116.28.55.90 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.28.55.78	attack	Unauthorized connection attempt detected from IP address 116.28.55.78 to port 5555 [T]	2020-03-24 22:25:42

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.28.55.90
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15344
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.28.55.90.			IN	A

;; AUTHORITY SECTION:
.			559	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 05 05:05:03 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 90.55.28.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 90.55.28.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.123.35.159	attackspam	180.123.35.159 has been banned for [WebApp Attack] ...	2019-12-25 04:07:20
189.126.183.12	attackbots	Dec 24 17:14:19 firewall sshd[4030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.126.183.12 Dec 24 17:14:19 firewall sshd[4030]: Invalid user odoo from 189.126.183.12 Dec 24 17:14:21 firewall sshd[4030]: Failed password for invalid user odoo from 189.126.183.12 port 57916 ssh2 ...	2019-12-25 04:17:07
121.182.166.81	attackbots	Dec 24 19:16:29 MK-Soft-VM5 sshd[435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.182.166.81 Dec 24 19:16:31 MK-Soft-VM5 sshd[435]: Failed password for invalid user tec from 121.182.166.81 port 13771 ssh2 ...	2019-12-25 03:58:33
1.55.246.28	attackbotsspam	Unauthorized connection attempt from IP address 1.55.246.28 on Port 445(SMB)	2019-12-25 03:59:09
181.143.157.242	attackbotsspam	proto=tcp . spt=52080 . dpt=25 . (Listed on abuseat-org plus barracuda and spamcop) (455)	2019-12-25 03:57:07
121.134.159.21	attackbotsspam	Unauthorized SSH login attempts	2019-12-25 04:10:54
45.160.26.94	attackbots	Unauthorized connection attempt detected from IP address 45.160.26.94 to port 445	2019-12-25 03:48:28
221.225.83.148	attackspam	Dec 24 20:53:19 vps691689 sshd[25756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.225.83.148 Dec 24 20:53:21 vps691689 sshd[25756]: Failed password for invalid user almacen from 221.225.83.148 port 34950 ssh2 Dec 24 20:58:07 vps691689 sshd[25906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.225.83.148 ...	2019-12-25 04:10:08
196.188.13.25	attack	Dec 24 16:30:43 h2177944 kernel: \[400199.925833\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=196.188.13.25 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=115 ID=30721 DF PROTO=TCP SPT=56458 DPT=8080 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0 Dec 24 16:30:43 h2177944 kernel: \[400199.925848\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=196.188.13.25 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=115 ID=30721 DF PROTO=TCP SPT=56458 DPT=8080 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0 Dec 24 16:30:44 h2177944 kernel: \[400200.994897\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=196.188.13.25 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=115 ID=30722 DF PROTO=TCP SPT=60138 DPT=9200 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0 Dec 24 16:30:44 h2177944 kernel: \[400200.994912\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=196.188.13.25 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=115 ID=30722 DF PROTO=TCP SPT=60138 DPT=9200 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0 Dec 24 16:30:46 h2177944 kernel: \[400202.165837\] \[UFW BLOCK\] IN=venet0 OUT=	2019-12-25 04:08:10
14.251.122.120	attack	Unauthorized connection attempt from IP address 14.251.122.120 on Port 445(SMB)	2019-12-25 04:20:44
200.133.39.24	attackbots	Dec 24 18:31:10 pornomens sshd\[8272\]: Invalid user gdm from 200.133.39.24 port 56632 Dec 24 18:31:10 pornomens sshd\[8272\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.133.39.24 Dec 24 18:31:12 pornomens sshd\[8272\]: Failed password for invalid user gdm from 200.133.39.24 port 56632 ssh2 ...	2019-12-25 03:53:47
201.238.239.151	attack	Dec 24 20:32:53 [snip] sshd[12166]: Invalid user fishers from 201.238.239.151 port 50607 Dec 24 20:32:53 [snip] sshd[12166]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.238.239.151 Dec 24 20:32:55 [snip] sshd[12166]: Failed password for invalid user fishers from 201.238.239.151 port 50607 ssh2[...]	2019-12-25 03:52:43
165.22.35.21	attack	165.22.35.21 - - \[24/Dec/2019:17:41:26 +0100\] "POST /wp-login.php HTTP/1.0" 200 6597 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 165.22.35.21 - - \[24/Dec/2019:17:41:28 +0100\] "POST /wp-login.php HTTP/1.0" 200 6410 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 165.22.35.21 - - \[24/Dec/2019:17:41:29 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-12-25 04:20:02
104.158.231.5	attackbots	firewall-block, port(s): 23/tcp	2019-12-25 03:46:03
156.220.233.243	attackspambots	Mirai and Reaper Exploitation Traffic	2019-12-25 04:24:02

Recently Reported IPs

117.195.86.49	116.28.93.60	116.29.110.41	116.29.141.33
116.29.159.72	116.29.190.19	116.29.214.134	116.29.238.252
117.195.86.50	116.3.101.14	116.3.101.172	116.3.101.19
116.3.101.30	116.3.101.51	116.3.103.204	116.3.108.141
116.3.105.167	117.195.86.51	116.3.108.146	116.3.108.18