115.48.42.3 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom Henan Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-14 00:44:24

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 115.48.42.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1716
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;115.48.42.3.			IN	A

;; AUTHORITY SECTION:
.			511	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111300 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Nov 14 00:44:19 CST 2019
;; MSG SIZE  rcvd: 115

Host info

3.42.48.115.in-addr.arpa domain name pointer hn.kd.ny.adsl.

Nslookup info:

3.42.48.115.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.254.198.67	attackbots	2020-07-08T00:47:40.837018vps751288.ovh.net sshd\[31094\]: Invalid user sybase from 103.254.198.67 port 43127 2020-07-08T00:47:40.846369vps751288.ovh.net sshd\[31094\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.254.198.67 2020-07-08T00:47:43.021826vps751288.ovh.net sshd\[31094\]: Failed password for invalid user sybase from 103.254.198.67 port 43127 ssh2 2020-07-08T00:52:33.695334vps751288.ovh.net sshd\[31178\]: Invalid user wangxt from 103.254.198.67 port 49722 2020-07-08T00:52:33.702896vps751288.ovh.net sshd\[31178\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.254.198.67	2020-07-08 07:08:38
46.101.151.52	attackspam	Jul 7 22:24:41 srv-ubuntu-dev3 sshd[55310]: Invalid user sapphire from 46.101.151.52 Jul 7 22:24:41 srv-ubuntu-dev3 sshd[55310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.151.52 Jul 7 22:24:41 srv-ubuntu-dev3 sshd[55310]: Invalid user sapphire from 46.101.151.52 Jul 7 22:24:43 srv-ubuntu-dev3 sshd[55310]: Failed password for invalid user sapphire from 46.101.151.52 port 43558 ssh2 Jul 7 22:27:45 srv-ubuntu-dev3 sshd[55795]: Invalid user fred from 46.101.151.52 Jul 7 22:27:45 srv-ubuntu-dev3 sshd[55795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.151.52 Jul 7 22:27:45 srv-ubuntu-dev3 sshd[55795]: Invalid user fred from 46.101.151.52 Jul 7 22:27:48 srv-ubuntu-dev3 sshd[55795]: Failed password for invalid user fred from 46.101.151.52 port 42712 ssh2 Jul 7 22:30:54 srv-ubuntu-dev3 sshd[56306]: Invalid user tester from 46.101.151.52 ...	2020-07-08 06:54:22
193.112.70.95	attackspam	Jul 8 00:30:54 lnxmysql61 sshd[25033]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.70.95 Jul 8 00:30:54 lnxmysql61 sshd[25033]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.70.95	2020-07-08 07:12:36
161.35.4.190	attackbotsspam	Jul 8 00:13:31 lukav-desktop sshd\[12263\]: Invalid user sgmdev from 161.35.4.190 Jul 8 00:13:31 lukav-desktop sshd\[12263\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.4.190 Jul 8 00:13:33 lukav-desktop sshd\[12263\]: Failed password for invalid user sgmdev from 161.35.4.190 port 53944 ssh2 Jul 8 00:16:36 lukav-desktop sshd\[2545\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.4.190 user=mail Jul 8 00:16:38 lukav-desktop sshd\[2545\]: Failed password for mail from 161.35.4.190 port 51484 ssh2	2020-07-08 07:16:13
202.137.20.58	attack	2020-07-08T03:07:19.913054hostname sshd[13047]: Invalid user angel from 202.137.20.58 port 31893 2020-07-08T03:07:21.993689hostname sshd[13047]: Failed password for invalid user angel from 202.137.20.58 port 31893 ssh2 2020-07-08T03:12:09.771908hostname sshd[15330]: Invalid user tested from 202.137.20.58 port 52485 ...	2020-07-08 07:02:06
185.210.218.206	attackbots	[2020-07-07 18:58:33] NOTICE[1150] chan_sip.c: Registration from '' failed for '185.210.218.206:60965' - Wrong password [2020-07-07 18:58:33] SECURITY[1167] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-07-07T18:58:33.724-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="9042",SessionID="0x7fcb4c03b8a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.210.218.206/60965",Challenge="7c148848",ReceivedChallenge="7c148848",ReceivedHash="3400e7aa5db3b09ee750a8f71c80f16c" [2020-07-07 18:58:50] NOTICE[1150] chan_sip.c: Registration from '' failed for '185.210.218.206:56820' - Wrong password [2020-07-07 18:58:50] SECURITY[1167] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-07-07T18:58:50.895-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="7416",SessionID="0x7fcb4c0dfe08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.210 ...	2020-07-08 07:17:33
139.199.89.157	attack	Jul 7 21:54:44 nas sshd[21097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.89.157 Jul 7 21:54:46 nas sshd[21097]: Failed password for invalid user sofronio from 139.199.89.157 port 59344 ssh2 Jul 7 22:12:12 nas sshd[21914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.89.157 ...	2020-07-08 07:08:09
86.210.71.37	attackbotsspam	Brute force attempt	2020-07-08 07:02:50
222.186.169.194	attackbotsspam	Jul 7 19:55:14 firewall sshd[3839]: Failed password for root from 222.186.169.194 port 35104 ssh2 Jul 7 19:55:17 firewall sshd[3839]: Failed password for root from 222.186.169.194 port 35104 ssh2 Jul 7 19:55:20 firewall sshd[3839]: Failed password for root from 222.186.169.194 port 35104 ssh2 ...	2020-07-08 06:58:54
167.172.178.216	attack	279. On Jul 7 2020 experienced a Brute Force SSH login attempt -> 57 unique times by 167.172.178.216.	2020-07-08 07:06:46
202.119.84.55	attackspam	Jul 8 00:21:00 vps333114 sshd[18153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.119.84.55 Jul 8 00:21:03 vps333114 sshd[18153]: Failed password for invalid user facundo from 202.119.84.55 port 2132 ssh2 ...	2020-07-08 07:07:27
192.99.135.113	attackspambots	2020-07-08T08:27:13.724322luisaranguren sshd[2597446]: Invalid user agostino from 192.99.135.113 port 64219 2020-07-08T08:27:16.108569luisaranguren sshd[2597446]: Failed password for invalid user agostino from 192.99.135.113 port 64219 ssh2 ...	2020-07-08 06:58:21
81.68.102.6	attack	Jul 8 01:20:18 lukav-desktop sshd\[14309\]: Invalid user wangjianxiong from 81.68.102.6 Jul 8 01:20:18 lukav-desktop sshd\[14309\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.102.6 Jul 8 01:20:21 lukav-desktop sshd\[14309\]: Failed password for invalid user wangjianxiong from 81.68.102.6 port 58762 ssh2 Jul 8 01:26:44 lukav-desktop sshd\[14365\]: Invalid user susumu from 81.68.102.6 Jul 8 01:26:44 lukav-desktop sshd\[14365\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.102.6	2020-07-08 06:59:59
192.3.255.139	attackbots	TCP (SYN) 192.3.255.139:47589 -> port 22566, len 44	2020-07-08 07:22:12
95.175.76.12	attackspambots	Email rejected due to spam filtering	2020-07-08 06:59:37

Recently Reported IPs

162.155.240.97	220.133.129.5	248.51.236.98	167.99.130.208
77.6.1.110	219.71.221.91	218.173.132.193	114.97.215.223
217.208.26.149	146.88.24.17	212.26.251.125	114.46.101.33
194.114.129.201	134.64.76.9	15.152.2.52	190.242.43.210
167.114.86.88	48.48.170.90	114.38.171.19	109.184.152.221