103.54.219.106

Basic Info

City: Tangerang

Region: Banten

Country: Indonesia

Internet Service Provider: PT Diara Kencana Indonesia

Hostname: unknown

Organization: PT.Mora Telematika Indonesia

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Unauthorized connection attempt from IP address 103.54.219.106 on Port 445(SMB)	2020-08-27 17:14:18
attackspam	Unauthorized connection attempt from IP address 103.54.219.106 on Port 445(SMB)	2020-07-20 22:28:21
attackbots	Unauthorized connection attempt from IP address 103.54.219.106 on Port 445(SMB)	2020-06-15 02:57:39
attackspambots	20/4/14@23:59:35: FAIL: Alarm-Network address from=103.54.219.106 ...	2020-04-15 12:31:09
attack	445/tcp 445/tcp 445/tcp... [2020-01-23/03-23]13pkt,1pt.(tcp)	2020-03-23 18:01:38
attackbotsspam	Trying to (more than 3 packets) bruteforce (not open) Samba/Microsoft-DS port 445	2020-03-12 06:37:55
attack	Unauthorized connection attempt from IP address 103.54.219.106 on Port 445(SMB)	2020-02-06 00:43:29
attack	unauthorized connection attempt	2020-02-02 15:03:42
attack	Unauthorized connection attempt from IP address 103.54.219.106 on Port 445(SMB)	2020-01-07 22:12:35
attackspam	Unauthorised access (Dec 15) SRC=103.54.219.106 LEN=48 PREC=0x20 TTL=116 ID=15899 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-16 06:20:56
attackbots	Unauthorized connection attempt from IP address 103.54.219.106 on Port 445(SMB)	2019-11-29 04:28:38
attackspambots	Oct 20 13:26:15 microserver sshd[553]: Failed password for root from 103.54.219.106 port 28456 ssh2 Oct 20 13:30:25 microserver sshd[1151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.54.219.106 user=root Oct 20 13:30:28 microserver sshd[1151]: Failed password for root from 103.54.219.106 port 47099 ssh2 Oct 20 13:34:35 microserver sshd[1392]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.54.219.106 user=root Oct 20 13:47:02 microserver sshd[3200]: Invalid user yseo from 103.54.219.106 port 65178 Oct 20 13:47:02 microserver sshd[3200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.54.219.106 Oct 20 13:47:04 microserver sshd[3200]: Failed password for invalid user yseo from 103.54.219.106 port 65178 ssh2 Oct 20 13:51:18 microserver sshd[3816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.54.219.106 user=root Oct 20 13:51:20	2019-10-20 23:39:42
attackspambots	$f2bV_matches	2019-10-17 19:50:23
attackbots	Unauthorized connection attempt from IP address 103.54.219.106 on Port 445(SMB)	2019-10-17 05:32:48
attack	2019-10-14T13:51:02.297018lon01.zurich-datacenter.net sshd\[9012\]: Invalid user hao360 from 103.54.219.106 port 63793 2019-10-14T13:51:02.304274lon01.zurich-datacenter.net sshd\[9012\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.54.219.106 2019-10-14T13:51:03.693848lon01.zurich-datacenter.net sshd\[9012\]: Failed password for invalid user hao360 from 103.54.219.106 port 63793 ssh2 2019-10-14T13:55:34.893906lon01.zurich-datacenter.net sshd\[9118\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.54.219.106 user=root 2019-10-14T13:55:36.960431lon01.zurich-datacenter.net sshd\[9118\]: Failed password for root from 103.54.219.106 port 26788 ssh2 ...	2019-10-14 20:28:59
attack	2019-10-11T19:00:58.852515abusebot-8.cloudsearch.cf sshd\[6161\]: Invalid user Printer2017 from 103.54.219.106 port 35118	2019-10-12 08:41:48
attackbotsspam	Oct 5 18:32:14 tdfoods sshd\[4535\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.54.219.106 user=root Oct 5 18:32:16 tdfoods sshd\[4535\]: Failed password for root from 103.54.219.106 port 21213 ssh2 Oct 5 18:36:35 tdfoods sshd\[4914\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.54.219.106 user=root Oct 5 18:36:36 tdfoods sshd\[4914\]: Failed password for root from 103.54.219.106 port 40510 ssh2 Oct 5 18:40:55 tdfoods sshd\[5384\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.54.219.106 user=root	2019-10-06 12:41:17
attackspam	2019-10-03T15:06:37.562936shield sshd\[5968\]: Invalid user ncmdbuser from 103.54.219.106 port 22288 2019-10-03T15:06:37.567146shield sshd\[5968\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.54.219.106 2019-10-03T15:06:39.603208shield sshd\[5968\]: Failed password for invalid user ncmdbuser from 103.54.219.106 port 22288 ssh2 2019-10-03T15:11:22.183590shield sshd\[6981\]: Invalid user admin from 103.54.219.106 port 42615 2019-10-03T15:11:22.187968shield sshd\[6981\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.54.219.106	2019-10-03 23:24:44
attackspam	Sep 29 10:01:31 meumeu sshd[20040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.54.219.106 Sep 29 10:01:34 meumeu sshd[20040]: Failed password for invalid user test from 103.54.219.106 port 48347 ssh2 Sep 29 10:06:05 meumeu sshd[20643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.54.219.106 ...	2019-09-29 16:08:07
attackspam	Automatic report - Banned IP Access	2019-09-28 17:44:31
attack	$f2bV_matches	2019-09-28 02:46:00
attackbots	Sep 27 02:02:56 php1 sshd\[9501\]: Invalid user albert from 103.54.219.106 Sep 27 02:02:56 php1 sshd\[9501\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.54.219.106 Sep 27 02:02:58 php1 sshd\[9501\]: Failed password for invalid user albert from 103.54.219.106 port 59447 ssh2 Sep 27 02:07:53 php1 sshd\[9934\]: Invalid user ghegheb0ss from 103.54.219.106 Sep 27 02:07:53 php1 sshd\[9934\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.54.219.106	2019-09-27 20:15:23
attack	65353/tcp 445/tcp... [2019-04-30/06-30]48pkt,2pt.(tcp)	2019-07-01 03:27:48
attackspambots	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(06261032)	2019-06-26 18:09:30

Comments on same subnet:

IP	Type	Details	Datetime
103.54.219.250	attack	unauthorized connection attempt	2020-01-28 16:31:44
103.54.219.250	attack	unauthorized connection attempt	2020-01-17 15:29:37
103.54.219.107	attackspam	Invalid user admin from 103.54.219.107 port 51168	2019-10-24 23:55:52
103.54.219.107	attack	2019-10-22T09:20:48.125858abusebot.cloudsearch.cf sshd\[27028\]: Invalid user oracle from 103.54.219.107 port 41096	2019-10-22 17:26:05
103.54.219.107	attackspambots	SSH/22 MH Probe, BF, Hack -	2019-09-29 16:07:42
103.54.219.107	attackbots	Sep 27 14:24:32 s64-1 sshd[7689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.54.219.107 Sep 27 14:24:34 s64-1 sshd[7689]: Failed password for invalid user adolf from 103.54.219.107 port 41568 ssh2 Sep 27 14:29:10 s64-1 sshd[7817]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.54.219.107 ...	2019-09-28 00:37:11
103.54.219.107	attackbotsspam	Fail2Ban - SSH Bruteforce Attempt	2019-09-27 09:39:03

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.54.219.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46884
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.54.219.106.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019033102 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 01 20:43:53 +08 2019
;; MSG SIZE  rcvd: 118

Host info

Host 106.219.54.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 106.219.54.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
41.79.169.158	attack	445/tcp [2019-09-24]1pkt	2019-09-25 08:31:55
153.36.236.35	attackspam	Sep 24 21:06:04 debian sshd\[15148\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.35 user=root Sep 24 21:06:07 debian sshd\[15148\]: Failed password for root from 153.36.236.35 port 23636 ssh2 Sep 24 21:06:08 debian sshd\[15148\]: Failed password for root from 153.36.236.35 port 23636 ssh2 ...	2019-09-25 09:06:47
155.254.30.234	attack	Port Scan: TCP/445	2019-09-25 09:06:21
181.92.112.162	attack	Port Scan: TCP/23	2019-09-25 08:38:17
175.34.169.90	attackspambots	Port Scan: TCP/23	2019-09-25 08:52:46
88.173.192.183	attackbotsspam	Port Scan: TCP/34567	2019-09-25 08:42:09
180.250.196.138	attackspam	Port Scan: TCP/445	2019-09-25 08:51:52
210.195.157.255	attackbots	Port Scan: TCP/1588	2019-09-25 08:34:18
149.140.252.144	attack	Port Scan: TCP/81	2019-09-25 08:53:50
66.220.155.140	attackbotsspam	Port Scan: TCP/25	2019-09-25 08:30:01
217.95.174.200	attack	Port Scan: UDP/1	2019-09-25 08:48:13
223.52.130.205	attackbotsspam	Port Scan: TCP/5555	2019-09-25 08:33:32
189.145.99.121	attackspambots	Port Scan: TCP/445	2019-09-25 08:36:07
74.42.229.210	attackspam	Port Scan: UDP/137	2019-09-25 08:57:05
67.214.100.75	attackspambots	Port Scan: TCP/445	2019-09-25 08:29:37

Recently Reported IPs

62.19.0.113	14.102.107.130	185.176.27.174	185.176.26.105
181.189.150.25	191.200.181.159	185.200.118.55	34.246.41.199
92.112.48.205	171.8.5.189	185.200.118.77	110.172.175.226
122.160.165.182	123.176.34.152	220.132.172.118	94.124.193.242
36.37.96.98	116.212.63.35	51.68.230.237	77.45.110.210