42.48.79.16 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
42.48.79.31	attack	03/11/2020-06:42:34.082492 42.48.79.31 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-03-12 00:30:13

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.48.79.16
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27594
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.48.79.16.			IN	A

;; AUTHORITY SECTION:
.			442	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 08:44:33 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 16.79.48.42.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 16.79.48.42.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
140.143.236.227	attackbots	Apr 10 14:15:51 ncomp sshd[12627]: Invalid user postgres from 140.143.236.227 Apr 10 14:15:51 ncomp sshd[12627]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.236.227 Apr 10 14:15:51 ncomp sshd[12627]: Invalid user postgres from 140.143.236.227 Apr 10 14:15:53 ncomp sshd[12627]: Failed password for invalid user postgres from 140.143.236.227 port 52036 ssh2	2020-04-10 21:11:37
152.136.96.32	attackspambots	Apr 10 14:23:20 pve sshd[19125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.96.32 Apr 10 14:23:23 pve sshd[19125]: Failed password for invalid user postgres from 152.136.96.32 port 45474 ssh2 Apr 10 14:29:00 pve sshd[20126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.96.32	2020-04-10 20:52:16
88.157.229.59	attackspam	Apr 10 15:23:42 minden010 sshd[20103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.157.229.59 Apr 10 15:23:45 minden010 sshd[20103]: Failed password for invalid user postgres from 88.157.229.59 port 52878 ssh2 Apr 10 15:27:32 minden010 sshd[21384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.157.229.59 ...	2020-04-10 21:29:42
5.76.115.122	attack	Email rejected due to spam filtering	2020-04-10 21:11:23
185.173.35.45	attackspam	SNORT TCP Port: 110 Classtype misc-attack - ET DROP Dshield Block Listed Source group 1 - - Destination xx.xx.4.1 Port: 110 - - Source 185.173.35.45 Port: 58173 (Listed on abuseat-org zen-spamhaus) (124)	2020-04-10 21:08:46
83.171.96.106	attack	Icarus honeypot on github	2020-04-10 21:07:31
124.158.163.21	attackspambots	Apr 10 14:04:37 mail1 sshd\[14770\]: Invalid user servers from 124.158.163.21 port 34843 Apr 10 14:04:37 mail1 sshd\[14770\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.158.163.21 Apr 10 14:04:39 mail1 sshd\[14770\]: Failed password for invalid user servers from 124.158.163.21 port 34843 ssh2 Apr 10 14:11:31 mail1 sshd\[17858\]: Invalid user radio from 124.158.163.21 port 56969 Apr 10 14:11:31 mail1 sshd\[17858\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.158.163.21 ...	2020-04-10 20:46:37
202.65.141.250	attack	Apr 10 14:06:06 ns382633 sshd\[16771\]: Invalid user test from 202.65.141.250 port 42444 Apr 10 14:06:06 ns382633 sshd\[16771\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.65.141.250 Apr 10 14:06:08 ns382633 sshd\[16771\]: Failed password for invalid user test from 202.65.141.250 port 42444 ssh2 Apr 10 14:11:10 ns382633 sshd\[17718\]: Invalid user mc from 202.65.141.250 port 52067 Apr 10 14:11:10 ns382633 sshd\[17718\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.65.141.250	2020-04-10 21:16:11
80.211.139.159	attackbots	2020-04-10T12:06:43.250549abusebot-7.cloudsearch.cf sshd[6883]: Invalid user postgres from 80.211.139.159 port 34400 2020-04-10T12:06:43.255418abusebot-7.cloudsearch.cf sshd[6883]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.139.159 2020-04-10T12:06:43.250549abusebot-7.cloudsearch.cf sshd[6883]: Invalid user postgres from 80.211.139.159 port 34400 2020-04-10T12:06:45.684566abusebot-7.cloudsearch.cf sshd[6883]: Failed password for invalid user postgres from 80.211.139.159 port 34400 ssh2 2020-04-10T12:11:28.678661abusebot-7.cloudsearch.cf sshd[7215]: Invalid user oracle from 80.211.139.159 port 51862 2020-04-10T12:11:28.683759abusebot-7.cloudsearch.cf sshd[7215]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.139.159 2020-04-10T12:11:28.678661abusebot-7.cloudsearch.cf sshd[7215]: Invalid user oracle from 80.211.139.159 port 51862 2020-04-10T12:11:30.239557abusebot-7.cloudsearch.cf sshd[721 ...	2020-04-10 20:52:51
121.175.137.207	attackbots	Apr 10 08:22:51 NPSTNNYC01T sshd[17886]: Failed password for root from 121.175.137.207 port 43620 ssh2 Apr 10 08:27:43 NPSTNNYC01T sshd[18169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.175.137.207 Apr 10 08:27:45 NPSTNNYC01T sshd[18169]: Failed password for invalid user jenkins from 121.175.137.207 port 53256 ssh2 ...	2020-04-10 20:56:35
138.197.175.236	attackbotsspam	Apr 10 14:42:50 ewelt sshd[22043]: Failed password for invalid user joshua from 138.197.175.236 port 50714 ssh2 Apr 10 14:46:24 ewelt sshd[22211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.175.236 user=root Apr 10 14:46:26 ewelt sshd[22211]: Failed password for root from 138.197.175.236 port 58970 ssh2 Apr 10 14:49:57 ewelt sshd[22382]: Invalid user a1 from 138.197.175.236 port 38994 ...	2020-04-10 21:10:36
222.186.173.215	attack	Apr 10 12:45:15 ip-172-31-62-245 sshd\[2947\]: Failed password for root from 222.186.173.215 port 51240 ssh2\ Apr 10 12:45:18 ip-172-31-62-245 sshd\[2947\]: Failed password for root from 222.186.173.215 port 51240 ssh2\ Apr 10 12:45:21 ip-172-31-62-245 sshd\[2947\]: Failed password for root from 222.186.173.215 port 51240 ssh2\ Apr 10 12:45:24 ip-172-31-62-245 sshd\[2947\]: Failed password for root from 222.186.173.215 port 51240 ssh2\ Apr 10 12:45:28 ip-172-31-62-245 sshd\[2947\]: Failed password for root from 222.186.173.215 port 51240 ssh2\	2020-04-10 21:08:15
94.242.54.22	attackbotsspam	0,22-04/18 [bc01/m06] PostRequest-Spammer scoring: essen	2020-04-10 20:47:00
222.186.31.166	attack	$f2bV_matches	2020-04-10 21:12:54
141.98.80.58	attackbotsspam	B: Abusive content scan (200)	2020-04-10 21:02:56

Recently Reported IPs

42.48.79.133	42.48.79.175	42.48.79.213	42.48.79.218
42.48.79.47	42.48.79.3	42.48.79.63	42.48.79.87
42.48.79.98	42.48.79.82	42.49.255.117	42.49.132.50
42.49.103.226	42.49.151.152	42.5.207.41	42.49.80.238
42.49.48.142	42.5.25.142	42.49.132.118	42.53.215.116