103.11.242.42 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: New Zealand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.11.242.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19175
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.11.242.42.			IN	A

;; AUTHORITY SECTION:
.			265	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023102100 1800 900 604800 86400

;; Query time: 140 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 22 01:49:36 CST 2023
;; MSG SIZE  rcvd: 106

Host info

42.242.11.103.in-addr.arpa domain name pointer 103-11-242-42.xtreme.net.nz.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
42.242.11.103.in-addr.arpa	name = 103-11-242-42.xtreme.net.nz.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
213.136.64.14	attackspam	This client attempted to login to an administrator account on a Website, or abused from another resource.	2020-06-20 04:23:49
185.216.215.13	attackspambots	Unauthorised access (Jun 19) SRC=185.216.215.13 LEN=40 TTL=59 ID=57101 TCP DPT=8080 WINDOW=55121 SYN Unauthorised access (Jun 19) SRC=185.216.215.13 LEN=40 TTL=59 ID=18734 TCP DPT=8080 WINDOW=27943 SYN Unauthorised access (Jun 18) SRC=185.216.215.13 LEN=40 TTL=59 ID=45965 TCP DPT=8080 WINDOW=27943 SYN Unauthorised access (Jun 18) SRC=185.216.215.13 LEN=40 TTL=59 ID=58563 TCP DPT=8080 WINDOW=27943 SYN Unauthorised access (Jun 18) SRC=185.216.215.13 LEN=40 TTL=59 ID=30420 TCP DPT=8080 WINDOW=27943 SYN Unauthorised access (Jun 17) SRC=185.216.215.13 LEN=40 TTL=59 ID=32956 TCP DPT=8080 WINDOW=55121 SYN Unauthorised access (Jun 17) SRC=185.216.215.13 LEN=40 TTL=59 ID=30120 TCP DPT=8080 WINDOW=55121 SYN Unauthorised access (Jun 17) SRC=185.216.215.13 LEN=40 TTL=59 ID=48278 TCP DPT=8080 WINDOW=27943 SYN Unauthorised access (Jun 16) SRC=185.216.215.13 LEN=40 TTL=59 ID=14160 TCP DPT=8080 WINDOW=55121 SYN	2020-06-20 03:43:45
202.88.154.70	attackbotsspam	Unauthorised connection attempt detected at AUO FR1 NODE2. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-06-20 04:05:31
79.181.104.188	attackbots	Email rejected due to spam filtering	2020-06-20 04:10:48
157.230.227.112	attack	www.xn--netzfundstckderwoche-yec.de 157.230.227.112 [19/Jun/2020:14:11:05 +0200] "POST /wp-login.php HTTP/1.1" 200 6031 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" www.xn--netzfundstckderwoche-yec.de 157.230.227.112 [19/Jun/2020:14:11:11 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-20 03:53:22
222.139.245.70	attackspam	Jun 19 21:09:25 vpn01 sshd[28903]: Failed password for root from 222.139.245.70 port 44578 ssh2 ...	2020-06-20 04:02:29
106.13.203.171	attack	Jun 19 21:43:53 ns37 sshd[15009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.203.171 Jun 19 21:43:55 ns37 sshd[15009]: Failed password for invalid user admindb from 106.13.203.171 port 31456 ssh2 Jun 19 21:47:10 ns37 sshd[16142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.203.171	2020-06-20 03:56:58
112.3.30.121	attackspam	2020-06-19T19:09:38.739158v22018076590370373 sshd[6928]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.3.30.121 2020-06-19T19:09:38.732485v22018076590370373 sshd[6928]: Invalid user marianela from 112.3.30.121 port 52302 2020-06-19T19:09:40.344957v22018076590370373 sshd[6928]: Failed password for invalid user marianela from 112.3.30.121 port 52302 ssh2 2020-06-19T19:18:16.023993v22018076590370373 sshd[10983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.3.30.121 user=root 2020-06-19T19:18:17.739927v22018076590370373 sshd[10983]: Failed password for root from 112.3.30.121 port 51560 ssh2 ...	2020-06-20 04:13:08
49.82.192.227	attackspam	Email rejected due to spam filtering	2020-06-20 04:10:20
152.136.119.164	attackspambots	Jun 19 12:04:16 pbkit sshd[68636]: Invalid user bamboo from 152.136.119.164 port 40734 Jun 19 12:04:18 pbkit sshd[68636]: Failed password for invalid user bamboo from 152.136.119.164 port 40734 ssh2 Jun 19 12:11:22 pbkit sshd[68818]: Invalid user asi from 152.136.119.164 port 58088 ...	2020-06-20 03:45:22
144.217.60.239	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 5a5be09b7fdc3f9f \| WAF_Rule_ID: torfallback \| WAF_Kind: firewall \| CF_Action: challenge \| Country: T1 \| CF_IPClass: tor \| Protocol: HTTP/1.1 \| Method: GET \| Host: wevg.org \| User-Agent: Mozilla/5.0 (Linux; Android 9; SM-N960F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.89 Mobile Safari/537.36 \| CF_DC: YUL. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2020-06-20 03:58:43
49.88.112.112	attackspambots	Jun 19 16:13:57 plusreed sshd[24676]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.112 user=root Jun 19 16:13:59 plusreed sshd[24676]: Failed password for root from 49.88.112.112 port 51567 ssh2 ...	2020-06-20 04:20:28
212.8.51.143	attackspambots	Jun 19 21:45:15 electroncash sshd[44470]: Failed password for root from 212.8.51.143 port 40464 ssh2 Jun 19 21:49:36 electroncash sshd[45693]: Invalid user jlopez from 212.8.51.143 port 42990 Jun 19 21:49:36 electroncash sshd[45693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.8.51.143 Jun 19 21:49:36 electroncash sshd[45693]: Invalid user jlopez from 212.8.51.143 port 42990 Jun 19 21:49:39 electroncash sshd[45693]: Failed password for invalid user jlopez from 212.8.51.143 port 42990 ssh2 ...	2020-06-20 03:57:15
14.169.166.206	attack	2020-06-19T15:11:10.910968ollin.zadara.org sshd[106149]: Invalid user admin from 14.169.166.206 port 58035 2020-06-19T15:11:13.426994ollin.zadara.org sshd[106149]: Failed password for invalid user admin from 14.169.166.206 port 58035 ssh2 ...	2020-06-20 03:51:22
117.251.69.136	attack	DATE:2020-06-19 14:10:25, IP:117.251.69.136, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-06-20 04:20:00

Recently Reported IPs

103.11.228.74	103.11.233.137	103.11.246.69	103.11.224.58
103.11.230.115	103.11.225.136	103.11.249.246	103.11.223.240
103.11.213.252	103.11.25.255	103.11.216.76	103.11.212.238
103.11.195.246	103.11.201.130	103.11.19.8	103.11.202.248
103.11.205.135	103.11.186.47	103.11.160.56	103.11.18.129