103.42.254.165

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
103.42.254.240	attackspam	Unauthorized connection attempt detected from IP address 103.42.254.240 to port 8080	2019-12-11 20:35:58
103.42.254.108	attack	"Account brute force using dictionary attack against Exchange Online"	2019-08-06 07:53:47

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.42.254.165
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22603
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.42.254.165.			IN	A

;; AUTHORITY SECTION:
.			275	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 18:07:55 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 165.254.42.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 165.254.42.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
182.151.214.108	attackspambots	Jun 18 08:28:35 nbi-636 sshd[8407]: Invalid user user6 from 182.151.214.108 port 18876 Jun 18 08:28:37 nbi-636 sshd[8407]: Failed password for invalid user user6 from 182.151.214.108 port 18876 ssh2 Jun 18 08:28:37 nbi-636 sshd[8407]: Received disconnect from 182.151.214.108 port 18876:11: Bye Bye [preauth] Jun 18 08:28:37 nbi-636 sshd[8407]: Disconnected from 182.151.214.108 port 18876 [preauth] Jun 18 08:34:52 nbi-636 sshd[9574]: Invalid user lisa from 182.151.214.108 port 18882 Jun 18 08:34:53 nbi-636 sshd[9574]: Failed password for invalid user lisa from 182.151.214.108 port 18882 ssh2 Jun 18 08:34:54 nbi-636 sshd[9574]: Received disconnect from 182.151.214.108 port 18882:11: Bye Bye [preauth] Jun 18 08:34:54 nbi-636 sshd[9574]: Disconnected from 182.151.214.108 port 18882 [preauth] Jun 18 08:37:07 nbi-636 sshd[10076]: Invalid user view from 182.151.214.108 port 18886 Jun 18 08:37:08 nbi-636 sshd[10076]: Failed password for invalid user view from 182.151.214.108 por........ -------------------------------	2019-06-21 17:46:52
66.249.64.150	attack	66.249.64.150 - - [21/Jun/2019:11:23:56 +0200] "GET /wp-login.php HTTP/1.1" 404 4264 "-" "Mozilla/5.0 (Linux; Android 6.0.1; Nexus 5X Build/MMB29P) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2272.96 Mobile Safari/537.36 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)"	2019-06-21 18:24:51
218.92.1.135	attackspam	2019-06-21T10:25:01.369093hub.schaetter.us sshd\[20140\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.1.135 user=root 2019-06-21T10:25:03.500092hub.schaetter.us sshd\[20140\]: Failed password for root from 218.92.1.135 port 31628 ssh2 2019-06-21T10:25:05.835897hub.schaetter.us sshd\[20140\]: Failed password for root from 218.92.1.135 port 31628 ssh2 2019-06-21T10:25:07.915273hub.schaetter.us sshd\[20140\]: Failed password for root from 218.92.1.135 port 31628 ssh2 2019-06-21T10:25:23.034917hub.schaetter.us sshd\[20143\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.1.135 user=root ...	2019-06-21 18:31:03
87.198.47.82	attackspambots	21.06.2019 10:21:53 SSH access blocked by firewall	2019-06-21 18:41:44
182.139.161.79	attack	Jun 19 07:05:36 xxxxxxx7446550 sshd[19524]: Invalid user admin from 182.139.161.79 Jun 19 07:05:36 xxxxxxx7446550 sshd[19524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.139.161.79 Jun 19 07:05:38 xxxxxxx7446550 sshd[19524]: Failed password for invalid user admin from 182.139.161.79 port 51626 ssh2 Jun 19 07:05:41 xxxxxxx7446550 sshd[19524]: Failed password for invalid user admin from 182.139.161.79 port 51626 ssh2 Jun 19 07:05:43 xxxxxxx7446550 sshd[19524]: Failed password for invalid user admin from 182.139.161.79 port 51626 ssh2 Jun 19 07:05:45 xxxxxxx7446550 sshd[19524]: Failed password for invalid user admin from 182.139.161.79 port 51626 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=182.139.161.79	2019-06-21 18:26:59
123.207.145.66	attackspambots	Jun 21 09:40:45 localhost sshd\[87062\]: Invalid user appldev from 123.207.145.66 port 39152 Jun 21 09:40:45 localhost sshd\[87062\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.145.66 Jun 21 09:40:47 localhost sshd\[87062\]: Failed password for invalid user appldev from 123.207.145.66 port 39152 ssh2 Jun 21 09:42:09 localhost sshd\[87108\]: Invalid user shua from 123.207.145.66 port 53380 Jun 21 09:42:09 localhost sshd\[87108\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.145.66 ...	2019-06-21 17:48:55
178.219.247.61	attackspambots	Jun 21 09:14:53 our-server-hostname postfix/smtpd[15701]: connect from unknown[178.219.247.61] Jun x@x Jun x@x Jun 21 09:14:56 our-server-hostname postfix/smtpd[15701]: lost connection after RCPT from unknown[178.219.247.61] Jun 21 09:14:56 our-server-hostname postfix/smtpd[15701]: disconnect from unknown[178.219.247.61] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=178.219.247.61	2019-06-21 17:57:01
13.92.99.165	attackspambots	C1,WP GET //wp-includes/wlwmanifest.xml	2019-06-21 18:38:21
88.250.13.161	attack	Unauthorised access (Jun 21) SRC=88.250.13.161 LEN=40 TTL=239 ID=43584 DF TCP DPT=23 WINDOW=14600 SYN	2019-06-21 18:26:28
91.221.137.200	attack	Wordpress attack	2019-06-21 18:33:44
60.171.208.199	attackspam	Port scan on 6 port(s): 33389 39039 50000 50389 54321 59039	2019-06-21 17:47:51
94.176.64.125	attack	(Jun 21) LEN=40 TTL=245 ID=61512 DF TCP DPT=23 WINDOW=14600 SYN (Jun 21) LEN=40 TTL=245 ID=36739 DF TCP DPT=23 WINDOW=14600 SYN (Jun 21) LEN=40 TTL=245 ID=31358 DF TCP DPT=23 WINDOW=14600 SYN (Jun 21) LEN=40 TTL=245 ID=53313 DF TCP DPT=23 WINDOW=14600 SYN (Jun 21) LEN=40 TTL=245 ID=64231 DF TCP DPT=23 WINDOW=14600 SYN (Jun 20) LEN=40 TTL=245 ID=32061 DF TCP DPT=23 WINDOW=14600 SYN (Jun 20) LEN=40 TTL=245 ID=1969 DF TCP DPT=23 WINDOW=14600 SYN (Jun 20) LEN=40 TTL=245 ID=8074 DF TCP DPT=23 WINDOW=14600 SYN (Jun 20) LEN=40 TTL=245 ID=4056 DF TCP DPT=23 WINDOW=14600 SYN (Jun 20) LEN=40 TTL=245 ID=5599 DF TCP DPT=23 WINDOW=14600 SYN (Jun 20) LEN=40 TTL=245 ID=5586 DF TCP DPT=23 WINDOW=14600 SYN (Jun 20) LEN=40 TTL=245 ID=54644 DF TCP DPT=23 WINDOW=14600 SYN (Jun 20) LEN=40 TTL=245 ID=57899 DF TCP DPT=23 WINDOW=14600 SYN (Jun 20) LEN=40 TTL=245 ID=60622 DF TCP DPT=23 WINDOW=14600 SYN (Jun 19) LEN=40 TTL=245 ID=38073 DF TCP DPT=23 WINDOW=14600 SYN ...	2019-06-21 18:20:23
218.26.163.125	attackbotsspam	Autoban 218.26.163.125 ABORTED AUTH	2019-06-21 18:38:56
103.3.226.68	attack	20 attempts against mh-ssh on pluto.magehost.pro	2019-06-21 17:26:24
121.183.75.145	attack	Jun 21 04:16:09 gcems sshd\[23061\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.183.75.145 user=pi Jun 21 04:16:12 gcems sshd\[23061\]: Failed password for pi from 121.183.75.145 port 44550 ssh2 Jun 21 04:23:16 gcems sshd\[23223\]: Invalid user ftp from 121.183.75.145 port 53244 Jun 21 04:23:16 gcems sshd\[23223\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.183.75.145 Jun 21 04:23:18 gcems sshd\[23223\]: Failed password for invalid user ftp from 121.183.75.145 port 53244 ssh2 ...	2019-06-21 18:31:46

Recently Reported IPs

103.42.254.214	103.42.254.194	103.42.254.70	103.42.254.78
103.42.254.82	101.108.191.141	103.42.254.86	117.254.50.55
103.42.255.103	103.42.255.112	103.42.255.145	103.42.255.108
103.42.254.96	103.42.255.66	103.42.255.68	103.42.255.72
103.42.255.70	101.108.191.142	103.42.255.74	103.42.255.78