116.48.188.148

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Honeypot attack, port: 5555, PTR: n11648188148.netvigator.com.	2020-02-10 13:54:00

Comments on same subnet:

IP	Type	Details	Datetime
116.48.188.21	attack	Honeypot attack, port: 5555, PTR: n11648188021.netvigator.com.	2020-03-08 13:16:21

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.48.188.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4699
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.48.188.148.			IN	A

;; AUTHORITY SECTION:
.			563	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020901 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 13:53:55 CST 2020
;; MSG SIZE  rcvd: 118

Host info

148.188.48.116.in-addr.arpa domain name pointer n11648188148.netvigator.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
148.188.48.116.in-addr.arpa	name = n11648188148.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
165.22.206.167	attack	Automatic report generated by Wazuh	2019-07-05 18:48:37
198.108.66.231	attackspambots	" "	2019-07-05 18:37:39
62.234.156.87	attackbots	Scanning and Vuln Attempts	2019-07-05 18:41:33
212.98.162.54	attackspam	Unauthorized connection attempt from IP address 212.98.162.54 on Port 445(SMB)	2019-07-05 19:14:13
153.36.232.139	attack	Jul 5 10:44:57 marvibiene sshd[4606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.232.139 user=root Jul 5 10:44:59 marvibiene sshd[4606]: Failed password for root from 153.36.232.139 port 45421 ssh2 Jul 5 10:45:02 marvibiene sshd[4606]: Failed password for root from 153.36.232.139 port 45421 ssh2 Jul 5 10:44:57 marvibiene sshd[4606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.232.139 user=root Jul 5 10:44:59 marvibiene sshd[4606]: Failed password for root from 153.36.232.139 port 45421 ssh2 Jul 5 10:45:02 marvibiene sshd[4606]: Failed password for root from 153.36.232.139 port 45421 ssh2 ...	2019-07-05 19:01:56
139.59.180.53	attack	Jul 5 11:40:54 vps647732 sshd[13933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.180.53 Jul 5 11:40:55 vps647732 sshd[13933]: Failed password for invalid user edwina from 139.59.180.53 port 52668 ssh2 ...	2019-07-05 19:07:11
45.177.200.2	attackbotsspam	Telnet Server BruteForce Attack	2019-07-05 19:06:38
58.216.136.214	attack	Scanning and Vuln Attempts	2019-07-05 19:16:10
128.199.230.56	attackspam	Jul 5 10:03:17 MK-Soft-VM5 sshd\[20919\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.230.56 user=nobody Jul 5 10:03:19 MK-Soft-VM5 sshd\[20919\]: Failed password for nobody from 128.199.230.56 port 52054 ssh2 Jul 5 10:05:53 MK-Soft-VM5 sshd\[20923\]: Invalid user teamspeak from 128.199.230.56 port 36512 ...	2019-07-05 19:17:38
177.99.197.111	attackbots	Jul 5 10:12:52 mail sshd\[20390\]: Invalid user ubuntu from 177.99.197.111 port 49439 Jul 5 10:12:52 mail sshd\[20390\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.99.197.111 Jul 5 10:12:54 mail sshd\[20390\]: Failed password for invalid user ubuntu from 177.99.197.111 port 49439 ssh2 Jul 5 10:17:53 mail sshd\[20443\]: Invalid user dev from 177.99.197.111 port 33850 Jul 5 10:17:53 mail sshd\[20443\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.99.197.111 ...	2019-07-05 18:58:03
198.100.146.132	attackspambots	Automatic report - Web App Attack	2019-07-05 18:59:00
68.183.50.0	attack	Jul 5 08:00:31 unicornsoft sshd\[18187\]: Invalid user mumbleserver from 68.183.50.0 Jul 5 08:00:31 unicornsoft sshd\[18187\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.50.0 Jul 5 08:00:33 unicornsoft sshd\[18187\]: Failed password for invalid user mumbleserver from 68.183.50.0 port 41130 ssh2	2019-07-05 19:19:23
46.177.91.84	attack	Honeypot attack, port: 23, PTR: ppp046177091084.access.hol.gr.	2019-07-05 18:30:44
159.192.137.24	attack	firewall-block, port(s): 445/tcp	2019-07-05 19:20:35
141.98.81.138	attack	Jul 5 12:26:48 debian64 sshd\[12244\]: Invalid user admin from 141.98.81.138 port 45580 Jul 5 12:26:48 debian64 sshd\[12244\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.138 Jul 5 12:26:49 debian64 sshd\[12244\]: Failed password for invalid user admin from 141.98.81.138 port 45580 ssh2 ...	2019-07-05 19:09:04

Recently Reported IPs

148.255.59.199	216.174.6.218	242.90.248.34	59.231.113.166
201.91.24.58	139.59.140.199	103.194.243.233	252.192.228.68
171.233.187.127	153.142.16.125	207.227.148.140	122.117.77.109
55.166.79.138	200.116.3.133	171.223.198.73	52.116.23.239
239.115.201.169	110.90.143.204	122.89.198.18	103.157.145.117