116.48.117.131

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt detected from IP address 116.48.117.131 to port 5555 [J]	2020-01-29 01:54:37

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.48.117.131
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31977
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.48.117.131.			IN	A

;; AUTHORITY SECTION:
.			569	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012801 1800 900 604800 86400

;; Query time: 130 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 29 01:54:34 CST 2020
;; MSG SIZE  rcvd: 118

Host info

131.117.48.116.in-addr.arpa domain name pointer n11648117131.netvigator.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
131.117.48.116.in-addr.arpa	name = n11648117131.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
68.183.22.85	attack	$f2bV_matches	2020-05-26 01:32:26
103.82.80.64	attackbots	Unauthorized connection attempt from IP address 103.82.80.64 on Port 445(SMB)	2020-05-26 01:38:39
222.186.175.216	attackbotsspam	May 25 19:03:41 eventyay sshd[1981]: Failed password for root from 222.186.175.216 port 7510 ssh2 May 25 19:03:44 eventyay sshd[1981]: Failed password for root from 222.186.175.216 port 7510 ssh2 May 25 19:03:47 eventyay sshd[1981]: Failed password for root from 222.186.175.216 port 7510 ssh2 May 25 19:03:54 eventyay sshd[1981]: error: maximum authentication attempts exceeded for root from 222.186.175.216 port 7510 ssh2 [preauth] ...	2020-05-26 01:07:41
162.243.144.161	attackspam	" "	2020-05-26 01:27:14
122.225.74.98	attack	firewall-block, port(s): 445/tcp	2020-05-26 01:19:16
198.46.189.106	attackbotsspam	May 11 21:15:59 estefan sshd[32056]: reveeclipse mapping checking getaddrinfo for 198-46-189-106-host.colocrossing.com [198.46.189.106] failed - POSSIBLE BREAK-IN ATTEMPT! May 11 21:15:59 estefan sshd[32056]: User ftp from 198.46.189.106 not allowed because not listed in AllowUsers May 11 21:15:59 estefan sshd[32056]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.46.189.106 user=ftp May 11 21:16:01 estefan sshd[32056]: Failed password for invalid user ftp from 198.46.189.106 port 34850 ssh2 May 11 21:16:01 estefan sshd[32057]: Received disconnect from 198.46.189.106: 11: Bye Bye May 11 21:22:46 estefan sshd[32098]: reveeclipse mapping checking getaddrinfo for 198-46-189-106-host.colocrossing.com [198.46.189.106] failed - POSSIBLE BREAK-IN ATTEMPT! May 11 21:22:46 estefan sshd[32098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.46.189.106 user=r.r May 11 21:22:48 estefan sshd[........ -------------------------------	2020-05-26 01:37:09
118.254.113.18	attackspam	"SERVER-WEBAPP GPON Router authentication bypass and command injection attempt"	2020-05-26 01:27:46
83.114.94.203	attack	May 25 17:42:31 163-172-32-151 sshd[16346]: Invalid user pi from 83.114.94.203 port 33792 May 25 17:42:31 163-172-32-151 sshd[16349]: Invalid user pi from 83.114.94.203 port 33794 ...	2020-05-26 01:31:57
2.139.220.30	attackbotsspam	May 25 15:29:02 home sshd[30003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.220.30 May 25 15:29:04 home sshd[30003]: Failed password for invalid user admin from 2.139.220.30 port 58980 ssh2 May 25 15:32:48 home sshd[30398]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.220.30 ...	2020-05-26 01:00:59
211.151.130.24	attackbots	May 25 18:11:27 ms-srv sshd[37464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.151.130.24 user=root May 25 18:11:29 ms-srv sshd[37464]: Failed password for invalid user root from 211.151.130.24 port 58906 ssh2	2020-05-26 01:15:58
182.61.11.3	attack	$f2bV_matches	2020-05-26 01:30:49
202.146.1.163	attackspambots	Unauthorized connection attempt from IP address 202.146.1.163 on Port 445(SMB)	2020-05-26 01:02:19
144.91.70.139	attack	May 25 17:52:08 rotator sshd\[12204\]: Invalid user line3 from 144.91.70.139May 25 17:52:10 rotator sshd\[12204\]: Failed password for invalid user line3 from 144.91.70.139 port 33360 ssh2May 25 17:52:28 rotator sshd\[12207\]: Invalid user awx_orchestrator from 144.91.70.139May 25 17:52:30 rotator sshd\[12207\]: Failed password for invalid user awx_orchestrator from 144.91.70.139 port 45906 ssh2May 25 17:52:47 rotator sshd\[12210\]: Invalid user wuruoyun217529 from 144.91.70.139May 25 17:52:49 rotator sshd\[12210\]: Failed password for invalid user wuruoyun217529 from 144.91.70.139 port 58442 ssh2 ...	2020-05-26 01:41:14
122.152.208.242	attack	$f2bV_matches	2020-05-26 01:34:57
205.185.116.157	attackspam	TCP (SYN) 205.185.116.157:43363 -> port 22, len 44	2020-05-26 01:35:50

Recently Reported IPs

189.69.116.252	187.193.15.122	183.80.225.3	58.53.187.164
177.68.122.12	177.11.136.68	208.206.251.171	175.144.207.27
163.179.54.217	225.100.70.248	156.199.110.189	156.196.59.74
138.97.225.182	129.0.205.141	123.206.229.175	121.140.141.73
115.182.8.30	115.144.155.134	112.120.151.150	111.49.172.121