116.21.48.62 - IPInfo

Basic Info

City: Dongguan

Region: Guangdong

Country: China

Internet Service Provider: ChinaNet Guangdong Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Unauthorized connection attempt from IP address 116.21.48.62 on Port 445(SMB)	2019-11-06 05:59:27

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.21.48.62
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29960
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.21.48.62.			IN	A

;; AUTHORITY SECTION:
.			527	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110501 1800 900 604800 86400

;; Query time: 281 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Nov 06 05:59:24 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 62.48.21.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 62.48.21.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
183.82.121.34	attackspambots	Aug 12 00:48:28 OPSO sshd\[13419\]: Invalid user reko from 183.82.121.34 port 45921 Aug 12 00:48:28 OPSO sshd\[13419\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82.121.34 Aug 12 00:48:30 OPSO sshd\[13419\]: Failed password for invalid user reko from 183.82.121.34 port 45921 ssh2 Aug 12 00:48:34 OPSO sshd\[13421\]: Invalid user reko from 183.82.121.34 port 46718 Aug 12 00:48:34 OPSO sshd\[13421\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82.121.34	2019-08-12 07:42:25
34.80.72.249	attackspam	2019-08-11T23:52:34.803772abusebot-7.cloudsearch.cf sshd\[25297\]: Invalid user hitleap from 34.80.72.249 port 55424	2019-08-12 08:14:43
216.218.206.94	attackspam	Port scan: Attack repeated for 24 hours	2019-08-12 07:35:55
91.218.212.11	attackspam	445/tcp 445/tcp 445/tcp... [2019-07-04/08-11]8pkt,1pt.(tcp)	2019-08-12 07:41:20
71.6.233.192	attackspambots	50443/tcp 16993/tcp 5431/tcp... [2019-06-30/08-11]4pkt,4pt.(tcp)	2019-08-12 08:00:25
200.116.198.180	attackspam	xmlrpc attack	2019-08-12 07:48:18
46.105.31.249	attackspambots	Aug 12 02:01:36 pkdns2 sshd\[38777\]: Invalid user s3cur17y from 46.105.31.249Aug 12 02:01:38 pkdns2 sshd\[38777\]: Failed password for invalid user s3cur17y from 46.105.31.249 port 53390 ssh2Aug 12 02:05:48 pkdns2 sshd\[38966\]: Invalid user xuelp123 from 46.105.31.249Aug 12 02:05:50 pkdns2 sshd\[38966\]: Failed password for invalid user xuelp123 from 46.105.31.249 port 48764 ssh2Aug 12 02:09:59 pkdns2 sshd\[39112\]: Invalid user abc123 from 46.105.31.249Aug 12 02:10:02 pkdns2 sshd\[39112\]: Failed password for invalid user abc123 from 46.105.31.249 port 43908 ssh2 ...	2019-08-12 07:31:26
121.160.198.194	attackspam	Aug 12 01:27:34 nextcloud sshd\[28941\]: Invalid user usuario1 from 121.160.198.194 Aug 12 01:27:34 nextcloud sshd\[28941\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.160.198.194 Aug 12 01:27:36 nextcloud sshd\[28941\]: Failed password for invalid user usuario1 from 121.160.198.194 port 42494 ssh2 ...	2019-08-12 07:40:20
104.42.27.187	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-08-12 07:57:11
115.56.48.45	attackspambots	" "	2019-08-12 07:45:35
194.55.187.11	attack	SSH Brute Force, server-1 sshd[26393]: Failed password for root from 194.55.187.11 port 54548 ssh2	2019-08-12 07:41:42
218.1.18.78	attackbotsspam	Aug 12 02:00:46 server01 sshd\[30397\]: Invalid user jewish from 218.1.18.78 Aug 12 02:00:46 server01 sshd\[30397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.1.18.78 Aug 12 02:00:48 server01 sshd\[30397\]: Failed password for invalid user jewish from 218.1.18.78 port 18579 ssh2 ...	2019-08-12 08:02:30
79.58.215.225	attackbotsspam	Honeypot attack, port: 23, PTR: host225-215-static.58-79-b.business.telecomitalia.it.	2019-08-12 07:53:43
111.248.74.68	attack	" "	2019-08-12 07:40:48
178.128.171.243	attackspambots	Automated report - ssh fail2ban: Aug 11 23:36:25 wrong password, user=giacomini, port=39532, ssh2 Aug 12 00:08:01 authentication failure Aug 12 00:08:03 wrong password, user=anni, port=58486, ssh2	2019-08-12 08:02:08

Recently Reported IPs

2a02:a31c:8447:9c80:ed70:8de0:a66b:6401	14.189.39.247	107.175.38.115	112.186.49.40
102.182.63.160	65.30.45.147	2a00:f41:58b6:7f4f:7d1a:cf6f:ee9c:14e5	54.36.63.4
95.68.192.123	27.72.29.131	176.40.232.181	89.64.44.6
31.202.255.87	91.206.55.87	173.212.252.245	36.65.86.2
171.252.192.237	189.58.77.115	188.163.50.119	218.173.5.119