160.124.103.55

Basic Info

City: unknown

Region: unknown

Country: South Africa

Internet Service Provider: Posix Systems (Pty) Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Automatic report - Banned IP Access	2020-10-13 23:12:48
attack	Automatic report - Banned IP Access	2020-10-13 14:30:35
attack	2020-10-12T09:14:24.595560correo.[domain] sshd[39340]: Invalid user vern from 160.124.103.55 port 35742 2020-10-12T09:14:27.041629correo.[domain] sshd[39340]: Failed password for invalid user vern from 160.124.103.55 port 35742 ssh2 2020-10-12T09:30:52.227128correo.[domain] sshd[11811]: Invalid user com from 160.124.103.55 port 50920 ...	2020-10-13 07:11:26
attackbots	(sshd) Failed SSH login from 160.124.103.55 (HK/Hong Kong/-): 5 in the last 3600 secs	2020-10-04 04:31:39
attack	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-10-03 20:38:18
attack	Oct 3 05:28:26 abendstille sshd\[29296\]: Invalid user service from 160.124.103.55 Oct 3 05:28:26 abendstille sshd\[29296\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.124.103.55 Oct 3 05:28:29 abendstille sshd\[29296\]: Failed password for invalid user service from 160.124.103.55 port 36864 ssh2 Oct 3 05:31:38 abendstille sshd\[32475\]: Invalid user josh from 160.124.103.55 Oct 3 05:31:38 abendstille sshd\[32475\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.124.103.55 ...	2020-10-03 12:03:43
attackbotsspam	Oct 2 22:34:24 h1745522 sshd[17980]: Invalid user dev from 160.124.103.55 port 56864 Oct 2 22:34:24 h1745522 sshd[17980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.124.103.55 Oct 2 22:34:24 h1745522 sshd[17980]: Invalid user dev from 160.124.103.55 port 56864 Oct 2 22:34:27 h1745522 sshd[17980]: Failed password for invalid user dev from 160.124.103.55 port 56864 ssh2 Oct 2 22:38:05 h1745522 sshd[18348]: Invalid user william from 160.124.103.55 port 35818 Oct 2 22:38:05 h1745522 sshd[18348]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.124.103.55 Oct 2 22:38:05 h1745522 sshd[18348]: Invalid user william from 160.124.103.55 port 35818 Oct 2 22:38:06 h1745522 sshd[18348]: Failed password for invalid user william from 160.124.103.55 port 35818 ssh2 Oct 2 22:41:55 h1745522 sshd[18809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.124.103.55 ...	2020-10-03 06:45:58
attackspam	Banned for a week because repeated abuses, for example SSH, but not only	2020-09-22 21:19:34
attackspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-21 22:11:41
attackbots	$f2bV_matches	2020-09-21 13:58:27
attack	Invalid user dodsserver from 160.124.103.55 port 57004	2020-09-21 05:47:36
attackspam	Lines containing failures of 160.124.103.55 Sep 15 18:44:10 cdb sshd[18235]: Invalid user cooperrider from 160.124.103.55 port 36666 Sep 15 18:44:10 cdb sshd[18235]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.124.103.55 Sep 15 18:44:12 cdb sshd[18235]: Failed password for invalid user cooperrider from 160.124.103.55 port 36666 ssh2 Sep 15 18:44:13 cdb sshd[18235]: Received disconnect from 160.124.103.55 port 36666:11: Bye Bye [preauth] Sep 15 18:44:13 cdb sshd[18235]: Disconnected from invalid user cooperrider 160.124.103.55 port 36666 [preauth] Sep 15 18:49:09 cdb sshd[18670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.124.103.55 user=r.r Sep 15 18:49:11 cdb sshd[18670]: Failed password for r.r from 160.124.103.55 port 59576 ssh2 Sep 15 18:49:11 cdb sshd[18670]: Received disconnect from 160.124.103.55 port 59576:11: Bye Bye [preauth] Sep 15 18:49:11 cdb sshd[18670]: Discon........ ------------------------------	2020-09-17 01:38:21
attack	DATE:2020-09-16 10:44:03, IP:160.124.103.55, PORT:ssh SSH brute force auth (docker-dc)	2020-09-16 17:55:11

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 160.124.103.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22319
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;160.124.103.55.			IN	A

;; AUTHORITY SECTION:
.			319	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020091600 1800 900 604800 86400

;; Query time: 71 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 16 17:55:04 CST 2020
;; MSG SIZE  rcvd: 118

Host info

55.103.124.160.in-addr.arpa has no PTR record

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 55.103.124.160.in-addr.arpa.: No answer

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
201.150.35.118	attack	Dec 5 20:14:19 odroid64 sshd\[26355\]: Invalid user admin from 201.150.35.118 Dec 5 20:14:19 odroid64 sshd\[26355\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.150.35.118 Dec 5 20:14:22 odroid64 sshd\[26355\]: Failed password for invalid user admin from 201.150.35.118 port 63497 ssh2 ...	2019-10-18 07:27:55
116.102.126.179	attackbots	Automatic report - Port Scan Attack	2019-10-18 07:47:41
212.34.226.173	attack	Oct 17 17:02:54 debian sshd\[9261\]: Invalid user ubuntu from 212.34.226.173 port 46400 Oct 17 17:02:54 debian sshd\[9261\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.34.226.173 Oct 17 17:02:56 debian sshd\[9261\]: Failed password for invalid user ubuntu from 212.34.226.173 port 46400 ssh2 ...	2019-10-18 07:29:44
201.149.34.134	attack	Mar 25 01:11:46 odroid64 sshd\[3337\]: User root from 201.149.34.134 not allowed because not listed in AllowUsers Mar 25 01:11:46 odroid64 sshd\[3337\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.149.34.134 user=root Mar 25 01:11:48 odroid64 sshd\[3337\]: Failed password for invalid user root from 201.149.34.134 port 27330 ssh2 ...	2019-10-18 07:31:59
162.144.109.122	attack	Oct 17 22:33:44 vps691689 sshd[21932]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.144.109.122 Oct 17 22:33:46 vps691689 sshd[21932]: Failed password for invalid user god from 162.144.109.122 port 54986 ssh2 ...	2019-10-18 07:20:20
222.186.180.17	attack	10/17/2019-19:49:19.662509 222.186.180.17 Protocol: 6 ET SCAN Potential SSH Scan	2019-10-18 07:51:21
51.255.86.223	attackbots	Oct 17 21:19:23 ncomp postfix/smtpd[5316]: warning: unknown[51.255.86.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 17 21:34:24 ncomp postfix/smtpd[5483]: warning: unknown[51.255.86.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 17 21:49:25 ncomp postfix/smtpd[5686]: warning: unknown[51.255.86.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-10-18 07:37:04
124.47.14.14	attackspambots	SSH Brute Force, server-1 sshd[26590]: Failed password for invalid user git from 124.47.14.14 port 38474 ssh2	2019-10-18 07:47:19
216.57.226.2	attackbotsspam	WordPress XMLRPC scan :: 216.57.226.2 0.048 BYPASS [18/Oct/2019:06:49:05 1100] [censored_4] "POST /xmlrpc.php HTTP/1.1" 200 413 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-18 07:52:08
203.159.249.215	attackbotsspam	2019-10-18T03:57:47.261485abusebot-5.cloudsearch.cf sshd\[14671\]: Invalid user support from 203.159.249.215 port 49044	2019-10-18 12:01:15
201.16.140.49	attack	Oct 30 21:40:17 odroid64 sshd\[30242\]: Invalid user maja from 201.16.140.49 Oct 30 21:40:17 odroid64 sshd\[30242\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.16.140.49 Oct 30 21:40:19 odroid64 sshd\[30242\]: Failed password for invalid user maja from 201.16.140.49 port 57476 ssh2 Nov 3 04:06:23 odroid64 sshd\[16694\]: Invalid user info from 201.16.140.49 Nov 3 04:06:23 odroid64 sshd\[16694\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.16.140.49 Nov 3 04:06:25 odroid64 sshd\[16694\]: Failed password for invalid user info from 201.16.140.49 port 53942 ssh2 Nov 13 14:09:31 odroid64 sshd\[10874\]: User mysql from 201.16.140.49 not allowed because not listed in AllowUsers Nov 13 14:09:31 odroid64 sshd\[10874\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.16.140.49 user=mysql Nov 13 14:09:33 odroid64 sshd\[10874\]: Failed password fo ...	2019-10-18 07:21:06
222.186.173.238	attackspambots	Oct 17 19:32:25 xentho sshd[3459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.238 user=root Oct 17 19:32:27 xentho sshd[3459]: Failed password for root from 222.186.173.238 port 7828 ssh2 Oct 17 19:32:31 xentho sshd[3459]: Failed password for root from 222.186.173.238 port 7828 ssh2 Oct 17 19:32:25 xentho sshd[3459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.238 user=root Oct 17 19:32:27 xentho sshd[3459]: Failed password for root from 222.186.173.238 port 7828 ssh2 Oct 17 19:32:31 xentho sshd[3459]: Failed password for root from 222.186.173.238 port 7828 ssh2 Oct 17 19:32:25 xentho sshd[3459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.238 user=root Oct 17 19:32:27 xentho sshd[3459]: Failed password for root from 222.186.173.238 port 7828 ssh2 Oct 17 19:32:31 xentho sshd[3459]: Failed password for root from 222.1 ...	2019-10-18 07:35:45
201.147.183.55	attack	Jan 4 10:13:54 odroid64 sshd\[6978\]: User root from 201.147.183.55 not allowed because not listed in AllowUsers Jan 4 10:13:54 odroid64 sshd\[6978\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.147.183.55 user=root Jan 4 10:13:56 odroid64 sshd\[6978\]: Failed password for invalid user root from 201.147.183.55 port 44372 ssh2 Mar 5 17:59:51 odroid64 sshd\[28734\]: Invalid user t7inst from 201.147.183.55 Mar 5 17:59:51 odroid64 sshd\[28734\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.147.183.55 Mar 5 17:59:53 odroid64 sshd\[28734\]: Failed password for invalid user t7inst from 201.147.183.55 port 47904 ssh2 Mar 7 10:20:18 odroid64 sshd\[20367\]: Invalid user usuario from 201.147.183.55 Mar 7 10:20:18 odroid64 sshd\[20367\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.147.183.55 Mar 7 10:20:21 odroid64 sshd\[20367\]: Failed p ...	2019-10-18 07:49:49
207.107.67.67	attackbotsspam	Oct 18 01:02:57 MK-Soft-VM3 sshd[27484]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.107.67.67 Oct 18 01:02:59 MK-Soft-VM3 sshd[27484]: Failed password for invalid user punisher from 207.107.67.67 port 41806 ssh2 ...	2019-10-18 07:38:34
201.148.145.244	attackbots	Jan 11 09:54:05 odroid64 sshd\[1861\]: User root from 201.148.145.244 not allowed because not listed in AllowUsers Jan 11 09:54:05 odroid64 sshd\[1861\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.148.145.244 user=root Jan 11 09:54:08 odroid64 sshd\[1861\]: Failed password for invalid user root from 201.148.145.244 port 50380 ssh2 Jan 13 22:51:27 odroid64 sshd\[24706\]: Invalid user user3 from 201.148.145.244 Jan 13 22:51:27 odroid64 sshd\[24706\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.148.145.244 Jan 13 22:51:28 odroid64 sshd\[24706\]: Failed password for invalid user user3 from 201.148.145.244 port 56138 ssh2 Jan 16 07:30:52 odroid64 sshd\[6852\]: Invalid user admin from 201.148.145.244 Jan 16 07:30:52 odroid64 sshd\[6852\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.148.145.244 Jan 16 07:30:54 odroid64 sshd\[6852\]: Failed ...	2019-10-18 07:41:51

Recently Reported IPs

186.154.32.104	185.195.24.145	162.241.65.44	202.47.37.153
78.1.91.130	192.154.227.254	125.30.113.183	194.87.138.143
140.143.25.149	111.227.233.75	211.104.20.145	155.94.196.193
110.191.211.25	45.95.119.232	90.53.13.147	194.206.202.63
60.254.49.72	27.7.129.27	189.113.140.205	56.124.64.203