116.55.248.101

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Yunnan Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	suspicious action Thu, 20 Feb 2020 10:24:10 -0300	2020-02-21 02:50:07
attackbots	unauthorized connection attempt	2020-01-09 17:43:28

Comments on same subnet:

IP	Type	Details	Datetime
116.55.248.214	attack	$f2bV_matches	2020-09-29 03:08:07
116.55.248.214	attack	$f2bV_matches	2020-09-28 19:17:18
116.55.248.214	attackspam	Aug 1 22:35:34 rocket sshd[7929]: Failed password for root from 116.55.248.214 port 49380 ssh2 Aug 1 22:38:11 rocket sshd[8213]: Failed password for root from 116.55.248.214 port 42900 ssh2 ...	2020-08-02 06:46:15
116.55.248.214	attackbotsspam	Jul 20 10:30:45 firewall sshd[18929]: Invalid user alicia from 116.55.248.214 Jul 20 10:30:47 firewall sshd[18929]: Failed password for invalid user alicia from 116.55.248.214 port 39878 ssh2 Jul 20 10:35:12 firewall sshd[19012]: Invalid user aaron from 116.55.248.214 ...	2020-07-20 23:33:50
116.55.248.214	attackbotsspam	May 5 12:30:13 legacy sshd[11377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.55.248.214 May 5 12:30:15 legacy sshd[11377]: Failed password for invalid user passwd1234 from 116.55.248.214 port 47566 ssh2 May 5 12:34:40 legacy sshd[11609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.55.248.214 ...	2020-05-05 20:37:39
116.55.248.214	attackspam	May 4 06:46:22 ift sshd\[63394\]: Invalid user pd from 116.55.248.214May 4 06:46:23 ift sshd\[63394\]: Failed password for invalid user pd from 116.55.248.214 port 38892 ssh2May 4 06:49:09 ift sshd\[63684\]: Invalid user raphael from 116.55.248.214May 4 06:49:12 ift sshd\[63684\]: Failed password for invalid user raphael from 116.55.248.214 port 33646 ssh2May 4 06:52:00 ift sshd\[64178\]: Failed password for root from 116.55.248.214 port 56614 ssh2 ...	2020-05-04 17:47:41
116.55.248.182	attackbots	Unauthorized connection attempt detected from IP address 116.55.248.182 to port 1433 [J]	2020-03-02 19:09:19
116.55.248.214	attackbotsspam	Sep 27 17:29:23 ms-srv sshd[9912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.55.248.214 Sep 27 17:29:25 ms-srv sshd[9912]: Failed password for invalid user minecraft from 116.55.248.214 port 33106 ssh2	2020-02-15 21:24:08
116.55.248.182	attackbots	unauthorized connection attempt	2020-02-07 17:39:34
116.55.248.214	attackspambots	Jan 27 05:57:36 [host] sshd[7274]: Invalid user student03 from 116.55.248.214 Jan 27 05:57:36 [host] sshd[7274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.55.248.214 Jan 27 05:57:38 [host] sshd[7274]: Failed password for invalid user student03 from 116.55.248.214 port 56014 ssh2	2020-01-27 13:16:24
116.55.248.214	attackspam	$f2bV_matches	2020-01-24 06:55:54
116.55.248.214	attackspambots	Unauthorized connection attempt detected from IP address 116.55.248.214 to port 2220 [J]	2020-01-22 22:04:35
116.55.248.182	attackbots	firewall-block, port(s): 1433/tcp	2020-01-17 05:27:54
116.55.248.214	attackspam	Triggered by Fail2Ban at Vostok web server	2019-12-29 07:58:08
116.55.248.214	attackspambots	Dec 7 00:10:11 sd-53420 sshd\[24037\]: Invalid user huning from 116.55.248.214 Dec 7 00:10:11 sd-53420 sshd\[24037\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.55.248.214 Dec 7 00:10:13 sd-53420 sshd\[24037\]: Failed password for invalid user huning from 116.55.248.214 port 42558 ssh2 Dec 7 00:17:25 sd-53420 sshd\[25323\]: Invalid user teamspeak3 from 116.55.248.214 Dec 7 00:17:25 sd-53420 sshd\[25323\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.55.248.214 ...	2019-12-07 07:22:17

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.55.248.101
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6919
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.55.248.101.			IN	A

;; AUTHORITY SECTION:
.			526	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010900 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 09 17:43:21 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 101.248.55.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 101.248.55.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
173.236.168.101	attack	Automatic report - XMLRPC Attack	2020-01-15 00:40:12
117.220.198.187	attack	Brute forcing RDP port 3389	2020-01-15 00:18:48
94.207.41.233	attackspambots	ICMP MH Probe, Scan /Distributed -	2020-01-15 00:39:22
77.122.75.63	attackspam	Port 1433 Scan	2020-01-15 00:41:01
113.22.43.25	attackbotsspam	Unauthorized connection attempt detected from IP address 113.22.43.25 to port 23 [J]	2020-01-15 00:50:44
222.186.173.215	attackspam	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.215 user=root Failed password for root from 222.186.173.215 port 11562 ssh2 Failed password for root from 222.186.173.215 port 11562 ssh2 Failed password for root from 222.186.173.215 port 11562 ssh2 Failed password for root from 222.186.173.215 port 11562 ssh2	2020-01-15 00:49:07
213.244.123.26	attackspambots	Unauthorized connection attempt from IP address 213.244.123.26 on Port 445(SMB)	2020-01-15 00:35:52
207.148.25.180	attackbots	CloudCIX Reconnaissance Scan Detected, PTR: 207.148.25.180.vultr.com.	2020-01-15 00:21:27
119.236.46.245	attackspam	Fail2Ban Ban Triggered	2020-01-15 00:34:32
186.219.217.188	attackspam	Unauthorized connection attempt from IP address 186.219.217.188 on Port 445(SMB)	2020-01-15 00:30:37
65.49.20.71	attack	1579006888 - 01/14/2020 14:01:28 Host: 65.49.20.71/65.49.20.71 Port: 443 UDP Blocked	2020-01-15 00:47:03
59.125.207.109	attackspam	Unauthorized connection attempt from IP address 59.125.207.109 on Port 445(SMB)	2020-01-15 00:22:37
117.50.95.121	attack	Unauthorized connection attempt detected from IP address 117.50.95.121 to port 2220 [J]	2020-01-15 00:33:42
113.161.89.170	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-15 00:52:26
94.207.41.237	attackbots	ICMP MH Probe, Scan /Distributed -	2020-01-15 00:25:49

Recently Reported IPs

188.136.174.27	22.60.91.160	185.255.89.53	238.217.186.34
183.80.56.117	144.180.242.173	188.114.115.92	175.174.203.44
171.242.245.198	171.67.70.102	171.6.233.100	156.204.93.137
18.250.68.127	151.50.203.162	149.62.199.225	121.200.63.226
118.70.229.192	117.3.148.130	115.240.192.139	209.36.102.114