111.138.243.166

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 111.138.243.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10072
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;111.138.243.166.		IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011001 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 11 01:15:55 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 166.243.138.111.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 166.243.138.111.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
117.50.6.27	attackspambots	Apr 15 22:29:18 sshd\[22205\]: Invalid user cturner from 117.50.6.27Apr 15 22:29:20 sshd\[22205\]: Failed password for invalid user cturner from 117.50.6.27 port 47616 ssh2 ...	2020-04-16 04:29:49
180.76.136.81	attack	2020-04-15T20:39:18.197014shield sshd\[25185\]: Invalid user shaca from 180.76.136.81 port 54170 2020-04-15T20:39:18.201153shield sshd\[25185\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.136.81 2020-04-15T20:39:19.831043shield sshd\[25185\]: Failed password for invalid user shaca from 180.76.136.81 port 54170 ssh2 2020-04-15T20:47:51.456335shield sshd\[26606\]: Invalid user admin from 180.76.136.81 port 54048 2020-04-15T20:47:51.460173shield sshd\[26606\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.136.81	2020-04-16 04:58:19
159.89.115.218	attack	Port Scan: Events[1] countPorts[1]: 14531 ..	2020-04-16 04:31:43
37.49.230.95	attackspam	Port Scan: Events[2] countPorts[1]: 5060 ..	2020-04-16 04:48:24
34.92.31.13	attack	Apr 15 22:45:30 debian-2gb-nbg1-2 kernel: \[9242514.489783\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=34.92.31.13 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=231 ID=14095 PROTO=TCP SPT=55343 DPT=20903 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-16 04:52:37
114.98.225.210	attackbotsspam	Apr 15 21:46:25 ns392434 sshd[22005]: Invalid user freyna from 114.98.225.210 port 43249 Apr 15 21:46:25 ns392434 sshd[22005]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.98.225.210 Apr 15 21:46:25 ns392434 sshd[22005]: Invalid user freyna from 114.98.225.210 port 43249 Apr 15 21:46:27 ns392434 sshd[22005]: Failed password for invalid user freyna from 114.98.225.210 port 43249 ssh2 Apr 15 21:53:06 ns392434 sshd[22239]: Invalid user gatefold from 114.98.225.210 port 54958 Apr 15 21:53:06 ns392434 sshd[22239]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.98.225.210 Apr 15 21:53:06 ns392434 sshd[22239]: Invalid user gatefold from 114.98.225.210 port 54958 Apr 15 21:53:08 ns392434 sshd[22239]: Failed password for invalid user gatefold from 114.98.225.210 port 54958 ssh2 Apr 15 21:57:08 ns392434 sshd[22438]: Invalid user write from 114.98.225.210 port 55993	2020-04-16 04:21:54
45.143.220.53	attackbotsspam	\[2020-04-15 14:03:22\] SECURITY\[2093\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-15T14:03:22.054+0200",Severity="Error",Service="SIP",EventVersion="2",AccountID="1502",SessionID="0x7f23bea1c218",LocalAddress="IPV4/UDP/204.8.216.89/5060",RemoteAddress="IPV4/UDP/45.143.220.53/24671",Challenge="76c90c9f",ReceivedChallenge="76c90c9f",ReceivedHash="9b407d3f11b7be465860e55d0ce6de17" \[2020-04-15 14:03:42\] SECURITY\[2093\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-15T14:03:42.558+0200",Severity="Error",Service="SIP",EventVersion="2",AccountID="802",SessionID="0x7f23beb081b8",LocalAddress="IPV4/UDP/204.8.216.89/5060",RemoteAddress="IPV4/UDP/45.143.220.53/36330",Challenge="6493e0d6",ReceivedChallenge="6493e0d6",ReceivedHash="8bf2edf59d593c4561f128740ebe0abf" \[2020-04-15 14:05:37\] SECURITY\[2093\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-15T14:05:37.575+0200",Severity="Error",Service="SIP",EventVersion="2",Acc ...	2020-04-16 04:25:22
61.183.144.188	attackbots	$f2bV_matches	2020-04-16 04:27:09
80.82.77.245	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 68 - port: 1041 proto: UDP cat: Misc Attack	2020-04-16 04:45:37
111.229.49.239	attackspam	Apr 15 01:05:10 roadrisk sshd[21335]: Failed password for invalid user Redistoor from 111.229.49.239 port 55084 ssh2 Apr 15 01:05:10 roadrisk sshd[21335]: Received disconnect from 111.229.49.239: 11: Bye Bye [preauth] Apr 15 01:14:53 roadrisk sshd[21629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.49.239 user=r.r Apr 15 01:14:56 roadrisk sshd[21629]: Failed password for r.r from 111.229.49.239 port 44378 ssh2 Apr 15 01:14:56 roadrisk sshd[21629]: Received disconnect from 111.229.49.239: 11: Bye Bye [preauth] Apr 15 01:18:07 roadrisk sshd[21712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.49.239 user=r.r Apr 15 01:18:10 roadrisk sshd[21712]: Failed password for r.r from 111.229.49.239 port 49144 ssh2 Apr 15 01:18:10 roadrisk sshd[21712]: Received disconnect from 111.229.49.239: 11: Bye Bye [preauth] Apr 15 01:21:18 roadrisk sshd[21825]: pam_unix(sshd:auth): authent........ -------------------------------	2020-04-16 04:41:12
159.65.140.38	attackspambots	Bruteforce detected by fail2ban	2020-04-16 04:42:26
51.91.247.125	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 36 - port: 5938 proto: TCP cat: Misc Attack	2020-04-16 04:46:52
162.243.128.214	attackspambots	" "	2020-04-16 04:31:29
41.216.186.115	attackbots	(ftpd) Failed FTP login from 41.216.186.115 (ZA/South Africa/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Apr 16 00:37:44 ir1 pure-ftpd: (?@41.216.186.115) [WARNING] Authentication failed for user [takado]	2020-04-16 04:21:19
93.64.5.34	attackspambots	(sshd) Failed SSH login from 93.64.5.34 (IT/Italy/net-93-64-5-34.cust.vodafonedsl.it): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 15 22:08:10 amsweb01 sshd[16206]: Invalid user user from 93.64.5.34 port 55512 Apr 15 22:08:12 amsweb01 sshd[16206]: Failed password for invalid user user from 93.64.5.34 port 55512 ssh2 Apr 15 22:22:17 amsweb01 sshd[18295]: Invalid user postgres from 93.64.5.34 port 52150 Apr 15 22:22:20 amsweb01 sshd[18295]: Failed password for invalid user postgres from 93.64.5.34 port 52150 ssh2 Apr 15 22:25:47 amsweb01 sshd[18625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.64.5.34 user=root	2020-04-16 04:54:32

Recently Reported IPs

100.243.79.139	117.22.151.148	141.213.79.173	254.178.240.196
17.166.11.19	210.166.196.141	135.59.48.215	123.199.210.117
137.115.198.189	26.72.166.32	120.137.8.205	188.19.113.115
126.48.68.172	127.215.202.113	131.48.188.157	60.97.64.30
247.4.44.133	135.192.66.246	29.113.216.242	0.143.25.221