116.196.113.138

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Telecom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.196.113.152	attack	2019-08-29T02:20:00.091509abusebot-2.cloudsearch.cf sshd\[30324\]: Invalid user donna from 116.196.113.152 port 50294	2019-08-29 16:36:39

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.196.113.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7901
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.196.113.138.		IN	A

;; AUTHORITY SECTION:
.			513	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022071502 1800 900 604800 86400

;; Query time: 71 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 16 09:20:01 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 138.113.196.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.113.196.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
179.108.80.233	attackbots	19/10/29@07:38:20: FAIL: IoT-Telnet address from=179.108.80.233 ...	2019-10-29 22:37:02
94.73.223.66	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/94.73.223.66/ RU - 1H : (160) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : RU NAME ASN : ASN31257 IP : 94.73.223.66 CIDR : 94.73.192.0/19 PREFIX COUNT : 17 UNIQUE IP COUNT : 42240 ATTACKS DETECTED ASN31257 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-29 12:38:00 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-29 22:50:11
138.197.152.113	attackbots	Oct 29 02:39:58 web9 sshd\[6880\]: Invalid user yi from 138.197.152.113 Oct 29 02:39:58 web9 sshd\[6880\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.152.113 Oct 29 02:40:00 web9 sshd\[6880\]: Failed password for invalid user yi from 138.197.152.113 port 47262 ssh2 Oct 29 02:44:13 web9 sshd\[7441\]: Invalid user test123!@\# from 138.197.152.113 Oct 29 02:44:13 web9 sshd\[7441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.152.113	2019-10-29 22:44:05
138.197.179.102	attackspambots	Oct 29 04:15:40 tdfoods sshd\[26397\]: Invalid user kav from 138.197.179.102 Oct 29 04:15:40 tdfoods sshd\[26397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.179.102 Oct 29 04:15:42 tdfoods sshd\[26397\]: Failed password for invalid user kav from 138.197.179.102 port 36436 ssh2 Oct 29 04:19:47 tdfoods sshd\[26713\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.179.102 user=root Oct 29 04:19:49 tdfoods sshd\[26713\]: Failed password for root from 138.197.179.102 port 47492 ssh2	2019-10-29 22:29:50
61.52.238.142	attackbots	Port Scan	2019-10-29 22:15:32
171.79.105.228	attack	port scan and connect, tcp 22 (ssh)	2019-10-29 22:40:03
163.172.61.214	attackbots	Invalid user user from 163.172.61.214 port 49332	2019-10-29 22:42:46
197.0.109.248	attackbotsspam	Port Scan	2019-10-29 22:24:55
202.142.93.187	attackspambots	TCP Port Scanning	2019-10-29 22:21:57
123.7.178.136	attackbotsspam	Oct 29 14:02:27 vps647732 sshd[17408]: Failed password for ubuntu from 123.7.178.136 port 35136 ssh2 ...	2019-10-29 22:15:01
78.169.74.194	attackspambots	Port Scan	2019-10-29 22:33:00
45.143.221.9	attackspam	ET SCAN Sipvicious Scan - port: 5060 proto: UDP cat: Attempted Information Leak	2019-10-29 22:26:54
117.50.104.206	attackbotsspam	Port Scan	2019-10-29 22:48:07
46.38.144.57	attackspambots	2019-10-29T15:14:55.278896mail01 postfix/smtpd[15562]: warning: unknown[46.38.144.57]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-10-29T15:15:03.168491mail01 postfix/smtpd[4741]: warning: unknown[46.38.144.57]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-10-29T15:15:15.048216mail01 postfix/smtpd[15757]: warning: unknown[46.38.144.57]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-10-29 22:21:19
31.46.218.200	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/31.46.218.200/ HU - 1H : (15) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : HU NAME ASN : ASN5483 IP : 31.46.218.200 CIDR : 31.46.128.0/17 PREFIX COUNT : 275 UNIQUE IP COUNT : 1368320 ATTACKS DETECTED ASN5483 : 1H - 2 3H - 2 6H - 5 12H - 8 24H - 10 DateTime : 2019-10-29 12:38:16 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-29 22:40:33

Recently Reported IPs

5.133.121.113	183.88.2.85	112.250.210.253	207.188.129.189
91.98.102.101	203.223.40.186	45.228.77.128	213.81.157.210
185.245.25.119	195.225.146.37	185.102.112.225	109.94.175.97
45.132.184.47	37.44.254.178	83.142.54.201	193.202.83.152
212.119.40.178	159.192.253.254	165.154.253.18	193.203.11.43