160.16.138.99 - IPInfo

Basic Info

City: Osaka

Region: Ōsaka

Country: Japan

Internet Service Provider: Sakura Internet Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Aug 29 14:12:19 lcprod sshd\[20169\]: Invalid user ricki from 160.16.138.99 Aug 29 14:12:19 lcprod sshd\[20169\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=tk2-405-43595.vs.sakura.ne.jp Aug 29 14:12:21 lcprod sshd\[20169\]: Failed password for invalid user ricki from 160.16.138.99 port 34724 ssh2 Aug 29 14:16:54 lcprod sshd\[20633\]: Invalid user barbara123 from 160.16.138.99 Aug 29 14:16:54 lcprod sshd\[20633\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=tk2-405-43595.vs.sakura.ne.jp	2019-08-30 08:32:33
attack	Automatic report - Banned IP Access	2019-08-29 02:53:35

Type

Details

Datetime

attackspambots

Aug 29 14:12:19 lcprod sshd\[20169\]: Invalid user ricki from 160.16.138.99
Aug 29 14:12:19 lcprod sshd\[20169\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=tk2-405-43595.vs.sakura.ne.jp
Aug 29 14:12:21 lcprod sshd\[20169\]: Failed password for invalid user ricki from 160.16.138.99 port 34724 ssh2
Aug 29 14:16:54 lcprod sshd\[20633\]: Invalid user barbara123 from 160.16.138.99
Aug 29 14:16:54 lcprod sshd\[20633\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=tk2-405-43595.vs.sakura.ne.jp

2019-08-30 08:32:33

attack

Automatic report - Banned IP Access

2019-08-29 02:53:35

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 160.16.138.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3230
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;160.16.138.99.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082500 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Aug 25 15:14:16 CST 2019
;; MSG SIZE  rcvd: 117

Host info

99.138.16.160.in-addr.arpa domain name pointer tk2-405-43595.vs.sakura.ne.jp.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
99.138.16.160.in-addr.arpa	name = tk2-405-43595.vs.sakura.ne.jp.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
125.64.94.201	attack	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-09-05 23:54:35
209.85.128.49	attackspam	Attempt to login to email server on SMTP service on 05-09-2019 09:29:55.	2019-09-05 23:21:24
167.71.90.101	attack	Probing for /owa	2019-09-05 23:47:42
167.71.208.88	attack	Sep 5 12:34:40 [host] sshd[15017]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.208.88 user=www-data Sep 5 12:34:42 [host] sshd[15017]: Failed password for www-data from 167.71.208.88 port 41200 ssh2 Sep 5 12:39:14 [host] sshd[15196]: Invalid user test from 167.71.208.88 Sep 5 12:39:14 [host] sshd[15196]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.208.88	2019-09-05 23:44:52
209.85.128.46	attack	Attempt to login to email server on SMTP service on 05-09-2019 09:29:54.	2019-09-05 23:21:44
37.120.217.84	attack	Sep 5 17:05:33 [munged] sshd[11762]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.120.217.84	2019-09-05 23:45:41
95.243.136.198	attackspambots	Sep 5 16:48:06 site1 sshd\[44489\]: Invalid user student from 95.243.136.198Sep 5 16:48:08 site1 sshd\[44489\]: Failed password for invalid user student from 95.243.136.198 port 60557 ssh2Sep 5 16:53:05 site1 sshd\[44668\]: Invalid user test6 from 95.243.136.198Sep 5 16:53:07 site1 sshd\[44668\]: Failed password for invalid user test6 from 95.243.136.198 port 61741 ssh2Sep 5 16:57:57 site1 sshd\[44917\]: Invalid user admin from 95.243.136.198Sep 5 16:57:59 site1 sshd\[44917\]: Failed password for invalid user admin from 95.243.136.198 port 62295 ssh2 ...	2019-09-05 23:27:00
114.41.73.226	attack	Portscan detected	2019-09-06 00:29:18
138.197.93.133	attackbots	Sep 5 01:42:58 tdfoods sshd\[9517\]: Invalid user steam from 138.197.93.133 Sep 5 01:42:58 tdfoods sshd\[9517\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.93.133 Sep 5 01:43:00 tdfoods sshd\[9517\]: Failed password for invalid user steam from 138.197.93.133 port 52598 ssh2 Sep 5 01:46:56 tdfoods sshd\[9854\]: Invalid user ftptest from 138.197.93.133 Sep 5 01:46:56 tdfoods sshd\[9854\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.93.133	2019-09-05 23:48:51
83.14.199.49	attackbotsspam	Jan 19 22:37:55 vtv3 sshd\[572\]: Invalid user test2 from 83.14.199.49 port 36768 Jan 19 22:37:55 vtv3 sshd\[572\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.14.199.49 Jan 19 22:37:57 vtv3 sshd\[572\]: Failed password for invalid user test2 from 83.14.199.49 port 36768 ssh2 Jan 19 22:41:52 vtv3 sshd\[2216\]: Invalid user cisco from 83.14.199.49 port 36914 Jan 19 22:41:52 vtv3 sshd\[2216\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.14.199.49 Jan 27 06:43:36 vtv3 sshd\[22639\]: Invalid user abc from 83.14.199.49 port 33246 Jan 27 06:43:36 vtv3 sshd\[22639\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.14.199.49 Jan 27 06:43:38 vtv3 sshd\[22639\]: Failed password for invalid user abc from 83.14.199.49 port 33246 ssh2 Jan 27 06:48:02 vtv3 sshd\[23973\]: Invalid user tss from 83.14.199.49 port 37460 Jan 27 06:48:02 vtv3 sshd\[23973\]: pam_unix$sshd:auth$: authe	2019-09-05 23:29:49
165.227.112.164	attackbotsspam	Sep 5 17:26:41 SilenceServices sshd[3606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.112.164 Sep 5 17:26:43 SilenceServices sshd[3606]: Failed password for invalid user 111111 from 165.227.112.164 port 40084 ssh2 Sep 5 17:31:01 SilenceServices sshd[5484]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.112.164	2019-09-05 23:33:31
5.189.166.57	attackspam	(sshd) Failed SSH login from 5.189.166.57 (DE/Germany/vmi275934.contaboserver.net): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 5 05:02:40 testbed sshd[3003]: Failed password for root from 5.189.166.57 port 39324 ssh2 Sep 5 05:02:41 testbed sshd[3008]: Invalid user oracle from 5.189.166.57 port 39532 Sep 5 05:02:44 testbed sshd[3008]: Failed password for invalid user oracle from 5.189.166.57 port 39532 ssh2 Sep 5 05:02:47 testbed sshd[3015]: Failed password for root from 5.189.166.57 port 39770 ssh2 Sep 5 05:02:49 testbed sshd[3021]: Invalid user applprod from 5.189.166.57 port 39974	2019-09-06 00:24:00
64.31.35.6	attackspambots	SIPVicious Scanner Detection, PTR: 6-35-31-64.static.reverse.lstn.net.	2019-09-06 00:02:54
216.218.206.99	attackspambots	scan r	2019-09-06 00:14:49
49.207.33.2	attack	$f2bV_matches	2019-09-05 23:38:09

Recently Reported IPs

11.94.140.105	18.192.242.157	136.107.97.24	177.21.195.111
11.39.225.132	32.62.83.135	153.205.206.180	140.173.204.110
171.54.105.236	33.10.44.198	124.39.211.174	155.77.205.174
103.9.158.35	73.132.134.217	11.252.251.242	164.226.104.5
181.124.110.204	72.232.142.53	120.221.15.212	152.181.203.14