116.55.140.149

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Yunnan Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Automatic report - Banned IP Access	2020-03-14 01:26:09

Comments on same subnet:

IP	Type	Details	Datetime
116.55.140.245	attack	badbot	2019-11-20 19:11:28

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.55.140.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26117
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.55.140.149.			IN	A

;; AUTHORITY SECTION:
.			247	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031300 1800 900 604800 86400

;; Query time: 112 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 14 01:26:05 CST 2020
;; MSG SIZE  rcvd: 118

Host info

149.140.55.116.in-addr.arpa domain name pointer 149.140.55.116.broad.km.yn.dynamic.163data.com.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
149.140.55.116.in-addr.arpa	name = 149.140.55.116.broad.km.yn.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
152.32.167.107	attack	Aug 20 20:43:04 dhoomketu sshd[2518886]: Failed password for invalid user or from 152.32.167.107 port 37482 ssh2 Aug 20 20:47:22 dhoomketu sshd[2518933]: Invalid user aj from 152.32.167.107 port 45664 Aug 20 20:47:22 dhoomketu sshd[2518933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.32.167.107 Aug 20 20:47:22 dhoomketu sshd[2518933]: Invalid user aj from 152.32.167.107 port 45664 Aug 20 20:47:25 dhoomketu sshd[2518933]: Failed password for invalid user aj from 152.32.167.107 port 45664 ssh2 ...	2020-08-20 23:26:03
119.8.40.235	attackbotsspam	Aug 20 10:49:08 v11 sshd[11614]: Invalid user evelyn from 119.8.40.235 port 54172 Aug 20 10:49:08 v11 sshd[11614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.8.40.235 Aug 20 10:49:11 v11 sshd[11614]: Failed password for invalid user evelyn from 119.8.40.235 port 54172 ssh2 Aug 20 10:49:11 v11 sshd[11614]: Received disconnect from 119.8.40.235 port 54172:11: Bye Bye [preauth] Aug 20 10:49:11 v11 sshd[11614]: Disconnected from 119.8.40.235 port 54172 [preauth] Aug 20 10:49:32 v11 sshd[11635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.8.40.235 user=r.r Aug 20 10:49:34 v11 sshd[11635]: Failed password for r.r from 119.8.40.235 port 54746 ssh2 Aug 20 10:49:34 v11 sshd[11635]: Received disconnect from 119.8.40.235 port 54746:11: Bye Bye [preauth] Aug 20 10:49:34 v11 sshd[11635]: Disconnected from 119.8.40.235 port 54746 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/v	2020-08-20 23:26:40
51.91.110.51	attack	Aug 20 17:10:02 ncomp sshd[26267]: Invalid user david from 51.91.110.51 Aug 20 17:10:02 ncomp sshd[26267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.110.51 Aug 20 17:10:02 ncomp sshd[26267]: Invalid user david from 51.91.110.51 Aug 20 17:10:04 ncomp sshd[26267]: Failed password for invalid user david from 51.91.110.51 port 43922 ssh2	2020-08-20 23:12:50
5.9.154.69	attack	20 attempts against mh-misbehave-ban on flare	2020-08-20 23:03:52
49.198.170.88	attackbots	Aug 19 22:34:27 cumulus sshd[23664]: Invalid user server from 49.198.170.88 port 55662 Aug 19 22:34:27 cumulus sshd[23664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.198.170.88 Aug 19 22:34:28 cumulus sshd[23664]: Failed password for invalid user server from 49.198.170.88 port 55662 ssh2 Aug 19 22:34:28 cumulus sshd[23664]: Received disconnect from 49.198.170.88 port 55662:11: Bye Bye [preauth] Aug 19 22:34:28 cumulus sshd[23664]: Disconnected from 49.198.170.88 port 55662 [preauth] Aug 19 22:37:11 cumulus sshd[23961]: Invalid user server from 49.198.170.88 port 33780 Aug 19 22:37:11 cumulus sshd[23961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.198.170.88 Aug 19 22:37:13 cumulus sshd[23961]: Failed password for invalid user server from 49.198.170.88 port 33780 ssh2 Aug 19 22:37:14 cumulus sshd[23961]: Received disconnect from 49.198.170.88 port 33780:11: Bye Bye [preauth] ........ -------------------------------	2020-08-20 23:01:10
212.129.242.171	attackspam	Aug 20 14:35:28 rocket sshd[25178]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.242.171 Aug 20 14:35:31 rocket sshd[25178]: Failed password for invalid user ftpuser from 212.129.242.171 port 32856 ssh2 ...	2020-08-20 23:28:13
94.224.19.42	attack	Automatic report - Port Scan Attack	2020-08-20 23:09:59
51.38.188.20	attackbots	Aug 20 10:42:16 km20725 sshd[1438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.188.20 user=r.r Aug 20 10:42:18 km20725 sshd[1438]: Failed password for r.r from 51.38.188.20 port 47502 ssh2 Aug 20 10:42:18 km20725 sshd[1438]: Received disconnect from 51.38.188.20 port 47502:11: Bye Bye [preauth] Aug 20 10:42:18 km20725 sshd[1438]: Disconnected from authenticating user r.r 51.38.188.20 port 47502 [preauth] Aug 20 10:51:14 km20725 sshd[1982]: Invalid user kevin from 51.38.188.20 port 47086 Aug 20 10:51:14 km20725 sshd[1982]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.188.20 Aug 20 10:51:15 km20725 sshd[1982]: Failed password for invalid user kevin from 51.38.188.20 port 47086 ssh2 Aug 20 10:51:17 km20725 sshd[1982]: Received disconnect from 51.38.188.20 port 47086:11: Bye Bye [preauth] Aug 20 10:51:17 km20725 sshd[1982]: Disconnected from invalid user kevin 51.38.188.20 ........ -------------------------------	2020-08-20 23:29:46
175.124.43.162	attackbotsspam	Aug 20 15:25:23 h2646465 sshd[12245]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.124.43.162 user=root Aug 20 15:25:26 h2646465 sshd[12245]: Failed password for root from 175.124.43.162 port 45638 ssh2 Aug 20 15:31:32 h2646465 sshd[12903]: Invalid user tgu from 175.124.43.162 Aug 20 15:31:32 h2646465 sshd[12903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.124.43.162 Aug 20 15:31:32 h2646465 sshd[12903]: Invalid user tgu from 175.124.43.162 Aug 20 15:31:34 h2646465 sshd[12903]: Failed password for invalid user tgu from 175.124.43.162 port 37030 ssh2 Aug 20 15:36:25 h2646465 sshd[13513]: Invalid user winch from 175.124.43.162 Aug 20 15:36:25 h2646465 sshd[13513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.124.43.162 Aug 20 15:36:25 h2646465 sshd[13513]: Invalid user winch from 175.124.43.162 Aug 20 15:36:28 h2646465 sshd[13513]: Failed password for invalid user winch	2020-08-20 23:34:48
106.54.77.171	attackbotsspam	2020-08-20T14:02:05.238146vps773228.ovh.net sshd[10592]: Invalid user corona from 106.54.77.171 port 38478 2020-08-20T14:02:05.247142vps773228.ovh.net sshd[10592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.77.171 2020-08-20T14:02:05.238146vps773228.ovh.net sshd[10592]: Invalid user corona from 106.54.77.171 port 38478 2020-08-20T14:02:06.916269vps773228.ovh.net sshd[10592]: Failed password for invalid user corona from 106.54.77.171 port 38478 ssh2 2020-08-20T14:05:30.163670vps773228.ovh.net sshd[10638]: Invalid user yhl from 106.54.77.171 port 44908 ...	2020-08-20 22:58:08
157.48.173.97	attackbotsspam	1597925088 - 08/20/2020 14:04:48 Host: 157.48.173.97/157.48.173.97 Port: 445 TCP Blocked	2020-08-20 23:30:23
183.129.146.18	attackspam	2020-08-20T14:06:58.887393abusebot-6.cloudsearch.cf sshd[6603]: Invalid user info from 183.129.146.18 port 18025 2020-08-20T14:06:58.893217abusebot-6.cloudsearch.cf sshd[6603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.129.146.18 2020-08-20T14:06:58.887393abusebot-6.cloudsearch.cf sshd[6603]: Invalid user info from 183.129.146.18 port 18025 2020-08-20T14:07:01.223412abusebot-6.cloudsearch.cf sshd[6603]: Failed password for invalid user info from 183.129.146.18 port 18025 ssh2 2020-08-20T14:08:24.452308abusebot-6.cloudsearch.cf sshd[6608]: Invalid user wjc from 183.129.146.18 port 15657 2020-08-20T14:08:24.458236abusebot-6.cloudsearch.cf sshd[6608]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.129.146.18 2020-08-20T14:08:24.452308abusebot-6.cloudsearch.cf sshd[6608]: Invalid user wjc from 183.129.146.18 port 15657 2020-08-20T14:08:26.924437abusebot-6.cloudsearch.cf sshd[6608]: Failed passwor ...	2020-08-20 23:01:23
152.254.132.67	attackspam	Aug 20 09:38:46 vestacp sshd[5298]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.254.132.67 user=r.r Aug 20 09:38:48 vestacp sshd[5298]: Failed password for r.r from 152.254.132.67 port 54460 ssh2 Aug 20 09:38:49 vestacp sshd[5298]: Received disconnect from 152.254.132.67 port 54460:11: Bye Bye [preauth] Aug 20 09:38:49 vestacp sshd[5298]: Disconnected from authenticating user r.r 152.254.132.67 port 54460 [preauth] Aug 20 09:47:03 vestacp sshd[6111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.254.132.67 user=r.r Aug 20 09:47:05 vestacp sshd[6111]: Failed password for r.r from 152.254.132.67 port 42696 ssh2 Aug 20 09:47:07 vestacp sshd[6111]: Received disconnect from 152.254.132.67 port 42696:11: Bye Bye [preauth] Aug 20 09:47:07 vestacp sshd[6111]: Disconnected from authenticating user r.r 152.254.132.67 port 42696 [preauth] Aug 20 09:49:18 vestacp sshd[6306]: Invalid user........ -------------------------------	2020-08-20 23:17:50
158.69.110.31	attack	2020-08-20 13:01:22,854 fail2ban.actions [937]: NOTICE [sshd] Ban 158.69.110.31 2020-08-20 13:36:55,425 fail2ban.actions [937]: NOTICE [sshd] Ban 158.69.110.31 2020-08-20 14:14:13,482 fail2ban.actions [937]: NOTICE [sshd] Ban 158.69.110.31 2020-08-20 14:51:29,558 fail2ban.actions [937]: NOTICE [sshd] Ban 158.69.110.31 2020-08-20 15:26:06,049 fail2ban.actions [937]: NOTICE [sshd] Ban 158.69.110.31 ...	2020-08-20 23:14:41
103.72.144.228	attack	Aug 20 17:02:12 vps647732 sshd[25645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.72.144.228 Aug 20 17:02:14 vps647732 sshd[25645]: Failed password for invalid user ming from 103.72.144.228 port 52594 ssh2 ...	2020-08-20 23:11:50

Recently Reported IPs

103.30.17.33	150.222.242.90	186.212.117.61	150.222.241.183
218.156.216.84	167.114.92.57	118.25.88.204	103.116.105.118
195.20.28.192	179.104.235.117	110.184.199.244	192.249.115.24
159.138.22.170	78.8.249.81	157.245.228.155	128.14.20.142
46.153.105.244	220.191.255.72	196.190.7.27	115.73.14.213