111.13.2.138 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
111.13.20.97	attackspambots	Automatic report - Banned IP Access	2019-08-09 10:38:16
111.13.20.97	attackbots	Jul 29 17:53:07 mail sshd\[8152\]: Failed password for invalid user oracle from 111.13.20.97 port 59992 ssh2 Jul 29 18:45:13 mail sshd\[9009\]: Invalid user product from 111.13.20.97 port 36872 ...	2019-07-30 01:52:11
111.13.20.97	attackbotsspam	Automatic report - Banned IP Access	2019-07-15 08:46:18
111.13.20.97	attackspambots	Jul 13 21:09:48 icinga sshd[15048]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.13.20.97 Jul 13 21:09:50 icinga sshd[15048]: Failed password for invalid user ple from 111.13.20.97 port 38814 ssh2 ...	2019-07-14 03:22:15
111.13.20.97	attack	Jul 8 01:24:08 kmh-wsh-001-nbg03 sshd[3923]: Invalid user dh from 111.13.20.97 port 48840 Jul 8 01:24:08 kmh-wsh-001-nbg03 sshd[3923]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.13.20.97 Jul 8 01:24:09 kmh-wsh-001-nbg03 sshd[3923]: Failed password for invalid user dh from 111.13.20.97 port 48840 ssh2 Jul 8 01:24:10 kmh-wsh-001-nbg03 sshd[3923]: Received disconnect from 111.13.20.97 port 48840:11: Bye Bye [preauth] Jul 8 01:24:10 kmh-wsh-001-nbg03 sshd[3923]: Disconnected from 111.13.20.97 port 48840 [preauth] Jul 8 01:27:48 kmh-wsh-001-nbg03 sshd[4066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.13.20.97 user=r.r Jul 8 01:27:51 kmh-wsh-001-nbg03 sshd[4066]: Failed password for r.r from 111.13.20.97 port 55268 ssh2 Jul 8 01:27:51 kmh-wsh-001-nbg03 sshd[4066]: Received disconnect from 111.13.20.97 port 55268:11: Bye Bye [preauth] Jul 8 01:27:51 kmh-wsh-001-nbg03 ssh........ -------------------------------	2019-07-09 15:39:39

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 111.13.2.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10216
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;111.13.2.138.			IN	A

;; AUTHORITY SECTION:
.			183	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022800 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 21:15:34 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 138.2.13.111.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.2.13.111.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
74.141.132.233	attackbots	2020-06-06 16:20:02 server sshd[95302]: Failed password for invalid user root from 74.141.132.233 port 41230 ssh2	2020-06-07 08:10:40
106.13.26.67	attack	Jun 6 23:04:41 santamaria sshd\[27005\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 user=root Jun 6 23:04:43 santamaria sshd\[27005\]: Failed password for root from 106.13.26.67 port 54594 ssh2 Jun 6 23:08:13 santamaria sshd\[27091\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.26.67 user=root ...	2020-06-07 08:13:25
163.172.49.56	attackbots	SSH / Telnet Brute Force Attempts on Honeypot	2020-06-07 08:08:54
172.68.246.26	attackbots	SQL injection:/newsites/free/pierre/search/search-1-prj.php?idPrj=-7205%29%20OR%204972%3DCAST%28%28CHR%28113%29%7C%7CCHR%28107%29%7C%7CCHR%28113%29%7C%7CCHR%28120%29%7C%7CCHR%28113%29%29%7C%7C%28SELECT%20%28CASE%20WHEN%20%284972%3D4972%29%20THEN%201%20ELSE%200%20END%29%29%3A%3Atext%7C%7C%28CHR%28113%29%7C%7CCHR%28120%29%7C%7CCHR%28112%29%7C%7CCHR%28120%29%7C%7CCHR%28113%29%29%20AS%20NUMERIC%29%20AND%20%287829%3D7829	2020-06-07 08:19:32
112.13.200.154	attack	Jun 7 00:51:47 minden010 sshd[6829]: Failed password for root from 112.13.200.154 port 3133 ssh2 Jun 7 00:54:42 minden010 sshd[7829]: Failed password for root from 112.13.200.154 port 3134 ssh2 ...	2020-06-07 08:05:26
111.175.186.150	attackspambots	Jun 6 19:54:56 ny01 sshd[28329]: Failed password for root from 111.175.186.150 port 11039 ssh2 Jun 6 19:57:59 ny01 sshd[29064]: Failed password for root from 111.175.186.150 port 53611 ssh2	2020-06-07 08:27:21
132.232.66.238	attackspambots	Ssh brute force	2020-06-07 08:09:06
178.128.233.69	attackspambots	Jun 6 15:02:36 h2022099 sshd[15990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.233.69 user=r.r Jun 6 15:02:38 h2022099 sshd[15990]: Failed password for r.r from 178.128.233.69 port 59294 ssh2 Jun 6 15:02:38 h2022099 sshd[15990]: Received disconnect from 178.128.233.69: 11: Bye Bye [preauth] Jun 6 15:17:10 h2022099 sshd[19718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.233.69 user=r.r Jun 6 15:17:12 h2022099 sshd[19718]: Failed password for r.r from 178.128.233.69 port 44634 ssh2 Jun 6 15:17:13 h2022099 sshd[19718]: Received disconnect from 178.128.233.69: 11: Bye Bye [preauth] Jun 6 15:20:52 h2022099 sshd[20501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.233.69 user=r.r Jun 6 15:20:54 h2022099 sshd[20501]: Failed password for r.r from 178.128.233.69 port 54786 ssh2 Jun 6 15:20:54 h2022099 sshd[20501........ -------------------------------	2020-06-07 08:11:17
185.202.2.57	attackspam	RDP brute force attack detected by fail2ban	2020-06-07 08:15:55
218.4.239.146	attack	Dovecot Invalid User Login Attempt.	2020-06-07 08:09:46
59.120.189.230	attackbotsspam	Jun 6 18:45:45 vps46666688 sshd[2356]: Failed password for root from 59.120.189.230 port 58168 ssh2 ...	2020-06-07 08:23:26
193.56.28.124	attack	2020-06-07 01:05:04 auth_plain authenticator failed for (User) [193.56.28.124]: 535 Incorrect authentication data 2020-06-07 02:58:18 auth_plain authenticator failed for (User) [193.56.28.124]: 535 Incorrect authentication data (set_id=public1@lavrinenko.info,) ...	2020-06-07 08:04:14
177.223.51.158	attackbots	Automatic report - Port Scan Attack	2020-06-07 08:25:35
122.51.56.205	attackspambots	2020-06-06T23:59:34.100659shield sshd\[32407\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.56.205 user=root 2020-06-06T23:59:35.841061shield sshd\[32407\]: Failed password for root from 122.51.56.205 port 39640 ssh2 2020-06-07T00:01:06.371344shield sshd\[645\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.56.205 user=root 2020-06-07T00:01:08.076307shield sshd\[645\]: Failed password for root from 122.51.56.205 port 57678 ssh2 2020-06-07T00:02:43.419906shield sshd\[1326\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.56.205 user=root	2020-06-07 08:24:34
123.206.255.17	attackbotsspam	Jun 6 18:11:32 Tower sshd[10443]: Connection from 123.206.255.17 port 40826 on 192.168.10.220 port 22 rdomain "" Jun 6 18:11:33 Tower sshd[10443]: Failed password for root from 123.206.255.17 port 40826 ssh2 Jun 6 18:11:33 Tower sshd[10443]: Received disconnect from 123.206.255.17 port 40826:11: Bye Bye [preauth] Jun 6 18:11:33 Tower sshd[10443]: Disconnected from authenticating user root 123.206.255.17 port 40826 [preauth]	2020-06-07 08:11:48

Recently Reported IPs

111.13.16.40	111.13.56.24	111.13.56.16	111.13.6.65
111.13.61.60	111.13.7.121	111.13.7.117	111.13.63.82
111.137.6.178	111.136.194.113	111.13.7.118	111.132.193.159
111.13.7.122	111.13.56.6	111.137.6.253	111.137.6.232
111.14.104.179	111.14.146.139	111.14.129.115	111.14.115.222