175.16.139.94 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom Jilin Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Unauthorised access (Nov 21) SRC=175.16.139.94 LEN=40 TTL=49 ID=31955 TCP DPT=8080 WINDOW=37711 SYN Unauthorised access (Nov 19) SRC=175.16.139.94 LEN=40 TTL=49 ID=26384 TCP DPT=8080 WINDOW=19056 SYN Unauthorised access (Nov 19) SRC=175.16.139.94 LEN=40 TTL=49 ID=63534 TCP DPT=8080 WINDOW=37711 SYN Unauthorised access (Nov 19) SRC=175.16.139.94 LEN=40 TTL=49 ID=35193 TCP DPT=8080 WINDOW=37711 SYN	2019-11-21 23:54:06

Type

Details

Datetime

attackspambots

Unauthorised access (Nov 21) SRC=175.16.139.94 LEN=40 TTL=49 ID=31955 TCP DPT=8080 WINDOW=37711 SYN 
Unauthorised access (Nov 19) SRC=175.16.139.94 LEN=40 TTL=49 ID=26384 TCP DPT=8080 WINDOW=19056 SYN 
Unauthorised access (Nov 19) SRC=175.16.139.94 LEN=40 TTL=49 ID=63534 TCP DPT=8080 WINDOW=37711 SYN 
Unauthorised access (Nov 19) SRC=175.16.139.94 LEN=40 TTL=49 ID=35193 TCP DPT=8080 WINDOW=37711 SYN

2019-11-21 23:54:06

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 175.16.139.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44101
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;175.16.139.94.			IN	A

;; AUTHORITY SECTION:
.			396	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112100 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Nov 21 23:54:02 CST 2019
;; MSG SIZE  rcvd: 117

Host info

94.139.16.175.in-addr.arpa domain name pointer 94.139.16.175.adsl-pool.jlccptt.net.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
94.139.16.175.in-addr.arpa	name = 94.139.16.175.adsl-pool.jlccptt.net.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
112.21.188.250	attackbots	$f2bV_matches	2020-04-04 02:55:09
111.229.204.204	attackbotsspam	$f2bV_matches	2020-04-04 02:56:11
45.14.150.133	attackbotsspam	Invalid user castro from 45.14.150.133 port 46390	2020-04-04 03:15:16
59.36.142.180	attackspam	Apr 3 18:29:42 *** sshd[4050]: User root from 59.36.142.180 not allowed because not listed in AllowUsers	2020-04-04 03:08:43
68.74.118.152	attackspam	Apr 3 20:59:26 host sshd[26932]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.74.118.152 user=root Apr 3 20:59:27 host sshd[26932]: Failed password for root from 68.74.118.152 port 46736 ssh2 ...	2020-04-04 03:06:32
1.47.192.132	attack	Invalid user admin from 1.47.192.132 port 35524	2020-04-04 03:20:30
93.4.196.233	attackbots	[ssh] SSH attack	2020-04-04 03:02:07
124.123.105.236	attackspambots	$f2bV_matches	2020-04-04 02:50:22
104.236.142.200	attack	fail2ban	2020-04-04 03:01:25
49.236.192.194	attackspambots	Invalid user test1 from 49.236.192.194 port 37764	2020-04-04 03:13:04
124.156.107.252	attack	2020-04-03T15:06:10.858602shield sshd\[4051\]: Invalid user wangqing from 124.156.107.252 port 49546 2020-04-03T15:06:10.862546shield sshd\[4051\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.107.252 2020-04-03T15:06:12.571926shield sshd\[4051\]: Failed password for invalid user wangqing from 124.156.107.252 port 49546 ssh2 2020-04-03T15:11:58.596686shield sshd\[5573\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.107.252 user=root 2020-04-03T15:12:00.411637shield sshd\[5573\]: Failed password for root from 124.156.107.252 port 55134 ssh2	2020-04-04 02:49:32
124.156.103.155	attack	SSH bruteforce	2020-04-04 02:49:59
59.148.173.231	attackspam	Brute force attempt	2020-04-04 03:08:29
106.12.116.209	attackspambots	Invalid user ihc from 106.12.116.209 port 37110	2020-04-04 03:00:12
98.189.134.115	attackspambots	Apr 3 20:31:17 ns382633 sshd\[5067\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.189.134.115 user=root Apr 3 20:31:19 ns382633 sshd\[5067\]: Failed password for root from 98.189.134.115 port 44642 ssh2 Apr 3 20:38:50 ns382633 sshd\[6471\]: Invalid user vagrant1 from 98.189.134.115 port 38334 Apr 3 20:38:50 ns382633 sshd\[6471\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.189.134.115 Apr 3 20:38:52 ns382633 sshd\[6471\]: Failed password for invalid user vagrant1 from 98.189.134.115 port 38334 ssh2	2020-04-04 03:01:39

Recently Reported IPs

40.117.78.147	222.150.120.168	124.156.241.236	95.123.171.191
123.59.38.1	115.220.139.83	85.105.36.66	232.146.44.194
241.233.211.205	46.45.71.143	253.254.16.188	157.230.242.122
181.206.206.202	94.68.92.86	97.135.46.38	202.23.62.246
138.148.138.2	106.66.104.38	201.205.137.173	136.252.237.242