103.54.8.214 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
103.54.85.22	attack	Unauthorized connection attempt from IP address 103.54.85.22 on Port 445(SMB)	2020-03-08 02:31:47
103.54.86.58	attackbotsspam	Autoban 103.54.86.58 AUTH/CONNECT	2019-11-18 18:11:41
103.54.86.58	attackspam	Oct 1 15:44:37 our-server-hostname postfix/smtpd[6644]: connect from unknown[103.54.86.58] Oct x@x Oct x@x Oct 1 15:44:40 our-server-hostname postfix/smtpd[6644]: lost connection after RCPT from unknown[103.54.86.58] Oct 1 15:44:40 our-server-hostname postfix/smtpd[6644]: disconnect from unknown[103.54.86.58] Oct 1 15:49:45 our-server-hostname postfix/smtpd[17701]: connect from unknown[103.54.86.58] Oct x@x Oct x@x Oct x@x Oct 1 15:49:52 our-server-hostname postfix/smtpd[17701]: lost connection after RCPT from unknown[103.54.86.58] Oct 1 15:49:52 our-server-hostname postfix/smtpd[17701]: disconnect from unknown[103.54.86.58] Oct 1 15:53:40 our-server-hostname postfix/smtpd[31252]: connect from unknown[103.54.86.58] Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.54.86.58	2019-10-04 16:47:24
103.54.85.22	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 19-09-2019 20:33:18.	2019-09-20 05:26:05
103.54.85.22	attackspambots	Unauthorized connection attempt from IP address 103.54.85.22 on Port 445(SMB)	2019-08-20 21:29:41
103.54.85.22	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 02:52:46,283 INFO [amun_request_handler] PortScan Detected on Port: 445 (103.54.85.22)	2019-07-03 12:52:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.54.8.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32430
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.54.8.214.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025030100 1800 900 604800 86400

;; Query time: 47 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 01 17:08:00 CST 2025
;; MSG SIZE  rcvd: 105

Host info

Host 214.8.54.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 214.8.54.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.25.144.133	attackspam	Invalid user testsftp from 118.25.144.133 port 41814	2020-09-01 18:18:38
138.68.150.93	attackbotsspam	138.68.150.93 - - [01/Sep/2020:09:56:59 +0100] "POST /wp-login.php HTTP/1.1" 200 1801 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.150.93 - - [01/Sep/2020:09:56:59 +0100] "POST /wp-login.php HTTP/1.1" 200 1779 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.150.93 - - [01/Sep/2020:09:57:00 +0100] "POST /wp-login.php HTTP/1.1" 200 1781 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-01 18:04:51
159.203.105.90	attack	[Sun Jul 12 16:51:46.263700 2020] [access_compat:error] [pid 3431161] [client 159.203.105.90:42324] AH01797: client denied by server configuration: /var/www/html/luke/wp-login.php, referer: http://lukegirvin.com/wp-login.php ...	2020-09-01 17:56:36
162.62.17.103	attackspam	" "	2020-09-01 18:22:36
82.65.27.68	attack	Invalid user admin from 82.65.27.68 port 37704	2020-09-01 18:05:09
139.99.125.230	attack	SmallBizIT.US 1 packets to tcp(22)	2020-09-01 18:25:28
217.23.10.20	attackbots	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-09-01T06:48:35Z and 2020-09-01T07:20:31Z	2020-09-01 18:23:15
49.88.112.115	attack	Sep 1 11:56:31 * sshd[11126]: Failed password for root from 49.88.112.115 port 26909 ssh2	2020-09-01 18:22:58
181.215.204.180	attackbots	(From eric@talkwithwebvisitor.com) Hey there, I just found your site, quick question… My name’s Eric, I found mccombchiropractor.com after doing a quick search – you showed up near the top of the rankings, so whatever you’re doing for SEO, looks like it’s working well. So here’s my question – what happens AFTER someone lands on your site? Anything? Research tells us at least 70% of the people who find your site, after a quick once-over, they disappear… forever. That means that all the work and effort you put into getting them to show up, goes down the tubes. Why would you want all that good work – and the great site you’ve built – go to waste? Because the odds are they’ll just skip over calling or even grabbing their phone, leaving you high and dry. But here’s a thought… what if you could make it super-simple for someone to raise their hand, say, “okay, let’s talk” without requiring them to even pull their cell phone from their pocket? You can – thanks to revolutionary new software	2020-09-01 18:33:35
103.238.68.57	attackspambots	20/9/1@01:58:00: FAIL: Alarm-Network address from=103.238.68.57 ...	2020-09-01 18:24:06
51.75.24.200	attackbotsspam	Invalid user jerry from 51.75.24.200 port 42472	2020-09-01 18:13:07
112.199.104.37	attack	2020-08-31 22:36:28.374970-0500 localhost smtpd[42821]: NOQUEUE: reject: RCPT from unknown[112.199.104.37]: 554 5.7.1 Service unavailable; Client host [112.199.104.37] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/112.199.104.37; from= to= proto=ESMTP helo=<37.104.199.112.clbrz.inet.static.eastern-tele.com>	2020-09-01 18:00:19
212.83.163.170	attackspam	[2020-09-01 06:11:40] NOTICE[1185] chan_sip.c: Registration from '"420"' failed for '212.83.163.170:7410' - Wrong password [2020-09-01 06:11:40] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-09-01T06:11:40.291-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="420",SessionID="0x7f10c41780b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.163.170/7410",Challenge="5f36b3de",ReceivedChallenge="5f36b3de",ReceivedHash="a019edeb2646f102638e3bd6cf9b085c" [2020-09-01 06:12:50] NOTICE[1185] chan_sip.c: Registration from '"428"' failed for '212.83.163.170:7854' - Wrong password [2020-09-01 06:12:50] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-09-01T06:12:50.865-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="428",SessionID="0x7f10c41780b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83. ...	2020-09-01 18:23:34
123.59.62.57	attackspam	Sep 1 10:40:35 server sshd[19961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.59.62.57 Sep 1 10:40:35 server sshd[19961]: Invalid user yxu from 123.59.62.57 port 52608 Sep 1 10:40:37 server sshd[19961]: Failed password for invalid user yxu from 123.59.62.57 port 52608 ssh2 Sep 1 10:43:58 server sshd[15686]: Invalid user sistemas from 123.59.62.57 port 47323 Sep 1 10:43:58 server sshd[15686]: Invalid user sistemas from 123.59.62.57 port 47323 ...	2020-09-01 18:14:15
120.151.240.77	attackspam	Automatic report - Port Scan Attack	2020-09-01 17:54:20

Recently Reported IPs

214.153.133.109	168.208.171.145	24.13.86.195	219.224.109.27
191.52.6.154	129.216.106.189	20.43.207.79	225.195.191.33
234.1.87.37	51.211.13.248	136.48.242.85	205.190.130.205
161.112.255.231	9.156.200.162	93.187.193.128	250.230.107.135
252.229.47.77	174.202.206.26	26.171.2.114	222.95.73.35