113.197.54.146

Basic Info

City: unknown

Region: unknown

Country: Pakistan

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
113.197.54.162	attack	Unauthorised access (Jun 15) SRC=113.197.54.162 LEN=52 TTL=111 ID=7548 DF TCP DPT=445 WINDOW=8192 SYN	2020-06-15 12:51:01
113.197.54.162	attackbotsspam	Unauthorized connection attempt from IP address 113.197.54.162 on Port 445(SMB)	2020-06-06 17:53:14
113.197.54.162	attackbots	Unauthorized connection attempt from IP address 113.197.54.162 on Port 445(SMB)	2020-03-12 22:21:38
113.197.54.162	attackbots	Honeypot attack, port: 445, PTR: 113-197-54-162.reverse.ntc.net.pk.	2020-01-08 18:21:43
113.197.54.162	attackspambots	Unauthorized connection attempt detected from IP address 113.197.54.162 to port 445	2019-12-24 20:34:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.197.54.146
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28094
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;113.197.54.146.			IN	A

;; AUTHORITY SECTION:
.			508	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022092301 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 24 10:45:01 CST 2022
;; MSG SIZE  rcvd: 107

Host info

146.54.197.113.in-addr.arpa domain name pointer mail.mofa.gov.pk.
146.54.197.113.in-addr.arpa domain name pointer 113-197-54-146.reverse.ntc.net.pk.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
146.54.197.113.in-addr.arpa	name = 113-197-54-146.reverse.ntc.net.pk.
146.54.197.113.in-addr.arpa	name = mail.mofa.gov.pk.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
89.26.250.41	attack	Aug 16 07:29:43 sshgateway sshd\[14755\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.26.250.41 user=root Aug 16 07:29:44 sshgateway sshd\[14755\]: Failed password for root from 89.26.250.41 port 43973 ssh2 Aug 16 07:33:51 sshgateway sshd\[14780\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.26.250.41 user=root	2020-08-16 16:18:17
58.33.49.196	attack	Aug 16 10:06:53 abendstille sshd\[5612\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.33.49.196 user=root Aug 16 10:06:55 abendstille sshd\[5612\]: Failed password for root from 58.33.49.196 port 60874 ssh2 Aug 16 10:09:38 abendstille sshd\[7979\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.33.49.196 user=root Aug 16 10:09:40 abendstille sshd\[7979\]: Failed password for root from 58.33.49.196 port 48428 ssh2 Aug 16 10:12:24 abendstille sshd\[10706\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.33.49.196 user=root ...	2020-08-16 16:17:33
119.8.109.226	attack	Host Scan	2020-08-16 16:18:01
103.131.71.126	attackbotsspam	(mod_security) mod_security (id:210730) triggered by 103.131.71.126 (VN/Vietnam/bot-103-131-71-126.coccoc.com): 5 in the last 3600 secs	2020-08-16 16:18:49
222.186.42.7	attackbotsspam	Aug 16 10:12:45 abendstille sshd\[10927\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.7 user=root Aug 16 10:12:46 abendstille sshd\[10927\]: Failed password for root from 222.186.42.7 port 11642 ssh2 Aug 16 10:12:55 abendstille sshd\[11131\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.7 user=root Aug 16 10:12:56 abendstille sshd\[11131\]: Failed password for root from 222.186.42.7 port 43361 ssh2 Aug 16 10:12:58 abendstille sshd\[11131\]: Failed password for root from 222.186.42.7 port 43361 ssh2 ...	2020-08-16 16:15:04
49.88.112.110	attackbotsspam	Aug 16 10:06:24 vps sshd[1039402]: Failed password for root from 49.88.112.110 port 53066 ssh2 Aug 16 10:06:27 vps sshd[1039402]: Failed password for root from 49.88.112.110 port 53066 ssh2 Aug 16 10:06:29 vps sshd[1039402]: Failed password for root from 49.88.112.110 port 53066 ssh2 Aug 16 10:07:15 vps sshd[1043674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.110 user=root Aug 16 10:07:17 vps sshd[1043674]: Failed password for root from 49.88.112.110 port 14637 ssh2 ...	2020-08-16 16:07:34
91.218.63.18	attackspambots	Tried our host z.	2020-08-16 16:19:48
45.232.73.83	attack	$f2bV_matches	2020-08-16 16:15:43
196.216.73.90	attack	Aug 16 07:59:49 inter-technics sshd[10688]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.216.73.90 user=root Aug 16 07:59:51 inter-technics sshd[10688]: Failed password for root from 196.216.73.90 port 20146 ssh2 Aug 16 08:04:47 inter-technics sshd[10994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.216.73.90 user=root Aug 16 08:04:49 inter-technics sshd[10994]: Failed password for root from 196.216.73.90 port 17426 ssh2 Aug 16 08:09:28 inter-technics sshd[11483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.216.73.90 user=root Aug 16 08:09:30 inter-technics sshd[11483]: Failed password for root from 196.216.73.90 port 12905 ssh2 ...	2020-08-16 16:02:48
168.194.111.110	attackbotsspam	Aug 16 06:04:10 ns382633 sshd\[24627\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.111.110 user=root Aug 16 06:04:11 ns382633 sshd\[24627\]: Failed password for root from 168.194.111.110 port 62785 ssh2 Aug 16 06:11:13 ns382633 sshd\[26067\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.111.110 user=root Aug 16 06:11:16 ns382633 sshd\[26067\]: Failed password for root from 168.194.111.110 port 58113 ssh2 Aug 16 06:14:07 ns382633 sshd\[26281\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.111.110 user=root	2020-08-16 15:54:35
61.196.178.247	attackspambots	61.196.178.247 - - [16/Aug/2020:04:52:52 +0100] "POST /wp-login.php HTTP/1.1" 200 1996 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 61.196.178.247 - - [16/Aug/2020:04:52:54 +0100] "POST /wp-login.php HTTP/1.1" 200 1929 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 61.196.178.247 - - [16/Aug/2020:04:52:55 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-16 15:59:00
185.232.30.130	attack	TCP (SYN) 185.232.30.130:58386 -> port 33389, len 44	2020-08-16 16:05:16
106.13.165.247	attackspambots	2020-08-15T22:53:05.482762morrigan.ad5gb.com sshd[147704]: Failed password for root from 106.13.165.247 port 46030 ssh2 2020-08-15T22:53:06.015191morrigan.ad5gb.com sshd[147704]: Disconnected from authenticating user root 106.13.165.247 port 46030 [preauth]	2020-08-16 15:51:39
192.95.30.59	attackspambots	192.95.30.59 - - [16/Aug/2020:09:16:13 +0100] "POST /wp-login.php HTTP/1.1" 200 6121 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.95.30.59 - - [16/Aug/2020:09:17:58 +0100] "POST /wp-login.php HTTP/1.1" 200 6121 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.95.30.59 - - [16/Aug/2020:09:19:43 +0100] "POST /wp-login.php HTTP/1.1" 200 6121 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" ...	2020-08-16 16:24:44
78.191.216.196	attack	Automatic report - Port Scan Attack	2020-08-16 15:53:14

Recently Reported IPs

222.6.252.220	222.238.231.178	234.99.99.144	232.112.139.40
96.136.10.214	15.64.145.131	143.244.225.109	228.21.141.200
134.73.51.240	244.140.229.121	121.17.18.219	145.63.126.45
215.13.123.231	110.82.67.145	142.209.193.138	51.75.79.125
80.178.128.123	192.168.254.70	98.70.90.211	240.123.164.65