JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.56.149.49

103.56.149.49 was found in our database!

This IP was reported 306 times. Confidence of Abuse is 8%: ?

ISP	PT Beon Intermedia
Usage Type	Data Center/Web Hosting/Transit
ASN	AS55688
Hostname(s)	mediaviralterbaru2022.biz.id project-riskahosting.biz.id
Domain Name	beon.co.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.56.149.49

Whois 103.56.149.49

IP Abuse Reports for 103.56.149.49:

This IP address has been reported a total of 306 times from 192 distinct sources. 103.56.149.49 was first reported on November 6th 2022, and the most recent report was 4 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 4 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 gooko	2026-05-11 13:46:54 (4 weeks ago)	SSH brute-force attack detected by fail2ban jail 'sshd'	Brute-Force SSH
🇳🇱 BellFix	2026-04-27 17:40:05 (1 month ago)	Fail2ban reported 103.56.149.49 for sshd	SSH Brute-Force
🇯🇵 rafale2k	2026-03-20 18:39:20 (2 months ago)	SSH Brute Force	Brute-Force SSH
🇭🇺 simrol	2026-03-02 00:00:29 (3 months ago)	Automated report from vps-201 - Batch job Mon Mar 2 00:00:29 UTC 2026	Brute-Force SSH
🇹🇷 rtbh.com.tr	2026-03-01 20:11:49 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 amit177	2026-03-01 12:47:58 (3 months ago)		Brute-Force SSH
Anonymous	2026-03-01 12:42:06 (3 months ago)	$f2bV_matches	Brute-Force SSH
🇺🇸 bigscoots.com	2026-03-01 12:38:36 (3 months ago)	103.56.149.49 (ID/Indonesia/project-riskahosting.biz.id), 5 distributed sshd attacks on account [roo ... show more 103.56.149.49 (ID/Indonesia/project-riskahosting.biz.id), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Mar 1 06:37:27 4147 sshd[4047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.119.209.15 user=root Mar 1 06:38:15 4147 sshd[4159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.67.78.230 user=root Mar 1 06:37:29 4147 sshd[4047]: Failed password for root from 111.119.209.15 port 44980 ssh2 Mar 1 06:36:45 4147 sshd[3933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.149.49 user=root Mar 1 06:36:47 4147 sshd[3933]: Failed password for root from 103.56.149.49 port 44842 ssh2 IP Addresses Blocked: 111.119.209.15 (ecs-111-119-209-15.compute.hwclouds-dns.com) 103.67.78.230 (ID/Indonesia/ip103-67-78-230.cloudhost.web.id) show less	Brute-Force SSH
🇦🇺 ts_sre	2026-03-01 12:26:22 (3 months ago)	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2026-03-01T12:03:51Z and 2026-03- ... show more Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2026-03-01T12:03:51Z and 2026-03-01T12:26:22Z show less	Brute-Force SSH
🇬🇧 Deveroonie	2026-03-01 12:20:31 (3 months ago)	2026-03-01T12:20:31.040074+00:00 instance-20241105-1951 sshd[871941]: Disconnected from authenticati ... show more 2026-03-01T12:20:31.040074+00:00 instance-20241105-1951 sshd[871941]: Disconnected from authenticating user root 103.56.149.49 port 49640 [preauth] ... show less	Hacking Brute-Force SSH
🇺🇸 bigscoots.com	2026-03-01 12:04:37 (3 months ago)	103.56.149.49 (ID/Indonesia/mediaviralterbaru2022.biz.id), 5 distributed sshd attacks on account [ro ... show more 103.56.149.49 (ID/Indonesia/mediaviralterbaru2022.biz.id), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Mar 1 12:03:42 23306 sshd[16168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.93.202.165 user=root Mar 1 12:03:44 23306 sshd[16168]: Failed password for root from 93.93.202.165 port 50344 ssh2 Mar 1 12:04:22 23306 sshd[16419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.149.49 user=root Mar 1 12:00:46 23306 sshd[15335]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.93.202.165 user=root Mar 1 12:00:47 23306 sshd[15335]: Failed password for root from 93.93.202.165 port 41208 ssh2 IP Addresses Blocked: 93.93.202.165 (DE/Germany/-) show less	Brute-Force SSH
🇬🇧 Deveroonie	2026-03-01 12:03:53 (3 months ago)	2026-03-01T12:03:52.936550+00:00 instance-20241105-1951 sshd[871548]: Disconnected from authenticati ... show more 2026-03-01T12:03:52.936550+00:00 instance-20241105-1951 sshd[871548]: Disconnected from authenticating user root 103.56.149.49 port 35062 [preauth] ... show less	Hacking Brute-Force SSH
🇨🇭 master.arknet.ch	2026-03-01 11:41:00 (3 months ago)	2026-03-01T13:34:56.730293+02:00 wels sshd[1212303]: Disconnected from authenticating user root 103. ... show more 2026-03-01T13:34:56.730293+02:00 wels sshd[1212303]: Disconnected from authenticating user root 103.56.149.49 port 58210 [preauth] 2026-03-01T13:38:19.289187+02:00 wels sshd[1212328]: Disconnected from authenticating user root 103.56.149.49 port 59740 [preauth] 2026-03-01T13:40:59.697351+02:00 wels sshd[1212382]: Disconnected from authenticating user root 103.56.149.49 port 33282 [preauth] ... show less	Brute-Force SSH
🇩🇪 flixie	2026-03-01 11:38:47 (3 months ago)	2026-03-01T12:28:27.849107 ***** sshd[1129563]: Disconnected from authenticating user root 103.56. ... show more 2026-03-01T12:28:27.849107 *** sshd[1129563]: Disconnected from authenticating user root 103.56.149.49 port 39448 [preauth] 2026-03-01T12:36:12.970645 *** sshd[1131964]: Disconnected from authenticating user root 103.56.149.49 port 56372 [preauth] 2026-03-01T12:38:46.944318 ***** sshd[1132725]: Disconnected from authenticating user root 103.56.149.49 port 40734 [preauth] show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-03-01 11:33:31 (3 months ago)	103.56.149.49 (ID/Indonesia/mediaviralterbaru2022.biz.id), 5 distributed sshd attacks on account [ro ... show more 103.56.149.49 (ID/Indonesia/mediaviralterbaru2022.biz.id), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Mar 1 05:29:57 14827 sshd[525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=8.243.50.114 user=root Mar 1 05:29:59 14827 sshd[525]: Failed password for root from 8.243.50.114 port 36240 ssh2 Mar 1 04:54:47 14827 sshd[30256]: Failed password for root from 209.38.120.66 port 60732 ssh2 Mar 1 05:33:17 14827 sshd[810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.149.49 user=root Mar 1 05:33:18 14827 sshd[810]: Failed password for root from 103.56.149.49 port 50936 ssh2 IP Addresses Blocked: 8.243.50.114 (BR/Brazil/-) 209.38.120.66 (IN/India/-) show less	Brute-Force SSH

Showing 1 to 15 of 306 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 221.122.121.219

🇧🇷 179.181.98.141

🇧🇷 177.85.247.230

🇩🇿 154.241.16.205

🇮🇳 122.171.66.151

🇨🇳 118.196.119.108

🇨🇳 115.190.50.19

🇺🇸 104.22.62.10

🇫🇷 91.231.89.107

🇵🇱 77.73.129.46

🇬🇧 213.166.84.59

🇹🇳 197.5.145.150

🇬🇧 195.140.214.22

🇬🇧 193.32.209.252

🇭🇰 154.83.16.14

🇺🇸 107.150.109.196

🇺🇸 104.243.133.18

🇺🇸 100.51.6.16

🇷🇴 92.118.39.62

🇮🇶 80.76.50.197