123.171.42.113

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
123.171.42.28	attackbotsspam	Lines containing failures of 123.171.42.28 Sep 2 04:12:33 newdogma sshd[22349]: Connection closed by 123.171.42.28 port 55930 [preauth] Sep 2 04:14:17 newdogma sshd[22639]: Invalid user mysql from 123.171.42.28 port 47770 Sep 2 04:14:17 newdogma sshd[22639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.171.42.28 Sep 2 04:14:19 newdogma sshd[22639]: Failed password for invalid user mysql from 123.171.42.28 port 47770 ssh2 Sep 2 04:14:21 newdogma sshd[22639]: Received disconnect from 123.171.42.28 port 47770:11: Bye Bye [preauth] Sep 2 04:14:21 newdogma sshd[22639]: Disconnected from invalid user mysql 123.171.42.28 port 47770 [preauth] Sep 2 04:16:08 newdogma sshd[23038]: Invalid user stack from 123.171.42.28 port 39616 Sep 2 04:16:08 newdogma sshd[23038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.171.42.28 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip	2020-09-04 23:01:41
123.171.42.28	attack	Lines containing failures of 123.171.42.28 Sep 2 04:12:33 newdogma sshd[22349]: Connection closed by 123.171.42.28 port 55930 [preauth] Sep 2 04:14:17 newdogma sshd[22639]: Invalid user mysql from 123.171.42.28 port 47770 Sep 2 04:14:17 newdogma sshd[22639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.171.42.28 Sep 2 04:14:19 newdogma sshd[22639]: Failed password for invalid user mysql from 123.171.42.28 port 47770 ssh2 Sep 2 04:14:21 newdogma sshd[22639]: Received disconnect from 123.171.42.28 port 47770:11: Bye Bye [preauth] Sep 2 04:14:21 newdogma sshd[22639]: Disconnected from invalid user mysql 123.171.42.28 port 47770 [preauth] Sep 2 04:16:08 newdogma sshd[23038]: Invalid user stack from 123.171.42.28 port 39616 Sep 2 04:16:08 newdogma sshd[23038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.171.42.28 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip	2020-09-04 14:32:57
123.171.42.28	attackbotsspam	Lines containing failures of 123.171.42.28 Sep 2 04:12:33 newdogma sshd[22349]: Connection closed by 123.171.42.28 port 55930 [preauth] Sep 2 04:14:17 newdogma sshd[22639]: Invalid user mysql from 123.171.42.28 port 47770 Sep 2 04:14:17 newdogma sshd[22639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.171.42.28 Sep 2 04:14:19 newdogma sshd[22639]: Failed password for invalid user mysql from 123.171.42.28 port 47770 ssh2 Sep 2 04:14:21 newdogma sshd[22639]: Received disconnect from 123.171.42.28 port 47770:11: Bye Bye [preauth] Sep 2 04:14:21 newdogma sshd[22639]: Disconnected from invalid user mysql 123.171.42.28 port 47770 [preauth] Sep 2 04:16:08 newdogma sshd[23038]: Invalid user stack from 123.171.42.28 port 39616 Sep 2 04:16:08 newdogma sshd[23038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.171.42.28 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip	2020-09-04 06:58:47
123.171.42.16	attack	fail2ban -- 123.171.42.16 ...	2020-08-27 10:11:28
123.171.42.72	attack	Brute force attempt	2020-02-22 21:52:39

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 123.171.42.113
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21722
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;123.171.42.113.			IN	A

;; AUTHORITY SECTION:
.			400	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091500 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 15 15:06:20 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 113.42.171.123.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 113.42.171.123.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
211.159.186.152	attackbotsspam	Aug 4 05:42:54 ncomp sshd[31247]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.159.186.152 user=root Aug 4 05:42:57 ncomp sshd[31247]: Failed password for root from 211.159.186.152 port 49748 ssh2 Aug 4 05:51:53 ncomp sshd[31395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.159.186.152 user=root Aug 4 05:51:55 ncomp sshd[31395]: Failed password for root from 211.159.186.152 port 51754 ssh2	2020-08-04 17:10:42
106.12.70.99	attackbotsspam	Aug 4 05:42:16 dev0-dcde-rnet sshd[4814]: Failed password for root from 106.12.70.99 port 40314 ssh2 Aug 4 05:47:33 dev0-dcde-rnet sshd[4905]: Failed password for root from 106.12.70.99 port 45528 ssh2	2020-08-04 16:50:21
176.110.42.161	attackspambots	Aug 4 06:57:55 ip106 sshd[26450]: Failed password for root from 176.110.42.161 port 43810 ssh2 ...	2020-08-04 17:08:15
106.13.86.54	attackspambots	" "	2020-08-04 16:27:18
182.160.115.180	attackbots	" "	2020-08-04 16:35:40
130.105.68.165	attackbotsspam	SSH authentication failure x 6 reported by Fail2Ban ...	2020-08-04 16:30:28
222.186.42.137	attackbots	Unauthorized connection attempt detected from IP address 222.186.42.137 to port 22	2020-08-04 16:31:04
128.199.101.113	attackspambots	Aug 4 16:51:09 localhost sshd[2578345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.101.113 user=root Aug 4 16:51:11 localhost sshd[2578345]: Failed password for root from 128.199.101.113 port 37662 ssh2 ...	2020-08-04 16:58:02
217.182.67.242	attackbotsspam	Aug 4 05:51:59 fhem-rasp sshd[1359]: Failed password for root from 217.182.67.242 port 43939 ssh2 Aug 4 05:52:00 fhem-rasp sshd[1359]: Disconnected from authenticating user root 217.182.67.242 port 43939 [preauth] ...	2020-08-04 17:07:46
222.151.6.87	attack	TCP (SYN) 222.151.6.87:50564 -> port 22, len 44	2020-08-04 16:52:00
120.24.92.233	attack	120.24.92.233 - - [04/Aug/2020:06:27:59 +0100] "POST /wp-login.php HTTP/1.1" 200 2345 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 120.24.92.233 - - [04/Aug/2020:06:28:32 +0100] "POST /wp-login.php HTTP/1.1" 200 2329 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 120.24.92.233 - - [04/Aug/2020:06:28:36 +0100] "POST /wp-login.php HTTP/1.1" 200 2329 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-04 16:33:58
106.12.56.126	attack	Aug 4 04:49:23 game-panel sshd[6911]: Failed password for root from 106.12.56.126 port 33888 ssh2 Aug 4 04:51:54 game-panel sshd[6986]: Failed password for root from 106.12.56.126 port 57194 ssh2	2020-08-04 16:38:16
106.12.38.70	attack	Aug 4 08:37:55 Ubuntu-1404-trusty-64-minimal sshd\[19311\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.38.70 user=root Aug 4 08:37:57 Ubuntu-1404-trusty-64-minimal sshd\[19311\]: Failed password for root from 106.12.38.70 port 35360 ssh2 Aug 4 08:50:15 Ubuntu-1404-trusty-64-minimal sshd\[28080\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.38.70 user=root Aug 4 08:50:17 Ubuntu-1404-trusty-64-minimal sshd\[28080\]: Failed password for root from 106.12.38.70 port 38112 ssh2 Aug 4 08:54:50 Ubuntu-1404-trusty-64-minimal sshd\[31125\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.38.70 user=root	2020-08-04 16:39:05
186.103.184.227	attackspam	Banned for a week because repeated abuses, for example SSH, but not only	2020-08-04 17:03:34
49.235.237.67	attackbots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-08-04 16:31:38

Recently Reported IPs

128.90.112.253	49.254.23.201	183.88.135.113	203.202.245.62
134.137.165.134	85.239.38.86	137.184.181.85	142.93.208.144
178.208.176.65	46.246.14.9	3.1.103.239	46.101.186.194
178.20.213.20	182.46.84.81	156.238.5.229	191.201.131.93
139.59.61.117	45.14.224.32	79.31.149.214	20.255.62.64