JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.49.238.64

103.49.238.64 was found in our database!

This IP was reported 102 times. Confidence of Abuse is 100%: ?

100%

ISP	PT Cloud Hosting Indonesia
Usage Type	Data Center/Web Hosting/Transit
ASN	AS136052
Hostname(s)	ip103-49-238-64.cloudhost.web.id
Domain Name	cloudhost.web.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.49.238.64

Whois 103.49.238.64

IP Abuse Reports for 103.49.238.64:

This IP address has been reported a total of 102 times from 55 distinct sources. 103.49.238.64 was first reported on May 25th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 aks4226	2026-06-04 01:53:40 (2 hours ago)	Brute force on SSH.	SSH Brute-Force
🇺🇸 brycemaxheimer	2026-06-03 13:50:01 (14 hours ago)	Cowrie SSH honeypot: 6 events in 10m window 2026-06-03T13:40:00+00:00. Users tried: 345gs5662d34,roo ... show more Cowrie SSH honeypot: 6 events in 10m window 2026-06-03T13:40:00+00:00. Users tried: 345gs5662d34,root. Commands: cd ~; chattr -ia .ssh; lockr -ia .ssh ; cd ~ && rm -rf .ssh && mkdir .ssh && echo "ssh-rsa AAAAB3NzaC1yc2EAAAABJQAAAQEArDp4cun2lhr4KUhBGE7VvAcwdli2a8dbnrTOrbMz1+5O73fcBOx8NVbUT0bUanUV9tJ2/9p7+vD0EpZ3Tz/+0kX34uAx1RV/75GVOmNx+9EuWOnvNoaJe0QXx show less	Hacking Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-03 07:57:09 (20 hours ago)	(sshd) Failed SSH login from 103.49.238.64 (ID/Indonesia/ip103-49-238-64.cloudhost.web.id): 5 in the ... show more (sshd) Failed SSH login from 103.49.238.64 (ID/Indonesia/ip103-49-238-64.cloudhost.web.id): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Jun 3 02:54:40 15039 sshd[3682]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.49.238.64 user=root Jun 3 02:54:42 15039 sshd[3682]: Failed password for root from 103.49.238.64 port 58368 ssh2 Jun 3 02:56:32 15039 sshd[4604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.49.238.64 user=root Jun 3 02:56:34 15039 sshd[4604]: Failed password for root from 103.49.238.64 port 33242 ssh2 Jun 3 02:56:52 15039 sshd[4713]: Invalid user test2 from 103.49.238.64 port 48466 show less	Brute-Force SSH
🇩🇪 kreativstrecke	2026-06-02 22:56:48 (1 day ago)	Jun 3 00:52:24 srv05 sshd[1222716]: Invalid user jonathan from 103.49.238.64 port 36980 Jun 3 00:5 ... show more Jun 3 00:52:24 srv05 sshd[1222716]: Invalid user jonathan from 103.49.238.64 port 36980 Jun 3 00:54:39 srv05 sshd[1222775]: Invalid user support from 103.49.238.64 port 49586 Jun 3 00:54:59 srv05 sshd[1222780]: Invalid user dino from 103.49.238.64 port 33004 Jun 3 00:56:27 srv05 sshd[1222930]: Invalid user spring from 103.49.238.64 port 38680 Jun 3 00:56:47 srv05 sshd[1222932]: Invalid user debian from 103.49.238.64 port 41288 ... show less	Brute-Force
🇩🇪 Wuck	2026-06-02 22:54:56 (1 day ago)	Jun 3 00:46:10 Torux sshd[652563]: Failed password for invalid user jonathan from 103.49.238.64 por ... show more Jun 3 00:46:10 Torux sshd[652563]: Failed password for invalid user jonathan from 103.49.238.64 port 48914 ssh2 Jun 3 00:54:35 Torux sshd[660483]: Invalid user support from 103.49.238.64 port 60184 Jun 3 00:54:35 Torux sshd[660483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.49.238.64 Jun 3 00:54:37 Torux sshd[660483]: Failed password for invalid user support from 103.49.238.64 port 60184 ssh2 Jun 3 00:54:55 Torux sshd[660788]: Invalid user dino from 103.49.238.64 port 45634 ... show less	Brute-Force SSH
🇺🇸 Runlevel0	2026-06-02 19:54:26 (1 day ago)	Too many failed attempts / attacks from 103.49.238.64	Brute-Force FTP Brute-Force Port Scan
🇺🇸 bigscoots.com	2026-06-02 13:48:55 (1 day ago)	(sshd) Failed SSH login from 103.49.238.64 (ID/Indonesia/ip103-49-238-64.cloudhost.web.id): 5 in the ... show more (sshd) Failed SSH login from 103.49.238.64 (ID/Indonesia/ip103-49-238-64.cloudhost.web.id): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Jun 2 08:37:18 14260 sshd[5632]: Invalid user dev from 103.49.238.64 port 40088 Jun 2 08:37:20 14260 sshd[5632]: Failed password for invalid user dev from 103.49.238.64 port 40088 ssh2 Jun 2 08:48:17 14260 sshd[10873]: Invalid user sites from 103.49.238.64 port 36384 Jun 2 08:48:19 14260 sshd[10873]: Failed password for invalid user sites from 103.49.238.64 port 36384 ssh2 Jun 2 08:48:45 14260 sshd[11015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.49.238.64 user=root show less	Brute-Force SSH
🇩🇪 licen777	2026-06-02 07:37:31 (1 day ago)	Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-02T07:33:12Z and 2026-06-0 ... show more Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-02T07:33:12Z and 2026-06-02T07:37:30Z show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-02 01:46:16 (2 days ago)	103.49.238.64 (ID/Indonesia/ip103-49-238-64.cloudhost.web.id), 5 distributed sshd attacks on account ... show more 103.49.238.64 (ID/Indonesia/ip103-49-238-64.cloudhost.web.id), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 1 20:15:21 14175 sshd[31844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.153.155.152 user=root Jun 1 20:15:23 14175 sshd[31844]: Failed password for root from 78.153.155.152 port 51550 ssh2 Jun 1 20:07:42 14175 sshd[28120]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.153.155.152 user=root Jun 1 20:07:45 14175 sshd[28120]: Failed password for root from 78.153.155.152 port 51376 ssh2 Jun 1 20:46:05 14175 sshd[14558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.49.238.64 user=root IP Addresses Blocked: 78.153.155.152 (US/United States/158411.ip-ptr.tech) show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-01 10:43:33 (2 days ago)	(sshd) Failed SSH login from 103.49.238.64 (ID/Indonesia/ip103-49-238-64.cloudhost.web.id): 5 in the ... show more (sshd) Failed SSH login from 103.49.238.64 (ID/Indonesia/ip103-49-238-64.cloudhost.web.id): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Jun 1 05:40:52 14279 sshd[634]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.49.238.64 user=root Jun 1 05:40:55 14279 sshd[634]: Failed password for root from 103.49.238.64 port 50436 ssh2 Jun 1 05:42:54 14279 sshd[1799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.49.238.64 user=root Jun 1 05:42:57 14279 sshd[1799]: Failed password for root from 103.49.238.64 port 37688 ssh2 Jun 1 05:43:15 14279 sshd[2130]: Invalid user dante from 103.49.238.64 port 55278 show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-30 03:28:10 (5 days ago)	(sshd) Failed SSH login from 103.49.238.64 (ID/Indonesia/ip103-49-238-64.cloudhost.web.id): 5 in the ... show more (sshd) Failed SSH login from 103.49.238.64 (ID/Indonesia/ip103-49-238-64.cloudhost.web.id): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: May 29 22:11:29 14778 sshd[26338]: Invalid user rakesh from 103.49.238.64 port 58216 May 29 22:11:31 14778 sshd[26338]: Failed password for invalid user rakesh from 103.49.238.64 port 58216 ssh2 May 29 22:27:36 14778 sshd[2708]: Invalid user postgres from 103.49.238.64 port 53290 May 29 22:27:38 14778 sshd[2708]: Failed password for invalid user postgres from 103.49.238.64 port 53290 ssh2 May 29 22:27:57 14778 sshd[2813]: Invalid user consultor from 103.49.238.64 port 44256 show less	Brute-Force SSH
🇩🇪 licen777	2026-05-30 03:27:17 (5 days ago)	Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-05-30T03:25:18Z and 2026-05-3 ... show more Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-05-30T03:25:18Z and 2026-05-30T03:27:17Z show less	Brute-Force SSH
🇦🇺 Scrapline	2026-05-30 00:27:08 (5 days ago)	[Fail2Ban] sshd: banned after 2 failures	Brute-Force SSH
🇨🇭 ScanThe.Net	2026-05-29 03:09:25 (6 days ago)	ID: 3648429192 \| PORT: 57032 \| https://103-49-238-64.scanthe.net	Port Scan
🇺🇸 bigscoots.com	2026-05-29 00:22:44 (6 days ago)	(sshd) Failed SSH login from 103.49.238.64 (ID/Indonesia/ip103-49-238-64.cloudhost.web.id): 5 in the ... show more (sshd) Failed SSH login from 103.49.238.64 (ID/Indonesia/ip103-49-238-64.cloudhost.web.id): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: May 28 19:08:01 14176 sshd[20700]: Invalid user proxyuser from 103.49.238.64 port 46444 May 28 19:08:02 14176 sshd[20700]: Failed password for invalid user proxyuser from 103.49.238.64 port 46444 ssh2 May 28 19:22:12 14176 sshd[22741]: Invalid user developer from 103.49.238.64 port 37120 May 28 19:22:14 14176 sshd[22741]: Failed password for invalid user developer from 103.49.238.64 port 37120 ssh2 May 28 19:22:37 14176 sshd[22756]: Invalid user deploy from 103.49.238.64 port 58842 show less	Brute-Force SSH

Showing 1 to 15 of 102 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇩 210.4.68.72

🇳🇱 185.93.89.33

🇷🇺 83.147.245.82

🇫🇷 82.124.28.243

🇺🇸 45.156.129.76

🇳🇱 45.148.10.141

🇺🇸 45.61.187.220

🇩🇪 2a01:239:217:4800::1

🇩🇪 213.202.222.56

🇨🇭 193.32.127.244

🇳🇱 185.93.89.119

🇪🇸 172.110.221.82

🇺🇸 162.216.149.37

🇺🇸 152.32.148.250

🇨🇳 120.85.118.59

🇺🇸 107.150.105.5

🇮🇶 62.201.242.173

🇨🇦 51.161.84.110

🇧🇷 45.235.184.8

🇫🇷 45.84.88.32