JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.52.115.48

103.52.115.48 was found in our database!

This IP was reported 1,323 times. Confidence of Abuse is 55%: ?

55%

ISP	PT Cloud Hosting Indonesia
Usage Type	Data Center/Web Hosting/Transit
ASN	AS136052
Hostname(s)	ip103-52-115-48.cloudhost.web.id
Domain Name	cloudhost.web.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.52.115.48

Whois 103.52.115.48

IP Abuse Reports for 103.52.115.48:

This IP address has been reported a total of 1,323 times from 504 distinct sources. 103.52.115.48 was first reported on December 11th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 bigscoots.com	2026-05-19 12:24:52 (2 weeks ago)	(sshd) Failed SSH login from 103.52.115.48 (ID/Indonesia/ip103-52-115-48.cloudhost.web.id): 5 in the ... show more (sshd) Failed SSH login from 103.52.115.48 (ID/Indonesia/ip103-52-115-48.cloudhost.web.id): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: May 19 07:17:27 15663 sshd[30602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.52.115.48 user=root May 19 07:17:29 15663 sshd[30602]: Failed password for root from 103.52.115.48 port 34750 ssh2 May 19 07:24:21 15663 sshd[31329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.52.115.48 user=root May 19 07:24:23 15663 sshd[31329]: Failed password for root from 103.52.115.48 port 57348 ssh2 May 19 07:24:42 15663 sshd[31344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.52.115.48 user=root show less	Brute-Force SSH
🇺🇸 brantknudson.org	2026-05-19 00:12:51 (2 weeks ago)	ssh login attempt(s)	SSH Brute-Force
🇨🇳 ThreatBook.io	2026-05-18 22:28:27 (2 weeks ago)	ThreatBook Intelligence: vpn_proxy,Spam more details on https://threatbook.io/ip/103.52.115.48	SSH
🇳🇱 Savvii	2026-05-18 18:23:43 (2 weeks ago)	20 attempts against mh-ssh on scan-ams	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-18 12:10:20 (2 weeks ago)	103.52.115.48 (ID/Indonesia/ip103-52-115-48.cloudhost.web.id), 5 distributed sshd attacks on account ... show more 103.52.115.48 (ID/Indonesia/ip103-52-115-48.cloudhost.web.id), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 18 06:15:34 17299 sshd[14739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.99.189.174 user=root May 18 06:15:36 17299 sshd[14739]: Failed password for root from 209.99.189.174 port 49476 ssh2 May 18 07:09:53 17299 sshd[22197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.194.248 user=root May 18 07:06:53 17299 sshd[21791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.52.115.48 user=root May 18 07:06:55 17299 sshd[21791]: Failed password for root from 103.52.115.48 port 55278 ssh2 IP Addresses Blocked: 209.99.189.174 (US/United States/-) 124.156.194.248 (SG/Singapore/-) show less	Brute-Force SSH
🇺🇸 drewf.ink	2026-05-18 09:22:55 (2 weeks ago)	[09:22] Attempted SSH login on port 2222 with credentials root:test0000	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-18 09:14:59 (2 weeks ago)	103.52.115.48 (ID/Indonesia/ip103-52-115-48.cloudhost.web.id), 5 distributed sshd attacks on account ... show more 103.52.115.48 (ID/Indonesia/ip103-52-115-48.cloudhost.web.id), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 18 09:07:55 23955 sshd[1380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.60.242.28 user=root May 18 09:07:57 23955 sshd[1380]: Failed password for root from 190.60.242.28 port 59938 ssh2 May 18 09:12:17 23955 sshd[1806]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.52.115.48 user=root May 18 09:12:19 23955 sshd[1806]: Failed password for root from 103.52.115.48 port 42294 ssh2 May 18 09:14:38 23955 sshd[1986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.113.246.66 user=root IP Addresses Blocked: 190.60.242.28 (CO/Colombia/28.242.60.190.static.host.ifxnetworks.com) show less	Brute-Force SSH
🇺🇸 drewf.ink	2026-05-18 09:07:34 (2 weeks ago)	[09:07] Attempted SSH login on port 2222 with credentials root:enable	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-17 12:14:51 (2 weeks ago)	(sshd) Failed SSH login from 103.52.115.48 (ID/Indonesia/ip103-52-115-48.cloudhost.web.id): 5 in the ... show more (sshd) Failed SSH login from 103.52.115.48 (ID/Indonesia/ip103-52-115-48.cloudhost.web.id): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: May 17 07:08:43 13642 sshd[31842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.52.115.48 user=root May 17 07:08:44 13642 sshd[31842]: Failed password for root from 103.52.115.48 port 54046 ssh2 May 17 07:14:22 13642 sshd[32351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.52.115.48 user=root May 17 07:14:23 13642 sshd[32351]: Failed password for root from 103.52.115.48 port 41380 ssh2 May 17 07:14:42 13642 sshd[32354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.52.115.48 user=root show less	Brute-Force SSH
🇩🇪 ghostwarriors	2026-05-17 09:20:35 (2 weeks ago)	Unauthorized connection attempt detected, SSH Brute-Force	Brute-Force Port Scan SSH
🇺🇸 bigscoots.com	2026-05-17 09:06:50 (2 weeks ago)	103.52.115.48 (ID/Indonesia/ip103-52-115-48.cloudhost.web.id), 5 distributed sshd attacks on account ... show more 103.52.115.48 (ID/Indonesia/ip103-52-115-48.cloudhost.web.id), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 17 04:06:41 16118 sshd[22478]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.52.115.48 user=root May 17 04:02:12 16118 sshd[22148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.221.220.237 user=root May 17 04:02:14 16118 sshd[22148]: Failed password for root from 103.221.220.237 port 42130 ssh2 May 17 04:01:50 16118 sshd[22072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.153.124.133 user=root May 17 04:01:52 16118 sshd[22072]: Failed password for root from 43.153.124.133 port 45684 ssh2 IP Addresses Blocked: show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-17 00:11:44 (3 weeks ago)	103.52.115.48 (ID/Indonesia/ip103-52-115-48.cloudhost.web.id), 5 distributed sshd attacks on account ... show more 103.52.115.48 (ID/Indonesia/ip103-52-115-48.cloudhost.web.id), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 16 18:58:58 14227 sshd[2820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.226.139.216 user=root May 16 18:59:00 14227 sshd[2820]: Failed password for root from 103.226.139.216 port 39646 ssh2 May 16 19:07:44 14227 sshd[3959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.52.115.48 user=root May 16 19:07:46 14227 sshd[3959]: Failed password for root from 103.52.115.48 port 44336 ssh2 May 16 19:11:25 14227 sshd[4339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.226.139.216 user=root IP Addresses Blocked: 103.226.139.216 (ID/Indonesia/ip103-226-139-216.cloudhost.web.id) show less	Brute-Force SSH
🇨🇳 ThreatBook.io	2026-05-16 22:33:06 (3 weeks ago)	ThreatBook Intelligence: vpn_proxy more details on http://threatbook.io/ip/103.52.115.48	SSH
🇺🇸 bigscoots.com	2026-05-16 11:59:35 (3 weeks ago)	103.52.115.48 (ID/-/ip103-52-115-48.cloudhost.web.id), 5 distributed sshd attacks on account [root] ... show more 103.52.115.48 (ID/-/ip103-52-115-48.cloudhost.web.id), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 16 06:57:13 12525 sshd[14922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.163.111.6 user=root May 16 06:57:15 12525 sshd[14922]: Failed password for root from 43.163.111.6 port 53200 ssh2 May 16 06:56:31 12525 sshd[14845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.66.224.173 user=root May 16 06:56:33 12525 sshd[14845]: Failed password for root from 82.66.224.173 port 49722 ssh2 May 16 06:59:12 12525 sshd[15095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.52.115.48 user=root IP Addresses Blocked: 43.163.111.6 (SG/-/-) 82.66.224.173 (FR/-/mail.mpilvh.fr) show less	Brute-Force SSH
🇩🇪 mxpgmbh	2026-05-16 03:07:51 (3 weeks ago)	2026-05-16T05:07:32.049310+02:00 ** sshd-session[24189]: Invalid user from 103.52.115.48 port ... show more 2026-05-16T05:07:32.049310+02:00 sshd-session[24189]: Invalid user from 103.52.115.48 port 51816 2026-05-16T05:07:32.050716+02:00 sshd-session[24189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.52.115.48 2026-05-16T05:07:33.578543+02:00 sshd-session[24189]: Failed password for invalid user from 103.52.115.48 port 51816 ssh2 2026-05-16T05:07:48.410154+02:00 sshd-session[24710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.52.115.48 user=root 2026-05-16T05:07:50.576659+02:00 ** sshd-session[24710]: Failed password for root from 103.52.115.48 port 48204 ssh2 show less	Brute-Force SSH

Showing 1 to 15 of 1323 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 2401:4900:caa1:7b25:5184:b0b5:969f:87c9

🇺🇸 184.105.139.89

🇫🇮 157.22.16.63

🇺🇸 138.113.22.151

🇨🇳 116.178.128.96

🇩🇪 78.47.207.26

🇺🇸 66.132.172.103

🇺🇸 47.77.230.166

🇳🇱 45.148.10.151

🇸🇬 45.82.78.103

🇰🇪 41.89.227.164

🇺🇸 23.94.200.194

🇺🇸 20.163.15.43

🇺🇸 3.16.207.93

🇨🇳 221.131.2.7

🇨🇱 179.60.65.131

🇳🇱 172.94.9.66

🇨🇳 110.177.179.6

🇨🇳 101.249.61.43

🇨🇳 60.16.200.10