116.148.130.154

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom

Hostname: unknown

Organization: CHINA UNICOM China169 Backbone

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	[portscan] tcp/23 [TELNET] *(RWIN=57577)(08041230)	2019-08-05 00:17:44

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.148.130.154
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60727
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.148.130.154.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Aug 05 00:17:30 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 154.130.148.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 154.130.148.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
193.188.22.229	attack	Jan 10 09:20:24 server sshd\[25551\]: Failed password for root from 193.188.22.229 port 35082 ssh2 Jan 10 17:06:49 server sshd\[12621\]: Invalid user Administrator from 193.188.22.229 Jan 10 17:06:49 server sshd\[12621\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.188.22.229 Jan 10 17:06:51 server sshd\[12621\]: Failed password for invalid user Administrator from 193.188.22.229 port 41988 ssh2 Jan 10 17:06:51 server sshd\[12630\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.188.22.229 user=root ...	2020-01-10 22:25:16
119.161.156.11	attack	Invalid user gmp from 119.161.156.11 port 45278	2020-01-10 22:34:44
45.178.141.202	attackspam	Invalid user admin from 45.178.141.202 port 32264	2020-01-10 22:47:32
113.62.176.98	attack	2020-01-10T15:01:49.388145 sshd[1657]: Invalid user nkd from 113.62.176.98 port 43911 2020-01-10T15:01:49.402516 sshd[1657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.62.176.98 2020-01-10T15:01:49.388145 sshd[1657]: Invalid user nkd from 113.62.176.98 port 43911 2020-01-10T15:01:51.655670 sshd[1657]: Failed password for invalid user nkd from 113.62.176.98 port 43911 ssh2 2020-01-10T15:04:39.211317 sshd[1700]: Invalid user ftpuser;123123 from 113.62.176.98 port 54647 ...	2020-01-10 22:15:27
103.93.90.234	attackspambots	(sshd) Failed SSH login from 103.93.90.234 (BD/Bangladesh/Dhaka Division/Dhaka/-/[AS136598 HN Telecom Limited]): 1 in the last 3600 secs	2020-01-10 22:40:10
157.157.145.123	attack	Invalid user elision from 157.157.145.123 port 52252	2020-01-10 22:28:51
118.24.153.230	attackbots	Invalid user timothy from 118.24.153.230 port 59254	2020-01-10 22:35:54
185.126.202.198	attackspam	Unauthorized SSH login attempts	2020-01-10 22:27:27
95.85.26.23	attackbots	Jan 10 14:32:09 ip-172-31-62-245 sshd\[7831\]: Failed password for root from 95.85.26.23 port 47614 ssh2\ Jan 10 14:35:15 ip-172-31-62-245 sshd\[7887\]: Invalid user system from 95.85.26.23\ Jan 10 14:35:17 ip-172-31-62-245 sshd\[7887\]: Failed password for invalid user system from 95.85.26.23 port 51560 ssh2\ Jan 10 14:38:22 ip-172-31-62-245 sshd\[7928\]: Invalid user noe from 95.85.26.23\ Jan 10 14:38:24 ip-172-31-62-245 sshd\[7928\]: Failed password for invalid user noe from 95.85.26.23 port 55506 ssh2\	2020-01-10 22:41:03
206.189.72.217	attackspam	Invalid user sp from 206.189.72.217 port 38342	2020-01-10 22:23:33
129.204.11.222	attackspam	Invalid user vo from 129.204.11.222 port 53886	2020-01-10 22:32:17
186.147.35.76	attackspam	Invalid user db2adm1 from 186.147.35.76 port 35781	2020-01-10 22:09:49
206.189.202.165	attack	Invalid user fk from 206.189.202.165 port 35086	2020-01-10 22:22:15
121.235.22.29	attackbotsspam	2020-01-10 06:58:46 dovecot_login authenticator failed for (wgvrq) [121.235.22.29]:65357 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=chengfei@lerctr.org) 2020-01-10 06:58:53 dovecot_login authenticator failed for (yjvhh) [121.235.22.29]:65357 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=chengfei@lerctr.org) 2020-01-10 06:59:04 dovecot_login authenticator failed for (ntyin) [121.235.22.29]:65357 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=chengfei@lerctr.org) ...	2020-01-10 22:33:25
180.76.246.104	attack	Invalid user evv from 180.76.246.104 port 48226	2020-01-10 22:10:25

Recently Reported IPs

112.197.59.29	121.57.110.54	31.183.7.28	111.254.218.93
53.173.76.119	111.79.107.164	109.189.156.131	118.166.124.134
111.130.91.168	49.67.153.209	103.199.100.238	157.43.10.78
181.133.107.18	180.18.126.107	223.202.16.85	103.74.111.11
96.33.235.92	103.53.188.188	103.37.80.198	67.15.19.73