117.64.249.138

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Anhui Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	FTP Brute-Force	2019-09-28 20:25:30

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.64.249.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38293
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.64.249.138.			IN	A

;; AUTHORITY SECTION:
.			356	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092800 1800 900 604800 86400

;; Query time: 144 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 28 20:25:27 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 138.249.64.117.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.249.64.117.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
152.136.100.66	attack	2019-11-28T18:35:06.0904951495-001 sshd\[65497\]: Invalid user sheepgirl from 152.136.100.66 port 42852 2019-11-28T18:35:06.0979741495-001 sshd\[65497\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.100.66 2019-11-28T18:35:07.8738121495-001 sshd\[65497\]: Failed password for invalid user sheepgirl from 152.136.100.66 port 42852 ssh2 2019-11-28T18:38:35.4354381495-001 sshd\[466\]: Invalid user starrett from 152.136.100.66 port 50430 2019-11-28T18:38:35.4386921495-001 sshd\[466\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.100.66 2019-11-28T18:38:37.2384091495-001 sshd\[466\]: Failed password for invalid user starrett from 152.136.100.66 port 50430 ssh2 ...	2019-11-29 08:30:54
211.87.240.225	attackspam	Port 1433 Scan	2019-11-29 08:58:23
179.127.240.254	attackbotsspam	DDoS few hours	2019-11-29 08:55:51
81.30.152.54	attackbotsspam	\[2019-11-28 19:53:34\] NOTICE\[2754\] chan_sip.c: Registration from '\' failed for '81.30.152.54:56892' - Wrong password \[2019-11-28 19:53:34\] SECURITY\[2765\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-11-28T19:53:34.243-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="6256",SessionID="0x7f26c445f668",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/81.30.152.54/56892",Challenge="5e664df0",ReceivedChallenge="5e664df0",ReceivedHash="fee5cc271cb8356ddab4c03255e1f85e" \[2019-11-28 19:54:03\] NOTICE\[2754\] chan_sip.c: Registration from '\' failed for '81.30.152.54:58230' - Wrong password \[2019-11-28 19:54:03\] SECURITY\[2765\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-11-28T19:54:03.168-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="9837",SessionID="0x7f26c4a61d98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/81.30.152.54	2019-11-29 08:54:45
183.239.44.164	attack	Invalid user info from 183.239.44.164 port 49982	2019-11-29 08:39:18
140.213.57.6	attackbotsspam	Unauthorized connection attempt from IP address 140.213.57.6 on Port 445(SMB)	2019-11-29 08:26:42
49.235.97.29	attackspam	Unauthorized SSH login attempts	2019-11-29 08:50:31
201.7.215.106	attackspam	Unauthorized connection attempt from IP address 201.7.215.106 on Port 445(SMB)	2019-11-29 08:27:06
134.175.197.226	attackspambots	Nov 29 00:22:16 venus sshd\[7790\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.197.226 user=root Nov 29 00:22:18 venus sshd\[7790\]: Failed password for root from 134.175.197.226 port 47874 ssh2 Nov 29 00:25:41 venus sshd\[7830\]: Invalid user admin from 134.175.197.226 port 37253 ...	2019-11-29 08:47:43
203.86.24.203	attackspambots	Nov 28 23:45:22 [host] sshd[19395]: Invalid user culturist from 203.86.24.203 Nov 28 23:45:22 [host] sshd[19395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.86.24.203 Nov 28 23:45:24 [host] sshd[19395]: Failed password for invalid user culturist from 203.86.24.203 port 36702 ssh2	2019-11-29 08:31:22
170.80.225.230	attackbots	Nov 28 23:44:08 srv-ubuntu-dev3 sshd[109293]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.80.225.230 user=root Nov 28 23:44:10 srv-ubuntu-dev3 sshd[109293]: Failed password for root from 170.80.225.230 port 45854 ssh2 Nov 28 23:44:22 srv-ubuntu-dev3 sshd[109293]: error: maximum authentication attempts exceeded for root from 170.80.225.230 port 45854 ssh2 [preauth] Nov 28 23:44:08 srv-ubuntu-dev3 sshd[109293]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.80.225.230 user=root Nov 28 23:44:10 srv-ubuntu-dev3 sshd[109293]: Failed password for root from 170.80.225.230 port 45854 ssh2 Nov 28 23:44:22 srv-ubuntu-dev3 sshd[109293]: error: maximum authentication attempts exceeded for root from 170.80.225.230 port 45854 ssh2 [preauth] Nov 28 23:44:08 srv-ubuntu-dev3 sshd[109293]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.80.225.230 user=root Nov 28 2 ...	2019-11-29 08:57:12
27.254.204.196	attack	Brute force attack stopped by firewall	2019-11-29 08:38:51
188.165.242.200	attackspam	2019-11-29T00:18:24.258386abusebot-5.cloudsearch.cf sshd\[28486\]: Invalid user robert from 188.165.242.200 port 40138	2019-11-29 08:35:28
78.128.113.124	attackspambots	smtp auth brute force	2019-11-29 08:43:31
118.201.65.162	attackspambots	Nov 29 01:29:15 sauna sshd[81089]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.201.65.162 Nov 29 01:29:17 sauna sshd[81089]: Failed password for invalid user server from 118.201.65.162 port 50248 ssh2 ...	2019-11-29 09:00:25

Recently Reported IPs

121.234.0.180	113.87.47.133	96.54.244.117	45.224.105.74
198.136.51.122	43.225.44.191	37.37.137.80	165.231.248.20
79.137.31.174	5.215.126.123	49.207.132.124	72.213.99.127
49.151.231.87	42.113.114.82	2.61.178.254	196.200.146.9
110.228.155.41	2.186.140.144	194.179.47.3	108.236.75.42