116.248.17.70 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.248.172.135	attackspambots	port scan and connect, tcp 1433 (ms-sql-s)	2020-09-18 00:30:11
116.248.172.135	attack	port scan and connect, tcp 1433 (ms-sql-s)	2020-09-17 16:31:59
116.248.172.135	attackspam	port scan and connect, tcp 1433 (ms-sql-s)	2020-09-17 07:37:13
116.248.172.241	attackspambots	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: tcp cat: Potentially Bad Trafficbytes: 60	2020-08-11 07:09:46
116.248.172.40	attackspam	port scan and connect, tcp 1433 (ms-sql-s)	2019-11-03 17:07:21

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.248.17.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43123
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.248.17.70.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024122600 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 26 22:09:08 CST 2024
;; MSG SIZE  rcvd: 106

Host info

70.17.248.116.in-addr.arpa domain name pointer 70.17.248.116.broad.km.yn.dynamic.163data.com.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
70.17.248.116.in-addr.arpa	name = 70.17.248.116.broad.km.yn.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
35.164.75.120	attackbots	...	2019-09-10 02:08:48
209.97.169.136	attack	Sep 9 19:15:38 microserver sshd[31873]: Invalid user tester from 209.97.169.136 port 43248 Sep 9 19:15:38 microserver sshd[31873]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.169.136 Sep 9 19:15:40 microserver sshd[31873]: Failed password for invalid user tester from 209.97.169.136 port 43248 ssh2 Sep 9 19:22:36 microserver sshd[32682]: Invalid user user from 209.97.169.136 port 48866 Sep 9 19:22:36 microserver sshd[32682]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.169.136 Sep 9 19:36:15 microserver sshd[34672]: Invalid user guest3 from 209.97.169.136 port 60092 Sep 9 19:36:15 microserver sshd[34672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.169.136 Sep 9 19:36:17 microserver sshd[34672]: Failed password for invalid user guest3 from 209.97.169.136 port 60092 ssh2 Sep 9 19:43:28 microserver sshd[35463]: Invalid user ubuntu from 209.97.169.136 por	2019-09-10 02:45:39
193.105.134.95	attackbots	Sep 9 22:02:26 itv-usvr-01 sshd[7088]: Invalid user admin from 193.105.134.95	2019-09-10 02:36:33
68.183.94.194	attackbotsspam	Sep 9 20:15:44 ns37 sshd[16781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.94.194 Sep 9 20:15:44 ns37 sshd[16781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.94.194	2019-09-10 02:19:44
111.29.27.97	attackspam	Sep 9 19:39:56 vps691689 sshd[675]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.29.27.97 Sep 9 19:39:58 vps691689 sshd[675]: Failed password for invalid user guest from 111.29.27.97 port 40692 ssh2 ...	2019-09-10 01:58:35
92.119.160.125	attackbotsspam	Port scan on 6 port(s): 3507 3542 3592 3610 3645 3680	2019-09-10 02:30:13
218.92.0.191	attackbots	Sep 9 20:05:03 dcd-gentoo sshd[9644]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Sep 9 20:05:06 dcd-gentoo sshd[9644]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Sep 9 20:05:03 dcd-gentoo sshd[9644]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Sep 9 20:05:06 dcd-gentoo sshd[9644]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Sep 9 20:05:03 dcd-gentoo sshd[9644]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Sep 9 20:05:06 dcd-gentoo sshd[9644]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Sep 9 20:05:06 dcd-gentoo sshd[9644]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.191 port 18592 ssh2 ...	2019-09-10 02:12:24
114.4.193.227	attackbotsspam	Sep 9 19:42:20 yabzik sshd[847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.4.193.227 Sep 9 19:42:22 yabzik sshd[847]: Failed password for invalid user ubuntu from 114.4.193.227 port 42198 ssh2 Sep 9 19:49:30 yabzik sshd[3485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.4.193.227	2019-09-10 02:37:20
157.230.8.86	attack	Sep 9 20:38:59 yabzik sshd[23369]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.8.86 Sep 9 20:39:00 yabzik sshd[23369]: Failed password for invalid user user123 from 157.230.8.86 port 51897 ssh2 Sep 9 20:45:08 yabzik sshd[25970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.8.86	2019-09-10 01:54:07
92.118.38.36	attackspam	Sep 9 19:49:41 webserver postfix/smtpd\[31928\]: warning: unknown\[92.118.38.36\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 9 19:50:20 webserver postfix/smtpd\[31928\]: warning: unknown\[92.118.38.36\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 9 19:51:00 webserver postfix/smtpd\[1351\]: warning: unknown\[92.118.38.36\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 9 19:51:40 webserver postfix/smtpd\[31928\]: warning: unknown\[92.118.38.36\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 9 19:52:14 webserver postfix/smtpd\[31928\]: warning: unknown\[92.118.38.36\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-09-10 01:55:22
167.71.41.110	attackbots	Sep 9 19:34:38 icinga sshd[21423]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.41.110 Sep 9 19:34:40 icinga sshd[21423]: Failed password for invalid user tempftp from 167.71.41.110 port 37988 ssh2 ...	2019-09-10 02:27:44
218.98.40.142	attackspam	Sep 9 20:25:32 srv206 sshd[12817]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.98.40.142 user=root Sep 9 20:25:34 srv206 sshd[12817]: Failed password for root from 218.98.40.142 port 55488 ssh2 ...	2019-09-10 02:44:17
180.106.4.135	attackspam	Bad bot/spoofed identity	2019-09-10 01:59:31
1.6.123.197	attackspambots	Unauthorized connection attempt from IP address 1.6.123.197 on Port 445(SMB)	2019-09-10 02:38:37
96.19.3.46	attack	Sep 9 07:47:13 hanapaa sshd\[23130\]: Invalid user 123456789 from 96.19.3.46 Sep 9 07:47:13 hanapaa sshd\[23130\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=96-19-3-46.cpe.cableone.net Sep 9 07:47:16 hanapaa sshd\[23130\]: Failed password for invalid user 123456789 from 96.19.3.46 port 40416 ssh2 Sep 9 07:53:30 hanapaa sshd\[23680\]: Invalid user \$BLANKPASS from 96.19.3.46 Sep 9 07:53:30 hanapaa sshd\[23680\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=96-19-3-46.cpe.cableone.net	2019-09-10 02:11:52

Recently Reported IPs

64.0.172.243	60.176.44.226	167.216.11.112	179.2.75.168
168.13.87.163	242.36.65.74	194.137.182.2	255.147.186.223
122.10.2.50	111.90.50.162	103.142.68.0	197.103.59.15
247.136.210.123	200.14.221.181	159.249.12.251	182.239.88.96
185.156.58.204	23.225.223.11	136.178.206.99	205.200.38.25