116.48.188.148

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Honeypot attack, port: 5555, PTR: n11648188148.netvigator.com.	2020-02-10 13:54:00

Comments on same subnet:

IP	Type	Details	Datetime
116.48.188.21	attack	Honeypot attack, port: 5555, PTR: n11648188021.netvigator.com.	2020-03-08 13:16:21

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.48.188.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4699
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.48.188.148.			IN	A

;; AUTHORITY SECTION:
.			563	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020901 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 13:53:55 CST 2020
;; MSG SIZE  rcvd: 118

Host info

148.188.48.116.in-addr.arpa domain name pointer n11648188148.netvigator.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
148.188.48.116.in-addr.arpa	name = n11648188148.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.57.38	attackbotsspam	Jan 2 16:06:58 vps691689 sshd[5632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.57.38 Jan 2 16:06:59 vps691689 sshd[5632]: Failed password for invalid user loken from 106.12.57.38 port 45892 ssh2 ...	2020-01-03 04:26:52
112.85.42.172	attackbots	Jan 2 21:15:15 * sshd[28127]: Failed password for root from 112.85.42.172 port 6544 ssh2 Jan 2 21:15:27 * sshd[28127]: error: maximum authentication attempts exceeded for root from 112.85.42.172 port 6544 ssh2 [preauth]	2020-01-03 04:16:54
59.188.250.68	attack	Jan 2 12:21:48 web1 postfix/smtpd[17176]: warning: unknown[59.188.250.68]: SASL LOGIN authentication failed: authentication failure ...	2020-01-03 04:32:47
222.186.30.31	attack	Jan 2 21:07:55 localhost sshd\[15000\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.31 user=root Jan 2 21:07:57 localhost sshd\[15000\]: Failed password for root from 222.186.30.31 port 14340 ssh2 Jan 2 21:07:59 localhost sshd\[15000\]: Failed password for root from 222.186.30.31 port 14340 ssh2	2020-01-03 04:21:08
49.88.64.108	attackspam	Jan 2 15:53:23 grey postfix/smtpd\[17754\]: NOQUEUE: reject: RCPT from unknown\[49.88.64.108\]: 554 5.7.1 Service unavailable\; Client host \[49.88.64.108\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=49.88.64.108\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-03 04:30:45
171.105.4.109	attack	Unauthorized connection attempt detected from IP address 171.105.4.109 to port 1433	2020-01-03 04:40:24
54.39.138.251	attack	Automatic report - Banned IP Access	2020-01-03 04:32:17
222.168.122.245	attackspam	Unauthorized connection attempt detected from IP address 222.168.122.245 to port 22	2020-01-03 04:41:49
49.235.108.92	attackspambots	Invalid user shannon from 49.235.108.92 port 42638	2020-01-03 04:35:17
121.28.56.246	attackbots	Portscan or hack attempt detected by psad/fwsnort	2020-01-03 04:45:27
89.248.168.217	attack	Scanning random ports - tries to find possible vulnerable services	2020-01-03 04:29:46
46.105.31.249	attack	Jan 2 21:19:39 MK-Soft-VM6 sshd[24384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.31.249 Jan 2 21:19:40 MK-Soft-VM6 sshd[24384]: Failed password for invalid user fhe from 46.105.31.249 port 42910 ssh2 ...	2020-01-03 04:20:09
112.85.42.174	attackbots	web-1 [ssh_2] SSH Attack	2020-01-03 04:33:58
196.62.4.110	attackbots	Automatic report - Banned IP Access	2020-01-03 04:22:23
217.182.196.178	attack	Jan 2 18:20:42 unicornsoft sshd\[19968\]: Invalid user midgear from 217.182.196.178 Jan 2 18:20:42 unicornsoft sshd\[19968\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.196.178 Jan 2 18:20:44 unicornsoft sshd\[19968\]: Failed password for invalid user midgear from 217.182.196.178 port 54966 ssh2	2020-01-03 04:17:50

Recently Reported IPs

148.255.59.199	216.174.6.218	242.90.248.34	59.231.113.166
201.91.24.58	139.59.140.199	103.194.243.233	252.192.228.68
171.233.187.127	153.142.16.125	207.227.148.140	122.117.77.109
55.166.79.138	200.116.3.133	171.223.198.73	52.116.23.239
239.115.201.169	110.90.143.204	122.89.198.18	103.157.145.117