116.0.4.126 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.0.40.18	attackspambots	445/tcp [2020-08-06]1pkt	2020-08-06 22:19:04
116.0.45.82	attack	Unauthorized connection attempt from IP address 116.0.45.82 on Port 445(SMB)	2020-02-12 01:32:39
116.0.48.234	attackspam	unauthorized connection attempt	2020-01-12 17:48:40
116.0.49.252	attack	Unauthorized connection attempt from IP address 116.0.49.252 on Port 445(SMB)	2019-11-10 04:51:59
116.0.49.58	attackbotsspam	116.0.49.58 - - [18/Oct/2019:07:43:25 -0400] "GET /?page=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd&action=view&manufacturerID=143&productID=9300&linkID=7489&duplicate=0 HTTP/1.1" 200 16656 "https://exitdevice.com/?page=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd&action=view&manufacturerID=143&productID=9300&linkID=7489&duplicate=0" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0" ...	2019-10-18 21:13:00
116.0.45.82	attack	Scanning random ports - tries to find possible vulnerable services	2019-09-01 17:14:52
116.0.4.122	attackspambots	445/tcp 445/tcp 445/tcp... [2019-07-05/08-12]4pkt,1pt.(tcp)	2019-08-13 07:45:35
116.0.45.82	attackbotsspam	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(08050931)	2019-08-05 16:51:06
116.0.4.122	attackspambots	445/tcp 445/tcp 445/tcp [2019-07-05/29]3pkt	2019-07-30 15:42:46
116.0.4.122	attackspambots	Port scan and direct access per IP instead of hostname	2019-07-28 17:13:53

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.0.4.126
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15169
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.0.4.126.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 13:50:48 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 126.4.0.116.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 126.4.0.116.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
37.187.97.33	attack	...	2019-12-20 22:35:48
222.186.180.9	attackspambots	Dec 20 15:02:31 localhost sshd[29937]: Failed none for root from 222.186.180.9 port 26108 ssh2 Dec 20 15:02:33 localhost sshd[29937]: Failed password for root from 222.186.180.9 port 26108 ssh2 Dec 20 15:02:38 localhost sshd[29937]: Failed password for root from 222.186.180.9 port 26108 ssh2	2019-12-20 22:06:59
185.176.27.98	attackbots	Dec 20 14:53:41 debian-2gb-nbg1-2 kernel: \[502783.066359\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.98 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=64465 PROTO=TCP SPT=41771 DPT=22605 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-20 22:10:12
66.70.141.200	attack	Dec 20 03:30:53 hanapaa sshd\[25510\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.141.200 user=root Dec 20 03:30:55 hanapaa sshd\[25510\]: Failed password for root from 66.70.141.200 port 37100 ssh2 Dec 20 03:40:12 hanapaa sshd\[26540\]: Invalid user server from 66.70.141.200 Dec 20 03:40:12 hanapaa sshd\[26540\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.141.200 Dec 20 03:40:14 hanapaa sshd\[26540\]: Failed password for invalid user server from 66.70.141.200 port 42240 ssh2	2019-12-20 22:01:29
139.199.58.118	attack	Invalid user postgres from 139.199.58.118 port 35540 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.58.118 Failed password for invalid user postgres from 139.199.58.118 port 35540 ssh2 Invalid user malley from 139.199.58.118 port 52864 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.58.118	2019-12-20 22:07:33
222.252.105.147	attack	Dec 20 07:16:42 mxgate1 postfix/postscreen[25921]: CONNECT from [222.252.105.147]:46152 to [176.31.12.44]:25 Dec 20 07:16:42 mxgate1 postfix/dnsblog[26062]: addr 222.252.105.147 listed by domain cbl.abuseat.org as 127.0.0.2 Dec 20 07:16:42 mxgate1 postfix/dnsblog[26061]: addr 222.252.105.147 listed by domain bl.spamcop.net as 127.0.0.2 Dec 20 07:16:42 mxgate1 postfix/dnsblog[26059]: addr 222.252.105.147 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Dec 20 07:16:42 mxgate1 postfix/dnsblog[26058]: addr 222.252.105.147 listed by domain b.barracudacentral.org as 127.0.0.2 Dec 20 07:16:43 mxgate1 postfix/dnsblog[26060]: addr 222.252.105.147 listed by domain zen.spamhaus.org as 127.0.0.3 Dec 20 07:16:43 mxgate1 postfix/dnsblog[26060]: addr 222.252.105.147 listed by domain zen.spamhaus.org as 127.0.0.4 Dec 20 07:16:43 mxgate1 postfix/dnsblog[26060]: addr 222.252.105.147 listed by domain zen.spamhaus.org as 127.0.0.11 Dec 20 07:16:48 mxgate1 postfix/postscreen[25921]: DNSBL........ -------------------------------	2019-12-20 22:18:49
128.199.167.233	attackspam	Invalid user moutafian from 128.199.167.233 port 53108 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.167.233 Failed password for invalid user moutafian from 128.199.167.233 port 53108 ssh2 Invalid user 123Darwin from 128.199.167.233 port 58880 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.167.233	2019-12-20 22:11:42
104.108.6.201	attackspambots	TCP Port Scanning	2019-12-20 22:12:15
14.249.126.191	attack	1576822991 - 12/20/2019 07:23:11 Host: 14.249.126.191/14.249.126.191 Port: 445 TCP Blocked	2019-12-20 22:17:02
134.209.115.206	attackbotsspam	Dec 20 15:00:45 MK-Soft-Root1 sshd[27859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.115.206 Dec 20 15:00:47 MK-Soft-Root1 sshd[27859]: Failed password for invalid user ##### from 134.209.115.206 port 45858 ssh2 ...	2019-12-20 22:03:45
66.240.219.146	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 63 - port: 6006 proto: TCP cat: Misc Attack	2019-12-20 22:17:57
189.7.17.61	attackbotsspam	(sshd) Failed SSH login from 189.7.17.61 (bd07113d.virtua.com.br): 5 in the last 3600 secs	2019-12-20 22:24:43
109.160.116.26	attackspam	TCP Port Scanning	2019-12-20 22:31:33
13.82.186.251	attack	Invalid user zimbra from 13.82.186.251 port 34424	2019-12-20 22:40:20
106.12.189.89	attack	Dec 20 11:03:13 hcbbdb sshd\[18843\]: Invalid user ident from 106.12.189.89 Dec 20 11:03:13 hcbbdb sshd\[18843\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.189.89 Dec 20 11:03:16 hcbbdb sshd\[18843\]: Failed password for invalid user ident from 106.12.189.89 port 39594 ssh2 Dec 20 11:11:41 hcbbdb sshd\[19775\]: Invalid user bot1 from 106.12.189.89 Dec 20 11:11:41 hcbbdb sshd\[19775\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.189.89	2019-12-20 22:36:58

Recently Reported IPs

116.1.84.112	116.1.22.116	116.1.54.143	116.100.130.97
116.100.131.94	116.100.121.126	116.100.163.137	116.100.77.202
116.10.21.208	116.100.195.173	116.101.157.251	116.101.227.166
116.101.159.70	116.10.1.147	116.101.163.168	116.101.233.199
116.101.48.197	116.101.240.23	116.101.238.48	116.102.128.54