103.42.57.217 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
103.42.57.65	attackbotsspam	May 25 08:10:17 abendstille sshd\[18328\]: Invalid user test1 from 103.42.57.65 May 25 08:10:17 abendstille sshd\[18328\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.42.57.65 May 25 08:10:19 abendstille sshd\[18328\]: Failed password for invalid user test1 from 103.42.57.65 port 47814 ssh2 May 25 08:14:31 abendstille sshd\[22355\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.42.57.65 user=root May 25 08:14:34 abendstille sshd\[22355\]: Failed password for root from 103.42.57.65 port 52512 ssh2 ...	2020-05-25 16:57:01
103.42.57.65	attackbots	19. On May 18 2020 experienced a Brute Force SSH login attempt -> 1 unique times by 103.42.57.65.	2020-05-20 18:29:25
103.42.57.65	attack	2020-05-14T16:33:29.0401641495-001 sshd[45891]: Failed password for root from 103.42.57.65 port 51326 ssh2 2020-05-14T16:35:56.9448891495-001 sshd[45998]: Invalid user arthur from 103.42.57.65 port 43566 2020-05-14T16:35:56.9492191495-001 sshd[45998]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.42.57.65 2020-05-14T16:35:56.9448891495-001 sshd[45998]: Invalid user arthur from 103.42.57.65 port 43566 2020-05-14T16:35:59.4215111495-001 sshd[45998]: Failed password for invalid user arthur from 103.42.57.65 port 43566 ssh2 2020-05-14T16:38:28.4860901495-001 sshd[46117]: Invalid user pa from 103.42.57.65 port 34540 ...	2020-05-15 05:28:02
103.42.57.65	attackbots	$f2bV_matches	2020-05-12 03:51:58
103.42.57.65	attack	2020-05-06T14:20:09.686690linuxbox-skyline sshd[221183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.42.57.65 user=root 2020-05-06T14:20:11.766512linuxbox-skyline sshd[221183]: Failed password for root from 103.42.57.65 port 60402 ssh2 ...	2020-05-07 07:11:34
103.42.57.65	attackbotsspam	$f2bV_matches	2020-05-05 02:57:44
103.42.57.65	attackspam	$f2bV_matches	2020-04-29 13:47:08
103.42.57.65	attack	Apr 26 06:58:50 124388 sshd[14807]: Invalid user lxr from 103.42.57.65 port 33546 Apr 26 06:58:50 124388 sshd[14807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.42.57.65 Apr 26 06:58:50 124388 sshd[14807]: Invalid user lxr from 103.42.57.65 port 33546 Apr 26 06:58:52 124388 sshd[14807]: Failed password for invalid user lxr from 103.42.57.65 port 33546 ssh2 Apr 26 07:01:10 124388 sshd[14957]: Invalid user bloomberg from 103.42.57.65 port 44854	2020-04-26 16:05:54
103.42.57.65	attack	Apr 23 17:14:18 *** sshd[19942]: Invalid user rh from 103.42.57.65	2020-04-24 02:22:16
103.42.57.65	attack	Apr 21 09:38:56 server sshd[22267]: Failed password for root from 103.42.57.65 port 40574 ssh2 Apr 21 09:43:21 server sshd[25552]: Failed password for invalid user test from 103.42.57.65 port 48030 ssh2 Apr 21 09:47:31 server sshd[28375]: Failed password for root from 103.42.57.65 port 55482 ssh2	2020-04-21 18:58:11
103.42.57.65	attack	Invalid user bmuuser from 103.42.57.65 port 46266	2020-04-18 07:57:49
103.42.57.65	attackspambots	(sshd) Failed SSH login from 103.42.57.65 (VN/Vietnam/57-65.ip.vnptcorp.com): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 15 11:35:38 ubnt-55d23 sshd[31761]: Invalid user casen from 103.42.57.65 port 40124 Apr 15 11:35:40 ubnt-55d23 sshd[31761]: Failed password for invalid user casen from 103.42.57.65 port 40124 ssh2	2020-04-15 17:54:24
103.42.57.65	attack	2020-04-14T04:35:05.661619abusebot-3.cloudsearch.cf sshd[7700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.42.57.65 user=root 2020-04-14T04:35:07.866547abusebot-3.cloudsearch.cf sshd[7700]: Failed password for root from 103.42.57.65 port 36478 ssh2 2020-04-14T04:40:13.345359abusebot-3.cloudsearch.cf sshd[7969]: Invalid user selena from 103.42.57.65 port 55020 2020-04-14T04:40:13.352113abusebot-3.cloudsearch.cf sshd[7969]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.42.57.65 2020-04-14T04:40:13.345359abusebot-3.cloudsearch.cf sshd[7969]: Invalid user selena from 103.42.57.65 port 55020 2020-04-14T04:40:14.842188abusebot-3.cloudsearch.cf sshd[7969]: Failed password for invalid user selena from 103.42.57.65 port 55020 ssh2 2020-04-14T04:44:27.681760abusebot-3.cloudsearch.cf sshd[8308]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.42.57.65 user=r ...	2020-04-14 13:08:00
103.42.57.65	attackbotsspam	Apr 6 02:11:55 nextcloud sshd\[17744\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.42.57.65 user=root Apr 6 02:11:57 nextcloud sshd\[17744\]: Failed password for root from 103.42.57.65 port 45276 ssh2 Apr 6 02:16:09 nextcloud sshd\[22475\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.42.57.65 user=root	2020-04-06 08:23:11
103.42.57.65	attackspambots	SSH Brute Force	2020-04-05 16:53:32

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.42.57.217
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13855
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.42.57.217.			IN	A

;; AUTHORITY SECTION:
.			161	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022031701 1800 900 604800 86400

;; Query time: 183 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 18 07:04:37 CST 2022
;; MSG SIZE  rcvd: 106

Host info

217.57.42.103.in-addr.arpa domain name pointer 57-217.ip.vnptcorp.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
217.57.42.103.in-addr.arpa	name = 57-217.ip.vnptcorp.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
124.82.3.252	attackspam	Automatic report - XMLRPC Attack	2020-08-30 21:52:51
120.92.109.67	attackspambots	Aug 30 13:15:18 jumpserver sshd[106692]: Invalid user oracle from 120.92.109.67 port 50666 Aug 30 13:15:20 jumpserver sshd[106692]: Failed password for invalid user oracle from 120.92.109.67 port 50666 ssh2 Aug 30 13:19:10 jumpserver sshd[106743]: Invalid user webadmin from 120.92.109.67 port 27470 ...	2020-08-30 22:23:18
116.25.46.156	attack	Unauthorized connection attempt from IP address 116.25.46.156 on Port 445(SMB)	2020-08-30 22:05:10
129.208.71.156	attackspam	Unauthorized connection attempt from IP address 129.208.71.156 on Port 445(SMB)	2020-08-30 22:06:55
43.229.153.13	attackspam	Aug 30 15:56:30 sso sshd[9532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.229.153.13 Aug 30 15:56:31 sso sshd[9532]: Failed password for invalid user db2fenc1 from 43.229.153.13 port 54787 ssh2 ...	2020-08-30 22:11:26
220.135.16.138	attack	Unauthorized connection attempt from IP address 220.135.16.138 on Port 445(SMB)	2020-08-30 22:23:39
103.87.212.10	attackbotsspam	Aug 30 05:15:06 mockhub sshd[20057]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.87.212.10 Aug 30 05:15:08 mockhub sshd[20057]: Failed password for invalid user compta from 103.87.212.10 port 40970 ssh2 ...	2020-08-30 22:30:39
45.129.33.60	attack	scans 14 times in preceeding hours on the ports (in chronological order) 36788 36809 36607 36565 36842 36822 36704 36830 36775 36560 36614 36882 36622 36826 resulting in total of 117 scans from 45.129.33.0/24 block.	2020-08-30 22:07:36
174.84.186.113	attackbotsspam	IP 174.84.186.113 attacked honeypot on port: 23 at 8/30/2020 5:15:22 AM	2020-08-30 21:55:55
179.222.123.239	attackspambots	Unauthorized connection attempt from IP address 179.222.123.239 on Port 445(SMB)	2020-08-30 22:22:47
157.230.28.120	attackbotsspam	Postfix SMTP rejection	2020-08-30 22:00:20
200.66.82.250	attackbots	Failed password for invalid user cloud from 200.66.82.250 port 46338 ssh2	2020-08-30 22:08:05
116.107.74.150	attackspam	Unauthorized connection attempt from IP address 116.107.74.150 on Port 445(SMB)	2020-08-30 22:25:34
5.188.158.147	attackspam	RDP brute force attack detected by fail2ban	2020-08-30 22:10:34
83.221.222.91	attack	Unauthorized connection attempt from IP address 83.221.222.91 on Port 445(SMB)	2020-08-30 22:10:07

Recently Reported IPs

103.42.57.15	103.43.75.250	103.44.238.253	103.44.251.55
103.45.110.19	103.45.134.212	103.45.150.221	103.46.203.139
193.185.151.238	103.48.17.239	103.48.192.13	103.48.192.148
103.48.192.190	103.48.68.35	103.48.80.116	103.48.80.180
103.48.82.152	103.49.141.34	103.49.172.156	103.5.151.212