203.158.166.6 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: Rajamangala Institute of Technology

Hostname: unknown

Organization: unknown

Usage Type: University/College/School

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Port Scan detected! ...	2020-07-11 09:09:39
attack	IP 203.158.166.6 attacked honeypot on port: 1433 at 7/9/2020 1:21:06 PM	2020-07-10 04:41:48
attackbots	firewall-block, port(s): 1433/tcp	2020-03-13 14:22:46
attackbotsspam	TH_APNIC-HM_<177>1582433769 [1:2010935:3] ET SCAN Suspicious inbound to MSSQL port 1433 [Classification: Potentially Bad Traffic] [Priority: 2] {TCP} 203.158.166.6:56634	2020-02-23 14:28:38
attack	TH_APNIC-HM_<177>1580050165 [1:2010935:3] ET SCAN Suspicious inbound to MSSQL port 1433 [Classification: Potentially Bad Traffic] [Priority: 2] {TCP} 203.158.166.6:52229	2020-01-26 23:03:35
attackbots	Port 1433 Scan	2019-10-21 08:05:34

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 203.158.166.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42608
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;203.158.166.6.			IN	A

;; AUTHORITY SECTION:
.			587	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102001 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 21 08:05:31 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 6.166.158.203.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 6.166.158.203.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
113.179.41.131	attackbots	1597117900 - 08/11/2020 05:51:40 Host: 113.179.41.131/113.179.41.131 Port: 445 TCP Blocked	2020-08-11 16:51:25
218.241.134.34	attackspam	Aug 11 05:34:42 ns382633 sshd\[15922\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.241.134.34 user=root Aug 11 05:34:44 ns382633 sshd\[15922\]: Failed password for root from 218.241.134.34 port 16897 ssh2 Aug 11 05:47:43 ns382633 sshd\[18533\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.241.134.34 user=root Aug 11 05:47:45 ns382633 sshd\[18533\]: Failed password for root from 218.241.134.34 port 36769 ssh2 Aug 11 05:52:12 ns382633 sshd\[19463\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.241.134.34 user=root	2020-08-11 16:27:29
189.18.243.210	attack	fail2ban -- 189.18.243.210 ...	2020-08-11 16:37:55
42.118.93.101	attack	1597117940 - 08/11/2020 05:52:20 Host: 42.118.93.101/42.118.93.101 Port: 445 TCP Blocked	2020-08-11 16:25:05
54.37.66.7	attack	Aug 11 07:37:03 eventyay sshd[32285]: Failed password for root from 54.37.66.7 port 50974 ssh2 Aug 11 07:40:49 eventyay sshd[32394]: Failed password for root from 54.37.66.7 port 60620 ssh2 ...	2020-08-11 16:45:19
111.229.110.107	attackspambots	[ssh] SSH attack	2020-08-11 16:39:42
120.92.109.69	attack	<6 unauthorized SSH connections	2020-08-11 16:48:21
2a01:4f8:190:14ed::2	attack	20 attempts against mh-misbehave-ban on cedar	2020-08-11 16:37:33
51.38.236.221	attackspam	<6 unauthorized SSH connections	2020-08-11 16:41:51
211.80.102.182	attackbots	2020-08-11T10:25:30.034300afi-git.jinr.ru sshd[27278]: Invalid user Passw0rdp!@# from 211.80.102.182 port 14722 2020-08-11T10:25:30.037500afi-git.jinr.ru sshd[27278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.80.102.182 2020-08-11T10:25:30.034300afi-git.jinr.ru sshd[27278]: Invalid user Passw0rdp!@# from 211.80.102.182 port 14722 2020-08-11T10:25:32.564812afi-git.jinr.ru sshd[27278]: Failed password for invalid user Passw0rdp!@# from 211.80.102.182 port 14722 ssh2 2020-08-11T10:30:26.983051afi-git.jinr.ru sshd[28605]: Invalid user Pass_123!@# from 211.80.102.182 port 4236 ...	2020-08-11 16:32:53
61.133.122.19	attackbotsspam	2020-08-11 08:09:44,470 fail2ban.actions: WARNING [ssh] Ban 61.133.122.19	2020-08-11 16:56:25
14.177.4.156	attack	1597117904 - 08/11/2020 05:51:44 Host: 14.177.4.156/14.177.4.156 Port: 445 TCP Blocked	2020-08-11 16:48:57
39.106.25.164	attackbots	Failed password for root from 39.106.25.164 port 55816 ssh2	2020-08-11 16:53:44
212.64.91.105	attack	TCP (SYN) 212.64.91.105:57977 -> port 9839, len 44	2020-08-11 16:31:07
220.134.40.20	attackbotsspam	Automatic report - Port Scan Attack	2020-08-11 16:52:54

Recently Reported IPs

185.40.12.107	176.142.120.237	80.211.183.86	202.164.36.12
178.182.230.250	125.63.188.51	118.24.201.132	79.132.191.201
128.108.168.73	76.83.92.62	31.1.70.183	169.246.192.162
150.185.198.215	10.122.215.128	14.251.202.10	160.155.159.222
69.185.107.176	83.204.138.215	65.52.209.86	159.143.225.150