.153 242.106.151.134 122.194.229.122
167.24.102.34 58.44.161.127 227.50.204.75 200.46.8.27