115.48.42.3 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom Henan Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-14 00:44:24

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 115.48.42.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1716
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;115.48.42.3.			IN	A

;; AUTHORITY SECTION:
.			511	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111300 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Nov 14 00:44:19 CST 2019
;; MSG SIZE  rcvd: 115

Host info

3.42.48.115.in-addr.arpa domain name pointer hn.kd.ny.adsl.

Nslookup info:

3.42.48.115.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.86.76.83	attack	Oct 28 06:02:28 ArkNodeAT sshd\[32204\]: Invalid user tweece from 167.86.76.83 Oct 28 06:02:28 ArkNodeAT sshd\[32204\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.86.76.83 Oct 28 06:02:30 ArkNodeAT sshd\[32204\]: Failed password for invalid user tweece from 167.86.76.83 port 55678 ssh2	2019-10-28 13:41:33
117.232.127.50	attackspambots	Oct 28 05:06:53 server sshd\[22093\]: Invalid user smtpuser from 117.232.127.50 Oct 28 05:06:53 server sshd\[22093\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.232.127.50 Oct 28 05:06:55 server sshd\[22093\]: Failed password for invalid user smtpuser from 117.232.127.50 port 57858 ssh2 Oct 28 07:31:52 server sshd\[21408\]: Invalid user postgres from 117.232.127.50 Oct 28 07:31:52 server sshd\[21408\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.232.127.50 ...	2019-10-28 13:57:17
103.219.112.154	attackbots	2019-10-28T05:31:58.608347abusebot-4.cloudsearch.cf sshd\[19766\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.219.112.154 user=root	2019-10-28 14:05:00
95.37.20.181	attackbots	Chat Spam	2019-10-28 13:57:44
163.172.207.104	attackspambots	\[2019-10-28 01:18:49\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-28T01:18:49.886-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="6100011972592277524",SessionID="0x7fdf2c144d18",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.207.104/63187",ACLName="no_extension_match" \[2019-10-28 01:23:34\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-28T01:23:34.074-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="7100011972592277524",SessionID="0x7fdf2c144d18",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.207.104/58783",ACLName="no_extension_match" \[2019-10-28 01:28:39\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-28T01:28:39.191-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="8100011972592277524",SessionID="0x7fdf2c003608",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.207.104/5771	2019-10-28 13:52:31
217.182.220.124	attackbots	Oct 28 06:29:30 apollo sshd\[22142\]: Invalid user prueba from 217.182.220.124Oct 28 06:29:32 apollo sshd\[22142\]: Failed password for invalid user prueba from 217.182.220.124 port 53950 ssh2Oct 28 06:43:11 apollo sshd\[22187\]: Failed password for root from 217.182.220.124 port 41446 ssh2 ...	2019-10-28 13:56:59
106.13.117.241	attackspambots	Oct 28 05:59:05 [host] sshd[8390]: Invalid user moguls from 106.13.117.241 Oct 28 05:59:05 [host] sshd[8390]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.117.241 Oct 28 05:59:07 [host] sshd[8390]: Failed password for invalid user moguls from 106.13.117.241 port 33034 ssh2	2019-10-28 13:29:02
81.163.56.185	attackspambots	Chat Spam	2019-10-28 13:52:48
124.156.50.111	attackspambots	79/tcp 32769/udp 8890/tcp... [2019-08-28/10-28]11pkt,8pt.(tcp),3pt.(udp)	2019-10-28 13:24:38
107.152.139.222	attackspam	(From youngkim977@gmail.com ) Hello there! I was checking on your website, and I already like what you're trying to do with it, although I still am convinced that it can get so much better. I'm a freelance creative web developer who can help you make it look more beautiful and be more functional. In the past, I've built so many beautiful and business efficient websites and renovated existing ones at amazingly cheap prices. I'll be able provide you with a free consultation over the phone to answer your questions and to discuss about how we can make our ideas possible. Kindly write back to let me know, so I can give you some expert advice and hopefully a proposal. I look forward to hearing back from you! Kim Young	2019-10-28 14:00:20
118.123.12.3	attackspam	1433/tcp 4899/tcp 8080/tcp... [2019-08-27/10-28]12pkt,4pt.(tcp)	2019-10-28 13:16:00
27.111.85.60	attack	Oct 28 01:56:28 firewall sshd[12486]: Invalid user 9 from 27.111.85.60 Oct 28 01:56:30 firewall sshd[12486]: Failed password for invalid user 9 from 27.111.85.60 port 55576 ssh2 Oct 28 02:01:18 firewall sshd[12568]: Invalid user tester from 27.111.85.60 ...	2019-10-28 13:16:53
35.176.14.233	attackspam	2019-10-28T05:11:59.510948shield sshd\[17114\]: Invalid user kgn from 35.176.14.233 port 59947 2019-10-28T05:11:59.515291shield sshd\[17114\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-35-176-14-233.eu-west-2.compute.amazonaws.com 2019-10-28T05:12:01.303504shield sshd\[17114\]: Failed password for invalid user kgn from 35.176.14.233 port 59947 ssh2 2019-10-28T05:19:20.753158shield sshd\[19551\]: Invalid user smcadmin from 35.176.14.233 port 24179 2019-10-28T05:19:20.756774shield sshd\[19551\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-35-176-14-233.eu-west-2.compute.amazonaws.com	2019-10-28 13:29:43
49.234.203.5	attackbots	Oct 28 04:11:51 www_kotimaassa_fi sshd[4191]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.203.5 Oct 28 04:11:53 www_kotimaassa_fi sshd[4191]: Failed password for invalid user iw from 49.234.203.5 port 36950 ssh2 ...	2019-10-28 13:16:30
156.198.181.123	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/156.198.181.123/ EG - 1H : (338) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : EG NAME ASN : ASN8452 IP : 156.198.181.123 CIDR : 156.198.128.0/18 PREFIX COUNT : 833 UNIQUE IP COUNT : 7610368 ATTACKS DETECTED ASN8452 : 1H - 14 3H - 38 6H - 85 12H - 176 24H - 328 DateTime : 2019-10-28 04:54:10 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-28 13:43:57

Recently Reported IPs

162.155.240.97	220.133.129.5	248.51.236.98	167.99.130.208
77.6.1.110	219.71.221.91	218.173.132.193	114.97.215.223
217.208.26.149	146.88.24.17	212.26.251.125	114.46.101.33
194.114.129.201	134.64.76.9	15.152.2.52	190.242.43.210
167.114.86.88	48.48.170.90	114.38.171.19	109.184.152.221