111.200.242.42

Basic Info

City: Beijing

Region: Beijing

Country: China

Internet Service Provider: China Unicom

Hostname: unknown

Organization: China Unicom Beijing Province Network

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
111.200.242.26	attackbotsspam	SSH Brute Force	2020-04-29 12:24:13
111.200.242.26	attack	Brute force SMTP login attempted. ...	2020-04-01 06:56:35
111.200.242.26	attackspam	Feb 21 06:42:10 silence02 sshd[17377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.200.242.26 Feb 21 06:42:12 silence02 sshd[17377]: Failed password for invalid user confluence from 111.200.242.26 port 46096 ssh2 Feb 21 06:44:21 silence02 sshd[17477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.200.242.26	2020-02-21 17:57:22
111.200.242.26	attack	Feb 2 07:24:36 mockhub sshd[4119]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.200.242.26 Feb 2 07:24:37 mockhub sshd[4119]: Failed password for invalid user ts2 from 111.200.242.26 port 17391 ssh2 ...	2020-02-03 01:13:24
111.200.242.26	attackspam	Unauthorized connection attempt detected from IP address 111.200.242.26 to port 2220 [J]	2020-01-19 20:26:29
111.200.242.26	attackbotsspam	Dec 22 07:25:52 MK-Soft-VM7 sshd[29438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.200.242.26 Dec 22 07:25:54 MK-Soft-VM7 sshd[29438]: Failed password for invalid user admin from 111.200.242.26 port 44104 ssh2 ...	2019-12-22 19:05:24
111.200.242.26	attackspam	Dec 21 08:28:57 game-panel sshd[9598]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.200.242.26 Dec 21 08:28:59 game-panel sshd[9598]: Failed password for invalid user guest from 111.200.242.26 port 21786 ssh2 Dec 21 08:33:30 game-panel sshd[9797]: Failed password for root from 111.200.242.26 port 11368 ssh2	2019-12-21 17:52:59
111.200.242.26	attackspam	Dec 12 00:42:42 OPSO sshd\[460\]: Invalid user sting from 111.200.242.26 port 13048 Dec 12 00:42:42 OPSO sshd\[460\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.200.242.26 Dec 12 00:42:44 OPSO sshd\[460\]: Failed password for invalid user sting from 111.200.242.26 port 13048 ssh2 Dec 12 00:48:33 OPSO sshd\[2113\]: Invalid user wan from 111.200.242.26 port 33982 Dec 12 00:48:33 OPSO sshd\[2113\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.200.242.26	2019-12-12 07:55:18
111.200.242.26	attackbotsspam	Dec 9 17:05:41 * sshd[19305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.200.242.26 Dec 9 17:05:43 * sshd[19305]: Failed password for invalid user yyu from 111.200.242.26 port 44279 ssh2	2019-12-10 00:25:54
111.200.242.26	attackspambots	Dec 4 08:23:04 MK-Soft-VM7 sshd[22630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.200.242.26 Dec 4 08:23:07 MK-Soft-VM7 sshd[22630]: Failed password for invalid user emmanuelle12345. from 111.200.242.26 port 47649 ssh2 ...	2019-12-04 15:33:32
111.200.242.26	attackbotsspam	Dec 1 11:12:37 mout sshd[28705]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.200.242.26 user=root Dec 1 11:12:40 mout sshd[28705]: Failed password for root from 111.200.242.26 port 46794 ssh2	2019-12-01 19:01:31
111.200.242.26	attack	$f2bV_matches	2019-11-20 04:06:06
111.200.242.26	attackbotsspam	$f2bV_matches	2019-11-19 02:13:44
111.200.242.26	attack	Nov 17 10:25:19 ny01 sshd[19722]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.200.242.26 Nov 17 10:25:21 ny01 sshd[19722]: Failed password for invalid user ut from 111.200.242.26 port 32389 ssh2 Nov 17 10:30:09 ny01 sshd[20340]: Failed password for root from 111.200.242.26 port 42154 ssh2	2019-11-18 06:36:28
111.200.242.26	attack	Oct 29 04:08:10 nbi-636 sshd[22259]: Invalid user monhostname from 111.200.242.26 port 26265 Oct 29 04:08:12 nbi-636 sshd[22259]: Failed password for invalid user monhostname from 111.200.242.26 port 26265 ssh2 Oct 29 04:08:12 nbi-636 sshd[22259]: Received disconnect from 111.200.242.26 port 26265:11: Bye Bye [preauth] Oct 29 04:08:12 nbi-636 sshd[22259]: Disconnected from 111.200.242.26 port 26265 [preauth] Oct 29 04:15:23 nbi-636 sshd[24052]: User r.r from 111.200.242.26 not allowed because not listed in AllowUsers Oct 29 04:15:23 nbi-636 sshd[24052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.200.242.26 user=r.r Oct 29 04:15:25 nbi-636 sshd[24052]: Failed password for invalid user r.r from 111.200.242.26 port 10666 ssh2 Oct 29 04:15:25 nbi-636 sshd[24052]: Received disconnect from 111.200.242.26 port 10666:11: Bye Bye [preauth] Oct 29 04:15:25 nbi-636 sshd[24052]: Disconnected from 111.200.242.26 port 10666 [preauth] ........ -------------------------------	2019-10-29 18:26:01

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 111.200.242.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62025
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;111.200.242.42.			IN	A

;; AUTHORITY SECTION:
.			2496	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019032901 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Mar 30 05:02:09 +08 2019
;; MSG SIZE  rcvd: 118

Host info

Host 42.242.200.111.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 42.242.200.111.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.77.144.37	attackbotsspam	Mar 6 14:54:31 lnxded63 sshd[30741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.144.37	2020-03-06 22:26:51
178.137.88.65	attack	[munged]::80 178.137.88.65 - - [06/Mar/2020:14:49:07 +0100] "POST /[munged]: HTTP/1.1" 200 5393 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.97 Safari/537.36" [munged]::80 178.137.88.65 - - [06/Mar/2020:14:49:07 +0100] "POST /[munged]: HTTP/1.1" 200 5392 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.97 Safari/537.36"	2020-03-06 22:15:35
192.241.212.65	attackspam	Automatic report - Port Scan Attack	2020-03-06 22:05:59
46.146.40.135	attackspambots	Scan detected and blocked 2020.03.06 14:33:09	2020-03-06 22:46:23
185.220.101.6	attackspambots	CMS (WordPress or Joomla) login attempt.	2020-03-06 22:24:11
94.54.75.44	attackbotsspam	20/3/6@08:33:25: FAIL: Alarm-Network address from=94.54.75.44 20/3/6@08:33:25: FAIL: Alarm-Network address from=94.54.75.44 ...	2020-03-06 22:28:59
14.182.101.59	attack	Unauthorized connection attempt from IP address 14.182.101.59 on Port 445(SMB)	2020-03-06 22:36:11
183.157.168.11	attackbots	suspicious action Fri, 06 Mar 2020 10:33:10 -0300	2020-03-06 22:44:39
91.193.172.169	attackbots	Unauthorized connection attempt from IP address 91.193.172.169 on Port 445(SMB)	2020-03-06 22:38:42
185.156.73.38	attack	Mar 6 14:33:53 debian-2gb-nbg1-2 kernel: \[5760799.047109\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.156.73.38 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=41625 PROTO=TCP SPT=49738 DPT=9191 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-06 22:06:26
37.59.48.181	attackbots	suspicious action Fri, 06 Mar 2020 10:33:54 -0300	2020-03-06 22:07:50
185.200.118.79	attack	3128/tcp 3389/tcp 1723/tcp... [2020-01-11/03-06]31pkt,4pt.(tcp),1pt.(udp)	2020-03-06 22:30:56
50.62.99.1	attack	www.tce.aero	2020-03-06 22:40:37
192.3.183.130	attackbots	03/06/2020-09:18:31.735014 192.3.183.130 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-03-06 22:31:53
69.229.6.35	attackspam	$f2bV_matches	2020-03-06 22:14:44

Recently Reported IPs

46.101.17.215	62.210.149.59	1.52.154.203	67.205.1.242
112.161.195.87	62.168.190.59	37.190.61.192	201.209.157.209
104.248.211.180	77.247.108.37	62.138.151.38	1.236.151.31
178.32.175.88	125.167.202.55	54.39.181.209	201.234.58.129
128.199.233.173	62.110.103.95	23.245.49.248	122.152.221.72