116.255.139.161

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.255.139.236	attackbots	Jul 31 14:55:14 lukav-desktop sshd\[6388\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.139.236 user=root Jul 31 14:55:16 lukav-desktop sshd\[6388\]: Failed password for root from 116.255.139.236 port 50278 ssh2 Jul 31 15:00:11 lukav-desktop sshd\[6456\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.139.236 user=root Jul 31 15:00:13 lukav-desktop sshd\[6456\]: Failed password for root from 116.255.139.236 port 56980 ssh2 Jul 31 15:05:07 lukav-desktop sshd\[8328\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.139.236 user=root	2020-08-01 00:59:03
116.255.139.236	attack	Jul 20 20:06:47 gw1 sshd[5121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.139.236 Jul 20 20:06:49 gw1 sshd[5121]: Failed password for invalid user gitlab from 116.255.139.236 port 36280 ssh2 ...	2020-07-21 04:00:57
116.255.139.236	attack	Jul 19 09:27:17 ws12vmsma01 sshd[22758]: Invalid user dev from 116.255.139.236 Jul 19 09:27:19 ws12vmsma01 sshd[22758]: Failed password for invalid user dev from 116.255.139.236 port 34716 ssh2 Jul 19 09:29:55 ws12vmsma01 sshd[23165]: Invalid user ram from 116.255.139.236 ...	2020-07-19 21:43:35
116.255.139.236	attackspambots	2020-07-08T20:55:32.582475-07:00 suse-nuc sshd[7400]: Invalid user lisen from 116.255.139.236 port 51674 ...	2020-07-09 14:53:52
116.255.139.236	attack	Jun 30 16:16:10 *** sshd[1614]: User backup from 116.255.139.236 not allowed because not listed in AllowUsers	2020-07-01 16:35:55
116.255.139.236	attack	Jun 30 16:16:10 *** sshd[1614]: User backup from 116.255.139.236 not allowed because not listed in AllowUsers	2020-07-01 02:06:09
116.255.139.236	attackbotsspam	SSH Brute Force	2020-06-21 06:24:41
116.255.139.236	attack	2020-06-14T06:11:12.508453mail.csmailer.org sshd[9096]: Failed password for apache from 116.255.139.236 port 53162 ssh2 2020-06-14T06:13:46.751192mail.csmailer.org sshd[9244]: Invalid user postgres from 116.255.139.236 port 57136 2020-06-14T06:13:46.757932mail.csmailer.org sshd[9244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.139.236 2020-06-14T06:13:46.751192mail.csmailer.org sshd[9244]: Invalid user postgres from 116.255.139.236 port 57136 2020-06-14T06:13:48.606854mail.csmailer.org sshd[9244]: Failed password for invalid user postgres from 116.255.139.236 port 57136 ssh2 ...	2020-06-14 19:13:03
116.255.139.236	attackbotsspam	Jun 8 21:24:32 game-panel sshd[5286]: Failed password for root from 116.255.139.236 port 60206 ssh2 Jun 8 21:28:10 game-panel sshd[5464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.139.236 Jun 8 21:28:13 game-panel sshd[5464]: Failed password for invalid user eu from 116.255.139.236 port 58334 ssh2	2020-06-09 05:49:38
116.255.139.236	attackspam	$f2bV_matches	2020-05-26 21:37:35
116.255.139.236	attackbotsspam	May 14 15:40:56 OPSO sshd\[25634\]: Invalid user sinus1 from 116.255.139.236 port 34256 May 14 15:40:56 OPSO sshd\[25634\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.139.236 May 14 15:40:58 OPSO sshd\[25634\]: Failed password for invalid user sinus1 from 116.255.139.236 port 34256 ssh2 May 14 15:44:22 OPSO sshd\[26372\]: Invalid user user from 116.255.139.236 port 46744 May 14 15:44:22 OPSO sshd\[26372\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.139.236	2020-05-14 21:53:40
116.255.139.236	attack	$f2bV_matches	2020-05-13 09:24:19
116.255.139.236	attack	May 10 14:11:26 tuxlinux sshd[55402]: Invalid user carlos2 from 116.255.139.236 port 40622 May 10 14:11:26 tuxlinux sshd[55402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.139.236 May 10 14:11:26 tuxlinux sshd[55402]: Invalid user carlos2 from 116.255.139.236 port 40622 May 10 14:11:26 tuxlinux sshd[55402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.139.236 May 10 14:11:26 tuxlinux sshd[55402]: Invalid user carlos2 from 116.255.139.236 port 40622 May 10 14:11:26 tuxlinux sshd[55402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.139.236 May 10 14:11:28 tuxlinux sshd[55402]: Failed password for invalid user carlos2 from 116.255.139.236 port 40622 ssh2 ...	2020-05-11 00:35:54

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.255.139.161
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59912
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.255.139.161.		IN	A

;; AUTHORITY SECTION:
.			437	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022033100 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 31 19:24:25 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 161.139.255.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 161.139.255.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
2400:8904::f03c:92ff:fe60:338a	attack	2375/tcp 901/tcp 7000/tcp... [2020-04-09/11]6pkt,4pt.(tcp),1pt.(udp)	2020-04-14 01:11:04
112.80.21.170	attack	04/13/2020-04:40:05.343603 112.80.21.170 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-04-14 00:39:16
182.125.169.166	attack	23/tcp 23/tcp [2020-04-11]2pkt	2020-04-14 00:58:34
125.227.198.51	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-04-14 00:36:29
103.254.244.98	attack	Brute forcing RDP port 3389	2020-04-14 01:15:08
128.199.121.32	attackspam	Apr 13 16:17:31 mail sshd\[11326\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.121.32 user=root Apr 13 16:17:33 mail sshd\[11326\]: Failed password for root from 128.199.121.32 port 50004 ssh2 Apr 13 16:21:35 mail sshd\[11436\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.121.32 user=root ...	2020-04-14 00:59:33
164.132.183.203	attackbotsspam	3333/tcp 4567/tcp 5683/tcp... [2020-02-12/04-13]67pkt,40pt.(tcp)	2020-04-14 01:02:13
112.200.231.151	attackbotsspam	445/tcp 445/tcp 445/tcp [2020-04-11]3pkt	2020-04-14 01:05:18
103.78.27.2	attackspam	Honeypot attack, port: 445, PTR: mail.daaitv.co.id.	2020-04-14 00:44:47
140.143.207.57	attack	Apr 13 18:48:46 hosting sshd[3560]: Invalid user dwdevnet from 140.143.207.57 port 40740 ...	2020-04-14 01:19:30
173.249.29.30	attackbotsspam	Invalid user replicator from 173.249.29.30 port 60202	2020-04-14 00:46:11
163.247.61.210	attack	22005/tcp 22005/tcp 22005/tcp [2020-04-11/12]3pkt	2020-04-14 00:43:31
49.51.141.147	attackspambots	Apr 13 18:30:03 pve sshd[27757]: Failed password for root from 49.51.141.147 port 58650 ssh2 Apr 13 18:35:30 pve sshd[31892]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.51.141.147 Apr 13 18:35:32 pve sshd[31892]: Failed password for invalid user usuario from 49.51.141.147 port 38752 ssh2	2020-04-14 00:53:05
201.149.67.171	attackspam	Honeypot attack, port: 445, PTR: 171.67.149.201.in-addr.arpa.	2020-04-14 01:20:00
188.161.79.211	attack	[2020-04-13 05:08:33] NOTICE[12114][C-00005168] chan_sip.c: Call from '' (188.161.79.211:16407) to extension '011972597396447' rejected because extension not found in context 'public'. [2020-04-13 05:08:33] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-13T05:08:33.348-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011972597396447",SessionID="0x7f020c088288",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/188.161.79.211/16407",ACLName="no_extension_match" [2020-04-13 05:13:23] NOTICE[12114][C-0000516c] chan_sip.c: Call from '' (188.161.79.211:28538) to extension '9011972597396447' rejected because extension not found in context 'public'. [2020-04-13 05:13:23] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-13T05:13:23.113-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011972597396447",SessionID="0x7f020c167898",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress=" ...	2020-04-14 01:12:26

Recently Reported IPs

116.255.138.18	116.255.141.236	116.255.147.162	116.255.151.2
116.255.152.194	116.255.155.233	116.255.157.57	116.255.165.38
116.255.167.116	116.255.169.19	116.255.179.170	116.255.183.176
116.255.187.149	116.255.187.214	116.255.187.3	116.255.187.69
116.255.205.78	116.255.206.166	116.255.206.2	116.255.206.49