203.142.80.29 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: Biznet ISP

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	SASL Brute Force	2019-07-16 08:55:30

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 203.142.80.29
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18898
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;203.142.80.29.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071501 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 16 08:55:25 CST 2019
;; MSG SIZE  rcvd: 117

Host info

29.80.142.203.in-addr.arpa domain name pointer mail.citramas.co.id.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
29.80.142.203.in-addr.arpa	name = mail.citramas.co.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.59.200.40	attackspam	7812/tcp 30146/tcp 13846/tcp... [2020-06-22/07-08]42pkt,20pt.(tcp)	2020-07-08 21:40:48
87.122.83.204	attackbots	Lines containing failures of 87.122.83.204 Jul 7 15:55:26 newdogma sshd[29768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.122.83.204 user=backup Jul 7 15:55:28 newdogma sshd[29768]: Failed password for backup from 87.122.83.204 port 44038 ssh2 Jul 7 15:55:30 newdogma sshd[29768]: Received disconnect from 87.122.83.204 port 44038:11: Bye Bye [preauth] Jul 7 15:55:30 newdogma sshd[29768]: Disconnected from authenticating user backup 87.122.83.204 port 44038 [preauth] Jul 7 16:01:36 newdogma sshd[29858]: Invalid user xuzx from 87.122.83.204 port 44050 Jul 7 16:01:36 newdogma sshd[29858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.122.83.204 Jul 7 16:01:38 newdogma sshd[29858]: Failed password for invalid user xuzx from 87.122.83.204 port 44050 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=87.122.83.204	2020-07-08 22:09:15
218.92.0.172	attack	Jul 8 13:30:03 localhost sshd[8693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.172 user=root Jul 8 13:30:06 localhost sshd[8693]: Failed password for root from 218.92.0.172 port 47082 ssh2 Jul 8 13:30:11 localhost sshd[8693]: Failed password for root from 218.92.0.172 port 47082 ssh2 Jul 8 13:30:03 localhost sshd[8693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.172 user=root Jul 8 13:30:06 localhost sshd[8693]: Failed password for root from 218.92.0.172 port 47082 ssh2 Jul 8 13:30:11 localhost sshd[8693]: Failed password for root from 218.92.0.172 port 47082 ssh2 Jul 8 13:30:03 localhost sshd[8693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.172 user=root Jul 8 13:30:06 localhost sshd[8693]: Failed password for root from 218.92.0.172 port 47082 ssh2 Jul 8 13:30:11 localhost sshd[8693]: Failed password for root fr ...	2020-07-08 21:49:16
45.88.13.206	attack	Jul 7 21:40:54 cumulus sshd[1770]: Invalid user cnctmp from 45.88.13.206 port 49164 Jul 7 21:40:54 cumulus sshd[1770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.88.13.206 Jul 7 21:40:56 cumulus sshd[1770]: Failed password for invalid user cnctmp from 45.88.13.206 port 49164 ssh2 Jul 7 21:40:57 cumulus sshd[1770]: Received disconnect from 45.88.13.206 port 49164:11: Bye Bye [preauth] Jul 7 21:40:57 cumulus sshd[1770]: Disconnected from 45.88.13.206 port 49164 [preauth] Jul 7 21:52:29 cumulus sshd[3031]: Invalid user yuan from 45.88.13.206 port 60084 Jul 7 21:52:29 cumulus sshd[3031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.88.13.206 Jul 7 21:52:31 cumulus sshd[3031]: Failed password for invalid user yuan from 45.88.13.206 port 60084 ssh2 Jul 7 21:52:32 cumulus sshd[3031]: Received disconnect from 45.88.13.206 port 60084:11: Bye Bye [preauth] Jul 7 21:52:32 cumulu........ -------------------------------	2020-07-08 22:12:21
203.75.29.110	attackspambots	$f2bV_matches	2020-07-08 21:44:46
165.160.13.20	attack	pode log	2020-07-08 22:11:12
185.176.27.46	attackbots	[Wed Jun 24 11:02:40 2020] - DDoS Attack From IP: 185.176.27.46 Port: 50339	2020-07-08 21:31:42
175.24.81.123	attackbotsspam	$f2bV_matches	2020-07-08 21:52:56
46.165.245.154	attack	CMS (WordPress or Joomla) login attempt.	2020-07-08 21:38:28
216.186.192.132	attack	invalid user	2020-07-08 21:51:48
104.198.100.105	attackbotsspam	Jul 8 08:47:48 vps46666688 sshd[19725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.198.100.105 Jul 8 08:47:50 vps46666688 sshd[19725]: Failed password for invalid user kuprian from 104.198.100.105 port 53850 ssh2 ...	2020-07-08 21:42:04
40.90.160.203	attackspam	$f2bV_matches	2020-07-08 22:03:43
198.143.158.86	attackbotsspam	[Wed Jun 24 02:05:10 2020] - DDoS Attack From IP: 198.143.158.86 Port: 11266	2020-07-08 21:41:16
167.71.71.147	attack	Jul 8 12:56:52 ip-172-31-62-245 sshd\[4004\]: Invalid user CVSROOT from 167.71.71.147\ Jul 8 12:56:54 ip-172-31-62-245 sshd\[4004\]: Failed password for invalid user CVSROOT from 167.71.71.147 port 53372 ssh2\ Jul 8 12:59:50 ip-172-31-62-245 sshd\[4042\]: Invalid user adine from 167.71.71.147\ Jul 8 12:59:52 ip-172-31-62-245 sshd\[4042\]: Failed password for invalid user adine from 167.71.71.147 port 51076 ssh2\ Jul 8 13:02:44 ip-172-31-62-245 sshd\[4086\]: Invalid user dino from 167.71.71.147\	2020-07-08 21:57:40
5.135.185.27	attackbots	Jul 8 07:47:51 lanister sshd[8914]: Invalid user amie from 5.135.185.27 Jul 8 07:47:51 lanister sshd[8914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.185.27 Jul 8 07:47:51 lanister sshd[8914]: Invalid user amie from 5.135.185.27 Jul 8 07:47:53 lanister sshd[8914]: Failed password for invalid user amie from 5.135.185.27 port 33298 ssh2	2020-07-08 21:36:40

Recently Reported IPs

31.163.186.8	104.144.21.254	94.74.157.182	180.175.90.131
194.44.69.49	58.245.145.229	180.121.199.234	131.100.76.59
117.60.141.212	95.178.156.212	177.130.136.66	88.249.148.114
177.91.117.146	189.69.75.17	177.98.195.206	60.30.26.213
252.249.59.46	79.44.123.248	121.121.76.49	213.174.157.140