2.103.54.189 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United Kingdom of Great Britain and Northern Ireland (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.103.54.189
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16233
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.103.54.189.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025030601 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 07 07:11:14 CST 2025
;; MSG SIZE  rcvd: 105

Host info

189.54.103.2.in-addr.arpa domain name pointer host-2-103-54-189.as13285.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
189.54.103.2.in-addr.arpa	name = host-2-103-54-189.as13285.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.8.228.187	attackspam	Nov 10 17:12:28 mc1 kernel: \[4688633.029993\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.8.228.187 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=53117 PROTO=TCP SPT=42077 DPT=3387 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 10 17:17:53 mc1 kernel: \[4688958.762172\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.8.228.187 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=34264 PROTO=TCP SPT=42077 DPT=13388 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 10 17:21:31 mc1 kernel: \[4689176.905799\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.8.228.187 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=42691 PROTO=TCP SPT=42077 DPT=3388 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-11 00:35:08
217.146.30.27	attackbotsspam	Nov 10 13:09:58 firewall sshd[29152]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.146.30.27 Nov 10 13:09:58 firewall sshd[29152]: Invalid user comenzi from 217.146.30.27 Nov 10 13:10:00 firewall sshd[29152]: Failed password for invalid user comenzi from 217.146.30.27 port 49400 ssh2 ...	2019-11-11 00:41:43
59.13.68.241	attackspam	Caught in portsentry honeypot	2019-11-11 00:55:37
103.221.222.231	attack	WordPress login Brute force / Web App Attack on client site.	2019-11-11 00:37:57
58.225.73.106	attackbotsspam	11/10/2019-11:50:36.910715 58.225.73.106 Protocol: 6 ET SCAN Potential SSH Scan	2019-11-11 00:50:52
210.14.66.116	attackspam	NOQUEUE: reject: RCPT from unknown\[210.14.66.116\]: 554 5.7.1 Service unavailable\; host \[210.14.66.116\] blocked using sbl-xbl.spamhaus.org\; https://www.spamhaus.org/sbl/query/SBLCSS	2019-11-11 01:07:45
23.92.225.228	attackbotsspam	$f2bV_matches	2019-11-11 00:48:38
46.38.144.146	attack	Nov 10 18:06:33 vmanager6029 postfix/smtpd\[1147\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 10 18:07:10 vmanager6029 postfix/smtpd\[1147\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-11 01:08:59
149.56.177.248	attackspam	Nov 10 11:25:04 plusreed sshd[17536]: Invalid user b from 149.56.177.248 ...	2019-11-11 00:47:04
113.17.111.243	attackbots	2019-11-10T16:37:28.801969shield sshd\[20427\]: Invalid user Change_Me from 113.17.111.243 port 48416 2019-11-10T16:37:28.806516shield sshd\[20427\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.17.111.243 2019-11-10T16:37:31.347811shield sshd\[20427\]: Failed password for invalid user Change_Me from 113.17.111.243 port 48416 ssh2 2019-11-10T16:43:12.440357shield sshd\[20994\]: Invalid user foot from 113.17.111.243 port 56874 2019-11-10T16:43:12.444524shield sshd\[20994\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.17.111.243	2019-11-11 01:09:50
217.182.113.104	attack	Portscan or hack attempt detected by psad/fwsnort	2019-11-11 00:34:28
185.240.96.173	attack	Nov 10 17:23:01 vps691689 sshd[25335]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.240.96.173 Nov 10 17:23:03 vps691689 sshd[25335]: Failed password for invalid user hanna from 185.240.96.173 port 38177 ssh2 ...	2019-11-11 00:54:32
134.209.89.101	attackbotsspam	LGS,WP GET /wp-login.php GET /wp-login.php	2019-11-11 00:57:23
81.22.45.65	attackbots	Nov 10 17:27:50 mc1 kernel: \[4689555.670831\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.65 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=50843 PROTO=TCP SPT=50058 DPT=56944 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 10 17:31:00 mc1 kernel: \[4689745.440120\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.65 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=50330 PROTO=TCP SPT=50058 DPT=57046 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 10 17:35:02 mc1 kernel: \[4689987.736878\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.65 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=34595 PROTO=TCP SPT=50058 DPT=57043 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-11 00:38:47
118.24.19.178	attackspam	Automatic report - Banned IP Access	2019-11-11 00:34:48

Recently Reported IPs

247.134.57.237	73.224.2.184	75.85.77.112	147.196.55.182
167.52.67.202	147.144.254.41	31.25.175.55	19.155.37.12
161.88.81.142	19.96.52.239	67.78.64.228	197.130.31.19
219.198.80.19	17.159.54.179	232.52.76.196	89.154.93.73
180.213.133.9	44.130.79.251	193.231.217.52	40.202.17.131