111.241.6.138 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Republic of China (ROC)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
111.241.68.246	attackspam	445/tcp [2020-10-04]1pkt	2020-10-06 06:57:39
111.241.68.246	attackbots	445/tcp [2020-10-04]1pkt	2020-10-05 23:09:40
111.241.68.246	attackbotsspam	445/tcp [2020-10-04]1pkt	2020-10-05 15:07:59
111.241.66.2	attackbotsspam	Port probing on unauthorized port 23	2020-05-12 00:29:24
111.241.69.60	attack	port 23	2020-02-19 16:52:02
111.241.66.87	attackspam	unauthorized connection attempt	2020-01-17 14:22:51
111.241.66.60	attackspambots	23/tcp [2019-10-30]1pkt	2019-10-30 22:54:38
111.241.65.153	attackspam	Unauthorised access (Oct 13) SRC=111.241.65.153 LEN=40 PREC=0x20 TTL=52 ID=27100 TCP DPT=23 WINDOW=46676 SYN Unauthorised access (Oct 13) SRC=111.241.65.153 LEN=40 PREC=0x20 TTL=52 ID=55989 TCP DPT=23 WINDOW=46676 SYN	2019-10-14 06:16:49
111.241.63.251	attack	Jul 18 00:26:30 dallas01 sshd[28054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.241.63.251 Jul 18 00:26:32 dallas01 sshd[28054]: Failed password for invalid user admin from 111.241.63.251 port 39203 ssh2 Jul 18 00:26:34 dallas01 sshd[28054]: Failed password for invalid user admin from 111.241.63.251 port 39203 ssh2 Jul 18 00:26:37 dallas01 sshd[28054]: Failed password for invalid user admin from 111.241.63.251 port 39203 ssh2	2019-10-08 16:26:54
111.241.60.95	attackbots	Port scan	2019-10-01 08:03:11
111.241.69.88	attackbotsspam	23/tcp [2019-08-15]1pkt	2019-08-16 06:59:49
111.241.61.116	attackspambots	Aug 8 18:22:52 localhost kernel: [16547165.316383] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=111.241.61.116 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=14923 PROTO=TCP SPT=54507 DPT=37215 WINDOW=60628 RES=0x00 SYN URGP=0 Aug 8 18:22:52 localhost kernel: [16547165.316410] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=111.241.61.116 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=14923 PROTO=TCP SPT=54507 DPT=37215 SEQ=758669438 ACK=0 WINDOW=60628 RES=0x00 SYN URGP=0 Aug 9 13:34:30 localhost kernel: [16616263.772001] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=111.241.61.116 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=965 PROTO=TCP SPT=54507 DPT=37215 WINDOW=60628 RES=0x00 SYN URGP=0 Aug 9 13:34:30 localhost kernel: [16616263.772021] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=111.241.61.116 DST=[mungedIP2] LEN=40 TOS=0	2019-08-10 03:49:44
111.241.68.218	attackbotsspam	firewall-block, port(s): 23/tcp	2019-08-06 23:05:19
111.241.68.218	attackbots	port 23 attempt blocked	2019-08-05 15:17:07

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 111.241.6.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32767
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;111.241.6.138.			IN	A

;; AUTHORITY SECTION:
.			75	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011000 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 10 14:50:51 CST 2022
;; MSG SIZE  rcvd: 106

Host info

138.6.241.111.in-addr.arpa domain name pointer 111-241-6-138.dynamic-ip.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
138.6.241.111.in-addr.arpa	name = 111-241-6-138.dynamic-ip.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
124.156.139.104	attackbots	$f2bV_matches	2019-11-07 06:24:05
14.142.32.170	attackspam	Unauthorized connection attempt from IP address 14.142.32.170 on Port 445(SMB)	2019-11-07 06:30:29
49.81.203.191	attack	Brute force SMTP login attempts.	2019-11-07 06:50:02
34.77.79.143	attack	VNC Scan	2019-11-07 06:28:05
107.199.200.123	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/107.199.200.123/ US - 1H : (145) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : US NAME ASN : ASN7018 IP : 107.199.200.123 CIDR : 107.192.0.0/12 PREFIX COUNT : 9621 UNIQUE IP COUNT : 81496832 ATTACKS DETECTED ASN7018 : 1H - 1 3H - 3 6H - 3 12H - 6 24H - 11 DateTime : 2019-11-06 23:46:37 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-11-07 06:46:48
178.62.47.177	attackspam	Nov 6 19:42:30 firewall sshd[13842]: Invalid user back from 178.62.47.177 Nov 6 19:42:32 firewall sshd[13842]: Failed password for invalid user back from 178.62.47.177 port 36478 ssh2 Nov 6 19:46:21 firewall sshd[13920]: Invalid user xerox from 178.62.47.177 ...	2019-11-07 06:52:39
177.92.144.90	attack	Nov 7 03:58:29 areeb-Workstation sshd[20980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.92.144.90 Nov 7 03:58:31 areeb-Workstation sshd[20980]: Failed password for invalid user 2112 from 177.92.144.90 port 53887 ssh2 ...	2019-11-07 06:31:33
36.89.17.211	attackspam	Unauthorized connection attempt from IP address 36.89.17.211 on Port 445(SMB)	2019-11-07 06:35:05
51.83.138.91	attackspam	51.83.138.91 was recorded 40 times by 21 hosts attempting to connect to the following ports: 33389,33891,43389,33893,53389,23389,33896,3388,33892,33894,63389,13389. Incident counter (4h, 24h, all-time): 40, 131, 409	2019-11-07 07:00:21
146.148.27.105	attack	VNC Scan	2019-11-07 06:36:52
180.76.116.132	attackspambots	2019-11-06T22:39:14.528918shield sshd\[3964\]: Invalid user hs from 180.76.116.132 port 38698 2019-11-06T22:39:14.533524shield sshd\[3964\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.116.132 2019-11-06T22:39:16.737994shield sshd\[3964\]: Failed password for invalid user hs from 180.76.116.132 port 38698 ssh2 2019-11-06T22:46:20.275190shield sshd\[4116\]: Invalid user upload from 180.76.116.132 port 33890 2019-11-06T22:46:20.279731shield sshd\[4116\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.116.132	2019-11-07 06:57:47
58.20.239.14	attack	Nov 6 22:41:10 venus sshd\[11921\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.239.14 user=root Nov 6 22:41:12 venus sshd\[11921\]: Failed password for root from 58.20.239.14 port 49384 ssh2 Nov 6 22:45:17 venus sshd\[11981\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.239.14 user=root ...	2019-11-07 07:08:57
66.249.66.157	attackspambots	Automatic report - Banned IP Access	2019-11-07 06:38:41
92.118.38.38	attack	Nov 6 23:45:54 andromeda postfix/smtpd\[56533\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: authentication failure Nov 6 23:45:58 andromeda postfix/smtpd\[51207\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: authentication failure Nov 6 23:46:10 andromeda postfix/smtpd\[1808\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: authentication failure Nov 6 23:46:29 andromeda postfix/smtpd\[1808\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: authentication failure Nov 6 23:46:33 andromeda postfix/smtpd\[5335\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: authentication failure	2019-11-07 06:48:04
122.114.199.199	attackspambots	Sep 10 05:09:44 vbuntu sshd[20086]: refused connect from 122.114.199.199 (122.114.199.199) Sep 10 05:09:50 vbuntu sshd[20087]: refused connect from 122.114.199.199 (122.114.199.199) Sep 10 05:09:50 vbuntu sshd[20088]: refused connect from 122.114.199.199 (122.114.199.199) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=122.114.199.199	2019-11-07 06:49:33

Recently Reported IPs

145.231.247.180	103.105.209.42	255.107.170.73	245.90.166.153
201.214.193.178	212.68.235.241	126.110.44.105	175.41.168.103
223.12.16.213	247.243.191.187	105.108.155.246	226.248.114.107
169.196.106.200	211.23.46.180	12.77.185.205	205.196.31.48
224.117.211.205	235.90.104.209	214.174.43.42	13.174.122.113