116.55.75.160 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Yunnan Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt detected from IP address 116.55.75.160 to port 6656 [T]	2020-01-30 18:31:10

Comments on same subnet:

IP	Type	Details	Datetime
116.55.75.238	attack	Unauthorized connection attempt detected from IP address 116.55.75.238 to port 6656 [T]	2020-01-28 08:31:31
116.55.75.175	attack	badbot	2019-11-20 21:52:44

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.55.75.160
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48280
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.55.75.160.			IN	A

;; AUTHORITY SECTION:
.			328	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020013001 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 30 18:31:06 CST 2020
;; MSG SIZE  rcvd: 117

Host info

160.75.55.116.IN-ADDR.ARPA domain name pointer 160.75.55.116.broad.km.yn.dynamic.163data.com.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
160.75.55.116.in-addr.arpa	name = 160.75.55.116.broad.km.yn.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.128.223.243	attackbots	Nov 13 11:54:30 localhost sshd\[80356\]: Invalid user lewicki from 178.128.223.243 port 33112 Nov 13 11:54:30 localhost sshd\[80356\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.223.243 Nov 13 11:54:32 localhost sshd\[80356\]: Failed password for invalid user lewicki from 178.128.223.243 port 33112 ssh2 Nov 13 11:58:59 localhost sshd\[80468\]: Invalid user admin from 178.128.223.243 port 42140 Nov 13 11:58:59 localhost sshd\[80468\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.223.243 ...	2019-11-13 20:30:47
103.199.163.21	attackbotsspam	Port scan on 1 port(s): 1433	2019-11-13 20:34:53
23.102.238.226	attackspam	Nov 13 01:18:09 wbs sshd\[25262\]: Invalid user welcome from 23.102.238.226 Nov 13 01:18:09 wbs sshd\[25262\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.102.238.226 Nov 13 01:18:12 wbs sshd\[25262\]: Failed password for invalid user welcome from 23.102.238.226 port 48415 ssh2 Nov 13 01:23:35 wbs sshd\[26182\]: Invalid user hhhhhh from 23.102.238.226 Nov 13 01:23:35 wbs sshd\[26182\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.102.238.226	2019-11-13 19:56:00
120.205.45.252	attackbotsspam	Too many connections or unauthorized access detected from Arctic banned ip	2019-11-13 20:15:09
198.23.223.139	attack	[12/Nov/2019:23:42:19 -0500] "GET /index.php HTTP/1.1" Blank UA	2019-11-13 19:57:35
220.180.20.19	attack	" "	2019-11-13 20:32:30
128.199.249.213	attackbots	128.199.249.213 - - [13/Nov/2019:11:28:23 +0100] "POST /wp-login.php HTTP/1.1" 200 3126 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 128.199.249.213 - - [13/Nov/2019:11:28:25 +0100] "POST /wp-login.php HTTP/1.1" 200 3105 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-11-13 20:06:18
69.17.158.101	attack	Nov 13 03:23:52 TORMINT sshd\[25065\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.17.158.101 user=root Nov 13 03:23:53 TORMINT sshd\[25065\]: Failed password for root from 69.17.158.101 port 47512 ssh2 Nov 13 03:27:31 TORMINT sshd\[25270\]: Invalid user test from 69.17.158.101 Nov 13 03:27:31 TORMINT sshd\[25270\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.17.158.101 ...	2019-11-13 19:58:40
121.158.190.83	attackspambots	Brute force SMTP login attempted. ...	2019-11-13 20:00:45
138.68.57.99	attackbots	SSH Bruteforce attempt	2019-11-13 20:05:50
103.219.112.1	attack	Nov 12 22:04:37 tdfoods sshd\[3010\]: Invalid user password12346 from 103.219.112.1 Nov 12 22:04:37 tdfoods sshd\[3010\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.219.112.1 Nov 12 22:04:39 tdfoods sshd\[3010\]: Failed password for invalid user password12346 from 103.219.112.1 port 57750 ssh2 Nov 12 22:09:17 tdfoods sshd\[3496\]: Invalid user Human@123 from 103.219.112.1 Nov 12 22:09:17 tdfoods sshd\[3496\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.219.112.1	2019-11-13 20:16:28
94.177.204.178	attackbotsspam	Nov 13 09:29:41 v22018086721571380 sshd[7200]: Failed password for invalid user sales from 94.177.204.178 port 39798 ssh2	2019-11-13 20:25:39
175.197.129.22	attack	IP attempted unauthorised action	2019-11-13 20:11:15
103.206.191.100	attack	Nov 13 10:04:06 venus sshd\[1597\]: Invalid user oracle from 103.206.191.100 port 60028 Nov 13 10:04:06 venus sshd\[1597\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.206.191.100 Nov 13 10:04:08 venus sshd\[1597\]: Failed password for invalid user oracle from 103.206.191.100 port 60028 ssh2 ...	2019-11-13 20:20:08
171.249.181.151	attackbots	Automatic report - Port Scan Attack	2019-11-13 20:07:28

Recently Reported IPs

60.172.71.130	60.160.143.89	49.81.79.4	193.6.112.84
192.16.188.43	42.115.231.76	42.56.11.130	96.86.73.161
35.198.248.77	27.158.23.114	14.134.108.13	1.180.165.186
1.4.216.118	1.2.231.58	223.240.215.17	222.220.152.56
55.37.177.23	157.47.162.77	222.90.42.38	163.192.147.219