116.49.63.55 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Honeypot attack, port: 5555, PTR: n1164963055.netvigator.com.	2020-02-11 19:56:10

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.49.63.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6280
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.49.63.55.			IN	A

;; AUTHORITY SECTION:
.			250	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020600 1800 900 604800 86400

;; Query time: 109 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 06 21:15:52 CST 2020
;; MSG SIZE  rcvd: 116

Host info

55.63.49.116.in-addr.arpa domain name pointer n1164963055.netvigator.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
55.63.49.116.in-addr.arpa	name = n1164963055.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
74.113.179.123	attackspam	Splunk® : port scan detected: Jul 23 16:09:16 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:64:c3:d6:0b:ef:f0:08:00 SRC=74.113.179.123 DST=104.248.11.191 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=12161 PROTO=TCP SPT=52055 DPT=1521 WINDOW=1024 RES=0x00 SYN URGP=0	2019-07-24 11:58:13
185.18.6.106	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-24 11:25:45
86.98.206.176	attackspambots	LGS,WP GET /wp-login.php	2019-07-24 11:37:34
221.199.132.227	attack	Unauthorised access (Jul 23) SRC=221.199.132.227 LEN=40 TTL=49 ID=61424 TCP DPT=23 WINDOW=25422 SYN	2019-07-24 12:11:33
45.55.188.133	attackbotsspam	2019-07-24T03:32:10.133322abusebot-6.cloudsearch.cf sshd\[6244\]: Invalid user manas from 45.55.188.133 port 38619	2019-07-24 11:41:12
159.89.194.149	attackbotsspam	2019-07-24T02:50:21.502922abusebot-2.cloudsearch.cf sshd\[31907\]: Invalid user user1 from 159.89.194.149 port 37660	2019-07-24 11:15:02
122.225.200.114	attackbots	Bruteforce on smtp	2019-07-24 11:26:12
77.138.145.133	attackbotsspam	Jul 24 03:42:03 srv-4 sshd\[24773\]: Invalid user joy from 77.138.145.133 Jul 24 03:42:03 srv-4 sshd\[24773\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.138.145.133 Jul 24 03:42:05 srv-4 sshd\[24773\]: Failed password for invalid user joy from 77.138.145.133 port 50790 ssh2 ...	2019-07-24 11:15:34
66.7.148.40	attackspam	Jul 24 03:41:22 postfix/smtpd: warning: Dell860-544.rapidns.com[66.7.148.40]: SASL LOGIN authentication failed	2019-07-24 11:50:23
202.61.85.237	attack	RDP brute force attack detected by fail2ban	2019-07-24 11:26:46
31.163.196.225	attack	Port scan on 1 port(s): 111	2019-07-24 11:46:17
111.207.49.186	attackbotsspam	Jul 23 23:50:39 vps200512 sshd\[16229\]: Invalid user globe from 111.207.49.186 Jul 23 23:50:39 vps200512 sshd\[16229\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.207.49.186 Jul 23 23:50:42 vps200512 sshd\[16229\]: Failed password for invalid user globe from 111.207.49.186 port 53920 ssh2 Jul 23 23:53:45 vps200512 sshd\[16249\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.207.49.186 user=root Jul 23 23:53:47 vps200512 sshd\[16249\]: Failed password for root from 111.207.49.186 port 54646 ssh2	2019-07-24 11:56:07
120.52.152.18	attackbotsspam	24.07.2019 02:44:47 Connection to port 10001 blocked by firewall	2019-07-24 11:38:42
107.170.238.152	attackspambots	" "	2019-07-24 11:45:09
222.186.52.123	attackbots	Jul 24 05:45:59 MainVPS sshd[9288]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.123 user=root Jul 24 05:46:01 MainVPS sshd[9288]: Failed password for root from 222.186.52.123 port 38770 ssh2 Jul 24 05:46:08 MainVPS sshd[9300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.123 user=root Jul 24 05:46:10 MainVPS sshd[9300]: Failed password for root from 222.186.52.123 port 12732 ssh2 Jul 24 05:46:38 MainVPS sshd[9335]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.123 user=root Jul 24 05:46:40 MainVPS sshd[9335]: Failed password for root from 222.186.52.123 port 56972 ssh2 ...	2019-07-24 12:04:34

Recently Reported IPs

159.203.30.103	69.26.151.234	125.161.128.192	111.223.252.25
202.184.108.4	14.232.208.29	95.165.159.95	185.214.206.255
183.82.8.165	114.239.52.151	1.186.99.79	171.228.177.181
85.209.0.22	222.222.117.67	49.0.113.2	182.233.0.252
2.52.125.99	106.2.3.154	187.134.118.27	136.232.192.250