114.142.48.78 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Japan

Internet Service Provider: QTNet Inc.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/114.142.48.78/ JP - 1H : (32) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : JP NAME ASN : ASN7679 IP : 114.142.48.78 CIDR : 114.142.0.0/17 PREFIX COUNT : 36 UNIQUE IP COUNT : 696320 ATTACKS DETECTED ASN7679 : 1H - 1 3H - 1 6H - 1 12H - 2 24H - 3 DateTime : 2019-10-19 05:44:45 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-19 19:39:39

Type

Details

Datetime

attack

IP Ban Report :  
 https://help-dysk.pl/wordpress-firewall-plugins/ip/114.142.48.78/ 
 
 JP - 1H : (32)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : JP 
 NAME ASN : ASN7679 
 
 IP : 114.142.48.78 
 
 CIDR : 114.142.0.0/17 
 
 PREFIX COUNT : 36 
 
 UNIQUE IP COUNT : 696320 
 
 
 ATTACKS DETECTED ASN7679 :  
  1H - 1 
  3H - 1 
  6H - 1 
 12H - 2 
 24H - 3 
 
 DateTime : 2019-10-19 05:44:45 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery

2019-10-19 19:39:39

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.142.48.78
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5904
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.142.48.78.			IN	A

;; AUTHORITY SECTION:
.			254	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101900 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 19 19:39:36 CST 2019
;; MSG SIZE  rcvd: 117

Host info

78.48.142.114.in-addr.arpa domain name pointer 114-142-48-78.ppp.bbiq.jp.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
78.48.142.114.in-addr.arpa	name = 114-142-48-78.ppp.bbiq.jp.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
92.88.7.37	attack	SSH/22 MH Probe, BF, Hack -	2019-08-30 21:27:30
217.67.21.68	attack	Aug 30 05:41:34 work-partkepr sshd\[20373\]: Invalid user nam from 217.67.21.68 port 38136 Aug 30 05:41:34 work-partkepr sshd\[20373\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.67.21.68 ...	2019-08-30 22:04:56
51.175.220.93	attackbots	Aug 30 07:57:34 plusreed sshd[30198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.175.220.93 user=root Aug 30 07:57:36 plusreed sshd[30198]: Failed password for root from 51.175.220.93 port 59743 ssh2 ...	2019-08-30 21:20:02
14.228.107.203	attackbotsspam	Unauthorized connection attempt from IP address 14.228.107.203 on Port 445(SMB)	2019-08-30 22:00:31
113.190.233.212	attackspambots	Unauthorized connection attempt from IP address 113.190.233.212 on Port 445(SMB)	2019-08-30 21:26:04
80.211.116.102	attackbots	Aug 30 04:35:27 mail sshd\[32736\]: Invalid user ftpadmin from 80.211.116.102 Aug 30 04:35:27 mail sshd\[32736\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.116.102 ...	2019-08-30 21:39:44
138.68.212.161	attackbots	40467/tcp [2019-08-30]1pkt	2019-08-30 21:25:25
185.105.7.248	attackspambots	ZTE Router Exploit Scanner	2019-08-30 22:06:09
129.211.29.208	attackbotsspam	Aug 30 10:12:23 SilenceServices sshd[15750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.29.208 Aug 30 10:12:25 SilenceServices sshd[15750]: Failed password for invalid user ftpuser from 129.211.29.208 port 43834 ssh2 Aug 30 10:17:21 SilenceServices sshd[17666]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.29.208	2019-08-30 22:10:58
220.175.154.212	attack	Unauthorized connection attempt from IP address 220.175.154.212 on Port 445(SMB)	2019-08-30 21:30:54
51.75.68.227	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-30 22:17:31
182.72.124.6	attack	Aug 30 14:02:57 mail sshd\[2143\]: Invalid user gitolite3 from 182.72.124.6 port 47558 Aug 30 14:02:57 mail sshd\[2143\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.72.124.6 ...	2019-08-30 21:17:35
60.172.73.3	attackspam	'IP reached maximum auth failures for a one day block'	2019-08-30 22:08:51
139.192.23.185	attackspam	Web Probe / Attack	2019-08-30 21:35:49
128.199.58.191	attackbots	Invalid user bomb from 128.199.58.191 port 33968	2019-08-30 21:57:36

Recently Reported IPs

139.59.43.225	116.11.184.46	228.56.215.37	122.116.34.136
103.69.44.212	196.62.111.12	185.40.14.186	188.218.54.176
12.157.146.193	182.253.222.201	198.27.116.229	50.126.75.251
58.218.209.239	68.48.189.68	105.222.162.122	32.109.237.141
2.248.119.85	66.65.240.71	59.147.219.72	232.184.35.195