49.159.180.116

Basic Info

City: unknown

Region: unknown

Country: Taiwan, China

Internet Service Provider: TFN Media Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	1590478248 - 05/26/2020 09:30:48 Host: 49.159.180.116/49.159.180.116 Port: 445 TCP Blocked	2020-05-26 19:21:24

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.159.180.116
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52123
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.159.180.116.			IN	A

;; AUTHORITY SECTION:
.			449	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052600 1800 900 604800 86400

;; Query time: 125 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue May 26 19:21:19 CST 2020
;; MSG SIZE  rcvd: 118

Host info

116.180.159.49.in-addr.arpa domain name pointer 49-159-180-116.dynamic.elinx.com.tw.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
116.180.159.49.in-addr.arpa	name = 49-159-180-116.dynamic.elinx.com.tw.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
114.32.153.15	attack	Dec 23 19:50:08 localhost sshd\[4322\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.32.153.15 user=root Dec 23 19:50:09 localhost sshd\[4322\]: Failed password for root from 114.32.153.15 port 33466 ssh2 Dec 23 19:56:28 localhost sshd\[4955\]: Invalid user sean from 114.32.153.15 port 36882	2019-12-24 03:17:01
167.99.155.36	attack	Dec 23 16:56:51 MK-Soft-VM7 sshd[29468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.155.36 Dec 23 16:56:53 MK-Soft-VM7 sshd[29468]: Failed password for invalid user test from 167.99.155.36 port 54280 ssh2 ...	2019-12-24 03:37:28
189.223.124.14	attack	Unauthorized connection attempt detected from IP address 189.223.124.14 to port 445	2019-12-24 03:17:23
128.199.216.250	attack	Dec 23 05:57:56 web9 sshd\[17586\]: Invalid user nana123 from 128.199.216.250 Dec 23 05:57:56 web9 sshd\[17586\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.250 Dec 23 05:57:58 web9 sshd\[17586\]: Failed password for invalid user nana123 from 128.199.216.250 port 53674 ssh2 Dec 23 06:05:54 web9 sshd\[18942\]: Invalid user mandrake from 128.199.216.250 Dec 23 06:05:54 web9 sshd\[18942\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.250	2019-12-24 03:10:31
211.181.237.104	attackbotsspam	Unauthorised access (Dec 23) SRC=211.181.237.104 LEN=52 TTL=114 ID=1427 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-24 03:13:34
185.175.93.3	attack	ET DROP Dshield Block Listed Source group 1 - port: 7585 proto: TCP cat: Misc Attack	2019-12-24 03:18:06
115.198.155.44	attackspam	SSH Brute Force	2019-12-24 03:27:24
148.70.121.210	attack	2019-12-23T19:04:59.592511shield sshd\[20729\]: Invalid user abcdefghijklmnopqrst from 148.70.121.210 port 48560 2019-12-23T19:04:59.596864shield sshd\[20729\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.121.210 2019-12-23T19:05:01.476514shield sshd\[20729\]: Failed password for invalid user abcdefghijklmnopqrst from 148.70.121.210 port 48560 ssh2 2019-12-23T19:11:50.813072shield sshd\[22146\]: Invalid user 123456 from 148.70.121.210 port 54176 2019-12-23T19:11:50.817930shield sshd\[22146\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.121.210	2019-12-24 03:32:03
81.22.45.29	attack	12/23/2019-14:01:49.700834 81.22.45.29 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-12-24 03:18:34
81.80.84.10	attackspam	12/23/2019-09:56:20.665682 81.80.84.10 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-12-24 03:09:25
219.141.245.253	attackbots	Dec 23 07:06:19 home sshd[5525]: Invalid user beuerlein from 219.141.245.253 port 37690 Dec 23 07:06:19 home sshd[5525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.141.245.253 Dec 23 07:06:19 home sshd[5525]: Invalid user beuerlein from 219.141.245.253 port 37690 Dec 23 07:06:21 home sshd[5525]: Failed password for invalid user beuerlein from 219.141.245.253 port 37690 ssh2 Dec 23 07:17:05 home sshd[5603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.141.245.253 user=root Dec 23 07:17:06 home sshd[5603]: Failed password for root from 219.141.245.253 port 42116 ssh2 Dec 23 07:30:55 home sshd[5714]: Invalid user desiree from 219.141.245.253 port 59593 Dec 23 07:30:55 home sshd[5714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.141.245.253 Dec 23 07:30:55 home sshd[5714]: Invalid user desiree from 219.141.245.253 port 59593 Dec 23 07:30:56 home sshd[5714]: Failed passwo	2019-12-24 03:16:39
167.99.68.198	attack	$f2bV_matches	2019-12-24 03:23:16
190.72.136.45	attack	Unauthorized connection attempt detected from IP address 190.72.136.45 to port 445	2019-12-24 03:35:08
41.139.230.99	attackbotsspam	Dec 23 14:55:48 flomail dovecot: imap-login: Disconnected (auth failed, 1 attempts in 12 secs): user=, method=PLAIN, rip=41.139.230.99, lip=10.140.194.78, TLS: Disconnected, session=	2019-12-24 03:40:00
178.211.175.153	attackbotsspam	1577112950 - 12/23/2019 15:55:50 Host: 178.211.175.153/178.211.175.153 Port: 445 TCP Blocked	2019-12-24 03:35:37

Recently Reported IPs

47.119.83.32	111.253.221.160	68.183.84.28	49.248.108.28
116.226.67.185	123.18.100.251	114.39.242.123	106.203.61.145
14.231.195.173	187.190.147.251	95.110.255.25	129.211.167.207
42.228.173.30	43.250.40.57	114.47.125.165	92.62.73.51
14.231.146.197	186.235.149.153	129.146.124.166	185.234.219.205