42.115.81.50 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Cambodia

Internet Service Provider: unknown

Hostname: unknown

Organization: OpenNet ISP Cambodia

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
42.115.81.161	attackspam	IP 42.115.81.161 attacked honeypot on port: 88 at 6/14/2020 10:25:39 PM	2020-06-15 07:40:32
42.115.81.108	attackspam	81/tcp 8000/tcp [2020-06-08/10]2pkt	2020-06-11 06:46:26
42.115.81.21	attack	81/tcp [2020-06-08]1pkt	2020-06-08 13:16:15
42.115.81.195	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/42.115.81.195/ VN - 1H : (68) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : VN NAME ASN : ASN131178 IP : 42.115.81.195 CIDR : 42.115.80.0/23 PREFIX COUNT : 120 UNIQUE IP COUNT : 40192 WYKRYTE ATAKI Z ASN131178 : 1H - 1 3H - 1 6H - 2 12H - 4 24H - 5 INFO : SYN Flood DDoS Attack Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery	2019-09-20 07:45:06

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.115.81.50
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39084
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.115.81.50.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019042800 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 29 02:05:26 +08 2019
;; MSG SIZE  rcvd: 116

Host info

Host 50.81.115.42.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.3, trying next server
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 50.81.115.42.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
124.204.36.138	attack	Sep 12 22:09:00 saschabauer sshd[9320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.204.36.138 Sep 12 22:09:02 saschabauer sshd[9320]: Failed password for invalid user P@ssword1 from 124.204.36.138 port 11120 ssh2	2019-09-13 05:09:37
192.241.159.27	attackspam	Sep 12 20:54:02 hb sshd\[1834\]: Invalid user mysql from 192.241.159.27 Sep 12 20:54:02 hb sshd\[1834\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.159.27 Sep 12 20:54:04 hb sshd\[1834\]: Failed password for invalid user mysql from 192.241.159.27 port 56982 ssh2 Sep 12 21:00:17 hb sshd\[2446\]: Invalid user musikbot from 192.241.159.27 Sep 12 21:00:17 hb sshd\[2446\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.159.27	2019-09-13 05:01:53
81.177.98.52	attackbotsspam	Sep 12 13:45:22 vtv3 sshd\[22248\]: Invalid user sinusbot1 from 81.177.98.52 port 44650 Sep 12 13:45:22 vtv3 sshd\[22248\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.177.98.52 Sep 12 13:45:24 vtv3 sshd\[22248\]: Failed password for invalid user sinusbot1 from 81.177.98.52 port 44650 ssh2 Sep 12 13:52:13 vtv3 sshd\[25575\]: Invalid user appuser from 81.177.98.52 port 59358 Sep 12 13:52:13 vtv3 sshd\[25575\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.177.98.52 Sep 12 14:09:15 vtv3 sshd\[2020\]: Invalid user admin from 81.177.98.52 port 41998 Sep 12 14:09:15 vtv3 sshd\[2020\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.177.98.52 Sep 12 14:09:17 vtv3 sshd\[2020\]: Failed password for invalid user admin from 81.177.98.52 port 41998 ssh2 Sep 12 14:14:52 vtv3 sshd\[4774\]: Invalid user oracle from 81.177.98.52 port 45618 Sep 12 14:14:52 vtv3 sshd\[4774\]: pam_unix	2019-09-13 04:51:01
112.81.113.58	attackspam	Scanning random ports - tries to find possible vulnerable services	2019-09-13 05:11:11
144.217.15.161	attack	2019-09-12T16:54:42.651889abusebot-5.cloudsearch.cf sshd\[9030\]: Invalid user ubuntu from 144.217.15.161 port 46086	2019-09-13 04:26:07
83.243.72.173	attack	Sep 12 21:54:14 mail sshd\[4982\]: Invalid user user from 83.243.72.173 Sep 12 21:54:14 mail sshd\[4982\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.243.72.173 Sep 12 21:54:16 mail sshd\[4982\]: Failed password for invalid user user from 83.243.72.173 port 50906 ssh2 ...	2019-09-13 04:45:35
178.32.47.97	attackspambots	Sep 12 22:57:53 andromeda sshd\[45725\]: Invalid user odoo from 178.32.47.97 port 39156 Sep 12 22:57:53 andromeda sshd\[45725\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.32.47.97 Sep 12 22:57:55 andromeda sshd\[45725\]: Failed password for invalid user odoo from 178.32.47.97 port 39156 ssh2	2019-09-13 05:01:15
222.186.15.204	attackspambots	Sep 12 17:08:02 plusreed sshd[24940]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.204 user=root Sep 12 17:08:04 plusreed sshd[24940]: Failed password for root from 222.186.15.204 port 64620 ssh2 ...	2019-09-13 05:08:44
51.75.17.228	attackbotsspam	2019-09-12T20:25:22.648207abusebot-3.cloudsearch.cf sshd\[32377\]: Invalid user nagios from 51.75.17.228 port 43562	2019-09-13 04:34:39
84.53.195.250	attackbotsspam	2019-09-12 09:48:11 H=(84-53--195-250.elcom.ru) [84.53.195.250]:53476 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-09-12 09:48:12 H=(84-53--195-250.elcom.ru) [84.53.195.250]:53476 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/84.53.195.250) 2019-09-12 09:48:13 H=(84-53--195-250.elcom.ru) [84.53.195.250]:53476 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) ...	2019-09-13 04:56:36
159.65.140.148	attack	Sep 12 22:46:45 meumeu sshd[20508]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.140.148 Sep 12 22:46:47 meumeu sshd[20508]: Failed password for invalid user gitpass from 159.65.140.148 port 46504 ssh2 Sep 12 22:53:39 meumeu sshd[21368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.140.148 ...	2019-09-13 05:02:20
157.230.240.34	attack	Sep 12 10:00:13 hcbb sshd\[25818\]: Invalid user system from 157.230.240.34 Sep 12 10:00:13 hcbb sshd\[25818\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.240.34 Sep 12 10:00:15 hcbb sshd\[25818\]: Failed password for invalid user system from 157.230.240.34 port 48302 ssh2 Sep 12 10:06:41 hcbb sshd\[26393\]: Invalid user ts3srv from 157.230.240.34 Sep 12 10:06:41 hcbb sshd\[26393\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.240.34	2019-09-13 04:24:08
61.76.173.244	attack	Sep 12 04:40:54 lcprod sshd\[21670\]: Invalid user P@ssw0rd! from 61.76.173.244 Sep 12 04:40:54 lcprod sshd\[21670\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.76.173.244 Sep 12 04:40:56 lcprod sshd\[21670\]: Failed password for invalid user P@ssw0rd! from 61.76.173.244 port 12454 ssh2 Sep 12 04:48:21 lcprod sshd\[22306\]: Invalid user p@ssw0rd from 61.76.173.244 Sep 12 04:48:21 lcprod sshd\[22306\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.76.173.244	2019-09-13 04:47:55
173.235.0.145	attack	Sep 12 14:48:11 flomail dovecot: imap-login: Disconnected (auth failed, 1 attempts in 5 secs): user=, method=PLAIN, rip=173.235.0.145, lip=10.140.194.78, TLS: Disconnected, session= Sep 12 14:48:20 flomail dovecot: imap-login: Disconnected (auth failed, 1 attempts in 9 secs): user=, method=PLAIN, rip=173.235.0.145, lip=10.140.194.78, TLS: Disconnected, session= Sep 12 14:48:20 flomail dovecot: imap-login: Disconnected (auth failed, 1 attempts in 8 secs): user=, method=PLAIN, rip=173.235.0.145, lip=10.140.194.78, TLS: Disconnected, session=	2019-09-13 04:49:51
77.123.154.234	attack	F2B jail: sshd. Time: 2019-09-12 22:50:23, Reported by: VKReport	2019-09-13 05:03:26

Recently Reported IPs

42.117.255.64	41.68.163.162	117.1.69.247	193.72.135.42
211.92.143.94	157.142.70.129	221.239.91.199	41.40.115.148
23.92.239.216	41.33.103.9	58.244.173.130	152.234.114.74
41.251.133.100	195.140.189.197	193.112.49.155	218.189.15.187
196.185.130.117	106.46.233.48	2.230.237.47	190.216.136.37