116.102.46.66 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: Viettel Group

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Automatic report - Port Scan Attack	2020-03-22 07:59:46

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.102.46.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26344
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.102.46.66.			IN	A

;; AUTHORITY SECTION:
.			440	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032102 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 22 07:59:43 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 66.46.102.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 66.46.102.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
139.198.16.242	attackbotsspam	Jun 1 16:37:36 dax sshd[9442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.16.242 user=r.r Jun 1 16:37:39 dax sshd[9442]: Failed password for r.r from 139.198.16.242 port 54460 ssh2 Jun 1 16:37:40 dax sshd[9442]: Received disconnect from 139.198.16.242: 11: Bye Bye [preauth] Jun 1 16:53:33 dax sshd[11661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.16.242 user=r.r Jun 1 16:53:35 dax sshd[11661]: Failed password for r.r from 139.198.16.242 port 60034 ssh2 Jun 1 16:53:35 dax sshd[11661]: Received disconnect from 139.198.16.242: 11: Bye Bye [preauth] Jun 1 16:59:47 dax sshd[12579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.16.242 user=r.r Jun 1 16:59:49 dax sshd[12579]: Failed password for r.r from 139.198.16.242 port 32940 ssh2 Jun 1 16:59:50 dax sshd[12579]: Received disconnect from 139.198.16.242: 11: ........ -------------------------------	2020-06-03 06:47:56
104.248.222.177	attackbotsspam	104.248.222.177 - - [02/Jun/2020:22:25:55 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.222.177 - - [02/Jun/2020:22:25:55 +0200] "POST /wp-login.php HTTP/1.1" 200 2031 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.222.177 - - [02/Jun/2020:22:25:55 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.222.177 - - [02/Jun/2020:22:25:56 +0200] "POST /wp-login.php HTTP/1.1" 200 2008 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.222.177 - - [02/Jun/2020:22:25:56 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.222.177 - - [02/Jun/2020:22:26:02 +0200] "POST /wp-login.php HTTP/1.1" 200 2009 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/ ...	2020-06-03 06:35:03
203.150.242.25	attackbotsspam	prod11 ...	2020-06-03 06:35:44
218.28.21.236	attackspambots	Jun 2 18:28:25 firewall sshd[14842]: Failed password for root from 218.28.21.236 port 46404 ssh2 Jun 2 18:30:32 firewall sshd[14942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.28.21.236 user=root Jun 2 18:30:34 firewall sshd[14942]: Failed password for root from 218.28.21.236 port 49734 ssh2 ...	2020-06-03 07:05:44
177.220.176.192	attackspambots	Lines containing failures of 177.220.176.192 May 31 19:42:48 neweola sshd[13490]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.220.176.192 user=r.r May 31 19:42:50 neweola sshd[13490]: Failed password for r.r from 177.220.176.192 port 51573 ssh2 May 31 19:42:52 neweola sshd[13490]: Received disconnect from 177.220.176.192 port 51573:11: Bye Bye [preauth] May 31 19:42:52 neweola sshd[13490]: Disconnected from authenticating user r.r 177.220.176.192 port 51573 [preauth] May 31 19:49:33 neweola sshd[13846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.220.176.192 user=r.r May 31 19:49:35 neweola sshd[13846]: Failed password for r.r from 177.220.176.192 port 31349 ssh2 May 31 19:49:35 neweola sshd[13846]: Received disconnect from 177.220.176.192 port 31349:11: Bye Bye [preauth] May 31 19:49:35 neweola sshd[13846]: Disconnected from authenticating user r.r 177.220.176.192 port 3134........ ------------------------------	2020-06-03 07:01:36
222.186.173.201	attack	Jun 3 00:23:44 legacy sshd[14500]: Failed password for root from 222.186.173.201 port 26484 ssh2 Jun 3 00:23:47 legacy sshd[14500]: Failed password for root from 222.186.173.201 port 26484 ssh2 Jun 3 00:23:50 legacy sshd[14500]: Failed password for root from 222.186.173.201 port 26484 ssh2 Jun 3 00:23:54 legacy sshd[14500]: Failed password for root from 222.186.173.201 port 26484 ssh2 ...	2020-06-03 06:37:07
157.230.45.31	attackspam	2020-06-02T14:12:51.655274suse-nuc sshd[5803]: User root from 157.230.45.31 not allowed because listed in DenyUsers ...	2020-06-03 06:38:11
117.50.36.190	attackbots	Jun 2 22:38:15 home sshd[14566]: Failed password for root from 117.50.36.190 port 50010 ssh2 Jun 2 22:42:27 home sshd[15076]: Failed password for root from 117.50.36.190 port 40634 ssh2 ...	2020-06-03 07:09:06
142.93.250.190	attackspambots	WordPress wp-login brute force :: 142.93.250.190 0.084 BYPASS [02/Jun/2020:22:00:29 0000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 2288 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-03 06:44:04
104.244.76.189	attackspambots	(mod_security) mod_security (id:225170) triggered by 104.244.76.189 (LU/Luxembourg/tor-exit-node): 5 in the last 3600 secs	2020-06-03 06:45:37
154.9.204.184	attackbots	Jun 3 00:54:33 home sshd[30606]: Failed password for root from 154.9.204.184 port 45086 ssh2 Jun 3 00:56:48 home sshd[30796]: Failed password for root from 154.9.204.184 port 55348 ssh2 ...	2020-06-03 07:10:33
60.172.95.182	attackspambots	Unauthorized connection attempt detected from IP address 60.172.95.182 to port 22	2020-06-03 06:38:56
106.13.228.62	attackspam	Jun 3 00:31:20 * sshd[2292]: Failed password for root from 106.13.228.62 port 34040 ssh2	2020-06-03 06:45:09
219.101.192.141	attackspam	" "	2020-06-03 07:07:27
240e:d9:d800:200::d4	attackspam	TCP ports : 39 / 505	2020-06-03 06:39:22

Recently Reported IPs

77.173.88.77	150.250.166.53	56.197.110.234	26.115.152.94
217.6.39.128	232.218.107.196	8.83.238.226	86.48.60.101
78.188.152.62	5.122.28.133	217.11.63.133	106.13.71.162
161.224.34.251	214.52.252.229	104.67.19.40	40.54.189.43
99.240.68.9	162.50.191.247	240.127.77.250	151.138.15.58