116.48.125.48 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Feb 22 03:44:57 areeb-Workstation sshd[10440]: Failed password for root from 116.48.125.48 port 42480 ssh2 ...	2020-02-22 06:32:18
attack	Feb 21 17:34:17 vmd17057 sshd[5329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.48.125.48 Feb 21 17:34:19 vmd17057 sshd[5329]: Failed password for invalid user invoices from 116.48.125.48 port 39024 ssh2 ...	2020-02-22 03:38:17
attackbotsspam	$f2bV_matches	2020-02-18 19:52:29

Type

Details

Datetime

attackspam

Feb 22 03:44:57 areeb-Workstation sshd[10440]: Failed password for root from 116.48.125.48 port 42480 ssh2
...

2020-02-22 06:32:18

attack

Feb 21 17:34:17 vmd17057 sshd[5329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.48.125.48 
Feb 21 17:34:19 vmd17057 sshd[5329]: Failed password for invalid user invoices from 116.48.125.48 port 39024 ssh2
...

2020-02-22 03:38:17

attackbotsspam

$f2bV_matches

2020-02-18 19:52:29

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.48.125.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 476
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.48.125.48.			IN	A

;; AUTHORITY SECTION:
.			119	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021801 1800 900 604800 86400

;; Query time: 532 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 18 19:52:25 CST 2020
;; MSG SIZE  rcvd: 117

Host info

48.125.48.116.in-addr.arpa domain name pointer n11648125048.netvigator.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
48.125.48.116.in-addr.arpa	name = n11648125048.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.226.145.61	attackspam		2020-08-14 22:14:32
128.199.79.129	attackbots		2020-08-14 22:53:06
142.93.187.214	attackspam		2020-08-14 22:43:26
134.90.149.146	attack		2020-08-14 22:51:59
176.123.6.167	attack	2020-08-14T14:34:23.589053abusebot-3.cloudsearch.cf sshd[13365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.123.6.167 user=root 2020-08-14T14:34:25.456044abusebot-3.cloudsearch.cf sshd[13365]: Failed password for root from 176.123.6.167 port 48130 ssh2 2020-08-14T14:34:27.410946abusebot-3.cloudsearch.cf sshd[13365]: Failed password for root from 176.123.6.167 port 48130 ssh2 2020-08-14T14:34:23.589053abusebot-3.cloudsearch.cf sshd[13365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.123.6.167 user=root 2020-08-14T14:34:25.456044abusebot-3.cloudsearch.cf sshd[13365]: Failed password for root from 176.123.6.167 port 48130 ssh2 2020-08-14T14:34:27.410946abusebot-3.cloudsearch.cf sshd[13365]: Failed password for root from 176.123.6.167 port 48130 ssh2 2020-08-14T14:34:23.589053abusebot-3.cloudsearch.cf sshd[13365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruse ...	2020-08-14 22:38:15
46.101.11.213	attackbotsspam	Aug 14 04:38:54 web1 sshd\[8582\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.11.213 user=root Aug 14 04:38:56 web1 sshd\[8582\]: Failed password for root from 46.101.11.213 port 37018 ssh2 Aug 14 04:43:28 web1 sshd\[9006\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.11.213 user=root Aug 14 04:43:30 web1 sshd\[9006\]: Failed password for root from 46.101.11.213 port 47002 ssh2 Aug 14 04:47:50 web1 sshd\[9342\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.11.213 user=root	2020-08-14 22:56:45
142.93.71.104	attackspambots		2020-08-14 22:44:59
172.94.13.17	attack		2020-08-14 22:32:15
142.93.176.207	attackspambots		2020-08-14 22:46:24
172.94.23.91	attackbots		2020-08-14 22:27:25
188.166.185.157	attackspambots	20 attempts against mh-ssh on echoip	2020-08-14 22:19:00
179.61.172.230	attackspam		2020-08-14 22:22:33
138.197.96.238	attackspam		2020-08-14 22:46:57
104.254.92.54	attackbots		2020-08-14 22:55:00
101.36.178.48	attack	Aug 14 15:15:05 abendstille sshd\[15381\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.36.178.48 user=root Aug 14 15:15:07 abendstille sshd\[15381\]: Failed password for root from 101.36.178.48 port 54198 ssh2 Aug 14 15:19:01 abendstille sshd\[19007\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.36.178.48 user=root Aug 14 15:19:03 abendstille sshd\[19007\]: Failed password for root from 101.36.178.48 port 40185 ssh2 Aug 14 15:23:00 abendstille sshd\[22529\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.36.178.48 user=root ...	2020-08-14 22:25:06

Recently Reported IPs

212.134.47.95	201.123.186.227	49.213.163.4	49.213.163.27
180.242.68.198	50.116.23.5	89.120.253.12	49.213.163.233
49.213.163.232	177.97.150.38	46.1.158.121	62.71.74.193
49.213.163.198	93.126.143.232	49.213.163.10	51.38.51.100
49.213.162.84	45.13.132.45	6.188.150.200	49.213.162.80