103.56.149.45 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
103.56.149.191	attackbotsspam	Aug 25 11:49:13 v22019038103785759 sshd\[31377\]: Invalid user nc from 103.56.149.191 port 43340 Aug 25 11:49:13 v22019038103785759 sshd\[31377\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.149.191 Aug 25 11:49:15 v22019038103785759 sshd\[31377\]: Failed password for invalid user nc from 103.56.149.191 port 43340 ssh2 Aug 25 11:52:05 v22019038103785759 sshd\[31741\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.149.191 user=root Aug 25 11:52:07 v22019038103785759 sshd\[31741\]: Failed password for root from 103.56.149.191 port 39194 ssh2 ...	2020-08-25 18:53:20
103.56.149.139	attack	Apr 28 11:03:20 Tower sshd[32904]: Connection from 103.56.149.139 port 42712 on 192.168.10.220 port 22 rdomain "" Apr 28 11:03:21 Tower sshd[32904]: Failed password for root from 103.56.149.139 port 42712 ssh2 Apr 28 11:03:22 Tower sshd[32904]: Received disconnect from 103.56.149.139 port 42712:11: Bye Bye [preauth] Apr 28 11:03:22 Tower sshd[32904]: Disconnected from authenticating user root 103.56.149.139 port 42712 [preauth]	2020-04-29 01:28:10
103.56.149.139	attackbotsspam	(sshd) Failed SSH login from 103.56.149.139 (ID/Indonesia/-): 5 in the last 3600 secs	2020-04-22 02:42:53
103.56.149.139	attackspam	Bruteforce detected by fail2ban	2020-04-20 20:42:57
103.56.149.250	attackbots	Unauthorized connection attempt detected from IP address 103.56.149.250 to port 2220 [J]	2020-01-16 07:20:53
103.56.149.132	attackspambots	SSH/22 MH Probe, BF, Hack -	2019-12-26 02:47:03
103.56.149.132	attack	Dec 24 09:22:03 h2177944 sshd\[23563\]: Invalid user passwd444 from 103.56.149.132 port 52660 Dec 24 09:22:03 h2177944 sshd\[23563\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.149.132 Dec 24 09:22:04 h2177944 sshd\[23563\]: Failed password for invalid user passwd444 from 103.56.149.132 port 52660 ssh2 Dec 24 09:24:56 h2177944 sshd\[23635\]: Invalid user ts3ts3 from 103.56.149.132 port 52318 ...	2019-12-24 16:42:39
103.56.149.132	attack	Dec 22 17:33:13 ns381471 sshd[10854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.149.132 Dec 22 17:33:15 ns381471 sshd[10854]: Failed password for invalid user admin from 103.56.149.132 port 51770 ssh2	2019-12-23 00:33:24
103.56.149.119	attackbots	Dec 6 08:09:47 vps691689 sshd[2876]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.149.119 Dec 6 08:09:49 vps691689 sshd[2876]: Failed password for invalid user kessell from 103.56.149.119 port 51592 ssh2 ...	2019-12-06 15:39:02
103.56.149.119	attackspam	Dec 3 02:40:56 h2040555 sshd[19491]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.149.119 user=r.r Dec 3 02:40:59 h2040555 sshd[19491]: Failed password for r.r from 103.56.149.119 port 43470 ssh2 Dec 3 02:40:59 h2040555 sshd[19491]: Received disconnect from 103.56.149.119: 11: Bye Bye [preauth] Dec 3 02:53:21 h2040555 sshd[19673]: Invalid user pisarcik from 103.56.149.119 Dec 3 02:53:21 h2040555 sshd[19673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.149.119 Dec 3 02:53:24 h2040555 sshd[19673]: Failed password for invalid user pisarcik from 103.56.149.119 port 54108 ssh2 Dec 3 02:53:24 h2040555 sshd[19673]: Received disconnect from 103.56.149.119: 11: Bye Bye [preauth] Dec 3 03:00:54 h2040555 sshd[20061]: Invalid user canducci from 103.56.149.119 Dec 3 03:00:54 h2040555 sshd[20061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ru........ -------------------------------	2019-12-05 18:15:17
103.56.149.116	attackspam	Nov 21 09:19:04 server sshd\[19768\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.149.116 user=root Nov 21 09:19:06 server sshd\[19768\]: Failed password for root from 103.56.149.116 port 59270 ssh2 Nov 21 09:19:10 server sshd\[19769\]: Received disconnect from 103.56.149.116: 3: com.jcraft.jsch.JSchException: Auth fail Nov 21 09:19:23 server sshd\[19813\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.149.116 user=root Nov 21 09:19:25 server sshd\[19824\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.149.116 user=root ...	2019-11-21 22:30:28

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.56.149.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58896
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.56.149.45.			IN	A

;; AUTHORITY SECTION:
.			179	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022051902 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 20 10:37:47 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 45.149.56.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 45.149.56.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.249.118.113	attackspambots	445/tcp [2019-06-26]1pkt	2019-06-26 21:15:45
46.61.127.147	attackbots	23/tcp [2019-06-26]1pkt	2019-06-26 20:29:19
111.231.206.246	attackbotsspam	23/tcp [2019-06-26]1pkt	2019-06-26 20:40:12
111.90.144.30	attackspambots	proto=tcp . spt=45106 . dpt=25 . (listed on Blocklist de Jun 25) (702)	2019-06-26 21:14:11
2607:5300:60:2bb::1	attack	wp brute-force	2019-06-26 20:51:33
31.170.48.235	attack	Jun 26 05:28:14 rigel postfix/smtpd[4730]: connect from unknown[31.170.48.235] Jun 26 05:28:15 rigel postfix/smtpd[4730]: warning: unknown[31.170.48.235]: SASL CRAM-MD5 authentication failed: authentication failure Jun 26 05:28:16 rigel postfix/smtpd[4730]: warning: unknown[31.170.48.235]: SASL PLAIN authentication failed: authentication failure Jun 26 05:28:16 rigel postfix/smtpd[4730]: warning: unknown[31.170.48.235]: SASL LOGIN authentication failed: authentication failure ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=31.170.48.235	2019-06-26 20:56:42
120.229.42.59	attack	Jun 26 05:33:48 mxgate1 postfix/postscreen[23334]: CONNECT from [120.229.42.59]:1139 to [176.31.12.44]:25 Jun 26 05:33:48 mxgate1 postfix/dnsblog[23338]: addr 120.229.42.59 listed by domain zen.spamhaus.org as 127.0.0.4 Jun 26 05:33:48 mxgate1 postfix/dnsblog[23339]: addr 120.229.42.59 listed by domain cbl.abuseat.org as 127.0.0.2 Jun 26 05:33:54 mxgate1 postfix/postscreen[23334]: DNSBL rank 3 for [120.229.42.59]:1139 Jun x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=120.229.42.59	2019-06-26 21:10:49
60.169.114.213	attackbotsspam	Jun 26 05:24:05 mxgate1 postfix/postscreen[22819]: CONNECT from [60.169.114.213]:65192 to [176.31.12.44]:25 Jun 26 05:24:05 mxgate1 postfix/dnsblog[22820]: addr 60.169.114.213 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Jun 26 05:24:05 mxgate1 postfix/dnsblog[22823]: addr 60.169.114.213 listed by domain zen.spamhaus.org as 127.0.0.11 Jun 26 05:24:05 mxgate1 postfix/dnsblog[22823]: addr 60.169.114.213 listed by domain zen.spamhaus.org as 127.0.0.4 Jun 26 05:24:05 mxgate1 postfix/dnsblog[22824]: addr 60.169.114.213 listed by domain cbl.abuseat.org as 127.0.0.2 Jun 26 05:24:05 mxgate1 postfix/dnsblog[22821]: addr 60.169.114.213 listed by domain b.barracudacentral.org as 127.0.0.2 Jun 26 05:24:11 mxgate1 postfix/postscreen[22819]: DNSBL rank 5 for [60.169.114.213]:65192 Jun x@x Jun 26 05:26:07 mxgate1 postfix/postscreen[22819]: DISCONNECT [60.169.114.213]:65192 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=60.169.114.213	2019-06-26 20:49:45
201.150.88.176	attackspam	Excessive failed login attempts on port 587	2019-06-26 21:05:07
183.157.173.98	attack	TCP port 22 (SSH) attempt blocked by firewall. [2019-06-26 13:19:13]	2019-06-26 20:50:45
185.137.111.123	attackbotsspam	2019-06-26T18:14:15.197942ns1.unifynetsol.net postfix/smtpd\[21587\]: warning: unknown\[185.137.111.123\]: SASL LOGIN authentication failed: authentication failure 2019-06-26T18:14:54.584678ns1.unifynetsol.net postfix/smtpd\[20011\]: warning: unknown\[185.137.111.123\]: SASL LOGIN authentication failed: authentication failure 2019-06-26T18:15:29.967739ns1.unifynetsol.net postfix/smtpd\[16950\]: warning: unknown\[185.137.111.123\]: SASL LOGIN authentication failed: authentication failure 2019-06-26T18:16:06.020671ns1.unifynetsol.net postfix/smtpd\[20013\]: warning: unknown\[185.137.111.123\]: SASL LOGIN authentication failed: authentication failure 2019-06-26T18:16:41.819109ns1.unifynetsol.net postfix/smtpd\[20013\]: warning: unknown\[185.137.111.123\]: SASL LOGIN authentication failed: authentication failure	2019-06-26 20:53:07
23.244.43.90	attackbotsspam	19/6/25@23:42:14: FAIL: Alarm-Intrusion address from=23.244.43.90 ...	2019-06-26 20:27:57
113.160.166.141	attack	445/tcp [2019-06-26]1pkt	2019-06-26 20:55:16
112.85.42.176	attackspambots	2019-06-26T10:39:40.326436lon01.zurich-datacenter.net sshd\[11380\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.176 user=root 2019-06-26T10:39:43.102495lon01.zurich-datacenter.net sshd\[11380\]: Failed password for root from 112.85.42.176 port 14351 ssh2 2019-06-26T10:39:45.442457lon01.zurich-datacenter.net sshd\[11380\]: Failed password for root from 112.85.42.176 port 14351 ssh2 2019-06-26T10:39:48.190438lon01.zurich-datacenter.net sshd\[11380\]: Failed password for root from 112.85.42.176 port 14351 ssh2 2019-06-26T10:39:50.688369lon01.zurich-datacenter.net sshd\[11380\]: Failed password for root from 112.85.42.176 port 14351 ssh2 ...	2019-06-26 20:31:54
222.184.67.249	attackbotsspam	2019-06-26T05:39:53.611640mail.arvenenaske.de sshd[23470]: Invalid user admin from 222.184.67.249 port 50010 2019-06-26T05:39:53.617862mail.arvenenaske.de sshd[23470]: pam_sss(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.184.67.249 user=admin 2019-06-26T05:39:53.618801mail.arvenenaske.de sshd[23470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.184.67.249 2019-06-26T05:39:53.611640mail.arvenenaske.de sshd[23470]: Invalid user admin from 222.184.67.249 port 50010 2019-06-26T05:39:55.092219mail.arvenenaske.de sshd[23470]: Failed password for invalid user admin from 222.184.67.249 port 50010 ssh2 2019-06-26T05:39:55.436641mail.arvenenaske.de sshd[23470]: pam_sss(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.184.67.249 user=admin 2019-06-26T05:39:53.617862mail.arvenenaske.de sshd[23470]: pam_sss(sshd:auth): authentication failure; logname= uid=0 euid=0 tt........ ------------------------------	2019-06-26 21:13:39

Recently Reported IPs

103.56.148.46	103.56.152.15	103.56.154.188	103.56.156.37
103.56.225.123	103.56.55.190	103.56.6.244	103.56.76.195
103.57.150.5	103.57.189.159	103.57.211.13	103.57.220.130
103.57.220.184	103.57.222.79	103.57.223.148	103.57.223.29
103.57.223.31	103.57.231.187	103.57.251.34	103.57.26.253