78.85.48.48 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
78.85.48.225	attackspambots	Unauthorized connection attempt from IP address 78.85.48.225 on Port 445(SMB)	2020-08-01 06:23:46
78.85.48.201	attack	Automatic report - Port Scan Attack	2020-07-16 15:06:43
78.85.48.86	attack	Honeypot attack, port: 445, PTR: a86.sub48.net78.udm.net.	2020-06-06 11:13:53
78.85.48.86	attackspambots	20/6/3@07:57:29: FAIL: Alarm-Intrusion address from=78.85.48.86 ...	2020-06-03 20:21:23
78.85.48.225	attack	Port Scan	2020-05-30 01:37:17
78.85.48.221	attackbots	Unauthorized connection attempt from IP address 78.85.48.221 on Port 445(SMB)	2020-04-24 01:29:32
78.85.48.55	attackbots	1582813527 - 02/27/2020 15:25:27 Host: 78.85.48.55/78.85.48.55 Port: 445 TCP Blocked	2020-02-28 00:57:25
78.85.48.198	attackspam	Honeypot attack, port: 445, PTR: a198.sub48.net78.udm.net.	2020-02-08 21:20:44
78.85.48.76	attack	Unauthorized connection attempt from IP address 78.85.48.76 on Port 445(SMB)	2019-12-16 06:24:39
78.85.48.130	attack	Port Scan: TCP/445	2019-09-14 10:51:42
78.85.48.7	attackspam	Honeypot attack, port: 445, PTR: a7.sub48.net78.udm.net.	2019-08-09 18:59:38

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 78.85.48.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15883
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;78.85.48.48.			IN	A

;; AUTHORITY SECTION:
.			127	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 09:12:51 CST 2022
;; MSG SIZE  rcvd: 104

Host info

48.48.85.78.in-addr.arpa domain name pointer a48.sub48.net78.udm.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
48.48.85.78.in-addr.arpa	name = a48.sub48.net78.udm.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
82.97.16.22	attackspambots	(ftpd) Failed FTP login from 82.97.16.22 (FR/France/webv2.qcnscruise.com): 10 in the last 3600 secs	2019-09-07 07:25:54
175.211.112.250	attackspam	SSH scan ::	2019-09-07 07:18:39
116.96.224.151	attackspam	Unauthorized connection attempt from IP address 116.96.224.151 on Port 445(SMB)	2019-09-07 06:49:46
36.91.118.190	attack	Unauthorized connection attempt from IP address 36.91.118.190 on Port 445(SMB)	2019-09-07 06:51:22
121.142.111.222	attackbotsspam	Sep 6 15:08:20 XXX sshd[34614]: Invalid user ofsaa from 121.142.111.222 port 51916	2019-09-07 07:13:52
51.38.231.36	attack	Sep 7 01:16:47 mail sshd\[20571\]: Failed password for invalid user ts3 from 51.38.231.36 port 60514 ssh2 Sep 7 01:20:31 mail sshd\[20892\]: Invalid user vbox from 51.38.231.36 port 47584 Sep 7 01:20:31 mail sshd\[20892\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.231.36 Sep 7 01:20:33 mail sshd\[20892\]: Failed password for invalid user vbox from 51.38.231.36 port 47584 ssh2 Sep 7 01:24:13 mail sshd\[21291\]: Invalid user gitlab from 51.38.231.36 port 34662 Sep 7 01:24:13 mail sshd\[21291\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.231.36	2019-09-07 07:30:53
218.98.40.150	attackspambots	Sep 7 00:04:07 saschabauer sshd[11497]: Failed password for root from 218.98.40.150 port 40806 ssh2 Sep 7 00:04:09 saschabauer sshd[11497]: Failed password for root from 218.98.40.150 port 40806 ssh2	2019-09-07 06:50:18
175.211.112.246	attackbots	Sep 6 21:07:27 XXX sshd[40008]: Invalid user ofsaa from 175.211.112.246 port 52568	2019-09-07 07:18:04
213.47.38.104	attackbotsspam	Sep 6 23:22:13 [host] sshd[24941]: Invalid user asam from 213.47.38.104 Sep 6 23:22:13 [host] sshd[24941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.47.38.104 Sep 6 23:22:14 [host] sshd[24941]: Failed password for invalid user asam from 213.47.38.104 port 47048 ssh2	2019-09-07 07:04:53
59.126.226.16	attackspam	Sep 6 08:35:04 localhost kernel: [1511120.920829] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=59.126.226.16 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=13022 PROTO=TCP SPT=65024 DPT=52869 WINDOW=54056 RES=0x00 SYN URGP=0 Sep 6 08:35:04 localhost kernel: [1511120.920853] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=59.126.226.16 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=13022 PROTO=TCP SPT=65024 DPT=52869 SEQ=758669438 ACK=0 WINDOW=54056 RES=0x00 SYN URGP=0 Sep 6 10:00:58 localhost kernel: [1516275.085133] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=59.126.226.16 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=26659 PROTO=TCP SPT=65024 DPT=52869 WINDOW=54056 RES=0x00 SYN URGP=0 Sep 6 10:00:58 localhost kernel: [1516275.085157] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=59.126.226.16 DST=[mungedIP2] LEN=40 TOS=0x00 PR	2019-09-07 07:07:56
198.44.228.64	attackspambots	" "	2019-09-07 06:59:45
202.77.48.250	attackbots	Sep 6 17:06:20 MK-Soft-VM3 sshd\[17562\]: Invalid user vnc from 202.77.48.250 port 56448 Sep 6 17:06:20 MK-Soft-VM3 sshd\[17562\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.77.48.250 Sep 6 17:06:22 MK-Soft-VM3 sshd\[17562\]: Failed password for invalid user vnc from 202.77.48.250 port 56448 ssh2 ...	2019-09-07 07:05:07
106.12.99.218	attackspambots	Sep 7 00:49:43 mail sshd\[17399\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.99.218 Sep 7 00:49:45 mail sshd\[17399\]: Failed password for invalid user ubuntu from 106.12.99.218 port 39510 ssh2 Sep 7 00:54:00 mail sshd\[17839\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.99.218 user=mysql Sep 7 00:54:02 mail sshd\[17839\]: Failed password for mysql from 106.12.99.218 port 46360 ssh2 Sep 7 00:58:08 mail sshd\[18266\]: Invalid user butter from 106.12.99.218 port 53220	2019-09-07 07:04:33
78.188.164.168	attackspam	Automatic report - Port Scan Attack	2019-09-07 06:52:27
45.178.3.41	attackspam	Unauthorized connection attempt from IP address 45.178.3.41 on Port 445(SMB)	2019-09-07 07:06:18

Recently Reported IPs

78.85.216.79	78.85.5.133	78.85.251.179	78.87.239.16
78.87.216.202	78.87.128.146	78.87.27.122	78.9.72.87
78.87.220.141	78.88.224.175	78.92.250.93	78.92.48.140
78.92.170.193	78.92.54.31	78.95.12.233	78.96.99.61
78.98.130.165	78.99.111.116	78.99.32.212	78.97.229.194