116.48.31.166 - IPInfo

Basic Info

City: Yuen Long

Region: Yuen Long District

Country: Hong Kong

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.48.31.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62222
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.48.31.166.			IN	A

;; AUTHORITY SECTION:
.			570	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060101 1800 900 604800 86400

;; Query time: 43 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 02 07:15:12 CST 2020
;; MSG SIZE  rcvd: 117

Host info

166.31.48.116.in-addr.arpa domain name pointer n1164831166.netvigator.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
166.31.48.116.in-addr.arpa	name = n1164831166.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
41.65.197.162	attackbotsspam	SMB Server BruteForce Attack	2019-10-13 05:13:40
212.12.20.34	attackspam	212.12.20.34 has been banned for [spam] ...	2019-10-13 05:10:27
77.247.110.232	attackbots	\[2019-10-12 15:56:10\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-12T15:56:10.222-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="3075101148413828012",SessionID="0x7fc3ad578188",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.232/19251",ACLName="no_extension_match" \[2019-10-12 15:56:39\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-12T15:56:39.913-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="2656701148632170013",SessionID="0x7fc3ac2ed548",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.232/57048",ACLName="no_extension_match" \[2019-10-12 15:56:42\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-12T15:56:42.684-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="3492601148323235001",SessionID="0x7fc3ad578188",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.232/4915",A	2019-10-13 04:53:15
66.70.160.187	attackbots	www.handydirektreparatur.de 66.70.160.187 \[12/Oct/2019:17:39:09 +0200\] "POST /wp-login.php HTTP/1.1" 200 5665 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" www.handydirektreparatur.de 66.70.160.187 \[12/Oct/2019:17:39:10 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4114 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-10-13 05:22:23
139.199.88.93	attack	Oct 12 18:01:41 microserver sshd[47731]: Invalid user 321 from 139.199.88.93 port 44264 Oct 12 18:01:41 microserver sshd[47731]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93 Oct 12 18:01:42 microserver sshd[47731]: Failed password for invalid user 321 from 139.199.88.93 port 44264 ssh2 Oct 12 18:07:46 microserver sshd[48492]: Invalid user Genius@123 from 139.199.88.93 port 54616 Oct 12 18:07:46 microserver sshd[48492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93 Oct 12 18:20:28 microserver sshd[50324]: Invalid user P4rol4@1 from 139.199.88.93 port 47128 Oct 12 18:20:28 microserver sshd[50324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.88.93 Oct 12 18:20:30 microserver sshd[50324]: Failed password for invalid user P4rol4@1 from 139.199.88.93 port 47128 ssh2 Oct 12 18:26:33 microserver sshd[51095]: Invalid user Premier@123 from 139.199.88.93 por	2019-10-13 04:47:27
51.77.109.98	attackspambots	Oct 12 22:47:57 SilenceServices sshd[23436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.109.98 Oct 12 22:47:59 SilenceServices sshd[23436]: Failed password for invalid user P@ssword2019 from 51.77.109.98 port 43776 ssh2 Oct 12 22:51:53 SilenceServices sshd[24507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.109.98	2019-10-13 05:04:50
198.98.52.141	attackspam	Oct 12 06:09:49 * sshd[30917]: Failed password for invalid user jenkins from 198.98.52.141 port 35398 ssh2 Oct 12 06:09:49 * sshd[30923]: Failed password for invalid user tomcat from 198.98.52.141 port 35520 ssh2 Oct 12 06:09:49 * sshd[30930]: Failed password for invalid user mysql from 198.98.52.141 port 35588 ssh2 Oct 12 06:09:49 * sshd[30934]: Failed password for invalid user openms from 198.98.52.141 port 35568 ssh2 Oct 12 06:09:49 * sshd[30927]: Failed password for invalid user user from 198.98.52.141 port 35550 ssh2 Oct 12 06:09:49 * sshd[30929]: Failed password for invalid user guest from 198.98.52.141 port 35554 ssh2 Oct 12 06:09:49 * sshd[30925]: Failed password for invalid user vagrant from 198.98.52.141 port 35566 ssh2 Oct 12 06:09:49 * sshd[30924]: Failed password for invalid user vsftpd from 198.98.52.141 port 35580 ssh2 Oct 12 06:09:49 * sshd[30926]: Failed password for invalid user admin from 198.98.52.141 port 35542 ssh2 Oct 12 06:09:49 * sshd[30919]: Failed password for in	2019-10-13 05:14:07
5.69.203.128	attackspam	$f2bV_matches	2019-10-13 05:00:47
89.164.104.61	attack	Oct 12 16:00:11 xxx sshd[20465]: Invalid user pi from 89.164.104.61 port 41480 Oct 12 16:00:11 xxx sshd[20464]: Invalid user pi from 89.164.104.61 port 41478 Oct 12 16:00:11 xxx sshd[20465]: Failed password for invalid user pi from 89.164.104.61 port 41480 ssh2 Oct 12 16:00:11 xxx sshd[20464]: Failed password for invalid user pi from 89.164.104.61 port 41478 ssh2 Oct 12 16:00:11 xxx sshd[20464]: Connection closed by 89.164.104.61 port 41478 [preauth] Oct 12 16:00:11 xxx sshd[20465]: Connection closed by 89.164.104.61 port 41480 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=89.164.104.61	2019-10-13 05:05:07
167.71.224.91	attackspam	Oct 12 22:07:14 host sshd\[59877\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.224.91 user=root Oct 12 22:07:16 host sshd\[59877\]: Failed password for root from 167.71.224.91 port 58990 ssh2 ...	2019-10-13 05:26:46
222.186.175.150	attack	$f2bV_matches	2019-10-13 05:25:58
62.213.30.142	attackbots	ssh failed login	2019-10-13 04:45:42
1.183.152.253	attack	Unsolicited bulk porn & phishing - varying ISPs (primarily Chinanet); repetitive redirects from blacklisted IP 92.63.192.124 & .151; spam volume up to 15/day. Unsolicited bulk spam - u-gun.co.jp, CHINANET NeiMengGu province network - 1.183.152.253 Sender domain hekimpor.com = 212.252.63.11 Tellcom Customer LAN Repetitive reply-to in this spam series. Reply-To: nanikarige@yahoo.com Spam series change: no phishing redirect spam link. Malicious attachment - Outlook blocked access to unsafe attachment: 22.jpg	2019-10-13 04:46:27
49.88.112.72	attackspam	Oct 12 23:01:00 sauna sshd[139977]: Failed password for root from 49.88.112.72 port 29694 ssh2 ...	2019-10-13 05:16:31
185.50.197.91	attackspambots	Automatic report - XMLRPC Attack	2019-10-13 05:00:17

Recently Reported IPs

200.120.104.206	121.202.190.212	172.58.158.238	208.35.36.39
200.120.104.213	77.106.74.114	100.3.5.233	45.201.32.167
63.60.163.14	159.89.137.86	18.229.65.152	100.156.228.58
216.99.99.61	172.105.118.30	69.110.196.215	144.133.156.130
75.190.133.52	128.239.16.48	208.108.194.152	173.193.60.83