211.42.152.103

Basic Info

City: unknown

Region: unknown

Country: Korea Republic of

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 211.42.152.103
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48797
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;211.42.152.103.			IN	A

;; AUTHORITY SECTION:
.			313	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 19 01:27:28 CST 2022
;; MSG SIZE  rcvd: 107

Host info

b'Host 103.152.42.211.in-addr.arpa not found: 2(SERVFAIL)
'

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 103.152.42.211.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
35.226.96.179	attackspambots	Automatic report - Web App Attack	2019-07-01 15:19:02
51.38.129.120	attack	$f2bV_matches	2019-07-01 14:47:37
204.48.24.174	attackbots	2019-07-01T05:43:38.204620abusebot-6.cloudsearch.cf sshd\[19195\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.48.24.174 user=root	2019-07-01 15:35:51
92.118.37.81	attackspam	01.07.2019 06:39:48 Connection to port 20773 blocked by firewall	2019-07-01 15:16:07
218.208.191.166	attack	DATE:2019-07-01_05:54:37, IP:218.208.191.166, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-07-01 15:09:32
188.131.235.77	attack	Repeated brute force against a port	2019-07-01 15:15:06
200.34.248.48	attackspam	[MonJul0105:47:13.0406252019][:error][pid29230:tid47510680803072][client200.34.248.48:49753][client200.34.248.48]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"/wp-config.php"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/99_asl_jitp.conf"][line"3411"][id"381206"][rev"1"][msg"Atomicorp.comWAFRules-VirtualJustInTimePatch:AccesstoWordPressconfigurationfileblocked"][data"/wp-config.php"][severity"CRITICAL"][hostname"81.17.25.235"][uri"/wp-config.php"][unique_id"XRmCQSwglohsNqJzcXpBmwAAABY"][MonJul0105:47:38.8820892019][:error][pid29320:tid47510661891840][client200.34.248.48:58807][client200.34.248.48]ModSecurity:Accessdeniedwithcode404$phase2$.Patternmatch"$\?:/images/stories/\\|/components/com_smartformer/files/\\|/uploaded_files/user/\\|uploads/job-manager-uploads/$.\*\\\\\\\\.php"atREQUEST_URI.[file"/usr/local/apache.ea3/conf/modsec_rules/50_asl_rootkits.conf"][line"71"][id"318812"][rev"2"][msg"Atomicorp.comWAFRules:PossibleAttempttoAccessunautho	2019-07-01 15:37:36
118.96.56.248	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-01 03:22:31,391 INFO [amun_request_handler] PortScan Detected on Port: 445 (118.96.56.248)	2019-07-01 14:56:50
164.132.38.167	attack	Jul 1 03:53:36 MK-Soft-VM5 sshd\[28522\]: Invalid user tommy from 164.132.38.167 port 46956 Jul 1 03:53:36 MK-Soft-VM5 sshd\[28522\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.38.167 Jul 1 03:53:38 MK-Soft-VM5 sshd\[28522\]: Failed password for invalid user tommy from 164.132.38.167 port 46956 ssh2 ...	2019-07-01 15:28:02
178.62.30.249	attack	Jul 1 03:05:42 vps200512 sshd\[20042\]: Invalid user parfait from 178.62.30.249 Jul 1 03:05:42 vps200512 sshd\[20042\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.30.249 Jul 1 03:05:45 vps200512 sshd\[20042\]: Failed password for invalid user parfait from 178.62.30.249 port 39472 ssh2 Jul 1 03:08:03 vps200512 sshd\[20072\]: Invalid user char from 178.62.30.249 Jul 1 03:08:03 vps200512 sshd\[20072\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.30.249	2019-07-01 15:27:34
66.172.27.25	attackspam	SSH/22 MH Probe, BF, Hack -	2019-07-01 14:56:15
146.88.240.4	attack	Scanning (more than 2 packets) random ports - tries to find possible vulnerable services	2019-07-01 14:58:54
124.158.5.112	attackspam	Jul 1 09:00:44 pornomens sshd\[12620\]: Invalid user ftpuser from 124.158.5.112 port 60520 Jul 1 09:00:44 pornomens sshd\[12620\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.158.5.112 Jul 1 09:00:46 pornomens sshd\[12620\]: Failed password for invalid user ftpuser from 124.158.5.112 port 60520 ssh2 ...	2019-07-01 15:29:25
103.127.28.144	attackspam	Jul 1 08:18:08 nginx sshd[4603]: Invalid user hadoop from 103.127.28.144 Jul 1 08:18:08 nginx sshd[4603]: Received disconnect from 103.127.28.144 port 59222:11: Normal Shutdown, Thank you for playing [preauth]	2019-07-01 14:57:41
190.128.122.222	attack	ET EXPLOIT Netgear DGN Remote Command Execution	2019-07-01 15:07:15

Recently Reported IPs

185.214.221.12	211.43.14.91	211.43.189.220	211.43.191.172
211.43.13.60	211.42.98.77	211.43.195.120	211.43.203.113
211.43.203.15	211.43.203.16	211.43.203.43	211.43.191.215
211.43.212.24	211.43.203.31	211.43.203.67	211.43.203.58
211.43.221.100	211.43.212.39	211.43.203.70	211.43.212.238