42.48.194.164 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom Hunan Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	TCP (SYN) 42.48.194.164:40896 -> port 2222, len 44	2020-10-02 05:50:47
attack	Found on CINS badguys / proto=6 . srcport=39275 . dstport=2222 . (1829)	2020-10-01 22:12:58
attackspambots	Port Scan ...	2020-10-01 14:31:21

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.48.194.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46974
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.48.194.164.			IN	A

;; AUTHORITY SECTION:
.			178	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020093002 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 01 14:31:17 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 164.194.48.42.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 164.194.48.42.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
193.32.161.113	attack	ET DROP Dshield Block Listed Source group 1 - port: 9833 proto: TCP cat: Misc Attack	2019-11-12 05:39:15
139.155.127.59	attack	Nov 11 17:15:01 meumeu sshd[25235]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.127.59 Nov 11 17:15:03 meumeu sshd[25235]: Failed password for invalid user rpm from 139.155.127.59 port 49942 ssh2 Nov 11 17:19:46 meumeu sshd[25876]: Failed password for root from 139.155.127.59 port 50882 ssh2 ...	2019-11-12 05:28:59
54.154.89.222	attack	Web App Attack	2019-11-12 05:31:45
190.119.190.122	attackbotsspam	2019-11-11T14:36:41.804443abusebot-7.cloudsearch.cf sshd\[17993\]: Invalid user 0p9o8i from 190.119.190.122 port 52216	2019-11-12 05:27:19
111.246.1.170	attack	Port scan	2019-11-12 05:56:02
159.203.201.190	attackbotsspam	515/tcp 990/tcp 42501/tcp... [2019-09-12/11-10]48pkt,47pt.(tcp),1pt.(udp)	2019-11-12 05:45:53
106.13.204.251	attackbots	$f2bV_matches	2019-11-12 05:53:00
191.241.242.109	attackbots	Unauthorized connection attempt from IP address 191.241.242.109 on Port 445(SMB)	2019-11-12 05:50:43
82.162.48.41	attackspam	mail auth brute force	2019-11-12 05:49:02
101.96.113.50	attackspambots	$f2bV_matches	2019-11-12 05:45:35
217.182.193.61	attack	Nov 11 16:58:24 venus sshd\[23777\]: Invalid user test from 217.182.193.61 port 58976 Nov 11 16:58:24 venus sshd\[23777\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.193.61 Nov 11 16:58:26 venus sshd\[23777\]: Failed password for invalid user test from 217.182.193.61 port 58976 ssh2 ...	2019-11-12 05:54:21
80.252.151.194	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2019-11-12 05:53:52
112.64.170.166	attackspam	Nov 11 13:28:27 TORMINT sshd\[11374\]: Invalid user wallace from 112.64.170.166 Nov 11 13:28:27 TORMINT sshd\[11374\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.64.170.166 Nov 11 13:28:30 TORMINT sshd\[11374\]: Failed password for invalid user wallace from 112.64.170.166 port 46108 ssh2 ...	2019-11-12 05:54:51
142.54.101.146	attack	Nov 11 21:34:58 ncomp sshd[31936]: Invalid user daniel from 142.54.101.146 Nov 11 21:34:58 ncomp sshd[31936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.54.101.146 Nov 11 21:34:58 ncomp sshd[31936]: Invalid user daniel from 142.54.101.146 Nov 11 21:35:01 ncomp sshd[31936]: Failed password for invalid user daniel from 142.54.101.146 port 47820 ssh2	2019-11-12 05:53:27
5.196.72.11	attack	Nov 11 21:16:06 MK-Soft-VM7 sshd[32612]: Failed password for root from 5.196.72.11 port 43078 ssh2 Nov 11 21:20:05 MK-Soft-VM7 sshd[32646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.72.11 ...	2019-11-12 05:36:55

Recently Reported IPs

191.180.254.55	76.210.188.195	4.193.198.10	133.121.140.63
40.82.98.24	121.122.119.100	87.120.68.189	187.215.14.132
204.3.186.44	94.45.1.126	78.19.32.81	95.202.104.158
45.254.246.140	214.80.131.169	105.33.142.1	20.17.71.52
91.162.95.245	102.165.30.53	85.216.22.117	165.137.221.149