203.142.81.166

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: Biznet ISP

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	SSH brute force	2020-08-27 09:28:24
attackbotsspam	Aug 25 04:53:48 dignus sshd[19451]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.142.81.166 Aug 25 04:53:50 dignus sshd[19451]: Failed password for invalid user user from 203.142.81.166 port 46698 ssh2 Aug 25 05:00:12 dignus sshd[20389]: Invalid user norberto from 203.142.81.166 port 44838 Aug 25 05:00:12 dignus sshd[20389]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.142.81.166 Aug 25 05:00:14 dignus sshd[20389]: Failed password for invalid user norberto from 203.142.81.166 port 44838 ssh2 ...	2020-08-25 20:19:58
attack	Port Scan detected from 203.142.81.166 (ID/Indonesia/Jakarta/Jakarta/-). 4 hits in the last 185 seconds	2020-08-15 14:52:41
attackspambots	2020-08-09T15:06:27.407653n23.at sshd[3955149]: Failed password for root from 203.142.81.166 port 34811 ssh2 2020-08-09T15:11:08.814136n23.at sshd[3958796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.142.81.166 user=root 2020-08-09T15:11:11.547465n23.at sshd[3958796]: Failed password for root from 203.142.81.166 port 40204 ssh2 ...	2020-08-09 21:45:09
attackbots	Aug 4 21:07:48 ip106 sshd[4287]: Failed password for root from 203.142.81.166 port 60032 ssh2 ...	2020-08-05 08:11:33
attackspam	prod11 ...	2020-07-26 03:05:05
attack	Invalid user rq from 203.142.81.166 port 44238	2020-07-24 04:15:54
attackbots	Scanned 3 times in the last 24 hours on port 22	2020-07-22 08:59:56
attack	Invalid user worker from 203.142.81.166 port 51729	2020-07-20 13:22:53

Comments on same subnet:

IP	Type	Details	Datetime
203.142.81.114	attackspambots	SSH Brute Force, server-1 sshd[27199]: Failed password for invalid user spider from 203.142.81.114 port 40622 ssh2	2019-07-26 02:58:34
203.142.81.114	attack	SSH Brute Force, server-1 sshd[29990]: Failed password for invalid user tms from 203.142.81.114 port 45756 ssh2	2019-07-25 06:17:34
203.142.81.114	attack	Jul 21 10:47:34 rpi sshd[30070]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.142.81.114 Jul 21 10:47:35 rpi sshd[30070]: Failed password for invalid user admin from 203.142.81.114 port 43766 ssh2	2019-07-21 17:03:08

Type

Details

Datetime

203.142.81.114

attackspambots

SSH Brute Force, server-1 sshd[27199]: Failed password for invalid user spider from 203.142.81.114 port 40622 ssh2

2019-07-26 02:58:34

203.142.81.114

attack

SSH Brute Force, server-1 sshd[29990]: Failed password for invalid user tms from 203.142.81.114 port 45756 ssh2

2019-07-25 06:17:34

203.142.81.114

attack

Jul 21 10:47:34 rpi sshd[30070]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.142.81.114 
Jul 21 10:47:35 rpi sshd[30070]: Failed password for invalid user admin from 203.142.81.114 port 43766 ssh2

2019-07-21 17:03:08

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 203.142.81.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11255
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;203.142.81.166.			IN	A

;; AUTHORITY SECTION:
.			579	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020071901 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jul 20 13:22:45 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 166.81.142.203.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 166.81.142.203.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
133.167.73.30	attackbots	Jul 19 09:02:14 minden010 sshd[30364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.167.73.30 Jul 19 09:02:16 minden010 sshd[30364]: Failed password for invalid user backuper from 133.167.73.30 port 41634 ssh2 Jul 19 09:07:34 minden010 sshd[32211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.167.73.30 ...	2019-07-19 16:14:43
89.175.153.158	attackspambots	2019-07-19 01:00:38 H=(cmm-g-03.moscow.access.comstar.ru) [89.175.153.158]:44215 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-07-19 01:00:38 H=(cmm-g-03.moscow.access.comstar.ru) [89.175.153.158]:44215 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-07-19 01:00:39 H=(cmm-g-03.moscow.access.comstar.ru) [89.175.153.158]:44215 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/query/ip/89.175.153.158) ...	2019-07-19 15:56:54
117.254.63.174	attackbotsspam	Unauthorised access (Jul 19) SRC=117.254.63.174 LEN=52 PREC=0x20 TTL=109 ID=6055 DF TCP DPT=445 WINDOW=8192 SYN	2019-07-19 15:55:33
40.112.65.88	attackspambots	Jul 19 10:19:51 legacy sshd[29568]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.112.65.88 Jul 19 10:19:53 legacy sshd[29568]: Failed password for invalid user sicher from 40.112.65.88 port 54204 ssh2 Jul 19 10:25:15 legacy sshd[29718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.112.65.88 ...	2019-07-19 16:27:59
81.218.176.146	attackspambots	Jul 19 07:00:12 XXX sshd[2719]: Invalid user git from 81.218.176.146 port 60508	2019-07-19 16:19:24
45.55.224.209	attackspambots	Jul 19 09:47:14 eventyay sshd[22788]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.224.209 Jul 19 09:47:16 eventyay sshd[22788]: Failed password for invalid user jenns from 45.55.224.209 port 59365 ssh2 Jul 19 09:51:52 eventyay sshd[24043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.224.209 ...	2019-07-19 15:53:48
61.19.72.46	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-19 04:34:26,880 INFO [amun_request_handler] PortScan Detected on Port: 445 (61.19.72.46)	2019-07-19 16:54:09
129.28.57.8	attackspambots	Jul 19 03:59:28 TORMINT sshd\[2574\]: Invalid user bbb from 129.28.57.8 Jul 19 03:59:28 TORMINT sshd\[2574\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.57.8 Jul 19 03:59:30 TORMINT sshd\[2574\]: Failed password for invalid user bbb from 129.28.57.8 port 52604 ssh2 ...	2019-07-19 16:15:17
61.147.103.184	attackbotsspam	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-07-19 15:51:33
158.69.22.218	attackspambots	Jul 19 10:09:42 server sshd[27817]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.22.218 ...	2019-07-19 16:13:23
54.39.51.31	attack	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.51.31 Failed password for invalid user eddie from 54.39.51.31 port 35242 ssh2 Invalid user app from 54.39.51.31 port 33628 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.51.31 Failed password for invalid user app from 54.39.51.31 port 33628 ssh2	2019-07-19 16:31:58
197.231.204.182	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-19 04:35:22,566 INFO [amun_request_handler] PortScan Detected on Port: 445 (197.231.204.182)	2019-07-19 16:34:19
36.67.226.223	attackspam	Jul 19 04:41:07 vps200512 sshd\[26787\]: Invalid user mm from 36.67.226.223 Jul 19 04:41:07 vps200512 sshd\[26787\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.67.226.223 Jul 19 04:41:09 vps200512 sshd\[26787\]: Failed password for invalid user mm from 36.67.226.223 port 41366 ssh2 Jul 19 04:46:40 vps200512 sshd\[26879\]: Invalid user test from 36.67.226.223 Jul 19 04:46:40 vps200512 sshd\[26879\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.67.226.223	2019-07-19 16:50:12
209.97.147.208	attackspambots	ssh failed login	2019-07-19 16:32:57
78.187.225.226	attack	SMB Server BruteForce Attack	2019-07-19 16:28:40

Recently Reported IPs

213.230.93.195	2.143.50.38	218.108.87.168	104.168.167.224
13.233.1.145	91.32.215.124	84.228.95.204	197.15.39.114
180.76.135.123	138.226.5.175	123.192.68.184	119.202.72.186
120.241.134.52	89.187.168.138	156.210.29.89	52.149.210.52
206.124.129.141	117.50.7.14	1.10.220.185	134.255.235.192