42.48.79.87 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
42.48.79.31	attack	03/11/2020-06:42:34.082492 42.48.79.31 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-03-12 00:30:13

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.48.79.87
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30759
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.48.79.87.			IN	A

;; AUTHORITY SECTION:
.			217	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 08:44:35 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 87.79.48.42.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 87.79.48.42.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
122.54.237.27	attackspam	Unauthorized connection attempt from IP address 122.54.237.27 on Port 445(SMB)	2019-07-13 01:08:26
153.36.242.114	attackbots	Jul 12 18:52:42 fr01 sshd[17671]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.114 user=root Jul 12 18:52:45 fr01 sshd[17671]: Failed password for root from 153.36.242.114 port 15925 ssh2 ...	2019-07-13 01:21:12
193.9.114.139	attackspam	IP attempted unauthorised action	2019-07-13 01:07:57
132.232.90.20	attackbots	Jul 11 23:24:56 vtv3 sshd\[31763\]: Invalid user viva from 132.232.90.20 port 54942 Jul 11 23:24:56 vtv3 sshd\[31763\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.90.20 Jul 11 23:24:58 vtv3 sshd\[31763\]: Failed password for invalid user viva from 132.232.90.20 port 54942 ssh2 Jul 11 23:30:58 vtv3 sshd\[2664\]: Invalid user nat from 132.232.90.20 port 55516 Jul 11 23:30:58 vtv3 sshd\[2664\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.90.20 Jul 11 23:42:36 vtv3 sshd\[8119\]: Invalid user nagios from 132.232.90.20 port 56640 Jul 11 23:42:36 vtv3 sshd\[8119\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.90.20 Jul 11 23:42:38 vtv3 sshd\[8119\]: Failed password for invalid user nagios from 132.232.90.20 port 56640 ssh2 Jul 11 23:48:40 vtv3 sshd\[10979\]: Invalid user antonella from 132.232.90.20 port 57214 Jul 11 23:48:40 vtv3 sshd\[10979\]: pam_unix	2019-07-13 01:45:54
192.42.116.19	attack	Triggered by Fail2Ban at Vostok web server	2019-07-13 01:28:41
212.64.39.109	attackspambots	Jul 12 18:50:11 eventyay sshd[14841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.39.109 Jul 12 18:50:14 eventyay sshd[14841]: Failed password for invalid user test from 212.64.39.109 port 39746 ssh2 Jul 12 18:56:09 eventyay sshd[16433]: Failed password for root from 212.64.39.109 port 60776 ssh2 ...	2019-07-13 01:07:06
36.84.80.31	attackbotsspam	Jul 12 18:38:06 localhost sshd\[20549\]: Invalid user monitor from 36.84.80.31 port 53889 Jul 12 18:38:06 localhost sshd\[20549\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.84.80.31 Jul 12 18:38:08 localhost sshd\[20549\]: Failed password for invalid user monitor from 36.84.80.31 port 53889 ssh2	2019-07-13 01:24:00
158.69.212.107	attack	Triggered by Fail2Ban at Vostok web server	2019-07-13 01:20:36
142.4.215.150	attackbots	Jul 12 18:42:23 vps691689 sshd[1315]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.4.215.150 Jul 12 18:42:25 vps691689 sshd[1315]: Failed password for invalid user django from 142.4.215.150 port 56390 ssh2 ...	2019-07-13 01:00:21
181.164.107.226	attackbots	Jul 12 18:26:38 tux-35-217 sshd\[5240\]: Invalid user big from 181.164.107.226 port 39309 Jul 12 18:26:38 tux-35-217 sshd\[5240\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.164.107.226 Jul 12 18:26:39 tux-35-217 sshd\[5240\]: Failed password for invalid user big from 181.164.107.226 port 39309 ssh2 Jul 12 18:34:26 tux-35-217 sshd\[5301\]: Invalid user happy from 181.164.107.226 port 40313 Jul 12 18:34:26 tux-35-217 sshd\[5301\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.164.107.226 ...	2019-07-13 01:30:08
116.97.180.89	attackbots	Brute force attempt	2019-07-13 01:04:46
187.85.90.57	attackbots	Jul 12 05:38:00 web1 postfix/smtpd[18898]: warning: 187-85-90-57.city10.com.br[187.85.90.57]: SASL PLAIN authentication failed: authentication failure ...	2019-07-13 01:03:05
50.207.12.103	attackspambots	Jul 12 19:08:18 dedicated sshd[24901]: Invalid user kav from 50.207.12.103 port 43366	2019-07-13 01:23:22
58.219.243.28	attackspam	Jul 12 08:24:58 vdcadm1 sshd[23751]: Bad protocol version identification '' from 58.219.243.28 Jul 12 08:25:01 vdcadm1 sshd[23752]: User r.r from 58.219.243.28 not allowed because listed in DenyUsers Jul 12 08:25:01 vdcadm1 sshd[23753]: Connection closed by 58.219.243.28 Jul 12 08:25:04 vdcadm1 sshd[23755]: User r.r from 58.219.243.28 not allowed because listed in DenyUsers Jul 12 08:25:04 vdcadm1 sshd[23756]: Connection closed by 58.219.243.28 Jul 12 08:25:07 vdcadm1 sshd[23758]: User r.r from 58.219.243.28 not allowed because listed in DenyUsers Jul 12 08:25:07 vdcadm1 sshd[23759]: Connection closed by 58.219.243.28 Jul 12 08:25:10 vdcadm1 sshd[23761]: User r.r from 58.219.243.28 not allowed because listed in DenyUsers Jul 12 08:25:10 vdcadm1 sshd[23762]: Connection closed by 58.219.243.28 Jul 12 08:25:15 vdcadm1 sshd[23763]: User r.r from 58.219.243.28 not allowed because listed in DenyUsers Jul 12 08:25:16 vdcadm1 sshd[23764]: Connection closed by 58.219.243.28 Jul ........ -------------------------------	2019-07-13 00:46:37
193.68.57.155	attackspambots	Jul 12 19:50:11 srv-4 sshd\[16327\]: Invalid user admin from 193.68.57.155 Jul 12 19:50:11 srv-4 sshd\[16327\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.68.57.155 Jul 12 19:50:14 srv-4 sshd\[16327\]: Failed password for invalid user admin from 193.68.57.155 port 41602 ssh2 ...	2019-07-13 01:11:08

Recently Reported IPs

42.48.79.63	42.48.79.98	42.48.79.82	42.49.255.117
42.49.132.50	42.49.103.226	42.49.151.152	42.5.207.41
42.49.80.238	42.49.48.142	42.5.25.142	42.49.132.118
42.53.215.116	42.55.54.3	42.53.193.62	42.56.2.242
42.6.125.224	42.6.125.97	42.57.195.230	42.6.124.204