JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.52.115.142

103.52.115.142 was found in our database!

This IP was reported 486 times. Confidence of Abuse is 4%: ?

ISP	PT Cloud Hosting Indonesia
Usage Type	Data Center/Web Hosting/Transit
ASN	AS136052
Hostname(s)	ip103-52-115-142.cloudhost.web.id
Domain Name	cloudhost.web.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.52.115.142

Whois 103.52.115.142

IP Abuse Reports for 103.52.115.142:

This IP address has been reported a total of 486 times from 238 distinct sources. 103.52.115.142 was first reported on March 14th 2023, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 bigscoots.com	2026-06-12 16:08:18 (2 days ago)	103.52.115.142 (ID/Indonesia/ip103-52-115-142.cloudhost.web.id), 5 distributed sshd attacks on accou ... show more 103.52.115.142 (ID/Indonesia/ip103-52-115-142.cloudhost.web.id), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 12 10:58:23 15084 sshd[10458]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.119.132.109 user=root Jun 12 11:08:03 15084 sshd[15851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.52.115.142 user=root Jun 12 11:08:06 15084 sshd[15851]: Failed password for root from 103.52.115.142 port 37998 ssh2 Jun 12 11:03:05 15084 sshd[13134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.124.5.60 user=root Jun 12 11:03:07 15084 sshd[13134]: Failed password for root from 138.124.5.60 port 43632 ssh2 IP Addresses Blocked: 75.119.132.109 (US/United States/vmi3306296.contaboserver.net) show less	Brute-Force SSH
🇩🇪 bogdanv	2025-12-29 17:24:47 (5 months ago)	$f2bV_matches	Brute-Force SSH
🇹🇷 rtbh.com.tr	2025-11-21 16:10:02 (6 months ago)	list.rtbh.com.tr report: tcp/445	Brute-Force
🇺🇸 RAP	2025-11-19 02:00:31 (6 months ago)	2025-11-19 02:00:31 UTC Unauthorized activity to TCP port 445. SMB	Port Scan
🇬🇧 spamverify.com	2025-11-17 02:05:23 (6 months ago)	Honeypot Hit: Port Scan (445) SMB	Web Spam Blog Spam Bad Web Bot Web App Attack
🇫🇷 ericshim.me	2025-11-16 23:31:48 (6 months ago)	Dionaea honeypot SMB access at 2025-11-16T13:19:19.493428	Brute-Force
Anonymous	2025-11-11 11:23:26 (7 months ago)	Unauthorized connection to SMB port 445	Port Scan
Anonymous	2025-11-11 10:53:26 (7 months ago)	Unauthorized connection to SMB port 445	Port Scan
🇸🇰 GOVCERT	2025-11-10 22:36:26 (7 months ago)	SMB Port Scan	Port Scan
🇺🇸 MPL	2025-11-08 13:22:04 (7 months ago)	tcp/445 (2 or more attempts)	Port Scan
🇺🇸 MPL	2025-11-08 09:10:58 (7 months ago)	tcp/445 (9 or more attempts)	Port Scan
🇭🇰 www.winos.me	2025-11-05 12:03:41 (7 months ago)	port scan	Port Scan
🇨🇿 Countryman	2025-11-05 07:34:14 (7 months ago)	repeated unauthorized connection attempts, host sweep, port 445	Hacking Brute-Force
🇨🇿 Countryman	2025-11-05 07:34:14 (7 months ago)	repeated unauthorized connection attempts, host sweep, port 445	Hacking Brute-Force
🇺🇸 MPL	2025-11-04 08:51:36 (7 months ago)	tcp/445	Port Scan

Showing 1 to 15 of 486 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 208.109.39.19

🇬🇧 185.216.145.185

🇮🇹 172.253.13.158

🇭🇰 118.26.36.195

🇲🇾 103.175.16.86

🇷🇴 80.94.92.187

🇨🇳 58.212.237.191

🇱🇹 45.227.254.170

🇧🇼 41.223.73.180

🇫🇷 37.187.104.215

🇮🇩 34.50.91.17

🇺🇸 20.85.246.45

🇷🇴 2.57.121.25

🇬🇧 193.163.125.120

🇹🇼 165.154.227.158

🇺🇸 135.119.236.51

🇮🇩 103.164.115.206

🇷🇴 94.156.152.50

🇬🇧 81.19.219.244

🇮🇪 51.187.73.105