1.243.113.142 - IPInfo

Basic Info

City: Incheon

Region: Incheon

Country: South Korea

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.243.113.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35080
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.243.113.142.			IN	A

;; AUTHORITY SECTION:
.			425	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112802 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 29 04:40:05 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 142.113.243.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.113.243.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
171.36.227.57	attack	TCP port 23 (Telnet) attempt blocked by firewall. [2019-07-18 03:14:27]	2019-07-18 16:53:09
65.48.219.28	attackbots	Jul 18 06:24:04 microserver sshd[56877]: Invalid user fork from 65.48.219.28 port 59722 Jul 18 06:24:04 microserver sshd[56877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.48.219.28 Jul 18 06:24:06 microserver sshd[56877]: Failed password for invalid user fork from 65.48.219.28 port 59722 ssh2 Jul 18 06:28:15 microserver sshd[57504]: Invalid user ks from 65.48.219.28 port 43330 Jul 18 06:28:15 microserver sshd[57504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.48.219.28 Jul 18 06:40:38 microserver sshd[59416]: Invalid user toto from 65.48.219.28 port 50622 Jul 18 06:40:38 microserver sshd[59416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.48.219.28 Jul 18 06:40:40 microserver sshd[59416]: Failed password for invalid user toto from 65.48.219.28 port 50622 ssh2 Jul 18 06:44:44 microserver sshd[59667]: Invalid user 6 from 65.48.219.28 port 34224 Jul 18 06:44:44 microserv	2019-07-18 16:49:14
185.220.31.246	attack	[ ?? ] From bounce5@pegandopromocao.com.br Wed Jul 17 22:17:00 2019 Received: from host2.pegandopromocao.com.br ([185.220.31.246]:34644)	2019-07-18 16:12:34
104.248.183.0	attackbots	SSH Brute Force, server-1 sshd[2862]: Failed password for invalid user simona from 104.248.183.0 port 35728 ssh2	2019-07-18 16:36:59
184.105.139.104	attackbotsspam	scan z	2019-07-18 16:22:12
27.2.193.26	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-17 02:55:01,812 INFO [shellcode_manager] (27.2.193.26) no match, writing hexdump (50f37894c23399527072a7372b84cdf1 :2098521) - MS17010 (EternalBlue)	2019-07-18 16:27:05
102.165.52.145	attack	\[2019-07-18 03:59:51\] SECURITY\[20812\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-18T03:59:51.581-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="2960048422069037",SessionID="0x7f06f823f758",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/102.165.52.145/51568",ACLName="no_extension_match" \[2019-07-18 03:59:52\] SECURITY\[20812\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-18T03:59:52.255-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="02990048422069034",SessionID="0x7f06f80754e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/102.165.52.145/53330",ACLName="no_extension_match" \[2019-07-18 04:01:26\] SECURITY\[20812\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-18T04:01:26.242-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="03000048422069034",SessionID="0x7f06f85ff978",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/102.165.52.145/54596",ACLN	2019-07-18 16:20:21
218.92.0.175	attackspambots	Jul 18 09:23:02 lnxded64 sshd[21933]: Failed password for root from 218.92.0.175 port 48959 ssh2 Jul 18 09:23:05 lnxded64 sshd[21933]: Failed password for root from 218.92.0.175 port 48959 ssh2 Jul 18 09:23:08 lnxded64 sshd[21933]: Failed password for root from 218.92.0.175 port 48959 ssh2 Jul 18 09:23:10 lnxded64 sshd[21933]: Failed password for root from 218.92.0.175 port 48959 ssh2	2019-07-18 16:23:54
37.139.4.138	attackbotsspam	SSH Brute Force, server-1 sshd[2842]: Failed password for invalid user open from 37.139.4.138 port 60368 ssh2	2019-07-18 16:39:35
138.197.152.113	attack	Jul 18 09:52:32 legacy sshd[7983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.152.113 Jul 18 09:52:34 legacy sshd[7983]: Failed password for invalid user paul from 138.197.152.113 port 41910 ssh2 Jul 18 09:58:56 legacy sshd[8218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.152.113 ...	2019-07-18 16:11:04
81.111.52.38	attack	Jul 15 22:08:34 sanyalnet-awsem3-1 sshd[32574]: Connection from 81.111.52.38 port 36968 on 172.30.0.184 port 22 Jul 15 22:08:37 sanyalnet-awsem3-1 sshd[32574]: Invalid user mao from 81.111.52.38 Jul 15 22:08:39 sanyalnet-awsem3-1 sshd[32574]: Failed password for invalid user mao from 81.111.52.38 port 36968 ssh2 Jul 15 22:08:39 sanyalnet-awsem3-1 sshd[32574]: Received disconnect from 81.111.52.38: 11: Bye Bye [preauth] Jul 15 22:55:25 sanyalnet-awsem3-1 sshd[2119]: Connection from 81.111.52.38 port 53888 on 172.30.0.184 port 22 Jul 15 22:55:29 sanyalnet-awsem3-1 sshd[2119]: Invalid user xk from 81.111.52.38 Jul 15 22:55:31 sanyalnet-awsem3-1 sshd[2119]: Failed password for invalid user xk from 81.111.52.38 port 53888 ssh2 Jul 15 22:55:31 sanyalnet-awsem3-1 sshd[2119]: Received disconnect from 81.111.52.38: 11: Bye Bye [preauth] Jul 15 23:22:53 sanyalnet-awsem3-1 sshd[3332]: Connection from 81.111.52.38 port 54772 on 172.30.0.184 port 22 Jul 15 23:22:57 sanyalnet-awsem3-........ -------------------------------	2019-07-18 16:54:03
113.215.221.36	attack	Jul 18 07:46:11 pl3server sshd[2937894]: Invalid user admin from 113.215.221.36 Jul 18 07:46:11 pl3server sshd[2937894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.215.221.36 Jul 18 07:46:12 pl3server sshd[2937894]: Failed password for invalid user admin from 113.215.221.36 port 60461 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=113.215.221.36	2019-07-18 16:50:38
103.120.224.150	attackbotsspam	SSH Brute Force, server-1 sshd[2874]: Failed password for invalid user gb from 103.120.224.150 port 1284 ssh2	2019-07-18 16:37:34
124.41.211.27	attackspambots	SSH Brute Force, server-1 sshd[2883]: Failed password for root from 124.41.211.27 port 55562 ssh2	2019-07-18 16:36:36
119.84.139.240	attackbotsspam	RDP brute forcing (d)	2019-07-18 16:46:11

Recently Reported IPs

214.136.170.236	224.88.23.42	113.227.77.161	123.24.189.231
10.185.170.235	124.63.125.76	209.239.69.104	129.23.60.147
59.169.22.172	40.200.40.86	131.175.175.17	230.161.223.21
203.99.123.25	23.218.168.151	21.125.144.254	29.67.239.150
119.164.193.17	216.92.254.250	74.201.229.239	66.12.166.253