199.103.6.55 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
199.103.62.108	attackspam	3389BruteforceFW21	2019-08-09 02:48:49
199.103.62.108	attack	Many RDP login attempts detected by IDS script	2019-07-15 13:08:10

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 199.103.6.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13274
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;199.103.6.55.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012201 1800 900 604800 86400

;; Query time: 40 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 23 11:38:31 CST 2025
;; MSG SIZE  rcvd: 105

Host info

55.6.103.199.in-addr.arpa domain name pointer 199-103-6-55.ip.prominic.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
55.6.103.199.in-addr.arpa	name = 199-103-6-55.ip.prominic.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
171.239.166.239	attackbots	Port probing on unauthorized port 9530	2020-03-01 13:08:43
212.86.61.117	attack	SS5,DEF GET /phpmyadmin/	2020-03-01 13:14:42
93.57.43.233	attack	Unauthorized connection attempt detected from IP address 93.57.43.233 to port 81 [J]	2020-03-01 13:48:57
222.186.42.136	attack	Mar 1 05:27:43 localhost sshd[113505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.136 user=root Mar 1 05:27:45 localhost sshd[113505]: Failed password for root from 222.186.42.136 port 46823 ssh2 Mar 1 05:27:47 localhost sshd[113505]: Failed password for root from 222.186.42.136 port 46823 ssh2 Mar 1 05:27:43 localhost sshd[113505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.136 user=root Mar 1 05:27:45 localhost sshd[113505]: Failed password for root from 222.186.42.136 port 46823 ssh2 Mar 1 05:27:47 localhost sshd[113505]: Failed password for root from 222.186.42.136 port 46823 ssh2 Mar 1 05:27:43 localhost sshd[113505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.136 user=root Mar 1 05:27:45 localhost sshd[113505]: Failed password for root from 222.186.42.136 port 46823 ssh2 Mar 1 05:27:47 localhost sshd[11 ...	2020-03-01 13:29:02
194.26.29.130	attackspam	Mar 1 05:58:23 debian-2gb-nbg1-2 kernel: \[5297890.040063\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.26.29.130 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=38167 PROTO=TCP SPT=8080 DPT=6533 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-01 13:48:30
37.49.231.127	attack	Mar 1 05:59:03 debian-2gb-nbg1-2 kernel: \[5297930.580956\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=37.49.231.127 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=53810 PROTO=TCP SPT=54004 DPT=5038 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-01 13:05:32
54.39.22.191	attackspambots	Mar 1 06:25:01 localhost sshd\[23122\]: Invalid user paul from 54.39.22.191 port 45990 Mar 1 06:25:01 localhost sshd\[23122\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.22.191 Mar 1 06:25:03 localhost sshd\[23122\]: Failed password for invalid user paul from 54.39.22.191 port 45990 ssh2	2020-03-01 13:40:19
222.186.15.10	attackbots	Unauthorized connection attempt detected from IP address 222.186.15.10 to port 22 [J]	2020-03-01 13:33:10
141.136.79.244	attackbots	Honeypot attack, port: 445, PTR: host-244.79.136.141.ucom.am.	2020-03-01 13:30:22
222.186.173.180	attackspam	Mar 1 07:29:05 ift sshd\[25964\]: Failed password for root from 222.186.173.180 port 32368 ssh2Mar 1 07:29:08 ift sshd\[25964\]: Failed password for root from 222.186.173.180 port 32368 ssh2Mar 1 07:29:19 ift sshd\[25964\]: Failed password for root from 222.186.173.180 port 32368 ssh2Mar 1 07:29:27 ift sshd\[25989\]: Failed password for root from 222.186.173.180 port 41884 ssh2Mar 1 07:29:30 ift sshd\[25989\]: Failed password for root from 222.186.173.180 port 41884 ssh2 ...	2020-03-01 13:32:08
107.170.244.110	attack	Mar 1 04:44:35 server sshd[2892017]: Failed password for invalid user irc from 107.170.244.110 port 59546 ssh2 Mar 1 05:50:14 server sshd[2909263]: Failed password for invalid user docker from 107.170.244.110 port 40922 ssh2 Mar 1 05:58:26 server sshd[2911102]: Failed password for invalid user svnuser from 107.170.244.110 port 54396 ssh2	2020-03-01 13:44:53
5.101.156.104	attackspam	5.101.156.104 - - \[01/Mar/2020:05:58:51 +0100\] "POST /wp-login.php HTTP/1.0" 200 6978 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 5.101.156.104 - - \[01/Mar/2020:05:58:52 +0100\] "POST /wp-login.php HTTP/1.0" 200 6947 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 5.101.156.104 - - \[01/Mar/2020:05:58:53 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-03-01 13:18:33
45.136.108.65	attackspam	Fail2Ban Ban Triggered	2020-03-01 13:13:34
195.154.45.194	attack	[2020-03-01 00:12:13] NOTICE[1148][C-0000d395] chan_sip.c: Call from '' (195.154.45.194:55565) to extension '555011972592277524' rejected because extension not found in context 'public'. [2020-03-01 00:12:13] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-01T00:12:13.849-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="555011972592277524",SessionID="0x7fd82ce0e5f8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/195.154.45.194/55565",ACLName="no_extension_match" [2020-03-01 00:16:42] NOTICE[1148][C-0000d399] chan_sip.c: Call from '' (195.154.45.194:51110) to extension '5555011972592277524' rejected because extension not found in context 'public'. [2020-03-01 00:16:42] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-01T00:16:42.163-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="5555011972592277524",SessionID="0x7fd82c4d9f48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteA ...	2020-03-01 13:19:00
79.113.161.137	attack	Unauthorized connection attempt detected from IP address 79.113.161.137 to port 88 [J]	2020-03-01 13:33:58

Recently Reported IPs

218.180.248.64	60.251.252.14	92.47.29.84	111.88.239.247
123.143.215.217	80.9.251.90	252.157.76.139	250.42.83.232
227.102.72.74	161.81.171.72	203.67.23.164	121.171.143.231
185.136.162.108	80.105.55.208	156.179.244.67	210.180.162.193
59.152.84.29	161.126.142.213	72.221.191.248	231.136.232.185