116.248.5.249 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.248.5.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5735
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.248.5.249.			IN	A

;; AUTHORITY SECTION:
.			579	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 05:12:39 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 249.5.248.116.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

server can't find 116.248.5.249.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.203.197.17	attackspambots	Automatic report - Port Scan Attack	2019-10-08 18:02:59
13.92.137.228	attackspambots	2019-10-07 22:51:38 dovecot_login authenticator failed for (3aIRukS3zy) [13.92.137.228]:53490 I=[192.147.25.65]:587: 535 Incorrect authentication data (set_id=ler@lerctr.org) 2019-10-07 22:51:54 dovecot_login authenticator failed for (fhOHY3IhT) [13.92.137.228]:58138 I=[192.147.25.65]:587: 535 Incorrect authentication data (set_id=ler@lerctr.org) 2019-10-07 22:52:11 dovecot_login authenticator failed for (QvUoGP) [13.92.137.228]:62682 I=[192.147.25.65]:587: 535 Incorrect authentication data (set_id=ler@lerctr.org) ...	2019-10-08 18:11:21
195.228.22.54	attack	Sep 28 07:54:39 dallas01 sshd[16012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.228.22.54 Sep 28 07:54:41 dallas01 sshd[16012]: Failed password for invalid user Anneli from 195.228.22.54 port 13282 ssh2 Sep 28 07:58:57 dallas01 sshd[16671]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.228.22.54	2019-10-08 18:10:39
222.128.74.100	attack	Lines containing failures of 222.128.74.100 Oct 6 05:11:29 hwd04 sshd[14901]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.128.74.100 user=r.r Oct 6 05:11:31 hwd04 sshd[14901]: Failed password for r.r from 222.128.74.100 port 49522 ssh2 Oct 6 05:11:31 hwd04 sshd[14901]: Received disconnect from 222.128.74.100 port 49522:11: Bye Bye [preauth] Oct 6 05:11:31 hwd04 sshd[14901]: Disconnected from authenticating user r.r 222.128.74.100 port 49522 [preauth] Oct 6 05:27:51 hwd04 sshd[15536]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.128.74.100 user=r.r Oct 6 05:27:54 hwd04 sshd[15536]: Failed password for r.r from 222.128.74.100 port 44032 ssh2 Oct 6 05:27:54 hwd04 sshd[15536]: Received disconnect from 222.128.74.100 port 44032:11: Bye Bye [preauth] Oct 6 05:27:54 hwd04 sshd[15536]: Disconnected from authenticating user r.r 222.128.74.100 port 44032 [preauth] Oct 6 05:31:........ ------------------------------	2019-10-08 17:59:22
222.186.175.217	attack	Oct 8 12:05:57 vpn01 sshd[29999]: Failed password for root from 222.186.175.217 port 7850 ssh2 Oct 8 12:06:14 vpn01 sshd[29999]: error: maximum authentication attempts exceeded for root from 222.186.175.217 port 7850 ssh2 [preauth] ...	2019-10-08 18:11:35
77.247.109.72	attack	\[2019-10-08 05:57:20\] NOTICE\[1887\] chan_sip.c: Registration from '"440" \' failed for '77.247.109.72:6113' - Wrong password \[2019-10-08 05:57:20\] SECURITY\[1898\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-08T05:57:20.534-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="440",SessionID="0x7fc3ac7f7e28",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.109.72/6113",Challenge="53b252ea",ReceivedChallenge="53b252ea",ReceivedHash="81f5bd27fde035df1e0f19afc4af2152" \[2019-10-08 05:57:20\] NOTICE\[1887\] chan_sip.c: Registration from '"440" \' failed for '77.247.109.72:6113' - Wrong password \[2019-10-08 05:57:20\] SECURITY\[1898\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-08T05:57:20.637-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="440",SessionID="0x7fc3ac636978",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.2	2019-10-08 18:13:22
49.88.112.116	attackspam	Oct 8 06:34:59 localhost sshd\[22473\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.116 user=root Oct 8 06:35:01 localhost sshd\[22473\]: Failed password for root from 49.88.112.116 port 57297 ssh2 Oct 8 06:35:03 localhost sshd\[22473\]: Failed password for root from 49.88.112.116 port 57297 ssh2	2019-10-08 18:05:10
112.65.95.23	attack	Oct 7 07:47:20 lvps5-35-247-183 sshd[26478]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.65.95.23 user=r.r Oct 7 07:47:23 lvps5-35-247-183 sshd[26478]: Failed password for r.r from 112.65.95.23 port 55994 ssh2 Oct 7 07:47:23 lvps5-35-247-183 sshd[26478]: Received disconnect from 112.65.95.23: 11: Bye Bye [preauth] Oct 7 08:15:06 lvps5-35-247-183 sshd[27624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.65.95.23 user=r.r Oct 7 08:15:08 lvps5-35-247-183 sshd[27624]: Failed password for r.r from 112.65.95.23 port 57344 ssh2 Oct 7 08:15:08 lvps5-35-247-183 sshd[27624]: Received disconnect from 112.65.95.23: 11: Bye Bye [preauth] Oct 7 08:19:14 lvps5-35-247-183 sshd[27804]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.65.95.23 user=r.r Oct 7 08:19:15 lvps5-35-247-183 sshd[27804]: Failed password for r.r from 112.65.95.23 por........ -------------------------------	2019-10-08 17:57:19
144.217.18.84	attackspambots	Automatic report - Banned IP Access	2019-10-08 17:51:51
185.234.219.66	attackbots	$f2bV_matches	2019-10-08 17:52:38
111.230.73.133	attack	Aug 14 05:37:21 dallas01 sshd[5232]: Failed password for invalid user chang from 111.230.73.133 port 41406 ssh2 Aug 14 05:41:43 dallas01 sshd[7264]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.73.133 Aug 14 05:41:45 dallas01 sshd[7264]: Failed password for invalid user edmond from 111.230.73.133 port 48350 ssh2	2019-10-08 17:50:20
49.84.213.159	attack	Oct 7 23:32:35 wbs sshd\[21422\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.84.213.159 user=root Oct 7 23:32:38 wbs sshd\[21422\]: Failed password for root from 49.84.213.159 port 51482 ssh2 Oct 7 23:36:15 wbs sshd\[21755\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.84.213.159 user=root Oct 7 23:36:17 wbs sshd\[21755\]: Failed password for root from 49.84.213.159 port 19022 ssh2 Oct 7 23:40:00 wbs sshd\[22203\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.84.213.159 user=root	2019-10-08 17:57:56
223.71.139.98	attackspambots	Oct 7 23:51:59 Tower sshd[17753]: Connection from 223.71.139.98 port 57306 on 192.168.10.220 port 22 Oct 7 23:52:01 Tower sshd[17753]: Invalid user test from 223.71.139.98 port 57306 Oct 7 23:52:01 Tower sshd[17753]: error: Could not get shadow information for NOUSER Oct 7 23:52:01 Tower sshd[17753]: Failed password for invalid user test from 223.71.139.98 port 57306 ssh2 Oct 7 23:52:01 Tower sshd[17753]: Received disconnect from 223.71.139.98 port 57306:11: Bye Bye [preauth] Oct 7 23:52:01 Tower sshd[17753]: Disconnected from invalid user test 223.71.139.98 port 57306 [preauth]	2019-10-08 18:05:36
34.93.238.77	attackbotsspam	ssh failed login	2019-10-08 18:07:36
114.242.245.251	attack	Oct 8 08:17:14 sauna sshd[10490]: Failed password for root from 114.242.245.251 port 39876 ssh2 ...	2019-10-08 18:18:45

Recently Reported IPs

222.247.148.168	197.34.37.198	178.79.170.89	42.116.167.7
106.201.6.169	104.56.179.188	109.203.167.135	171.254.135.99
202.183.155.130	129.205.195.182	5.152.232.250	178.44.114.251
177.249.170.153	113.86.152.231	185.250.46.145	223.17.171.167
193.202.83.217	116.72.43.168	1.28.205.227	38.25.158.159