116.138.152.213

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-22 04:30:09

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.138.152.213
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46383
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.138.152.213.		IN	A

;; AUTHORITY SECTION:
.			564	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112101 1800 900 604800 86400

;; Query time: 593 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 22 04:30:06 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 213.152.138.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 213.152.138.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
42.2.132.131	attackspam	Feb 8 04:06:46 XXX sshd[10564]: Invalid user jvn from 42.2.132.131 port 43384	2020-02-08 13:11:20
180.250.69.213	attackbotsspam	Feb 8 06:07:28 * sshd[12569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.250.69.213 Feb 8 06:07:31 * sshd[12569]: Failed password for invalid user uma from 180.250.69.213 port 42994 ssh2	2020-02-08 13:30:44
159.192.232.81	attack	$f2bV_matches	2020-02-08 11:06:58
104.7.66.131	attackbotsspam	Feb 8 04:52:04 game-panel sshd[21201]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.7.66.131 Feb 8 04:52:06 game-panel sshd[21201]: Failed password for invalid user anf from 104.7.66.131 port 59162 ssh2 Feb 8 04:59:53 game-panel sshd[21488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.7.66.131	2020-02-08 13:16:07
189.47.214.28	attackbotsspam	Feb 8 05:16:27 XXX sshd[34575]: Invalid user dsq from 189.47.214.28 port 51232	2020-02-08 13:11:36
180.241.47.172	attack	1581137981 - 02/08/2020 05:59:41 Host: 180.241.47.172/180.241.47.172 Port: 445 TCP Blocked	2020-02-08 13:22:16
70.36.79.181	attackspambots	Feb 7 16:25:03 auw2 sshd\[12886\]: Invalid user yrl from 70.36.79.181 Feb 7 16:25:03 auw2 sshd\[12886\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.36.79.181 Feb 7 16:25:05 auw2 sshd\[12886\]: Failed password for invalid user yrl from 70.36.79.181 port 56684 ssh2 Feb 7 16:28:21 auw2 sshd\[13250\]: Invalid user dug from 70.36.79.181 Feb 7 16:28:21 auw2 sshd\[13250\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.36.79.181	2020-02-08 11:06:39
182.74.170.54	attackbots	Feb 8 04:04:18 XXX sshd[10551]: Invalid user 666666 from 182.74.170.54 port 52674	2020-02-08 13:10:20
3.122.114.11	attack	Port scan: Attack repeated for 24 hours	2020-02-08 13:18:41
111.230.10.176	attack	2020-02-07T23:34:15.159812centos sshd\[26007\]: Invalid user nqk from 111.230.10.176 port 34676 2020-02-07T23:34:15.165073centos sshd\[26007\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.10.176 2020-02-07T23:34:16.666306centos sshd\[26007\]: Failed password for invalid user nqk from 111.230.10.176 port 34676 ssh2	2020-02-08 11:20:04
118.71.96.121	attackbots	Unauthorized connection attempt from IP address 118.71.96.121 on Port 445(SMB)	2020-02-08 13:05:54
185.150.235.34	attackspambots	Feb 7 16:01:28 hpm sshd\[10344\]: Invalid user dft from 185.150.235.34 Feb 7 16:01:28 hpm sshd\[10344\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.150.235.34 Feb 7 16:01:31 hpm sshd\[10344\]: Failed password for invalid user dft from 185.150.235.34 port 53426 ssh2 Feb 7 16:04:47 hpm sshd\[10660\]: Invalid user tci from 185.150.235.34 Feb 7 16:04:47 hpm sshd\[10660\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.150.235.34	2020-02-08 11:08:11
36.107.225.238	attackbots	Feb 8 06:00:03 mout sshd[1265]: Invalid user nhq from 36.107.225.238 port 44856	2020-02-08 13:04:49
82.64.35.195	attack	web-1 [ssh] SSH Attack	2020-02-08 11:15:49
206.189.193.27	attackbotsspam	port scan and connect, tcp 6379 (redis)	2020-02-08 11:19:11

Recently Reported IPs

190.130.235.198	132.203.40.129	5.53.124.102	180.198.135.133
108.18.230.237	76.210.255.57	217.69.0.241	153.104.236.117
115.79.61.20	169.252.57.24	161.49.112.188	54.149.66.131
193.75.196.56	64.71.86.48	56.97.43.200	74.65.156.190
79.200.9.194	172.96.192.25	36.205.89.236	153.229.37.185