111.202.100.139

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
111.202.100.82	attackbots	Malicious brute force vulnerability hacking attacks	2020-06-24 21:21:19
111.202.100.82	attack	IP: 111.202.100.82 Ports affected http protocol over TLS/SSL (443) World Wide Web HTTP (80) Abuse Confidence rating 19% Found in DNSBL('s) ASN Details AS4808 China Unicom Beijing Province Network China (CN) CIDR 111.202.0.0/17 Log Date: 7/03/2020 5:59:58 AM UTC	2020-03-07 15:35:14
111.202.100.31	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 543060ed9b1198ed \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 5.1) AppleWebKit/534.30 (KHTML, like Gecko) Chrome/12.0.742.122 Safari/534.30 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 02:43:19
111.202.100.179	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 54305e8aaf68eb99 \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 5.1) AppleWebKit/534.30 (KHTML, like Gecko) Chrome/12.0.742.122 Safari/534.30 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 01:33:40
111.202.100.31	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 540fabb12e35ebb5 \| WAF_Rule_ID: 1aff1cdfeb5c4074965d7cd85bfc1d4e \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 5.1) AppleWebKit/534.30 (KHTML, like Gecko) Chrome/12.0.742.122 Safari/534.30 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:57:11
111.202.100.179	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 540fbd6dfaf7eaec \| WAF_Rule_ID: 1aff1cdfeb5c4074965d7cd85bfc1d4e \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 5.1) AppleWebKit/534.30 (KHTML, like Gecko) Chrome/12.0.742.122 Safari/534.30 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 05:08:14
111.202.100.5	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 540fba00fd38eaf8 \| WAF_Rule_ID: 1aff1cdfeb5c4074965d7cd85bfc1d4e \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 5.1) AppleWebKit/534.30 (KHTML, like Gecko) Chrome/12.0.742.122 Safari/534.30 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:24:23
111.202.100.5	attack	The IP has triggered Cloudflare WAF. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB)	2019-11-19 04:37:48
111.202.100.31	attackbots	The IP has triggered Cloudflare WAF. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB)	2019-11-19 04:19:16
111.202.100.105	attackspambots	Flask-IPban - exploit URL requested:/index.php	2019-06-24 10:32:22

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 111.202.100.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21860
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;111.202.100.139.		IN	A

;; AUTHORITY SECTION:
.			215	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011200 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 12 22:43:57 CST 2022
;; MSG SIZE  rcvd: 108

Host info

b'139.100.202.111.in-addr.arpa domain name pointer sogouspider-111-202-100-139.crawl.sogou.com.
'

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
139.100.202.111.in-addr.arpa	name = sogouspider-111-202-100-139.crawl.sogou.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
200.175.185.54	attackbots	Failed password for invalid user provider from 200.175.185.54 port 56008 ssh2	2020-08-25 18:57:01
113.20.118.162	attackbots	Port Scan ...	2020-08-25 18:42:42
166.175.191.130	attackspambots	Brute forcing email accounts	2020-08-25 18:38:29
165.22.215.192	attackbotsspam	Time: Tue Aug 25 12:01:40 2020 +0200 IP: 165.22.215.192 (IN/India/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Aug 25 11:43:54 mail-01 sshd[30235]: Invalid user testwww from 165.22.215.192 port 33866 Aug 25 11:43:56 mail-01 sshd[30235]: Failed password for invalid user testwww from 165.22.215.192 port 33866 ssh2 Aug 25 11:57:18 mail-01 sshd[30832]: Invalid user ncuser from 165.22.215.192 port 50448 Aug 25 11:57:19 mail-01 sshd[30832]: Failed password for invalid user ncuser from 165.22.215.192 port 50448 ssh2 Aug 25 12:01:37 mail-01 sshd[3485]: Invalid user thu from 165.22.215.192 port 49722	2020-08-25 18:51:32
180.76.103.247	attackbotsspam	k+ssh-bruteforce	2020-08-25 18:55:49
142.93.186.206	attackbotsspam	TCP port : 15946	2020-08-25 18:36:12
217.182.192.217	attackbots	SSH Brute-Force attacks	2020-08-25 18:59:22
165.169.241.28	attackbotsspam	<6 unauthorized SSH connections	2020-08-25 18:42:21
119.146.150.134	attackbots	Invalid user deploy from 119.146.150.134 port 47996	2020-08-25 18:48:28
196.52.43.90	attack	Unauthorized connection attempt detected from IP address 196.52.43.90 to port 1000 [T]	2020-08-25 19:06:17
95.167.225.85	attackbotsspam	2020-08-25T10:08:28.509718upcloud.m0sh1x2.com sshd[26514]: Invalid user bottos from 95.167.225.85 port 49842	2020-08-25 19:09:38
187.163.96.54	attackspambots	Automatic report - Port Scan	2020-08-25 18:45:51
185.170.114.25	attackbotsspam	Aug 25 04:21:46 vps46666688 sshd[22863]: Failed password for root from 185.170.114.25 port 46029 ssh2 Aug 25 04:21:48 vps46666688 sshd[22863]: Failed password for root from 185.170.114.25 port 46029 ssh2 ...	2020-08-25 19:04:45
106.13.35.167	attack	Invalid user oracle from 106.13.35.167 port 34428	2020-08-25 19:03:03
146.88.240.4	attack	UDP 146.88.240.4:38363 -> port 389, len 81	2020-08-25 18:58:54

Recently Reported IPs

102.153.150.229	211.185.53.189	131.89.154.239	231.84.29.103
204.132.85.68	62.171.185.98	148.169.212.199	54.180.161.38
62.69.171.239	24.152.19.138	87.209.71.213	202.170.24.120
186.227.127.3	211.97.109.57	67.43.48.218	231.85.147.137
157.92.2.207	120.40.195.145	192.90.68.147	93.122.21.12