116.49.63.55 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Honeypot attack, port: 5555, PTR: n1164963055.netvigator.com.	2020-02-11 19:56:10

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.49.63.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6280
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.49.63.55.			IN	A

;; AUTHORITY SECTION:
.			250	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020600 1800 900 604800 86400

;; Query time: 109 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 06 21:15:52 CST 2020
;; MSG SIZE  rcvd: 116

Host info

55.63.49.116.in-addr.arpa domain name pointer n1164963055.netvigator.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
55.63.49.116.in-addr.arpa	name = n1164963055.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.13.175.233	attackspambots	Sep 6 08:28:33 sshgateway sshd\[4430\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.175.233 user=root Sep 6 08:28:35 sshgateway sshd\[4430\]: Failed password for root from 106.13.175.233 port 37344 ssh2 Sep 6 08:30:25 sshgateway sshd\[5401\]: Invalid user cisco from 106.13.175.233 Sep 6 08:30:25 sshgateway sshd\[5401\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.175.233 Sep 6 08:30:27 sshgateway sshd\[5401\]: Failed password for invalid user cisco from 106.13.175.233 port 38734 ssh2 Sep 6 08:32:08 sshgateway sshd\[6310\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.175.233 user=root Sep 6 08:32:10 sshgateway sshd\[6310\]: Failed password for root from 106.13.175.233 port 40128 ssh2 Sep 6 08:41:16 sshgateway sshd\[11613\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.175.233 user=root Se	2020-09-07 02:04:34
176.83.6.68	attack	Brute force 67 attempts	2020-09-07 02:13:44
186.216.71.246	attackbots	Brute force attempt	2020-09-07 02:38:00
167.114.24.178	attackbotsspam	995/tcp 1911/tcp 5432/tcp... [2020-07-08/09-06]21pkt,12pt.(tcp)	2020-09-07 02:22:21
189.177.141.131	attack	Honeypot attack, port: 81, PTR: dsl-189-177-141-131-dyn.prod-infinitum.com.mx.	2020-09-07 02:19:49
211.223.185.90	attack	Honeypot attack, port: 81, PTR: PTR record not found	2020-09-07 02:33:22
170.244.0.179	attack	Dovecot Invalid User Login Attempt.	2020-09-07 02:37:34
114.118.30.134	attackbotsspam	Email login attempts - banned mail account name (SMTP)	2020-09-07 02:11:11
116.98.140.102	attack	81/tcp [2020-09-06]1pkt	2020-09-07 02:32:08
1.54.251.14	attackspambots	1599324266 - 09/05/2020 18:44:26 Host: 1.54.251.14/1.54.251.14 Port: 445 TCP Blocked	2020-09-07 02:37:14
20.194.36.46	attackbotsspam	Sep 7 01:16:00 webhost01 sshd[20170]: Failed password for root from 20.194.36.46 port 59974 ssh2 Sep 7 01:16:13 webhost01 sshd[20170]: error: maximum authentication attempts exceeded for root from 20.194.36.46 port 59974 ssh2 [preauth] ...	2020-09-07 02:39:12
180.177.79.69	attack	Honeypot attack, port: 5555, PTR: 180-177-79-69.dynamic.kbronet.com.tw.	2020-09-07 02:28:33
104.153.96.154	attack	" "	2020-09-07 02:32:31
13.233.207.140	attackspam	Lines containing failures of 13.233.207.140 Sep 3 11:40:15 metroid sshd[24884]: Invalid user admin from 13.233.207.140 port 35520 Sep 3 11:40:15 metroid sshd[24884]: Received disconnect from 13.233.207.140 port 35520:11: Bye Bye [preauth] Sep 3 11:40:15 metroid sshd[24884]: Disconnected from invalid user admin 13.233.207.140 port 35520 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=13.233.207.140	2020-09-07 02:35:37
103.141.47.195	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-07 02:16:35

Recently Reported IPs

159.203.30.103	69.26.151.234	125.161.128.192	111.223.252.25
202.184.108.4	14.232.208.29	95.165.159.95	185.214.206.255
183.82.8.165	114.239.52.151	1.186.99.79	171.228.177.181
85.209.0.22	222.222.117.67	49.0.113.2	182.233.0.252
2.52.125.99	106.2.3.154	187.134.118.27	136.232.192.250