111.242.136.158

Basic Info

City: unknown

Region: unknown

Country: Taiwan, Province of China

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Telnet Server BruteForce Attack	2019-12-25 16:43:12

Comments on same subnet:

IP	Type	Details	Datetime
111.242.136.178	attackspam	1594179860 - 07/08/2020 05:44:20 Host: 111.242.136.178/111.242.136.178 Port: 445 TCP Blocked	2020-07-08 15:27:06

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 111.242.136.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29588
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;111.242.136.158.		IN	A

;; AUTHORITY SECTION:
.			502	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122500 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Dec 25 16:43:06 CST 2019
;; MSG SIZE  rcvd: 119

Host info

158.136.242.111.in-addr.arpa domain name pointer 111-242-136-158.dynamic-ip.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
158.136.242.111.in-addr.arpa	name = 111-242-136-158.dynamic-ip.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.199.30	attackspam	Sep 27 07:56:53 abendstille sshd\[25457\]: Invalid user song from 106.12.199.30 Sep 27 07:56:53 abendstille sshd\[25457\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 Sep 27 07:56:55 abendstille sshd\[25457\]: Failed password for invalid user song from 106.12.199.30 port 44214 ssh2 Sep 27 08:01:40 abendstille sshd\[30149\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.30 user=root Sep 27 08:01:42 abendstille sshd\[30149\]: Failed password for root from 106.12.199.30 port 49748 ssh2 ...	2020-09-27 18:48:35
111.59.149.75	attackbots	DATE:2020-09-26 22:34:59, IP:111.59.149.75, PORT:1433 - MSSQL brute force auth on a honeypot server (epe-dc)	2020-09-27 18:31:40
103.203.76.46	attackbotsspam	2020-09-26T16:46:52.2976231495-001 sshd[34961]: Invalid user bot from 103.203.76.46 port 41338 2020-09-26T16:46:53.8849681495-001 sshd[34961]: Failed password for invalid user bot from 103.203.76.46 port 41338 ssh2 2020-09-26T16:47:42.6610101495-001 sshd[35031]: Invalid user logviewer from 103.203.76.46 port 51104 2020-09-26T16:47:42.6640981495-001 sshd[35031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.203.76.46 2020-09-26T16:47:42.6610101495-001 sshd[35031]: Invalid user logviewer from 103.203.76.46 port 51104 2020-09-26T16:47:44.4441241495-001 sshd[35031]: Failed password for invalid user logviewer from 103.203.76.46 port 51104 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.203.76.46	2020-09-27 18:41:42
209.85.220.41	attackspambots	BULLSHIT SCAM SPAM From: aysdefujgf Subject: Re: gk61jzdg5b Message ID: domain gmail.com CONTENT: https://www.hulu.com/jkbln/xytm-psar=bvkc&kdaz:919_wt_hncmr https://www.hulu.com/tcgwk/ysqr-wmlf=ivef&tuzj:979_tw_agzlw mqzch@hulu.com	2020-09-27 18:28:19
91.225.196.20	attackspam	20 attempts against mh-ssh on cloud	2020-09-27 18:49:10
193.247.216.187	attackbotsspam	1601152464 - 09/26/2020 22:34:24 Host: 193.247.216.187/193.247.216.187 Port: 445 TCP Blocked	2020-09-27 19:01:09
102.165.30.9	attackbots	TCP port : 50070	2020-09-27 18:43:10
49.247.20.23	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-27 18:46:02
52.162.136.167	attackbots	Invalid user 245 from 52.162.136.167 port 36960	2020-09-27 18:54:36
40.121.157.202	attackspam	Invalid user 100 from 40.121.157.202 port 11087	2020-09-27 18:47:18
61.177.172.142	attack	Sep 27 10:31:00 rush sshd[23502]: Failed password for root from 61.177.172.142 port 61087 ssh2 Sep 27 10:31:03 rush sshd[23502]: Failed password for root from 61.177.172.142 port 61087 ssh2 Sep 27 10:31:06 rush sshd[23502]: Failed password for root from 61.177.172.142 port 61087 ssh2 Sep 27 10:31:10 rush sshd[23502]: Failed password for root from 61.177.172.142 port 61087 ssh2 ...	2020-09-27 18:50:07
167.172.98.207	attackspam	Repeated brute force against a port	2020-09-27 18:53:06
51.75.129.23	attackspambots	Sep 27 15:24:11 gw1 sshd[7063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.129.23 Sep 27 15:24:14 gw1 sshd[7063]: Failed password for invalid user raghu123 from 51.75.129.23 port 38284 ssh2 ...	2020-09-27 18:43:53
103.107.198.124	attackspam	SQL Injection	2020-09-27 18:32:01
69.55.54.65	attackspambots	Bruteforce detected by fail2ban	2020-09-27 18:27:49

Recently Reported IPs

60.168.244.237	122.121.23.56	139.28.223.142	67.225.176.139
95.161.198.198	36.225.129.13	5.149.38.188	164.132.201.174
51.254.178.113	49.229.179.147	103.45.102.124	185.219.133.163
113.173.130.241	42.55.180.112	118.25.55.153	180.250.141.90
25.64.66.240	107.62.53.93	59.0.78.18	253.27.230.82