120.11.111.138

Basic Info

City: Cangzhou

Region: Hebei

Country: China

Internet Service Provider: China Unicom Heibei Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 120.11.111.138 to port 23 [T]	2020-05-09 02:55:57
attackspambots	Unauthorized connection attempt detected from IP address 120.11.111.138 to port 23 [T]	2020-05-06 08:12:47

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.11.111.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43282
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;120.11.111.138.			IN	A

;; AUTHORITY SECTION:
.			300	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050502 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 06 08:12:44 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 138.111.11.120.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.111.11.120.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
186.233.73.117	attackspam	SSH Brute Force	2020-08-08 19:46:44
150.136.116.126	attackspam	Aug 8 10:13:22 roki-contabo sshd\[1033\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.136.116.126 user=root Aug 8 10:13:24 roki-contabo sshd\[1033\]: Failed password for root from 150.136.116.126 port 33020 ssh2 Aug 8 10:25:59 roki-contabo sshd\[1312\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.136.116.126 user=root Aug 8 10:26:01 roki-contabo sshd\[1312\]: Failed password for root from 150.136.116.126 port 53172 ssh2 Aug 8 10:29:50 roki-contabo sshd\[1417\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.136.116.126 user=root ...	2020-08-08 20:13:08
198.98.49.181	attackspambots	Aug 8 14:03:31 abendstille sshd\[13818\]: Invalid user ec2-user from 198.98.49.181 Aug 8 14:03:31 abendstille sshd\[13820\]: Invalid user alfresco from 198.98.49.181 Aug 8 14:03:31 abendstille sshd\[13819\]: Invalid user postgres from 198.98.49.181 Aug 8 14:03:31 abendstille sshd\[13822\]: Invalid user centos from 198.98.49.181 Aug 8 14:03:31 abendstille sshd\[13823\]: Invalid user ubuntu from 198.98.49.181 Aug 8 14:03:31 abendstille sshd\[13824\]: Invalid user vagrant from 198.98.49.181 Aug 8 14:03:31 abendstille sshd\[13825\]: Invalid user oracle from 198.98.49.181 ...	2020-08-08 20:04:57
185.234.219.13	attack	CF RAY ID: 5bef7a22ff6ecca7 IP Class: noRecord URI: /	2020-08-08 19:40:21
185.234.219.11	attack	(PERMBLOCK) 185.234.219.11 (PL/Poland/-) has had more than 4 temp blocks in the last 86400 secs; ID: DAN	2020-08-08 19:41:29
121.163.131.224	attackbotsspam	Aug 8 05:50:32 debian-2gb-nbg1-2 kernel: \[19117080.066644\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=121.163.131.224 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=45684 PROTO=TCP SPT=57144 DPT=23 WINDOW=45912 RES=0x00 SYN URGP=0	2020-08-08 19:53:47
185.234.218.84	attackbotsspam	CF RAY ID: 5bf867c7da61f298 IP Class: unknown URI: /	2020-08-08 19:43:08
113.172.244.240	attackspambots	Unauthorized IMAP connection attempt	2020-08-08 19:39:59
210.212.29.215	attack	Aug 8 11:33:00 prox sshd[12673]: Failed password for root from 210.212.29.215 port 56610 ssh2	2020-08-08 19:55:20
5.249.145.245	attack	2020-08-08T12:05:01.190918+02:00 sshd[18363]: Failed password for root from 5.249.145.245 port 45450 ssh2	2020-08-08 19:50:52
85.209.0.252	attack	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-08-08T11:59:14Z	2020-08-08 20:08:23
110.80.142.84	attackbots	2020-08-08T07:18:14.866242abusebot-6.cloudsearch.cf sshd[23331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.80.142.84 user=root 2020-08-08T07:18:17.226602abusebot-6.cloudsearch.cf sshd[23331]: Failed password for root from 110.80.142.84 port 56138 ssh2 2020-08-08T07:19:43.739827abusebot-6.cloudsearch.cf sshd[23339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.80.142.84 user=root 2020-08-08T07:19:45.653265abusebot-6.cloudsearch.cf sshd[23339]: Failed password for root from 110.80.142.84 port 42248 ssh2 2020-08-08T07:21:16.825568abusebot-6.cloudsearch.cf sshd[23351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.80.142.84 user=root 2020-08-08T07:21:19.506721abusebot-6.cloudsearch.cf sshd[23351]: Failed password for root from 110.80.142.84 port 56592 ssh2 2020-08-08T07:22:49.984357abusebot-6.cloudsearch.cf sshd[23366]: pam_unix(sshd:auth): authe ...	2020-08-08 19:52:21
109.96.127.90	attackbots	Automatic report - Banned IP Access	2020-08-08 20:10:01
104.236.244.98	attack	Aug 8 09:04:44 firewall sshd[30263]: Failed password for root from 104.236.244.98 port 40984 ssh2 Aug 8 09:07:45 firewall sshd[30433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.244.98 user=root Aug 8 09:07:47 firewall sshd[30433]: Failed password for root from 104.236.244.98 port 39590 ssh2 ...	2020-08-08 20:11:52
117.50.107.175	attack	Aug 8 05:44:35 vmd17057 sshd[11220]: Failed password for root from 117.50.107.175 port 55092 ssh2 ...	2020-08-08 19:45:01

Recently Reported IPs

54.153.120.52	165.225.140.78	115.51.47.127	208.81.213.251
113.245.99.0	180.191.130.239	113.232.180.134	86.29.243.97
77.37.206.45	112.242.25.219	84.229.124.223	211.58.17.27
148.66.39.242	112.117.35.123	109.252.69.20	80.183.243.115
111.230.204.211	65.157.108.36	98.252.222.164	111.225.54.70