116.49.132.142

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Sep 19 00:06:56 ssh2 sshd[7728]: User root from n11649132142.netvigator.com not allowed because not listed in AllowUsers Sep 19 00:06:56 ssh2 sshd[7728]: Failed password for invalid user root from 116.49.132.142 port 38680 ssh2 Sep 19 00:06:57 ssh2 sshd[7728]: Connection closed by invalid user root 116.49.132.142 port 38680 [preauth] ...	2020-09-19 21:31:46
attack	Sep 19 00:06:56 ssh2 sshd[7728]: User root from n11649132142.netvigator.com not allowed because not listed in AllowUsers Sep 19 00:06:56 ssh2 sshd[7728]: Failed password for invalid user root from 116.49.132.142 port 38680 ssh2 Sep 19 00:06:57 ssh2 sshd[7728]: Connection closed by invalid user root 116.49.132.142 port 38680 [preauth] ...	2020-09-19 13:25:08
attackspambots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-19 05:03:45
attackbotsspam	Sep 2 22:43:34 sip sshd[18517]: Failed password for root from 116.49.132.142 port 37391 ssh2 Sep 3 10:02:43 sip sshd[3832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.49.132.142 Sep 3 10:02:45 sip sshd[3832]: Failed password for invalid user admin from 116.49.132.142 port 34174 ssh2	2020-09-03 22:16:36
attack	SSH_attack	2020-09-03 06:10:37

Comments on same subnet:

IP	Type	Details	Datetime
116.49.132.113	attackbotsspam	Port probing on unauthorized port 5555	2020-03-04 02:12:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.49.132.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44820
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.49.132.142.			IN	A

;; AUTHORITY SECTION:
.			327	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020090202 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 03 06:10:34 CST 2020
;; MSG SIZE  rcvd: 118

Host info

142.132.49.116.in-addr.arpa domain name pointer n11649132142.netvigator.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
142.132.49.116.in-addr.arpa	name = n11649132142.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
24.253.91.51	attack	Mar 21 22:03:15 svapp01 sshd[21453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip24-253-91-51.lv.lv.cox.net Mar 21 22:03:17 svapp01 sshd[21453]: Failed password for invalid user uploader from 24.253.91.51 port 42686 ssh2 Mar 21 22:03:17 svapp01 sshd[21453]: Received disconnect from 24.253.91.51: 11: Bye Bye [preauth] Mar 21 22:16:57 svapp01 sshd[26112]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip24-253-91-51.lv.lv.cox.net ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=24.253.91.51	2020-03-23 07:12:59
163.44.192.198	attack	2020-03-22T22:05:21.943544abusebot-4.cloudsearch.cf sshd[25216]: Invalid user eb from 163.44.192.198 port 55798 2020-03-22T22:05:21.949347abusebot-4.cloudsearch.cf sshd[25216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=v163-44-192-198.a001.g.han1.static.cnode.io 2020-03-22T22:05:21.943544abusebot-4.cloudsearch.cf sshd[25216]: Invalid user eb from 163.44.192.198 port 55798 2020-03-22T22:05:24.207055abusebot-4.cloudsearch.cf sshd[25216]: Failed password for invalid user eb from 163.44.192.198 port 55798 ssh2 2020-03-22T22:08:03.582338abusebot-4.cloudsearch.cf sshd[25360]: Invalid user victoria from 163.44.192.198 port 36680 2020-03-22T22:08:03.588744abusebot-4.cloudsearch.cf sshd[25360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=v163-44-192-198.a001.g.han1.static.cnode.io 2020-03-22T22:08:03.582338abusebot-4.cloudsearch.cf sshd[25360]: Invalid user victoria from 163.44.192.198 port 36680 2020-03-2 ...	2020-03-23 07:03:21
192.241.169.184	attackbots	Mar 22 22:31:13 localhost sshd[60227]: Invalid user profesor from 192.241.169.184 port 39378 Mar 22 22:31:13 localhost sshd[60227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.169.184 Mar 22 22:31:13 localhost sshd[60227]: Invalid user profesor from 192.241.169.184 port 39378 Mar 22 22:31:14 localhost sshd[60227]: Failed password for invalid user profesor from 192.241.169.184 port 39378 ssh2 Mar 22 22:36:30 localhost sshd[60797]: Invalid user ts3server from 192.241.169.184 port 57726 ...	2020-03-23 06:41:25
58.247.201.76	attack	Mar 21 16:49:25 giraffe sshd[21857]: Invalid user jcaracappa from 58.247.201.76 Mar 21 16:49:25 giraffe sshd[21857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.247.201.76 Mar 21 16:49:27 giraffe sshd[21857]: Failed password for invalid user jcaracappa from 58.247.201.76 port 5982 ssh2 Mar 21 16:49:27 giraffe sshd[21857]: Received disconnect from 58.247.201.76 port 5982:11: Bye Bye [preauth] Mar 21 16:49:27 giraffe sshd[21857]: Disconnected from 58.247.201.76 port 5982 [preauth] Mar 21 17:02:47 giraffe sshd[22130]: Invalid user miaohaoran from 58.247.201.76 Mar 21 17:02:47 giraffe sshd[22130]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.247.201.76 Mar 21 17:02:49 giraffe sshd[22130]: Failed password for invalid user miaohaoran from 58.247.201.76 port 5983 ssh2 Mar 21 17:02:49 giraffe sshd[22130]: Received disconnect from 58.247.201.76 port 5983:11: Bye Bye [preauth] Mar 21 17:0........ -------------------------------	2020-03-23 07:01:45
87.103.120.250	attack	Mar 22 20:06:14 firewall sshd[30118]: Invalid user ronjones from 87.103.120.250 Mar 22 20:06:16 firewall sshd[30118]: Failed password for invalid user ronjones from 87.103.120.250 port 33414 ssh2 Mar 22 20:09:37 firewall sshd[30332]: Invalid user izawa from 87.103.120.250 ...	2020-03-23 07:15:52
148.70.152.22	attackspam	Mar 22 23:37:27 localhost sshd\[9879\]: Invalid user sby from 148.70.152.22 Mar 22 23:37:27 localhost sshd\[9879\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.152.22 Mar 22 23:37:29 localhost sshd\[9879\]: Failed password for invalid user sby from 148.70.152.22 port 40848 ssh2 Mar 22 23:41:25 localhost sshd\[10203\]: Invalid user mk from 148.70.152.22 Mar 22 23:41:25 localhost sshd\[10203\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.152.22 ...	2020-03-23 06:59:10
68.66.192.123	attack	Sending SPAM email	2020-03-23 07:19:25
183.109.79.253	attack	$f2bV_matches	2020-03-23 06:55:14
152.32.187.92	attack	Mar 22 18:39:25 ny01 sshd[10467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.32.187.92 Mar 22 18:39:27 ny01 sshd[10467]: Failed password for invalid user student from 152.32.187.92 port 56284 ssh2 Mar 22 18:46:18 ny01 sshd[13257]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.32.187.92	2020-03-23 06:47:40
222.186.175.151	attackbotsspam	Mar 23 04:29:20 areeb-Workstation sshd[29999]: Failed password for root from 222.186.175.151 port 40770 ssh2 Mar 23 04:29:25 areeb-Workstation sshd[29999]: Failed password for root from 222.186.175.151 port 40770 ssh2 ...	2020-03-23 07:02:16
78.170.1.166	attackspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-23 06:50:17
51.15.108.244	attackspam	Mar 23 00:05:52 santamaria sshd\[451\]: Invalid user bromberg from 51.15.108.244 Mar 23 00:05:52 santamaria sshd\[451\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.108.244 Mar 23 00:05:54 santamaria sshd\[451\]: Failed password for invalid user bromberg from 51.15.108.244 port 60034 ssh2 ...	2020-03-23 07:14:11
45.65.196.14	attackspam	Mar 22 18:52:02 reverseproxy sshd[102022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.65.196.14 Mar 22 18:52:04 reverseproxy sshd[102022]: Failed password for invalid user fv from 45.65.196.14 port 53536 ssh2	2020-03-23 07:00:56
109.170.1.58	attackspambots	Mar 23 03:57:08 areeb-Workstation sshd[26982]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.170.1.58 Mar 23 03:57:10 areeb-Workstation sshd[26982]: Failed password for invalid user user from 109.170.1.58 port 37038 ssh2 ...	2020-03-23 06:48:49
118.24.157.127	attackspam	SSH bruteforce	2020-03-23 06:55:43

Recently Reported IPs

96.191.147.18	55.103.66.222	104.115.29.177	140.153.36.57
110.117.98.169	85.228.105.207	159.228.207.250	74.83.217.112
219.77.75.78	185.82.254.203	92.217.10.36	121.180.155.107
119.195.206.96	213.144.161.4	220.238.100.5	72.10.76.8
152.88.116.241	168.41.199.99	176.42.152.166	112.119.33.185