116.108.45.156

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: Viettel Group

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Automatic report - Port Scan Attack	2020-08-20 15:17:23

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.108.45.156
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14489
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.108.45.156.			IN	A

;; AUTHORITY SECTION:
.			303	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082000 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Aug 20 15:17:19 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 156.45.108.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 156.45.108.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
94.41.46.112	attack	1594809042 - 07/15/2020 12:30:42 Host: 94.41.46.112/94.41.46.112 Port: 445 TCP Blocked	2020-07-15 20:05:11
13.75.171.31	attack	Lines containing failures of 13.75.171.31 Jul 14 15:23:28 kmh-sql-001-nbg01 sshd[24108]: Invalid user nbg01 from 13.75.171.31 port 11284 Jul 14 15:23:28 kmh-sql-001-nbg01 sshd[24106]: Invalid user 001 from 13.75.171.31 port 11283 Jul 14 15:23:28 kmh-sql-001-nbg01 sshd[24107]: Invalid user sql from 13.75.171.31 port 11282 Jul 14 15:23:28 kmh-sql-001-nbg01 sshd[24106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.75.171.31 Jul 14 15:23:28 kmh-sql-001-nbg01 sshd[24107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.75.171.31 Jul 14 15:23:28 kmh-sql-001-nbg01 sshd[24114]: Invalid user kmh-sql-001-nbg01.kunesch-hostname.de from 13.75.171.31 port 11286 Jul 14 15:23:28 kmh-sql-001-nbg01 sshd[24108]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.75.171.31 Jul 14 15:23:28 kmh-sql-001-nbg01 sshd[24114]: pam_unix(sshd:auth): authentication failu........ ------------------------------	2020-07-15 19:53:27
192.241.237.57	attackspambots	192.241.237.57 - - [15/Jul/2020:06:04:24 -0500] "GET https://www.ad5gb.com/ HTTP/1.1" 400 346 000 0 0 0 130 295 0 0 0 NONE FIN FIN ERR_INVALID_REQ	2020-07-15 20:12:57
129.204.235.54	attackspam	Invalid user ts3bot from 129.204.235.54 port 49384	2020-07-15 20:20:59
217.182.68.93	attack	SSH Brute-Force reported by Fail2Ban	2020-07-15 20:20:41
2.181.253.252	attackspambots	Unauthorized connection attempt from IP address 2.181.253.252 on Port 445(SMB)	2020-07-15 20:19:43
20.52.34.10	attackspam	Jul 15 07:42:19 vps46666688 sshd[28133]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.52.34.10 Jul 15 07:42:21 vps46666688 sshd[28133]: Failed password for invalid user admin from 20.52.34.10 port 10976 ssh2 ...	2020-07-15 19:58:46
40.89.133.147	attack	2020-07-15T08:03:36.460731sorsha.thespaminator.com sshd[14052]: Invalid user www.default.local from 40.89.133.147 port 61069 2020-07-15T08:03:38.212595sorsha.thespaminator.com sshd[14052]: Failed password for invalid user www.default.local from 40.89.133.147 port 61069 ssh2 ...	2020-07-15 20:06:05
47.52.239.42	attack	47.52.239.42 - - \[15/Jul/2020:13:40:02 +0200\] "POST /wp-login.php HTTP/1.0" 200 6400 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 47.52.239.42 - - \[15/Jul/2020:13:40:05 +0200\] "POST /wp-login.php HTTP/1.0" 200 6412 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 47.52.239.42 - - \[15/Jul/2020:13:40:08 +0200\] "POST /wp-login.php HTTP/1.0" 200 6404 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-07-15 20:30:52
183.82.96.185	attackbotsspam	Unauthorized connection attempt from IP address 183.82.96.185 on Port 445(SMB)	2020-07-15 20:23:28
81.68.100.138	attackspambots	Jul 15 12:59:16 vps687878 sshd\[19489\]: Invalid user admin from 81.68.100.138 port 59902 Jul 15 12:59:16 vps687878 sshd\[19489\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.100.138 Jul 15 12:59:18 vps687878 sshd\[19489\]: Failed password for invalid user admin from 81.68.100.138 port 59902 ssh2 Jul 15 13:04:13 vps687878 sshd\[19985\]: Invalid user scan from 81.68.100.138 port 58474 Jul 15 13:04:13 vps687878 sshd\[19985\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.100.138 ...	2020-07-15 19:53:09
104.131.97.47	attackbotsspam	Jul 15 15:11:51 pkdns2 sshd\[33165\]: Invalid user mori from 104.131.97.47Jul 15 15:11:53 pkdns2 sshd\[33165\]: Failed password for invalid user mori from 104.131.97.47 port 55766 ssh2Jul 15 15:14:49 pkdns2 sshd\[33291\]: Invalid user ingrid from 104.131.97.47Jul 15 15:14:51 pkdns2 sshd\[33291\]: Failed password for invalid user ingrid from 104.131.97.47 port 52130 ssh2Jul 15 15:17:53 pkdns2 sshd\[33454\]: Invalid user francoise from 104.131.97.47Jul 15 15:17:55 pkdns2 sshd\[33454\]: Failed password for invalid user francoise from 104.131.97.47 port 48498 ssh2 ...	2020-07-15 20:18:47
94.23.24.213	attack	Jul 15 13:17:07 server sshd[1581]: Failed password for invalid user nagios from 94.23.24.213 port 36208 ssh2 Jul 15 13:20:01 server sshd[4936]: Failed password for invalid user scan from 94.23.24.213 port 60928 ssh2 Jul 15 13:23:01 server sshd[8847]: Failed password for invalid user qa from 94.23.24.213 port 57412 ssh2	2020-07-15 19:55:36
34.67.172.19	attackbotsspam	Jul 15 06:15:42 lanister sshd[30386]: Invalid user edu from 34.67.172.19 Jul 15 06:15:42 lanister sshd[30386]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.67.172.19 Jul 15 06:15:42 lanister sshd[30386]: Invalid user edu from 34.67.172.19 Jul 15 06:15:44 lanister sshd[30386]: Failed password for invalid user edu from 34.67.172.19 port 52344 ssh2	2020-07-15 19:58:27
14.232.74.169	attack	Unauthorized connection attempt from IP address 14.232.74.169 on Port 445(SMB)	2020-07-15 20:06:33

Recently Reported IPs

92.47.241.124	84.54.95.71	5.251.252.224	2.134.171.82
185.248.46.221	116.206.253.168	113.210.93.24	95.82.125.207
89.218.240.106	89.218.229.214	5.76.58.251	109.166.58.12
95.58.242.191	20.194.160.184	91.247.58.242	85.193.100.165
67.175.253.212	46.42.195.76	212.241.24.33	111.125.122.36