103.56.149.45 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
103.56.149.191	attackbotsspam	Aug 25 11:49:13 v22019038103785759 sshd\[31377\]: Invalid user nc from 103.56.149.191 port 43340 Aug 25 11:49:13 v22019038103785759 sshd\[31377\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.149.191 Aug 25 11:49:15 v22019038103785759 sshd\[31377\]: Failed password for invalid user nc from 103.56.149.191 port 43340 ssh2 Aug 25 11:52:05 v22019038103785759 sshd\[31741\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.149.191 user=root Aug 25 11:52:07 v22019038103785759 sshd\[31741\]: Failed password for root from 103.56.149.191 port 39194 ssh2 ...	2020-08-25 18:53:20
103.56.149.139	attack	Apr 28 11:03:20 Tower sshd[32904]: Connection from 103.56.149.139 port 42712 on 192.168.10.220 port 22 rdomain "" Apr 28 11:03:21 Tower sshd[32904]: Failed password for root from 103.56.149.139 port 42712 ssh2 Apr 28 11:03:22 Tower sshd[32904]: Received disconnect from 103.56.149.139 port 42712:11: Bye Bye [preauth] Apr 28 11:03:22 Tower sshd[32904]: Disconnected from authenticating user root 103.56.149.139 port 42712 [preauth]	2020-04-29 01:28:10
103.56.149.139	attackbotsspam	(sshd) Failed SSH login from 103.56.149.139 (ID/Indonesia/-): 5 in the last 3600 secs	2020-04-22 02:42:53
103.56.149.139	attackspam	Bruteforce detected by fail2ban	2020-04-20 20:42:57
103.56.149.250	attackbots	Unauthorized connection attempt detected from IP address 103.56.149.250 to port 2220 [J]	2020-01-16 07:20:53
103.56.149.132	attackspambots	SSH/22 MH Probe, BF, Hack -	2019-12-26 02:47:03
103.56.149.132	attack	Dec 24 09:22:03 h2177944 sshd\[23563\]: Invalid user passwd444 from 103.56.149.132 port 52660 Dec 24 09:22:03 h2177944 sshd\[23563\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.149.132 Dec 24 09:22:04 h2177944 sshd\[23563\]: Failed password for invalid user passwd444 from 103.56.149.132 port 52660 ssh2 Dec 24 09:24:56 h2177944 sshd\[23635\]: Invalid user ts3ts3 from 103.56.149.132 port 52318 ...	2019-12-24 16:42:39
103.56.149.132	attack	Dec 22 17:33:13 ns381471 sshd[10854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.149.132 Dec 22 17:33:15 ns381471 sshd[10854]: Failed password for invalid user admin from 103.56.149.132 port 51770 ssh2	2019-12-23 00:33:24
103.56.149.119	attackbots	Dec 6 08:09:47 vps691689 sshd[2876]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.149.119 Dec 6 08:09:49 vps691689 sshd[2876]: Failed password for invalid user kessell from 103.56.149.119 port 51592 ssh2 ...	2019-12-06 15:39:02
103.56.149.119	attackspam	Dec 3 02:40:56 h2040555 sshd[19491]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.149.119 user=r.r Dec 3 02:40:59 h2040555 sshd[19491]: Failed password for r.r from 103.56.149.119 port 43470 ssh2 Dec 3 02:40:59 h2040555 sshd[19491]: Received disconnect from 103.56.149.119: 11: Bye Bye [preauth] Dec 3 02:53:21 h2040555 sshd[19673]: Invalid user pisarcik from 103.56.149.119 Dec 3 02:53:21 h2040555 sshd[19673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.149.119 Dec 3 02:53:24 h2040555 sshd[19673]: Failed password for invalid user pisarcik from 103.56.149.119 port 54108 ssh2 Dec 3 02:53:24 h2040555 sshd[19673]: Received disconnect from 103.56.149.119: 11: Bye Bye [preauth] Dec 3 03:00:54 h2040555 sshd[20061]: Invalid user canducci from 103.56.149.119 Dec 3 03:00:54 h2040555 sshd[20061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ru........ -------------------------------	2019-12-05 18:15:17
103.56.149.116	attackspam	Nov 21 09:19:04 server sshd\[19768\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.149.116 user=root Nov 21 09:19:06 server sshd\[19768\]: Failed password for root from 103.56.149.116 port 59270 ssh2 Nov 21 09:19:10 server sshd\[19769\]: Received disconnect from 103.56.149.116: 3: com.jcraft.jsch.JSchException: Auth fail Nov 21 09:19:23 server sshd\[19813\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.149.116 user=root Nov 21 09:19:25 server sshd\[19824\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.149.116 user=root ...	2019-11-21 22:30:28

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.56.149.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58896
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.56.149.45.			IN	A

;; AUTHORITY SECTION:
.			179	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022051902 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 20 10:37:47 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 45.149.56.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 45.149.56.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.195.99	attack	Apr 24 14:31:03 vps647732 sshd[16746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.195.99 Apr 24 14:31:05 vps647732 sshd[16746]: Failed password for invalid user jira from 106.12.195.99 port 39120 ssh2 ...	2020-04-25 00:37:33
200.88.48.99	attackspambots	Apr 24 14:51:03 ns382633 sshd\[3088\]: Invalid user qwe123 from 200.88.48.99 port 55684 Apr 24 14:51:03 ns382633 sshd\[3088\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.88.48.99 Apr 24 14:51:05 ns382633 sshd\[3088\]: Failed password for invalid user qwe123 from 200.88.48.99 port 55684 ssh2 Apr 24 15:01:37 ns382633 sshd\[5420\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.88.48.99 user=root Apr 24 15:01:39 ns382633 sshd\[5420\]: Failed password for root from 200.88.48.99 port 33190 ssh2	2020-04-25 00:44:45
188.131.244.11	attackbots	Apr 24 17:31:51 gw1 sshd[28584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.244.11 Apr 24 17:31:53 gw1 sshd[28584]: Failed password for invalid user oracle from 188.131.244.11 port 49330 ssh2 ...	2020-04-25 01:18:42
121.204.204.240	attackbots	Apr 24 14:26:09 vps647732 sshd[16607]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.204.204.240 Apr 24 14:26:12 vps647732 sshd[16607]: Failed password for invalid user packer from 121.204.204.240 port 39782 ssh2 ...	2020-04-25 00:41:12
180.180.170.202	attackbotsspam	failed_logins	2020-04-25 00:56:25
211.159.162.81	attackbots	SSH bruteforce	2020-04-25 01:18:25
74.208.214.168	attackbots	Apr 24 11:50:52 zimbra sshd[726]: Invalid user vagrant from 74.208.214.168 Apr 24 11:50:52 zimbra sshd[726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.208.214.168 Apr 24 11:50:54 zimbra sshd[726]: Failed password for invalid user vagrant from 74.208.214.168 port 42396 ssh2 Apr 24 11:50:54 zimbra sshd[726]: Received disconnect from 74.208.214.168 port 42396:11: Bye Bye [preauth] Apr 24 11:50:54 zimbra sshd[726]: Disconnected from 74.208.214.168 port 42396 [preauth] Apr 24 12:02:12 zimbra sshd[9582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.208.214.168 user=r.r Apr 24 12:02:14 zimbra sshd[9582]: Failed password for r.r from 74.208.214.168 port 51408 ssh2 Apr 24 12:02:14 zimbra sshd[9582]: Received disconnect from 74.208.214.168 port 51408:11: Bye Bye [preauth] Apr 24 12:02:14 zimbra sshd[9582]: Disconnected from 74.208.214.168 port 51408 [preauth] Apr 24 12:07:32 zimbra ssh........ -------------------------------	2020-04-25 01:05:44
221.141.110.215	attackbots	2020-04-24T12:51:09.035489abusebot-8.cloudsearch.cf sshd[29845]: Invalid user hei from 221.141.110.215 port 38294 2020-04-24T12:51:09.045311abusebot-8.cloudsearch.cf sshd[29845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.141.110.215 2020-04-24T12:51:09.035489abusebot-8.cloudsearch.cf sshd[29845]: Invalid user hei from 221.141.110.215 port 38294 2020-04-24T12:51:10.814589abusebot-8.cloudsearch.cf sshd[29845]: Failed password for invalid user hei from 221.141.110.215 port 38294 ssh2 2020-04-24T12:56:51.743516abusebot-8.cloudsearch.cf sshd[30369]: Invalid user cam from 221.141.110.215 port 60922 2020-04-24T12:56:51.752362abusebot-8.cloudsearch.cf sshd[30369]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.141.110.215 2020-04-24T12:56:51.743516abusebot-8.cloudsearch.cf sshd[30369]: Invalid user cam from 221.141.110.215 port 60922 2020-04-24T12:56:53.805363abusebot-8.cloudsearch.cf sshd[30369]: Fa ...	2020-04-25 00:35:24
222.186.173.215	attack	Apr 24 18:44:49 vps sshd[612879]: Failed password for root from 222.186.173.215 port 14588 ssh2 Apr 24 18:44:52 vps sshd[612879]: Failed password for root from 222.186.173.215 port 14588 ssh2 Apr 24 18:44:56 vps sshd[612879]: Failed password for root from 222.186.173.215 port 14588 ssh2 Apr 24 18:44:59 vps sshd[612879]: Failed password for root from 222.186.173.215 port 14588 ssh2 Apr 24 18:45:02 vps sshd[612879]: Failed password for root from 222.186.173.215 port 14588 ssh2 ...	2020-04-25 00:47:09
46.198.212.139	attackspambots	DATE:2020-04-24 14:04:22, IP:46.198.212.139, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-04-25 00:48:38
103.61.37.231	attackspam	20 attempts against mh-ssh on echoip	2020-04-25 00:57:24
46.166.133.162	attackbotsspam	Port 22 Scan, PTR: .	2020-04-25 01:01:29
102.44.242.90	attack	20/4/24@08:03:58: FAIL: Alarm-Network address from=102.44.242.90 ...	2020-04-25 01:06:41
182.50.132.88	attackbotsspam	Detected by ModSecurity. Request URI: /bg/xmlrpc.php	2020-04-25 01:10:43
142.44.160.173	attackbotsspam	2020-04-24T10:57:55.896845linuxbox-skyline sshd[37988]: Invalid user afarnes from 142.44.160.173 port 34916 ...	2020-04-25 01:08:47

Recently Reported IPs

103.56.148.46	103.56.152.15	103.56.154.188	103.56.156.37
103.56.225.123	103.56.55.190	103.56.6.244	103.56.76.195
103.57.150.5	103.57.189.159	103.57.211.13	103.57.220.130
103.57.220.184	103.57.222.79	103.57.223.148	103.57.223.29
103.57.223.31	103.57.231.187	103.57.251.34	103.57.26.253