111.162.142.6 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
111.162.142.165	attack	Unauthorized connection attempt detected from IP address 111.162.142.165 to port 8080 [J]	2020-01-29 06:44:32
111.162.142.196	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54148103e89592e0 \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/4.066686748 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1) \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:15:52

Type

Details

Datetime

111.162.142.165

attack

Unauthorized connection attempt detected from IP address 111.162.142.165 to port 8080 [J]

2020-01-29 06:44:32

111.162.142.196

attack

The IP has triggered Cloudflare WAF. CF-Ray: 54148103e89592e0 | WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: d.skk.moe | User-Agent: Mozilla/4.066686748 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1) | CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 04:15:52

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 111.162.142.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27912
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;111.162.142.6.			IN	A

;; AUTHORITY SECTION:
.			39	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400

;; Query time: 149 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 11:00:52 CST 2022
;; MSG SIZE  rcvd: 106

Host info

6.142.162.111.in-addr.arpa domain name pointer dns6.online.tj.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
6.142.162.111.in-addr.arpa	name = dns6.online.tj.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.145.172.22	attackspam	SSH/22 MH Probe, BF, Hack -	2020-09-16 02:11:19
162.252.57.173	attack	Invalid user ftpuser from 162.252.57.173 port 58018	2020-09-16 02:37:58
77.37.203.230	attack	Sep 15 14:01:35 ws22vmsma01 sshd[16234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.37.203.230 ...	2020-09-16 02:01:38
177.139.136.73	attack	Sep 15 19:38:04 fhem-rasp sshd[26067]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.139.136.73 user=root Sep 15 19:38:06 fhem-rasp sshd[26067]: Failed password for root from 177.139.136.73 port 40354 ssh2 ...	2020-09-16 02:14:45
87.110.181.30	attack	$f2bV_matches	2020-09-16 02:24:47
216.158.233.4	attackbots	2020-09-15T01:01:55.771442hostname sshd[77583]: Failed password for root from 216.158.233.4 port 42664 ssh2 ...	2020-09-16 02:13:52
41.39.77.233	attackbots	20/9/14@12:56:59: FAIL: Alarm-Network address from=41.39.77.233 20/9/14@12:56:59: FAIL: Alarm-Network address from=41.39.77.233 ...	2020-09-16 02:20:59
213.32.31.108	attack	SSH Bruteforce attack	2020-09-16 02:21:17
197.149.91.90	attackspambots	Sep 14 18:56:56 neko-world sshd[5724]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.149.91.90 Sep 14 18:56:58 neko-world sshd[5724]: Failed password for invalid user admin1 from 197.149.91.90 port 63040 ssh2	2020-09-16 02:21:44
222.186.169.194	attack	Sep 16 04:18:25 localhost sshd[3933266]: Unable to negotiate with 222.186.169.194 port 56340: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] ...	2020-09-16 02:19:55
103.145.12.227	attackspambots	[2020-09-15 14:20:34] NOTICE[1239][C-000041fa] chan_sip.c: Call from '' (103.145.12.227:57394) to extension '901146812410910' rejected because extension not found in context 'public'. [2020-09-15 14:20:34] SECURITY[1264] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-15T14:20:34.855-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="901146812410910",SessionID="0x7f4d482e4338",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.145.12.227/57394",ACLName="no_extension_match" [2020-09-15 14:22:18] NOTICE[1239][C-000041fd] chan_sip.c: Call from '' (103.145.12.227:63659) to extension '801146812410910' rejected because extension not found in context 'public'. ...	2020-09-16 02:32:53
104.131.84.225	attackspambots	SSH bruteforce	2020-09-16 02:10:29
161.35.73.66	attackspambots	prod6 ...	2020-09-16 02:17:57
61.1.217.120	attackbots	Unauthorised access (Sep 14) SRC=61.1.217.120 LEN=52 TTL=111 ID=18201 DF TCP DPT=445 WINDOW=8192 SYN	2020-09-16 02:10:53
68.183.198.25	attack	Automatic report - Port Scan Attack	2020-09-16 02:12:51

Recently Reported IPs

111.162.143.196	111.162.145.152	111.162.145.193	111.162.146.164
111.162.145.63	111.162.144.72	111.162.152.79	111.162.155.33
111.162.159.247	111.162.155.99	111.162.146.174	111.162.159.43
111.162.157.4	111.162.152.59	111.163.181.242	111.164.178.137
111.182.83.69	111.19.45.138	111.19.34.248	111.19.32.242