203.142.69.66 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
203.142.69.242	attackbots	DATE:2020-06-15 05:53:56, IP:203.142.69.242, PORT:5900 VNC brute force auth on honeypot server (epe-honey1-hq)	2020-06-15 14:28:33
203.142.69.203	attack	$f2bV_matches	2020-02-27 05:35:05
203.142.69.203	attack	$f2bV_matches	2020-02-11 01:17:18
203.142.69.203	attackbots	2020-02-05T00:32:10.006759 sshd[7789]: Invalid user roob from 203.142.69.203 port 56089 2020-02-05T00:32:10.017152 sshd[7789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.142.69.203 2020-02-05T00:32:10.006759 sshd[7789]: Invalid user roob from 203.142.69.203 port 56089 2020-02-05T00:32:11.931154 sshd[7789]: Failed password for invalid user roob from 203.142.69.203 port 56089 ssh2 2020-02-05T00:35:41.800406 sshd[7911]: Invalid user inssserver from 203.142.69.203 port 42823 ...	2020-02-05 07:57:12
203.142.69.203	attack	Invalid user java from 203.142.69.203 port 52212	2020-01-30 10:34:35
203.142.69.203	attack	Unauthorized connection attempt detected from IP address 203.142.69.203 to port 2220 [J]	2020-01-24 20:16:17
203.142.69.203	attackbots	Unauthorized connection attempt detected from IP address 203.142.69.203 to port 2220 [J]	2020-01-20 00:04:24
203.142.69.203	attack	Jan 12 09:35:20 vps691689 sshd[13020]: Failed password for root from 203.142.69.203 port 42791 ssh2 Jan 12 09:39:49 vps691689 sshd[13101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.142.69.203 ...	2020-01-12 16:52:29
203.142.69.203	attackbots	Dec 28 05:58:16 vmd17057 sshd\[23961\]: Invalid user whdgus from 203.142.69.203 port 37121 Dec 28 05:58:16 vmd17057 sshd\[23961\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.142.69.203 Dec 28 05:58:18 vmd17057 sshd\[23961\]: Failed password for invalid user whdgus from 203.142.69.203 port 37121 ssh2 ...	2019-12-28 13:25:58
203.142.69.203	attack	$f2bV_matches	2019-12-27 02:28:09
203.142.69.203	attackbots	Dec 23 09:41:08 sso sshd[14703]: Failed password for backup from 203.142.69.203 port 57431 ssh2 ...	2019-12-23 17:13:58
203.142.69.203	attackbotsspam	Dec 22 19:04:14 unicornsoft sshd\[19136\]: Invalid user gitlab from 203.142.69.203 Dec 22 19:04:14 unicornsoft sshd\[19136\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.142.69.203 Dec 22 19:04:16 unicornsoft sshd\[19136\]: Failed password for invalid user gitlab from 203.142.69.203 port 34656 ssh2	2019-12-23 06:24:36
203.142.69.203	attackbots	Triggered by Fail2Ban at Ares web server	2019-12-15 19:38:44
203.142.69.203	attackbots	Dec 13 16:39:35 tux-35-217 sshd\[27088\]: Invalid user poustchi from 203.142.69.203 port 46996 Dec 13 16:39:35 tux-35-217 sshd\[27088\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.142.69.203 Dec 13 16:39:37 tux-35-217 sshd\[27088\]: Failed password for invalid user poustchi from 203.142.69.203 port 46996 ssh2 Dec 13 16:46:12 tux-35-217 sshd\[27157\]: Invalid user ching from 203.142.69.203 port 51346 Dec 13 16:46:12 tux-35-217 sshd\[27157\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.142.69.203 ...	2019-12-14 00:02:36
203.142.69.203	attack	Dec 8 08:20:46 sauna sshd[242127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.142.69.203 Dec 8 08:20:49 sauna sshd[242127]: Failed password for invalid user whcsw from 203.142.69.203 port 58489 ssh2 ...	2019-12-08 14:23:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 203.142.69.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9202
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;203.142.69.66.			IN	A

;; AUTHORITY SECTION:
.			411	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 09:35:45 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 66.69.142.203.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 66.69.142.203.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
168.167.50.47	attackbotsspam	failed_logins	2020-07-26 18:03:32
212.70.149.82	attackbots	Jul 26 11:47:48 websrv1.derweidener.de postfix/smtpd[3294922]: warning: unknown[212.70.149.82]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 26 11:48:17 websrv1.derweidener.de postfix/smtpd[3294922]: warning: unknown[212.70.149.82]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 26 11:48:46 websrv1.derweidener.de postfix/smtpd[3294922]: warning: unknown[212.70.149.82]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 26 11:49:14 websrv1.derweidener.de postfix/smtpd[3295038]: warning: unknown[212.70.149.82]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 26 11:49:43 websrv1.derweidener.de postfix/smtpd[3294922]: warning: unknown[212.70.149.82]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-07-26 18:06:57
54.38.159.106	attack	(smtpauth) Failed SMTP AUTH login from 54.38.159.106 (DE/Germany/vps-d3fc4ca1.vps.ovh.net): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-07-26 12:00:24 login authenticator failed for vps-d3fc4ca1.vps.ovh.net (USER) [54.38.159.106]: 535 Incorrect authentication data (set_id=postmaster@sepasajir.com)	2020-07-26 18:05:59
202.186.93.169	attackspam	firewall-block, port(s): 445/tcp	2020-07-26 18:31:47
167.172.207.89	attackspambots	Jul 26 09:33:44 dev0-dcde-rnet sshd[16362]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.207.89 Jul 26 09:33:45 dev0-dcde-rnet sshd[16362]: Failed password for invalid user ss from 167.172.207.89 port 34788 ssh2 Jul 26 09:35:43 dev0-dcde-rnet sshd[16400]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.207.89	2020-07-26 18:34:05
178.239.157.208	attack	Jul 26 05:37:59 mail.srvfarm.net postfix/smtpd[1029334]: warning: unknown[178.239.157.208]: SASL PLAIN authentication failed: Jul 26 05:37:59 mail.srvfarm.net postfix/smtpd[1029334]: lost connection after AUTH from unknown[178.239.157.208] Jul 26 05:38:42 mail.srvfarm.net postfix/smtpd[1029334]: warning: unknown[178.239.157.208]: SASL PLAIN authentication failed: Jul 26 05:38:42 mail.srvfarm.net postfix/smtpd[1029334]: lost connection after AUTH from unknown[178.239.157.208] Jul 26 05:46:48 mail.srvfarm.net postfix/smtpd[1029330]: warning: unknown[178.239.157.208]: SASL PLAIN authentication failed:	2020-07-26 18:03:01
198.27.90.106	attackspam	2020-07-26T10:10:11.718427amanda2.illicoweb.com sshd\[9553\]: Invalid user zd from 198.27.90.106 port 54269 2020-07-26T10:10:11.724042amanda2.illicoweb.com sshd\[9553\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.27.90.106 2020-07-26T10:10:13.865023amanda2.illicoweb.com sshd\[9553\]: Failed password for invalid user zd from 198.27.90.106 port 54269 ssh2 2020-07-26T10:14:40.327188amanda2.illicoweb.com sshd\[9838\]: Invalid user mx from 198.27.90.106 port 57311 2020-07-26T10:14:40.332742amanda2.illicoweb.com sshd\[9838\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.27.90.106 ...	2020-07-26 18:33:34
116.236.200.254	attackspam	Invalid user elena from 116.236.200.254 port 54328	2020-07-26 18:35:11
143.208.250.209	attackbots	(smtpauth) Failed SMTP AUTH login from 143.208.250.209 (BR/Brazil/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-07-26 08:22:54 plain authenticator failed for ([143.208.250.209]) [143.208.250.209]: 535 Incorrect authentication data (set_id=edari_mali)	2020-07-26 17:57:41
188.166.5.84	attackbotsspam	Invalid user experiment from 188.166.5.84 port 57042	2020-07-26 18:18:06
173.249.51.229	attackbotsspam	Jul 26 05:52:54 debian-2gb-nbg1-2 kernel: \[17994086.534973\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=173.249.51.229 DST=195.201.40.59 LEN=52 TOS=0x02 PREC=0x00 TTL=120 ID=10485 DF PROTO=TCP SPT=59623 DPT=44 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0	2020-07-26 17:57:04
59.46.97.146	attackbotsspam	Port scan: Attack repeated for 24 hours	2020-07-26 18:30:28
51.38.130.242	attackbotsspam	Invalid user nb from 51.38.130.242 port 52120	2020-07-26 18:21:04
167.71.196.176	attackbots	Invalid user test from 167.71.196.176 port 34772	2020-07-26 18:22:56
94.102.49.65	attackspambots	Jul 26 11:36:08 mail.srvfarm.net dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=94.102.49.65, lip=185.118.197.126, session= Jul 26 11:36:20 mail.srvfarm.net dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 6 secs): user=, method=PLAIN, rip=94.102.49.65, lip=185.118.197.126, session= Jul 26 11:36:29 mail.srvfarm.net dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 10 secs): user=, method=PLAIN, rip=94.102.49.65, lip=185.118.197.126, session= Jul 26 11:36:35 mail.srvfarm.net dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 10 secs): user=, method=PLAIN, rip=94.102.49.65, lip=185.118.197.126, session= Jul 26 11:36:44 mail.srvfarm.net dovecot: pop3-login: Disconnected (auth failed, 1 attempts in 17 secs): user=, method=PLAIN, rip=9	2020-07-26 18:13:37

Recently Reported IPs

60.249.23.236	78.130.138.128	151.254.132.0	177.69.178.154
58.211.173.186	14.175.26.28	46.245.32.200	18.144.86.122
123.203.67.207	211.36.141.138	193.233.137.22	49.12.212.84
45.174.248.24	52.16.239.171	187.163.134.135	31.163.163.154
103.82.102.29	40.107.14.91	117.247.25.101	82.81.172.178