111.162.143.139

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
111.162.143.193	attack	Unauthorized connection attempt detected from IP address 111.162.143.193 to port 443	2019-12-31 06:31:24
111.162.143.101	attack	The IP has triggered Cloudflare WAF. CF-Ray: 543418c63dbfe7a4 \| WAF_Rule_ID: 1112825 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: blog.skk.moe \| User-Agent: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Mobile Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 02:23:44

Type

Details

Datetime

111.162.143.193

attack

Unauthorized connection attempt detected from IP address 111.162.143.193 to port 443

2019-12-31 06:31:24

111.162.143.101

attack

The IP has triggered Cloudflare WAF. CF-Ray: 543418c63dbfe7a4 | WAF_Rule_ID: 1112825 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: blog.skk.moe | User-Agent: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Mobile Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-12 02:23:44

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 111.162.143.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49843
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;111.162.143.139.		IN	A

;; AUTHORITY SECTION:
.			421	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022001 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 21 05:37:43 CST 2022
;; MSG SIZE  rcvd: 108

Host info

139.143.162.111.in-addr.arpa domain name pointer dns139.online.tj.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
139.143.162.111.in-addr.arpa	name = dns139.online.tj.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
116.118.122.102	attackbots	Invalid user admin from 116.118.122.102 port 44357	2019-08-24 00:06:02
149.56.43.120	attack	WordPress XMLRPC scan :: 149.56.43.120 0.164 BYPASS [24/Aug/2019:02:23:18 1000] www.[censored_1] "POST /xmlrpc.php HTTP/1.1" 200 382 "https://www.[censored_1]/" "PHP/5.3.48"	2019-08-24 00:30:53
144.34.221.47	attackbotsspam	Aug 23 13:20:33 vtv3 sshd\[23134\]: Invalid user testuser from 144.34.221.47 port 35720 Aug 23 13:20:33 vtv3 sshd\[23134\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.34.221.47 Aug 23 13:20:35 vtv3 sshd\[23134\]: Failed password for invalid user testuser from 144.34.221.47 port 35720 ssh2 Aug 23 13:24:40 vtv3 sshd\[24779\]: Invalid user web1 from 144.34.221.47 port 53086 Aug 23 13:24:40 vtv3 sshd\[24779\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.34.221.47 Aug 23 13:36:43 vtv3 sshd\[31209\]: Invalid user operador from 144.34.221.47 port 48702 Aug 23 13:36:43 vtv3 sshd\[31209\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.34.221.47 Aug 23 13:36:45 vtv3 sshd\[31209\]: Failed password for invalid user operador from 144.34.221.47 port 48702 ssh2 Aug 23 13:40:48 vtv3 sshd\[829\]: Invalid user riverdal from 144.34.221.47 port 37830 Aug 23 13:40:48 vtv3 sshd\[82	2019-08-24 00:47:21
134.209.157.153	attack	Invalid user fake from 134.209.157.153 port 33030	2019-08-23 23:54:16
77.81.238.70	attack	Invalid user attachments from 77.81.238.70 port 59504	2019-08-24 00:24:03
104.248.174.126	attackspam	Aug 23 16:45:02 mail sshd\[7709\]: Failed password for invalid user mxintadm from 104.248.174.126 port 60192 ssh2 Aug 23 17:02:02 mail sshd\[8043\]: Invalid user jamal from 104.248.174.126 port 37716 Aug 23 17:02:02 mail sshd\[8043\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.174.126 ...	2019-08-24 00:14:14
139.59.25.230	attack	Invalid user applmgr from 139.59.25.230 port 58996	2019-08-23 23:53:04
103.28.219.143	attackspambots	Aug 23 18:18:31 legacy sshd[5877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.28.219.143 Aug 23 18:18:33 legacy sshd[5877]: Failed password for invalid user abuse from 103.28.219.143 port 60351 ssh2 Aug 23 18:23:22 legacy sshd[5942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.28.219.143 ...	2019-08-24 00:26:44
202.43.164.46	attackbotsspam	Aug 23 06:37:13 hanapaa sshd\[5428\]: Invalid user webtest from 202.43.164.46 Aug 23 06:37:13 hanapaa sshd\[5428\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.43.164.46 Aug 23 06:37:15 hanapaa sshd\[5428\]: Failed password for invalid user webtest from 202.43.164.46 port 42060 ssh2 Aug 23 06:44:17 hanapaa sshd\[6207\]: Invalid user p_l_sumanth from 202.43.164.46 Aug 23 06:44:17 hanapaa sshd\[6207\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.43.164.46	2019-08-24 00:48:46
106.12.218.209	attackbotsspam	Aug 23 18:23:19 herz-der-gamer sshd[26898]: Invalid user www from 106.12.218.209 port 39763 Aug 23 18:23:19 herz-der-gamer sshd[26898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.218.209 Aug 23 18:23:19 herz-der-gamer sshd[26898]: Invalid user www from 106.12.218.209 port 39763 Aug 23 18:23:21 herz-der-gamer sshd[26898]: Failed password for invalid user www from 106.12.218.209 port 39763 ssh2 ...	2019-08-24 00:28:02
121.136.119.7	attackspam	Aug 23 06:18:15 auw2 sshd\[31848\]: Invalid user mariano from 121.136.119.7 Aug 23 06:18:15 auw2 sshd\[31848\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.136.119.7 Aug 23 06:18:18 auw2 sshd\[31848\]: Failed password for invalid user mariano from 121.136.119.7 port 57026 ssh2 Aug 23 06:23:21 auw2 sshd\[32310\]: Invalid user sdtdserver from 121.136.119.7 Aug 23 06:23:21 auw2 sshd\[32310\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.136.119.7	2019-08-24 00:25:29
54.201.249.3	attack	Automatic report - Banned IP Access	2019-08-24 00:35:44
107.172.3.124	attackspam	ssh failed login	2019-08-24 00:11:51
150.223.21.177	attackspam	Automated report - ssh fail2ban: Aug 23 16:34:55 authentication failure Aug 23 16:34:57 wrong password, user=shashi, port=40003, ssh2 Aug 23 16:41:07 authentication failure	2019-08-23 23:50:13
92.222.216.81	attackspam	Reported by AbuseIPDB proxy server.	2019-08-24 00:19:07

Recently Reported IPs

111.15.202.21	111.15.42.176	111.162.147.140	111.162.147.95
111.162.150.176	111.16.99.31	111.162.153.116	15.122.66.231
111.249.56.169	111.250.198.159	111.250.93.148	111.246.218.70
111.249.130.73	111.251.194.229	111.25.154.162	111.248.246.99
111.246.114.7	111.25.74.108	111.25.12.91	111.253.137.181