116.48.63.189 - IPInfo

Basic Info

City: Central

Region: Central and Western District

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 116.48.63.189 to port 5555 [J]	2020-01-26 03:53:37

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.48.63.189
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35028
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.48.63.189.			IN	A

;; AUTHORITY SECTION:
.			537	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012500 1800 900 604800 86400

;; Query time: 126 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 26 03:53:35 CST 2020
;; MSG SIZE  rcvd: 117

Host info

189.63.48.116.in-addr.arpa domain name pointer n1164863189.netvigator.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
189.63.48.116.in-addr.arpa	name = n1164863189.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
182.108.27.133	attackspambots	Jul 6 05:38:47 localhost postfix/smtpd\[18884\]: warning: unknown\[182.108.27.133\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 6 05:38:55 localhost postfix/smtpd\[18884\]: warning: unknown\[182.108.27.133\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 6 05:39:07 localhost postfix/smtpd\[18884\]: warning: unknown\[182.108.27.133\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 6 05:39:34 localhost postfix/smtpd\[18884\]: warning: unknown\[182.108.27.133\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 6 05:39:42 localhost postfix/smtpd\[18929\]: warning: unknown\[182.108.27.133\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-07-06 18:44:30
179.108.244.80	attackbots	failed_logins	2019-07-06 18:36:19
123.31.17.43	attack	123.31.17.43 - - [06/Jul/2019:05:40:38 +0200] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 123.31.17.43 - - [06/Jul/2019:05:40:40 +0200] "POST /wp-login.php HTTP/1.1" 200 1651 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 123.31.17.43 - - [06/Jul/2019:05:40:41 +0200] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 123.31.17.43 - - [06/Jul/2019:05:40:42 +0200] "POST /wp-login.php HTTP/1.1" 200 1629 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 123.31.17.43 - - [06/Jul/2019:05:40:42 +0200] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 123.31.17.43 - - [06/Jul/2019:05:40:43 +0200] "POST /wp-login.php HTTP/1.1" 200 1626 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-07-06 18:20:56
118.97.213.249	attackspambots	Jul 6 12:32:45 ks10 sshd[308]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.97.213.249 Jul 6 12:32:47 ks10 sshd[308]: Failed password for invalid user test from 118.97.213.249 port 56537 ssh2 ...	2019-07-06 18:39:03
139.59.69.76	attack	Jul 6 05:40:49 v22018076622670303 sshd\[17731\]: Invalid user redmine from 139.59.69.76 port 55808 Jul 6 05:40:49 v22018076622670303 sshd\[17731\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.69.76 Jul 6 05:40:51 v22018076622670303 sshd\[17731\]: Failed password for invalid user redmine from 139.59.69.76 port 55808 ssh2 ...	2019-07-06 18:18:43
76.186.81.229	attack	Reported by AbuseIPDB proxy server.	2019-07-06 18:24:42
190.113.142.197	attackbots	Jul 6 06:50:15 vps647732 sshd[28507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.113.142.197 Jul 6 06:50:17 vps647732 sshd[28507]: Failed password for invalid user arma3server from 190.113.142.197 port 37470 ssh2 ...	2019-07-06 18:29:14
51.68.220.249	attack	Jul 6 07:18:04 rpi sshd[21648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.220.249 Jul 6 07:18:05 rpi sshd[21648]: Failed password for invalid user ts from 51.68.220.249 port 58776 ssh2	2019-07-06 18:48:56
213.6.8.38	attackbots	Jul 6 07:30:43 localhost sshd\[3697\]: Invalid user tempo from 213.6.8.38 port 36697 Jul 6 07:30:43 localhost sshd\[3697\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.6.8.38 Jul 6 07:30:45 localhost sshd\[3697\]: Failed password for invalid user tempo from 213.6.8.38 port 36697 ssh2	2019-07-06 18:18:13
94.191.20.179	attack	Triggered by Fail2Ban at Vostok web server	2019-07-06 18:52:20
191.53.253.250	attackspambots	Jul 5 22:41:05 mailman postfix/smtpd[23194]: warning: unknown[191.53.253.250]: SASL PLAIN authentication failed: authentication failure	2019-07-06 18:15:21
183.101.8.161	attackbots	2019-07-06T07:46:35.472957scmdmz1 sshd\[28826\]: Invalid user ubuntu from 183.101.8.161 port 53590 2019-07-06T07:46:35.475833scmdmz1 sshd\[28826\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.101.8.161 2019-07-06T07:46:37.389525scmdmz1 sshd\[28826\]: Failed password for invalid user ubuntu from 183.101.8.161 port 53590 ssh2 ...	2019-07-06 18:41:54
114.70.193.189	attackspambots	Jul 6 04:00:39 plusreed sshd[13014]: Invalid user pin from 114.70.193.189 ...	2019-07-06 18:55:48
181.48.68.54	attackspam	$f2bV_matches	2019-07-06 18:42:27
123.126.34.54	attackspambots	Jul 6 08:48:19 ip-172-31-1-72 sshd\[17214\]: Invalid user ai from 123.126.34.54 Jul 6 08:48:19 ip-172-31-1-72 sshd\[17214\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.126.34.54 Jul 6 08:48:21 ip-172-31-1-72 sshd\[17214\]: Failed password for invalid user ai from 123.126.34.54 port 41402 ssh2 Jul 6 08:51:35 ip-172-31-1-72 sshd\[17254\]: Invalid user jenkins from 123.126.34.54 Jul 6 08:51:35 ip-172-31-1-72 sshd\[17254\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.126.34.54	2019-07-06 18:43:04

Recently Reported IPs

84.154.208.32	108.46.100.32	131.129.156.29	184.219.200.63
125.127.19.237	124.126.171.91	103.107.114.175	70.145.89.103
88.248.112.2	217.80.151.74	39.45.189.235	165.54.119.18
212.246.253.158	82.53.208.22	120.112.255.67	72.255.43.19
205.158.168.101	81.183.154.6	202.79.203.136	79.143.35.68