113.138.218.66

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Shaanxi Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	firewall-block, port(s): 23/tcp	2019-07-13 04:50:53

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.138.218.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24685
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.138.218.66.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071201 1800 900 604800 86400

;; Query time: 5 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jul 13 04:50:48 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 66.218.138.113.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 66.218.138.113.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
111.231.133.72	attackbotsspam	Jun 18 13:42:23 ns382633 sshd\[6123\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.133.72 user=root Jun 18 13:42:24 ns382633 sshd\[6123\]: Failed password for root from 111.231.133.72 port 42870 ssh2 Jun 18 14:09:44 ns382633 sshd\[10822\]: Invalid user seino from 111.231.133.72 port 48364 Jun 18 14:09:44 ns382633 sshd\[10822\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.133.72 Jun 18 14:09:46 ns382633 sshd\[10822\]: Failed password for invalid user seino from 111.231.133.72 port 48364 ssh2	2020-06-18 20:33:56
106.12.87.149	attackbotsspam	leo_www	2020-06-18 20:42:59
1.212.157.115	attackspambots	DATE:2020-06-18 14:09:55, IP:1.212.157.115, PORT:5900 VNC brute force auth on honeypot server (epe-honey1-hq)	2020-06-18 20:18:48
219.250.188.41	attackbotsspam	Jun 18 14:06:24 haigwepa sshd[20581]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.250.188.41 Jun 18 14:06:25 haigwepa sshd[20581]: Failed password for invalid user deepmagic from 219.250.188.41 port 51704 ssh2 ...	2020-06-18 20:10:13
167.172.98.89	attack	Jun 18 09:05:06 firewall sshd[31424]: Invalid user projects from 167.172.98.89 Jun 18 09:05:08 firewall sshd[31424]: Failed password for invalid user projects from 167.172.98.89 port 37793 ssh2 Jun 18 09:09:32 firewall sshd[31524]: Invalid user ayw from 167.172.98.89 ...	2020-06-18 20:50:26
118.163.58.117	attack	Dovecot Invalid User Login Attempt.	2020-06-18 20:12:50
222.186.173.201	attackbotsspam	Jun 18 12:51:35 django-0 sshd[19457]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.201 user=root Jun 18 12:51:37 django-0 sshd[19457]: Failed password for root from 222.186.173.201 port 5514 ssh2 ...	2020-06-18 20:47:41
63.81.93.134	attack	Jun 18 04:29:22 tempelhof postfix/smtpd[19081]: connect from damage.ketabaneh.com[63.81.93.134] Jun 18 04:29:23 tempelhof postgrey[1309]: action=greylist, reason=new, client_name=damage.ketabaneh.com, client_address=63.81.93.134, sender=x@x recipient=x@x Jun 18 04:29:23 tempelhof postfix/smtpd[19081]: disconnect from damage.ketabaneh.com[63.81.93.134] Jun 18 04:32:32 tempelhof postfix/smtpd[20149]: connect from damage.ketabaneh.com[63.81.93.134] Jun x@x Jun 18 04:32:33 tempelhof postfix/smtpd[20149]: disconnect from damage.ketabaneh.com[63.81.93.134] Jun 18 04:34:17 tempelhof postfix/smtpd[19104]: connect from damage.ketabaneh.com[63.81.93.134] Jun x@x Jun 18 04:34:17 tempelhof postfix/smtpd[19104]: disconnect from damage.ketabaneh.com[63.81.93.134] Jun 18 04:34:26 tempelhof postfix/smtpd[20149]: connect from damage.ketabaneh.com[63.81.93.134] Jun x@x Jun 18 04:34:26 tempelhof postfix/smtpd[20149]: disconnect from damage.ketabaneh.com[63.81.93.134] ........ ----------------------------------------------- ht	2020-06-18 20:30:11
134.209.34.185	attackbotsspam	Jun 18 14:06:07 ns382633 sshd\[10481\]: Invalid user administrador from 134.209.34.185 port 59414 Jun 18 14:06:07 ns382633 sshd\[10481\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.34.185 Jun 18 14:06:09 ns382633 sshd\[10481\]: Failed password for invalid user administrador from 134.209.34.185 port 59414 ssh2 Jun 18 14:09:56 ns382633 sshd\[10846\]: Invalid user bikegate from 134.209.34.185 port 52544 Jun 18 14:09:56 ns382633 sshd\[10846\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.34.185	2020-06-18 20:24:26
117.50.95.121	attackbots	Jun 18 14:28:06 mout sshd[31904]: Invalid user ksi from 117.50.95.121 port 44034	2020-06-18 20:30:39
180.248.120.72	attack	1592482194 - 06/18/2020 14:09:54 Host: 180.248.120.72/180.248.120.72 Port: 445 TCP Blocked	2020-06-18 20:28:53
187.229.29.26	attack	"URL Encoding Abuse Attack Attempt - wp.getUsersBlogsadmin-sdosadmin-sdos%"	2020-06-18 20:25:31
187.243.6.106	attackspam	Jun 18 14:02:56 meumeu sshd[844520]: Invalid user admin from 187.243.6.106 port 37636 Jun 18 14:02:56 meumeu sshd[844520]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.243.6.106 Jun 18 14:02:56 meumeu sshd[844520]: Invalid user admin from 187.243.6.106 port 37636 Jun 18 14:02:58 meumeu sshd[844520]: Failed password for invalid user admin from 187.243.6.106 port 37636 ssh2 Jun 18 14:06:20 meumeu sshd[844627]: Invalid user gitlab-runner from 187.243.6.106 port 36186 Jun 18 14:06:20 meumeu sshd[844627]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.243.6.106 Jun 18 14:06:20 meumeu sshd[844627]: Invalid user gitlab-runner from 187.243.6.106 port 36186 Jun 18 14:06:22 meumeu sshd[844627]: Failed password for invalid user gitlab-runner from 187.243.6.106 port 36186 ssh2 Jun 18 14:09:39 meumeu sshd[844776]: Invalid user hardware from 187.243.6.106 port 34738 ...	2020-06-18 20:45:05
184.105.247.230	attackbotsspam	srv02 Mass scanning activity detected Target: 3389 ..	2020-06-18 20:13:55
199.249.230.148	attackspam	Spams web forms	2020-06-18 20:17:54

Recently Reported IPs

1.210.43.60	248.252.122.48	69.64.44.44	20.170.3.183
235.46.100.170	41.126.35.170	94.8.208.239	180.79.29.129
148.160.25.97	122.214.18.131	240.222.145.174	80.130.12.220
220.223.3.7	210.42.35.249	167.114.193.212	115.133.140.39
27.192.168.243	225.162.139.194	119.202.80.99	35.234.37.162