116.248.19.6 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Yunnan Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Port probing on unauthorized port 5555	2020-08-04 19:13:13

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.248.19.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40054
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.248.19.6.			IN	A

;; AUTHORITY SECTION:
.			406	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020080400 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Aug 04 19:13:05 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 6.19.248.116.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 6.19.248.116.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
210.92.91.223	attack	Sep 11 18:34:40 vtv3 sshd\[24281\]: Invalid user ftpusr from 210.92.91.223 port 41744 Sep 11 18:34:40 vtv3 sshd\[24281\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.92.91.223 Sep 11 18:34:42 vtv3 sshd\[24281\]: Failed password for invalid user ftpusr from 210.92.91.223 port 41744 ssh2 Sep 11 18:41:21 vtv3 sshd\[28175\]: Invalid user test from 210.92.91.223 port 46846 Sep 11 18:41:21 vtv3 sshd\[28175\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.92.91.223 Sep 11 18:54:34 vtv3 sshd\[2525\]: Invalid user debian from 210.92.91.223 port 57274 Sep 11 18:54:34 vtv3 sshd\[2525\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.92.91.223 Sep 11 18:54:36 vtv3 sshd\[2525\]: Failed password for invalid user debian from 210.92.91.223 port 57274 ssh2 Sep 11 19:01:13 vtv3 sshd\[6454\]: Invalid user admin from 210.92.91.223 port 34230 Sep 11 19:01:13 vtv3 sshd\[6454\]: pam_uni	2019-10-07 13:24:13
177.68.148.10	attack	Oct 6 19:56:08 kapalua sshd\[17545\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.68.148.10 user=root Oct 6 19:56:10 kapalua sshd\[17545\]: Failed password for root from 177.68.148.10 port 12546 ssh2 Oct 6 20:00:34 kapalua sshd\[17928\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.68.148.10 user=root Oct 6 20:00:36 kapalua sshd\[17928\]: Failed password for root from 177.68.148.10 port 12497 ssh2 Oct 6 20:05:09 kapalua sshd\[18272\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.68.148.10 user=root	2019-10-07 14:09:25
216.59.166.113	attackbots	Dovecot Brute-Force	2019-10-07 13:54:40
106.12.51.62	attackbotsspam	Oct 7 03:52:08 anodpoucpklekan sshd[1904]: Invalid user 123Bingo from 106.12.51.62 port 50192 ...	2019-10-07 13:53:36
52.137.63.154	attack	Oct 7 05:38:39 web8 sshd\[13146\]: Invalid user 0OKM9IJN8UHB from 52.137.63.154 Oct 7 05:38:39 web8 sshd\[13146\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.137.63.154 Oct 7 05:38:41 web8 sshd\[13146\]: Failed password for invalid user 0OKM9IJN8UHB from 52.137.63.154 port 50758 ssh2 Oct 7 05:43:26 web8 sshd\[15494\]: Invalid user Upload123 from 52.137.63.154 Oct 7 05:43:26 web8 sshd\[15494\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.137.63.154	2019-10-07 13:57:01
188.93.235.226	attackspambots	2019-10-06T13:18:36.4915921495-001 sshd\[9706\]: Failed password for root from 188.93.235.226 port 50682 ssh2 2019-10-06T13:38:49.1931221495-001 sshd\[11222\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.93.235.226 user=root 2019-10-06T13:38:51.2064121495-001 sshd\[11222\]: Failed password for root from 188.93.235.226 port 49499 ssh2 2019-10-06T13:45:29.9946041495-001 sshd\[11763\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.93.235.226 user=root 2019-10-06T13:45:32.2541141495-001 sshd\[11763\]: Failed password for root from 188.93.235.226 port 50853 ssh2 2019-10-06T13:52:28.3803451495-001 sshd\[12266\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.93.235.226 user=root ...	2019-10-07 14:11:50
217.61.14.223	attackspam	2019-10-07T05:16:27.408982shield sshd\[1289\]: Invalid user Billy@2017 from 217.61.14.223 port 53998 2019-10-07T05:16:27.414249shield sshd\[1289\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.14.223 2019-10-07T05:16:29.467668shield sshd\[1289\]: Failed password for invalid user Billy@2017 from 217.61.14.223 port 53998 ssh2 2019-10-07T05:20:36.482930shield sshd\[1778\]: Invalid user Jelszo_123 from 217.61.14.223 port 37174 2019-10-07T05:20:36.488471shield sshd\[1778\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.14.223	2019-10-07 13:42:45
178.32.218.192	attackbotsspam	Oct 7 06:18:47 mail sshd[9931]: Failed password for root from 178.32.218.192 port 55780 ssh2 Oct 7 06:22:32 mail sshd[10421]: Failed password for root from 178.32.218.192 port 46248 ssh2	2019-10-07 14:09:04
45.55.47.149	attackbotsspam	Oct 7 07:36:19 MK-Soft-VM6 sshd[22338]: Failed password for root from 45.55.47.149 port 49233 ssh2 ...	2019-10-07 14:07:33
51.39.65.214	attackspam	RDP Bruteforce	2019-10-07 13:23:09
49.88.112.66	attack	2019-10-07T05:57:07.942586abusebot-6.cloudsearch.cf sshd\[27209\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.66 user=root	2019-10-07 14:06:43
132.148.68.12	attack	Automatic report - Banned IP Access	2019-10-07 13:28:02
193.112.74.137	attack	Oct 7 06:57:24 vps647732 sshd[30913]: Failed password for root from 193.112.74.137 port 49443 ssh2 ...	2019-10-07 13:55:23
103.52.52.22	attackspam	2019-10-07T04:58:21.572424abusebot-6.cloudsearch.cf sshd\[26978\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.52.52.22 user=root	2019-10-07 13:23:52
153.36.242.143	attackbots	2019-10-07T05:52:13.980323abusebot.cloudsearch.cf sshd\[1209\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.143 user=root	2019-10-07 13:55:46

Recently Reported IPs

113.173.176.146	53.230.153.188	202.21.188.250	182.16.57.59
129.150.25.196	161.35.138.131	66.101.197.197	45.15.24.97
37.203.34.50	37.49.230.229	182.68.232.58	173.212.29.191
103.82.209.145	41.147.244.125	156.67.220.230	109.122.53.100
174.137.62.176	39.109.123.214	5.41.33.68	79.216.161.123