116.255.131.142

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Zhengzhou Gainet Computer Network Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Jun 3 06:04:27 srv-ubuntu-dev3 sshd[90122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.131.142 user=root Jun 3 06:04:29 srv-ubuntu-dev3 sshd[90122]: Failed password for root from 116.255.131.142 port 60398 ssh2 Jun 3 06:06:47 srv-ubuntu-dev3 sshd[90518]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.131.142 user=root Jun 3 06:06:49 srv-ubuntu-dev3 sshd[90518]: Failed password for root from 116.255.131.142 port 39812 ssh2 Jun 3 06:09:12 srv-ubuntu-dev3 sshd[90871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.131.142 user=root Jun 3 06:09:15 srv-ubuntu-dev3 sshd[90871]: Failed password for root from 116.255.131.142 port 47458 ssh2 Jun 3 06:11:52 srv-ubuntu-dev3 sshd[91307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.131.142 user=root Jun 3 06:11:53 srv-ubuntu-dev3 sshd[91 ...	2020-06-03 16:55:29
attackbotsspam	Invalid user ijm from 116.255.131.142 port 57842	2020-05-28 18:03:33
attackspambots	$f2bV_matches	2020-05-26 19:10:42
attackbotsspam	Invalid user ijm from 116.255.131.142 port 57842	2020-05-26 14:59:38
attackspam	May 22 04:21:20 gw1 sshd[9497]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.131.142 May 22 04:21:23 gw1 sshd[9497]: Failed password for invalid user mbp from 116.255.131.142 port 58958 ssh2 ...	2020-05-22 08:37:30
attackbots	$f2bV_matches	2020-05-21 15:50:06

Comments on same subnet:

IP	Type	Details	Datetime
116.255.131.3	attackspam	Unauthorized connection attempt detected from IP address 116.255.131.3 to port 14548 [T]	2020-08-29 21:34:06
116.255.131.3	attackbots	Port scan denied	2020-08-25 17:30:19
116.255.131.3	attackbots	Aug 19 21:10:23 onepixel sshd[921417]: Invalid user enlace from 116.255.131.3 port 47800 Aug 19 21:10:23 onepixel sshd[921417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.131.3 Aug 19 21:10:23 onepixel sshd[921417]: Invalid user enlace from 116.255.131.3 port 47800 Aug 19 21:10:25 onepixel sshd[921417]: Failed password for invalid user enlace from 116.255.131.3 port 47800 ssh2 Aug 19 21:15:00 onepixel sshd[924044]: Invalid user dev from 116.255.131.3 port 50002	2020-08-20 06:06:44
116.255.131.3	attack	Aug 19 19:02:36 onepixel sshd[846862]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.131.3 Aug 19 19:02:36 onepixel sshd[846862]: Invalid user bot from 116.255.131.3 port 42234 Aug 19 19:02:38 onepixel sshd[846862]: Failed password for invalid user bot from 116.255.131.3 port 42234 ssh2 Aug 19 19:07:02 onepixel sshd[849430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.131.3 user=root Aug 19 19:07:04 onepixel sshd[849430]: Failed password for root from 116.255.131.3 port 44434 ssh2	2020-08-20 03:28:50
116.255.131.3	attack	Aug 15 12:48:18 marvibiene sshd[5035]: Failed password for root from 116.255.131.3 port 45862 ssh2	2020-08-15 20:10:18
116.255.131.3	attackspambots	Aug 13 06:30:06 h2779839 sshd[25377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.131.3 user=root Aug 13 06:30:08 h2779839 sshd[25377]: Failed password for root from 116.255.131.3 port 56186 ssh2 Aug 13 06:32:29 h2779839 sshd[25395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.131.3 user=root Aug 13 06:32:31 h2779839 sshd[25395]: Failed password for root from 116.255.131.3 port 49868 ssh2 Aug 13 06:35:04 h2779839 sshd[25430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.131.3 user=root Aug 13 06:35:06 h2779839 sshd[25430]: Failed password for root from 116.255.131.3 port 43546 ssh2 Aug 13 06:37:32 h2779839 sshd[25457]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.131.3 user=root Aug 13 06:37:34 h2779839 sshd[25457]: Failed password for root from 116.255.131.3 port 37220 ssh2 Aug ...	2020-08-13 12:51:07
116.255.131.3	attackbotsspam	Port scan: Attack repeated for 24 hours	2020-08-10 18:41:46
116.255.131.3	attackspam	Jun 28 05:57:07 sso sshd[25596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.131.3 Jun 28 05:57:09 sso sshd[25596]: Failed password for invalid user arj from 116.255.131.3 port 57750 ssh2 ...	2020-06-28 12:09:52
116.255.131.3	attackbots	Brute force SMTP login attempted. ...	2020-06-07 19:56:10
116.255.131.3	attackbots	2020-06-06T00:32:39.133473rocketchat.forhosting.nl sshd[13677]: Failed password for root from 116.255.131.3 port 52352 ssh2 2020-06-06T00:35:40.540509rocketchat.forhosting.nl sshd[13754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.131.3 user=root 2020-06-06T00:35:42.653220rocketchat.forhosting.nl sshd[13754]: Failed password for root from 116.255.131.3 port 43112 ssh2 ...	2020-06-06 11:51:00
116.255.131.3	attackbots	Jun 5 14:14:28 server sshd[27282]: Failed password for root from 116.255.131.3 port 35944 ssh2 Jun 5 14:16:51 server sshd[27470]: Failed password for root from 116.255.131.3 port 41824 ssh2 ...	2020-06-05 21:40:43
116.255.131.3	attackspam	Jun 4 22:17:44 vps687878 sshd\[7692\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.131.3 user=root Jun 4 22:17:45 vps687878 sshd\[7692\]: Failed password for root from 116.255.131.3 port 55020 ssh2 Jun 4 22:20:54 vps687878 sshd\[8060\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.131.3 user=root Jun 4 22:20:57 vps687878 sshd\[8060\]: Failed password for root from 116.255.131.3 port 48076 ssh2 Jun 4 22:23:57 vps687878 sshd\[8217\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.131.3 user=root ...	2020-06-05 04:29:23
116.255.131.3	attackbots	Jun 4 17:01:31 PorscheCustomer sshd[25801]: Failed password for root from 116.255.131.3 port 39268 ssh2 Jun 4 17:05:41 PorscheCustomer sshd[25980]: Failed password for root from 116.255.131.3 port 60424 ssh2 ...	2020-06-05 02:35:18
116.255.131.3	attackspam	$f2bV_matches	2020-06-04 07:14:53
116.255.131.3	attackspam	Jun 2 23:28:55 vpn01 sshd[15223]: Failed password for root from 116.255.131.3 port 35146 ssh2 ...	2020-06-03 05:54:58

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.255.131.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61564
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.255.131.142.		IN	A

;; AUTHORITY SECTION:
.			360	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052101 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 21 15:50:03 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 142.131.255.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.131.255.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
59.152.237.118	attackspambots	sshd jail - ssh hack attempt	2020-05-07 08:53:24
122.51.230.155	attackspam	May 7 06:10:49 legacy sshd[32347]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.230.155 May 7 06:10:51 legacy sshd[32347]: Failed password for invalid user sk from 122.51.230.155 port 45898 ssh2 May 7 06:14:29 legacy sshd[32455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.230.155 ...	2020-05-07 12:15:42
195.206.105.217	attackbots	port scan and connect, tcp 22 (ssh)	2020-05-07 12:28:42
80.211.245.103	attack	$f2bV_matches	2020-05-07 12:27:21
182.254.233.19	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-05-07 12:26:29
159.89.167.59	attackspambots	May 7 06:11:08 electroncash sshd[41079]: Invalid user talita from 159.89.167.59 port 53738 May 7 06:11:08 electroncash sshd[41079]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.167.59 May 7 06:11:08 electroncash sshd[41079]: Invalid user talita from 159.89.167.59 port 53738 May 7 06:11:10 electroncash sshd[41079]: Failed password for invalid user talita from 159.89.167.59 port 53738 ssh2 May 7 06:14:07 electroncash sshd[41908]: Invalid user florian from 159.89.167.59 port 44344 ...	2020-05-07 12:15:24
104.224.138.179	attackbotsspam	Bruteforce detected by fail2ban	2020-05-07 12:24:33
82.222.45.50	attack	2020-05-07T05:57:32.1365141240 sshd\[4807\]: Invalid user hdfs from 82.222.45.50 port 43785 2020-05-07T05:57:32.1403761240 sshd\[4807\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.222.45.50 2020-05-07T05:57:33.9966711240 sshd\[4807\]: Failed password for invalid user hdfs from 82.222.45.50 port 43785 ssh2 ...	2020-05-07 12:22:31
36.72.212.37	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-05-07 12:08:39
103.23.100.87	attack	2020-05-07T00:31:05.253929abusebot-3.cloudsearch.cf sshd[8526]: Invalid user solr from 103.23.100.87 port 53905 2020-05-07T00:31:05.259417abusebot-3.cloudsearch.cf sshd[8526]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.23.100.87 2020-05-07T00:31:05.253929abusebot-3.cloudsearch.cf sshd[8526]: Invalid user solr from 103.23.100.87 port 53905 2020-05-07T00:31:06.931221abusebot-3.cloudsearch.cf sshd[8526]: Failed password for invalid user solr from 103.23.100.87 port 53905 ssh2 2020-05-07T00:34:48.690417abusebot-3.cloudsearch.cf sshd[8757]: Invalid user dok from 103.23.100.87 port 52408 2020-05-07T00:34:48.697111abusebot-3.cloudsearch.cf sshd[8757]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.23.100.87 2020-05-07T00:34:48.690417abusebot-3.cloudsearch.cf sshd[8757]: Invalid user dok from 103.23.100.87 port 52408 2020-05-07T00:34:50.650057abusebot-3.cloudsearch.cf sshd[8757]: Failed password for i ...	2020-05-07 08:50:01
86.186.72.207	attack	Honeypot attack, port: 445, PTR: host86-186-72-207.range86-186.btcentralplus.com.	2020-05-07 12:21:05
60.167.135.83	attack	Brute force attempt	2020-05-07 12:14:33
175.182.107.162	attackspam	Honeypot attack, port: 5555, PTR: 175-182-107-162.adsl.dynamic.seed.net.tw.	2020-05-07 12:15:01
117.6.224.244	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-05-07 12:11:44
180.183.125.136	attackspam	Honeypot attack, port: 445, PTR: mx-ll-180.183.125-136.dynamic.3bb.in.th.	2020-05-07 12:29:18

Recently Reported IPs

213.118.170.210	157.245.74.105	113.53.147.144	182.185.138.119
88.90.204.47	208.97.177.90	14.233.240.52	27.67.131.201
125.24.105.68	115.52.239.86	200.25.61.8	189.125.93.12
122.114.113.158	113.53.164.240	41.42.147.127	171.4.247.120
78.166.58.186	172.217.130.73	120.198.74.42	223.167.18.133