116.11.65.55 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
bots	116.11.65.55 - - [28/Apr/2019:10:03:03 +0800] "GET /index.php/2018/12/07/iot_2018_12_07_cn/ HTTP/1.1" 200 39331 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.106 Safari/537.36" 116.11.65.55 - - [28/Apr/2019:10:03:25 +0800] "GET /index.php/2018/12/07/iot_2018_12_07_cn/ HTTP/1.1" 200 39331 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.106 Safari/537.36" 116.11.65.55 - - [28/Apr/2019:10:03:27 +0800] "GET /index.php/2018/07/04/deep_learning_2018_07_04_cn/ HTTP/1.1" 200 54216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.106 Safari/537.36" 116.11.65.55 - - [28/Apr/2019:10:05:38 +0800] "GET /index.php/2018/07/04/deep_learning_2018_07_04_cn/ HTTP/1.1" 200 54216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.106 Safari/537.36"	2019-04-28 10:06:45

Type

Details

Datetime

bots

116.11.65.55 - - [28/Apr/2019:10:03:03 +0800] "GET /index.php/2018/12/07/iot_2018_12_07_cn/ HTTP/1.1" 200 39331 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.106 Safari/537.36"
116.11.65.55 - - [28/Apr/2019:10:03:25 +0800] "GET /index.php/2018/12/07/iot_2018_12_07_cn/ HTTP/1.1" 200 39331 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.106 Safari/537.36"
116.11.65.55 - - [28/Apr/2019:10:03:27 +0800] "GET /index.php/2018/07/04/deep_learning_2018_07_04_cn/ HTTP/1.1" 200 54216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.106 Safari/537.36"
116.11.65.55 - - [28/Apr/2019:10:05:38 +0800] "GET /index.php/2018/07/04/deep_learning_2018_07_04_cn/ HTTP/1.1" 200 54216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.106 Safari/537.36"

2019-04-28 10:06:45

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.11.65.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41983
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.11.65.55.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019042702 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun Apr 28 10:06:43 +08 2019
;; MSG SIZE  rcvd: 116

Host info

Host 55.65.11.116.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.3, trying next server
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 55.65.11.116.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
41.191.71.73	attackspambots	port scan and connect, tcp 1433 (ms-sql-s)	2020-06-20 19:16:09
103.124.92.15	attackspam	Jun 18 22:05:05 www6-3 sshd[29183]: Invalid user vpn from 103.124.92.15 port 8849 Jun 18 22:05:05 www6-3 sshd[29183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.124.92.15 Jun 18 22:05:07 www6-3 sshd[29183]: Failed password for invalid user vpn from 103.124.92.15 port 8849 ssh2 Jun 18 22:05:08 www6-3 sshd[29183]: Received disconnect from 103.124.92.15 port 8849:11: Bye Bye [preauth] Jun 18 22:05:08 www6-3 sshd[29183]: Disconnected from 103.124.92.15 port 8849 [preauth] Jun 18 22:07:45 www6-3 sshd[29243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.124.92.15 user=r.r Jun 18 22:07:46 www6-3 sshd[29243]: Failed password for r.r from 103.124.92.15 port 10251 ssh2 Jun 18 22:07:47 www6-3 sshd[29243]: Received disconnect from 103.124.92.15 port 10251:11: Bye Bye [preauth] Jun 18 22:07:47 www6-3 sshd[29243]: Disconnected from 103.124.92.15 port 10251 [preauth] ........ ----------------------------------------------- htt	2020-06-20 19:49:12
188.134.6.223	attackspambots	Attempted connection to port 80.	2020-06-20 19:53:42
187.44.184.250	attackspam	Unauthorized connection attempt from IP address 187.44.184.250 on Port 445(SMB)	2020-06-20 19:19:43
176.217.227.42	spam	spam	2020-06-20 19:47:39
24.19.10.253	attack	Unauthorized connection attempt detected from IP address 24.19.10.253 to port 22	2020-06-20 19:29:41
61.153.71.98	attackbotsspam	Unauthorized connection attempt from IP address 61.153.71.98 on Port 445(SMB)	2020-06-20 19:50:13
58.87.77.174	attackbotsspam	(sshd) Failed SSH login from 58.87.77.174 (CN/China/-): 5 in the last 3600 secs	2020-06-20 19:15:31
118.69.152.88	attackspambots	Unauthorized connection attempt from IP address 118.69.152.88 on Port 445(SMB)	2020-06-20 19:25:45
124.239.216.233	attack	Jun 20 11:22:08 Ubuntu-1404-trusty-64-minimal sshd\[30939\]: Invalid user alen from 124.239.216.233 Jun 20 11:22:08 Ubuntu-1404-trusty-64-minimal sshd\[30939\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.239.216.233 Jun 20 11:22:10 Ubuntu-1404-trusty-64-minimal sshd\[30939\]: Failed password for invalid user alen from 124.239.216.233 port 42966 ssh2 Jun 20 11:28:48 Ubuntu-1404-trusty-64-minimal sshd\[1629\]: Invalid user informix from 124.239.216.233 Jun 20 11:28:48 Ubuntu-1404-trusty-64-minimal sshd\[1629\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.239.216.233	2020-06-20 19:36:22
103.200.113.73	attackbotsspam	Jun 18 18:15:15 zulu1842 sshd[20626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.200.113.73 user=r.r Jun 18 18:15:17 zulu1842 sshd[20626]: Failed password for r.r from 103.200.113.73 port 18416 ssh2 Jun 18 18:15:17 zulu1842 sshd[20626]: Received disconnect from 103.200.113.73: 11: Bye Bye [preauth] Jun 18 18:27:11 zulu1842 sshd[22042]: Invalid user zyb from 103.200.113.73 Jun 18 18:27:11 zulu1842 sshd[22042]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.200.113.73 Jun 18 18:27:14 zulu1842 sshd[22042]: Failed password for invalid user zyb from 103.200.113.73 port 41624 ssh2 Jun 18 18:27:14 zulu1842 sshd[22042]: Received disconnect from 103.200.113.73: 11: Bye Bye [preauth] Jun 18 18:31:30 zulu1842 sshd[22518]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.200.113.73 user=r.r Jun 18 18:31:32 zulu1842 sshd[22518]: Failed password ........ -------------------------------	2020-06-20 19:28:57
62.234.110.33	attackbotsspam	20 attempts against mh-ssh on water	2020-06-20 19:29:12
125.163.5.198	attackspam	Unauthorized connection attempt from IP address 125.163.5.198 on Port 445(SMB)	2020-06-20 19:14:56
66.96.227.139	attackspam	Attempted connection to port 445.	2020-06-20 19:49:30
88.214.26.97	attackbots	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-06-20T10:11:17Z and 2020-06-20T11:12:23Z	2020-06-20 19:12:48

Recently Reported IPs

171.224.134.133	190.40.166.172	180.243.239.242	185.228.80.48
162.84.48.209	222.139.88.233	230.176.90.53	229.51.198.216
116.21.66.173	171.10.4.107	130.218.22.161	61.25.13.147
244.11.81.75	196.219.160.180	24.5.207.11	177.73.20.50
240.21.140.253	200.149.231.74	89.87.19.160	178.122.204.111