116.48.66.212 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt detected from IP address 116.48.66.212 to port 5555 [J]	2020-02-04 14:56:34

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.48.66.212
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56150
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.48.66.212.			IN	A

;; AUTHORITY SECTION:
.			289	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020400 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 14:56:30 CST 2020
;; MSG SIZE  rcvd: 117

Host info

212.66.48.116.in-addr.arpa domain name pointer n1164866212.netvigator.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
212.66.48.116.in-addr.arpa	name = n1164866212.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.128.213.126	attackbotsspam	Dec 4 02:40:55 eddieflores sshd\[8565\]: Invalid user lefebvre from 178.128.213.126 Dec 4 02:40:55 eddieflores sshd\[8565\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.213.126 Dec 4 02:40:57 eddieflores sshd\[8565\]: Failed password for invalid user lefebvre from 178.128.213.126 port 39390 ssh2 Dec 4 02:47:33 eddieflores sshd\[9169\]: Invalid user postgres from 178.128.213.126 Dec 4 02:47:33 eddieflores sshd\[9169\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.213.126	2019-12-04 21:03:55
129.211.128.20	attackspambots	2019-12-04T13:03:36.498761abusebot-4.cloudsearch.cf sshd\[3932\]: Invalid user \$\$\$\$\$ from 129.211.128.20 port 53032	2019-12-04 21:11:28
139.59.23.68	attackbots	2019-12-04T12:48:20.983447shield sshd\[22151\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.23.68 user=root 2019-12-04T12:48:22.660344shield sshd\[22151\]: Failed password for root from 139.59.23.68 port 39090 ssh2 2019-12-04T12:55:39.516099shield sshd\[24194\]: Invalid user secci from 139.59.23.68 port 50810 2019-12-04T12:55:39.520479shield sshd\[24194\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.23.68 2019-12-04T12:55:41.799209shield sshd\[24194\]: Failed password for invalid user secci from 139.59.23.68 port 50810 ssh2	2019-12-04 21:05:31
141.98.80.135	attack	Dec 4 13:47:31 mail postfix/smtpd[12076]: warning: unknown[141.98.80.135]: SASL PLAIN authentication failed: Dec 4 13:47:36 mail postfix/smtpd[11837]: warning: unknown[141.98.80.135]: SASL PLAIN authentication failed: Dec 4 13:47:59 mail postfix/smtpd[11113]: warning: unknown[141.98.80.135]: SASL PLAIN authentication failed:	2019-12-04 20:50:59
112.85.42.180	attackbots	Brute force attempt	2019-12-04 21:26:27
95.244.136.235	attackspam	Automatic report - Port Scan Attack	2019-12-04 20:54:42
45.237.140.120	attackbotsspam	Dec 4 12:12:08 legacy sshd[18125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.237.140.120 Dec 4 12:12:11 legacy sshd[18125]: Failed password for invalid user kurjat from 45.237.140.120 port 60398 ssh2 Dec 4 12:19:36 legacy sshd[18486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.237.140.120 ...	2019-12-04 21:02:02
54.39.144.25	attackspam	Dec 4 13:54:54 OPSO sshd\[11537\]: Invalid user root777 from 54.39.144.25 port 37898 Dec 4 13:54:54 OPSO sshd\[11537\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.144.25 Dec 4 13:54:56 OPSO sshd\[11537\]: Failed password for invalid user root777 from 54.39.144.25 port 37898 ssh2 Dec 4 14:00:37 OPSO sshd\[13160\]: Invalid user dmode from 54.39.144.25 port 48618 Dec 4 14:00:37 OPSO sshd\[13160\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.144.25	2019-12-04 21:16:27
222.186.42.4	attackspambots	Dec 2 04:40:45 microserver sshd[7117]: Failed none for root from 222.186.42.4 port 58888 ssh2 Dec 2 04:40:45 microserver sshd[7117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.4 user=root Dec 2 04:40:48 microserver sshd[7117]: Failed password for root from 222.186.42.4 port 58888 ssh2 Dec 2 04:40:51 microserver sshd[7117]: Failed password for root from 222.186.42.4 port 58888 ssh2 Dec 2 04:40:55 microserver sshd[7117]: Failed password for root from 222.186.42.4 port 58888 ssh2 Dec 2 06:12:29 microserver sshd[21663]: Failed none for root from 222.186.42.4 port 53180 ssh2 Dec 2 06:12:30 microserver sshd[21663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.4 user=root Dec 2 06:12:32 microserver sshd[21663]: Failed password for root from 222.186.42.4 port 53180 ssh2 Dec 2 06:12:35 microserver sshd[21663]: Failed password for root from 222.186.42.4 port 53180 ssh2 Dec 2 06:12:38 microserver ssh	2019-12-04 21:13:37
139.59.59.187	attackspam	Dec 4 13:44:08 cvbnet sshd[12915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.59.187 Dec 4 13:44:11 cvbnet sshd[12915]: Failed password for invalid user cacti from 139.59.59.187 port 35738 ssh2 ...	2019-12-04 21:23:16
170.79.87.178	attackbotsspam	2019-12-04 05:19:16 H=(170-79-87-178-fibra.nortetel.net) [170.79.87.178]:50308 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/query/ip/170.79.87.178) 2019-12-04 05:19:16 H=(170-79-87-178-fibra.nortetel.net) [170.79.87.178]:50308 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/query/ip/170.79.87.178) 2019-12-04 05:19:17 H=(170-79-87-178-fibra.nortetel.net) [170.79.87.178]:50308 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/170.79.87.178) ...	2019-12-04 21:19:16
139.155.50.40	attack	Dec 4 12:19:06 herz-der-gamer sshd[16666]: Invalid user loan from 139.155.50.40 port 55398 Dec 4 12:19:06 herz-der-gamer sshd[16666]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.50.40 Dec 4 12:19:06 herz-der-gamer sshd[16666]: Invalid user loan from 139.155.50.40 port 55398 Dec 4 12:19:08 herz-der-gamer sshd[16666]: Failed password for invalid user loan from 139.155.50.40 port 55398 ssh2 ...	2019-12-04 21:29:48
23.251.87.187	attackspambots	Dec 4 13:36:32 mail sshd[9295]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.251.87.187 Dec 4 13:36:34 mail sshd[9295]: Failed password for invalid user ladva from 23.251.87.187 port 40980 ssh2 Dec 4 13:41:49 mail sshd[11170]: Failed password for root from 23.251.87.187 port 50508 ssh2	2019-12-04 20:51:23
185.216.140.252	attackbots	12/04/2019-07:53:30.246295 185.216.140.252 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-12-04 21:06:51
114.67.90.149	attack	Dec 4 07:56:07 ny01 sshd[2077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.90.149 Dec 4 07:56:10 ny01 sshd[2077]: Failed password for invalid user behan from 114.67.90.149 port 56946 ssh2 Dec 4 08:03:51 ny01 sshd[3040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.90.149	2019-12-04 21:22:06

Recently Reported IPs

1.174.61.174	253.181.166.35	1.162.144.109	224.224.234.230
241.132.64.230	221.248.63.24	5.116.51.128	192.45.90.45
97.195.41.5	90.223.146.197	18.150.47.255	155.211.72.239
235.0.158.102	120.228.40.170	230.134.195.51	112.73.81.253
158.96.100.154	84.113.46.165	143.121.52.62	36.239.197.195