116.138.136.162

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorised access (Oct 13) SRC=116.138.136.162 LEN=40 TTL=49 ID=51539 TCP DPT=8080 WINDOW=39714 SYN Unauthorised access (Oct 13) SRC=116.138.136.162 LEN=40 TTL=49 ID=26737 TCP DPT=8080 WINDOW=46662 SYN	2019-10-14 03:54:39

Type

Details

Datetime

attackspam

Unauthorised access (Oct 13) SRC=116.138.136.162 LEN=40 TTL=49 ID=51539 TCP DPT=8080 WINDOW=39714 SYN 
Unauthorised access (Oct 13) SRC=116.138.136.162 LEN=40 TTL=49 ID=26737 TCP DPT=8080 WINDOW=46662 SYN

2019-10-14 03:54:39

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.138.136.162
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17923
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.138.136.162.		IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101301 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 14 03:54:36 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 162.136.138.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 162.136.138.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
129.204.83.104	attack	29.06.2019 18:47:39 Admin application scan (phpmyadmin\|webadmin\|dbadmin\|dbmanager\|sqlitemanager\|mysqldumper)	2019-06-30 11:31:32
213.239.80.194	attackbots	445/tcp 445/tcp 445/tcp... [2019-05-05/06-29]11pkt,1pt.(tcp)	2019-06-30 11:47:17
216.218.206.106	attackbotsspam	6379/tcp 389/tcp 30005/tcp... [2019-04-30/06-30]30pkt,11pt.(tcp),1pt.(udp)	2019-06-30 11:57:06
37.52.9.242	attackspambots	Jun 30 06:01:58 localhost sshd[12696]: Invalid user Admin from 37.52.9.242 port 42772 Jun 30 06:01:58 localhost sshd[12696]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.52.9.242 Jun 30 06:01:58 localhost sshd[12696]: Invalid user Admin from 37.52.9.242 port 42772 Jun 30 06:02:01 localhost sshd[12696]: Failed password for invalid user Admin from 37.52.9.242 port 42772 ssh2 ...	2019-06-30 11:23:40
71.165.90.119	attack	Jun 30 05:37:37 MainVPS sshd[28218]: Invalid user user from 71.165.90.119 port 38718 Jun 30 05:37:37 MainVPS sshd[28218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=71.165.90.119 Jun 30 05:37:37 MainVPS sshd[28218]: Invalid user user from 71.165.90.119 port 38718 Jun 30 05:37:39 MainVPS sshd[28218]: Failed password for invalid user user from 71.165.90.119 port 38718 ssh2 Jun 30 05:47:21 MainVPS sshd[28965]: Invalid user Alphanetworks from 71.165.90.119 port 56592 ...	2019-06-30 12:06:03
92.171.44.110	attack	5555/tcp [2019-06-30]1pkt	2019-06-30 12:09:28
68.48.240.245	attackspam	2019-06-29T20:47:26.607463scmdmz1 sshd\[24024\]: Invalid user usuario2 from 68.48.240.245 port 37220 2019-06-29T20:47:26.611056scmdmz1 sshd\[24024\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-68-48-240-245.hsd1.mi.comcast.net 2019-06-29T20:47:28.177255scmdmz1 sshd\[24024\]: Failed password for invalid user usuario2 from 68.48.240.245 port 37220 ssh2 ...	2019-06-30 11:34:52
103.21.228.3	attack	Jun 30 02:41:22 thevastnessof sshd[6630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.228.3 ...	2019-06-30 11:34:22
116.58.53.198	attackbots	Honeypot attack, port: 5555, PTR: 116-58-53-198.nexlinx.net.pk.	2019-06-30 11:48:46
198.98.60.66	attack	Jun 30 04:57:57 www sshd[8504]: refused connect from 198.98.60.66 (198.98.60.66) - 3 ssh attempts	2019-06-30 11:41:04
202.29.70.46	attackbots	2019-06-29T18:46:34.661429Z 0057d11129e5 New connection: 202.29.70.46:50118 (172.17.0.4:2222) [session: 0057d11129e5] 2019-06-29T18:46:50.869745Z 45b181e92b7d New connection: 202.29.70.46:45264 (172.17.0.4:2222) [session: 45b181e92b7d]	2019-06-30 11:47:55
42.54.171.132	attack	TCP port 23 (Telnet) attempt blocked by firewall. [2019-06-30 05:46:10]	2019-06-30 12:04:19
95.48.54.106	attack	Jun 30 06:06:47 itv-usvr-01 sshd[24565]: Invalid user jquery from 95.48.54.106 Jun 30 06:06:47 itv-usvr-01 sshd[24565]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.48.54.106 Jun 30 06:06:47 itv-usvr-01 sshd[24565]: Invalid user jquery from 95.48.54.106 Jun 30 06:06:49 itv-usvr-01 sshd[24565]: Failed password for invalid user jquery from 95.48.54.106 port 51136 ssh2 Jun 30 06:09:50 itv-usvr-01 sshd[24838]: Invalid user jiong from 95.48.54.106	2019-06-30 11:46:02
190.73.144.47	attack	60001/tcp [2019-06-30]1pkt	2019-06-30 12:04:41
51.68.215.113	attackbots	Jun 29 19:47:39 localhost sshd\[51980\]: Invalid user sanjay from 51.68.215.113 port 35346 Jun 29 19:47:39 localhost sshd\[51980\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.215.113 ...	2019-06-30 11:30:24

Recently Reported IPs

129.32.177.216	96.85.84.25	174.117.94.198	120.71.98.157
198.212.22.229	201.240.46.35	60.116.27.43	149.69.21.151
43.233.88.124	79.91.30.61	80.248.107.33	115.107.164.109
222.202.253.220	196.137.124.244	64.89.82.55	70.132.43.89
162.226.86.158	20.187.232.107	217.104.15.90	72.121.162.78