116.48.164.112

Basic Info

City: Central

Region: Central and Western District

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Jul 1 04:32:35 mout sshd[12716]: Invalid user postgres from 116.48.164.112 port 44574 Jul 1 04:32:36 mout sshd[12716]: Failed password for invalid user postgres from 116.48.164.112 port 44574 ssh2 Jul 1 04:32:38 mout sshd[12716]: Disconnected from invalid user postgres 116.48.164.112 port 44574 [preauth]	2020-07-02 07:50:36

Type

Details

Datetime

attackspam

Jul  1 04:32:35 mout sshd[12716]: Invalid user postgres from 116.48.164.112 port 44574
Jul  1 04:32:36 mout sshd[12716]: Failed password for invalid user postgres from 116.48.164.112 port 44574 ssh2
Jul  1 04:32:38 mout sshd[12716]: Disconnected from invalid user postgres 116.48.164.112 port 44574 [preauth]

2020-07-02 07:50:36

Comments on same subnet:

IP	Type	Details	Datetime
116.48.164.148	attackbotsspam	suspicious action Tue, 25 Feb 2020 13:36:01 -0300	2020-02-26 04:35:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.48.164.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64607
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.48.164.112.			IN	A

;; AUTHORITY SECTION:
.			185	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070103 1800 900 604800 86400

;; Query time: 50 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jul 02 07:50:31 CST 2020
;; MSG SIZE  rcvd: 118

Host info

112.164.48.116.in-addr.arpa domain name pointer n11648164112.netvigator.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
112.164.48.116.in-addr.arpa	name = n11648164112.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.219.76.2	attackbotsspam	Dec 8 23:53:01 game-panel sshd[22804]: Failed password for root from 103.219.76.2 port 57956 ssh2 Dec 8 23:59:47 game-panel sshd[23195]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.219.76.2 Dec 8 23:59:49 game-panel sshd[23195]: Failed password for invalid user gin_par from 103.219.76.2 port 37520 ssh2	2019-12-09 08:05:10
49.232.42.135	attack	Dec 9 01:25:35 legacy sshd[1420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.42.135 Dec 9 01:25:37 legacy sshd[1420]: Failed password for invalid user squid from 49.232.42.135 port 53994 ssh2 Dec 9 01:31:54 legacy sshd[1808]: Failed password for root from 49.232.42.135 port 48170 ssh2 ...	2019-12-09 08:44:10
185.17.41.198	attackspambots	Dec 8 23:49:48 zeus sshd[3040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.17.41.198 Dec 8 23:49:51 zeus sshd[3040]: Failed password for invalid user server from 185.17.41.198 port 41096 ssh2 Dec 8 23:55:22 zeus sshd[3226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.17.41.198 Dec 8 23:55:25 zeus sshd[3226]: Failed password for invalid user cyrille from 185.17.41.198 port 57134 ssh2	2019-12-09 08:10:12
180.76.143.35	attack	Dec 9 01:12:29 vps647732 sshd[24229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.143.35 Dec 9 01:12:32 vps647732 sshd[24229]: Failed password for invalid user myke from 180.76.143.35 port 40682 ssh2 ...	2019-12-09 08:39:50
165.227.26.69	attackspambots	Dec 8 14:26:28 sachi sshd\[2903\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.26.69 user=games Dec 8 14:26:30 sachi sshd\[2903\]: Failed password for games from 165.227.26.69 port 45886 ssh2 Dec 8 14:32:16 sachi sshd\[3445\]: Invalid user poster from 165.227.26.69 Dec 8 14:32:16 sachi sshd\[3445\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.26.69 Dec 8 14:32:17 sachi sshd\[3445\]: Failed password for invalid user poster from 165.227.26.69 port 53994 ssh2	2019-12-09 08:40:59
111.26.20.2	attack	RDP Brute-Force (Grieskirchen RZ2)	2019-12-09 08:21:39
186.67.129.34	attackspam	Dec 8 14:03:36 auw2 sshd\[23715\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.67.129.34 user=root Dec 8 14:03:38 auw2 sshd\[23715\]: Failed password for root from 186.67.129.34 port 42252 ssh2 Dec 8 14:12:45 auw2 sshd\[25044\]: Invalid user albert from 186.67.129.34 Dec 8 14:12:45 auw2 sshd\[25044\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.67.129.34 Dec 8 14:12:47 auw2 sshd\[25044\]: Failed password for invalid user albert from 186.67.129.34 port 52978 ssh2	2019-12-09 08:25:50
206.189.47.166	attack	2019-12-09T00:06:01.502857shield sshd\[6507\]: Invalid user chiung from 206.189.47.166 port 54388 2019-12-09T00:06:01.509051shield sshd\[6507\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.47.166 2019-12-09T00:06:03.428722shield sshd\[6507\]: Failed password for invalid user chiung from 206.189.47.166 port 54388 ssh2 2019-12-09T00:12:56.718233shield sshd\[8916\]: Invalid user wwwrun from 206.189.47.166 port 33788 2019-12-09T00:12:56.722976shield sshd\[8916\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.47.166	2019-12-09 08:16:43
180.150.177.120	attack	2019-12-09T00:12:54.661190abusebot-6.cloudsearch.cf sshd\[7467\]: Invalid user wollowsky from 180.150.177.120 port 59271	2019-12-09 08:19:13
190.137.236.232	attackspam	Automatic report - Port Scan Attack	2019-12-09 08:37:14
118.70.170.66	attackbotsspam	Unauthorized connection attempt detected from IP address 118.70.170.66 to port 445	2019-12-09 08:28:34
106.12.33.50	attackspambots	Dec 8 23:59:01 MK-Soft-VM8 sshd[23935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.33.50 Dec 8 23:59:04 MK-Soft-VM8 sshd[23935]: Failed password for invalid user parson from 106.12.33.50 port 56578 ssh2 ...	2019-12-09 08:03:37
111.59.93.76	attackbots	Too many connections or unauthorized access detected from Arctic banned ip	2019-12-09 08:40:07
123.138.18.11	attack	Dec 9 01:27:04 meumeu sshd[31717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.138.18.11 Dec 9 01:27:06 meumeu sshd[31717]: Failed password for invalid user ameri from 123.138.18.11 port 40260 ssh2 Dec 9 01:34:36 meumeu sshd[417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.138.18.11 ...	2019-12-09 08:39:06
85.192.72.128	attackbots	Dec 9 00:58:52 vps647732 sshd[23448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.192.72.128 Dec 9 00:58:54 vps647732 sshd[23448]: Failed password for invalid user tufford from 85.192.72.128 port 50838 ssh2 ...	2019-12-09 08:09:28

Recently Reported IPs

42.227.218.241	175.20.3.180	34.205.156.186	217.75.138.214
160.169.160.224	142.180.226.60	83.33.41.20	74.77.10.225
14.249.11.254	161.69.173.47	52.75.88.240	183.82.156.45
151.84.20.203	176.175.168.84	87.219.129.251	113.27.66.47
94.134.82.150	216.16.53.136	52.34.58.147	181.230.95.45