112.103.89.242

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.103.89.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36829
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.103.89.242.			IN	A

;; AUTHORITY SECTION:
.			411	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030302 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 12:34:25 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 242.89.103.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 242.89.103.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
174.138.1.99	attackspambots	notenfalter.de 174.138.1.99 [15/May/2020:14:40:39 +0200] "POST /wp-login.php HTTP/1.1" 200 6193 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" notenfalter.de 174.138.1.99 [15/May/2020:14:40:40 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-15 23:43:23
168.70.125.217	attackspam	Port probing on unauthorized port 5555	2020-05-15 22:57:39
45.55.231.94	attackspam	leo_www	2020-05-15 23:29:47
181.30.28.83	attackbotsspam	May 13 21:06:36 zulu1842 sshd[7677]: reveeclipse mapping checking getaddrinfo for 83-28-30-181.fibertel.com.ar [181.30.28.83] failed - POSSIBLE BREAK-IN ATTEMPT! May 13 21:06:36 zulu1842 sshd[7677]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.30.28.83 user=r.r May 13 21:06:37 zulu1842 sshd[7677]: Failed password for r.r from 181.30.28.83 port 44870 ssh2 May 13 21:06:37 zulu1842 sshd[7677]: Received disconnect from 181.30.28.83: 11: Bye Bye [preauth] May 13 22:00:18 zulu1842 sshd[11437]: reveeclipse mapping checking getaddrinfo for 83-28-30-181.fibertel.com.ar [181.30.28.83] failed - POSSIBLE BREAK-IN ATTEMPT! May 13 22:00:18 zulu1842 sshd[11437]: Invalid user user1 from 181.30.28.83 May 13 22:00:18 zulu1842 sshd[11437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.30.28.83 May 13 22:00:19 zulu1842 sshd[11437]: Failed password for invalid user user1 from 181.30.28.83 port 386........ -------------------------------	2020-05-15 23:25:26
134.175.154.93	attackbots	May 15 07:11:55 server1 sshd\[23055\]: Failed password for invalid user lottis from 134.175.154.93 port 33502 ssh2 May 15 07:15:44 server1 sshd\[24506\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.154.93 user=root May 15 07:15:45 server1 sshd\[24506\]: Failed password for root from 134.175.154.93 port 47044 ssh2 May 15 07:19:46 server1 sshd\[25798\]: Invalid user csserver from 134.175.154.93 May 15 07:19:46 server1 sshd\[25798\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.154.93 ...	2020-05-15 23:13:16
192.99.70.208	attackbots	2020-05-15T14:20:35.711786amanda2.illicoweb.com sshd\[27905\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.ip-192-99-70.net user=root 2020-05-15T14:20:37.223974amanda2.illicoweb.com sshd\[27905\]: Failed password for root from 192.99.70.208 port 52436 ssh2 2020-05-15T14:25:09.682398amanda2.illicoweb.com sshd\[28027\]: Invalid user ericsson from 192.99.70.208 port 53954 2020-05-15T14:25:09.689380amanda2.illicoweb.com sshd\[28027\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.ip-192-99-70.net 2020-05-15T14:25:11.818590amanda2.illicoweb.com sshd\[28027\]: Failed password for invalid user ericsson from 192.99.70.208 port 53954 ssh2 ...	2020-05-15 23:41:45
193.70.13.35	attackspam	Automatic report - XMLRPC Attack	2020-05-15 23:28:09
178.33.12.237	attackbots	May 15 17:23:12 meumeu sshd[14224]: Invalid user hldmsserver from 178.33.12.237 port 55589 May 15 17:23:12 meumeu sshd[14224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.12.237 May 15 17:23:12 meumeu sshd[14224]: Invalid user hldmsserver from 178.33.12.237 port 55589 May 15 17:23:13 meumeu sshd[14224]: Failed password for invalid user hldmsserver from 178.33.12.237 port 55589 ssh2 May 15 17:26:34 meumeu sshd[15844]: Invalid user test2 from 178.33.12.237 port 45971 May 15 17:26:34 meumeu sshd[15844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.12.237 May 15 17:26:34 meumeu sshd[15844]: Invalid user test2 from 178.33.12.237 port 45971 May 15 17:26:37 meumeu sshd[15844]: Failed password for invalid user test2 from 178.33.12.237 port 45971 ssh2 May 15 17:30:20 meumeu sshd[16502]: Invalid user 10091009 from 178.33.12.237 port 43654 ...	2020-05-15 23:46:02
139.155.86.130	attackspam	Fail2Ban Ban Triggered	2020-05-15 23:38:09
106.13.164.136	attackspambots	May 15 13:43:38 localhost sshd[38660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.164.136 user=root May 15 13:43:41 localhost sshd[38660]: Failed password for root from 106.13.164.136 port 58394 ssh2 May 15 13:50:00 localhost sshd[39397]: Invalid user test from 106.13.164.136 port 59964 May 15 13:50:00 localhost sshd[39397]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.164.136 May 15 13:50:00 localhost sshd[39397]: Invalid user test from 106.13.164.136 port 59964 May 15 13:50:02 localhost sshd[39397]: Failed password for invalid user test from 106.13.164.136 port 59964 ssh2 ...	2020-05-15 23:00:19
103.77.45.93	attackspambots	trying to access non-authorized port	2020-05-15 23:06:33
114.242.117.12	attackbotsspam	2020-05-15T08:12:27.477660linuxbox-skyline sshd[23950]: Invalid user iolanda from 114.242.117.12 port 58978 ...	2020-05-15 23:43:50
211.28.164.96	attackspam	Firewall Dropped Connection	2020-05-15 23:16:44
105.212.94.49	attackspam	Automatic report - Port Scan Attack	2020-05-15 23:18:39
129.250.206.86	attack	Honeypot hit.	2020-05-15 23:04:29

Recently Reported IPs

112.103.74.57	112.104.0.99	112.104.105.98	112.104.106.144
112.104.114.211	113.121.22.110	112.104.128.118	112.104.129.162
112.104.114.15	112.104.13.210	112.104.107.71	112.104.107.199
112.104.129.173	112.104.139.142	112.104.131.175	112.104.139.165
112.104.139.210	112.104.139.173	113.121.22.112	112.104.155.153