118.42.1.49 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Korea Republic of

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
118.42.166.139	attackspam	Attempted connection to port 81.	2020-05-02 03:54:30
118.42.125.170	attack	$f2bV_matches	2020-04-04 17:17:09
118.42.125.170	attack	Mar 24 10:00:45 ip-172-31-62-245 sshd\[6215\]: Invalid user edit from 118.42.125.170\ Mar 24 10:00:47 ip-172-31-62-245 sshd\[6215\]: Failed password for invalid user edit from 118.42.125.170 port 54888 ssh2\ Mar 24 10:05:23 ip-172-31-62-245 sshd\[6279\]: Invalid user www from 118.42.125.170\ Mar 24 10:05:25 ip-172-31-62-245 sshd\[6279\]: Failed password for invalid user www from 118.42.125.170 port 42046 ssh2\ Mar 24 10:10:12 ip-172-31-62-245 sshd\[6396\]: Invalid user dianne from 118.42.125.170\	2020-03-24 18:58:07
118.42.125.170	attackspambots	Mar 19 15:17:44 Ubuntu-1404-trusty-64-minimal sshd\[22368\]: Invalid user bitrix from 118.42.125.170 Mar 19 15:17:44 Ubuntu-1404-trusty-64-minimal sshd\[22368\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.42.125.170 Mar 19 15:17:47 Ubuntu-1404-trusty-64-minimal sshd\[22368\]: Failed password for invalid user bitrix from 118.42.125.170 port 50678 ssh2 Mar 19 15:22:33 Ubuntu-1404-trusty-64-minimal sshd\[11627\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.42.125.170 user=root Mar 19 15:22:35 Ubuntu-1404-trusty-64-minimal sshd\[11627\]: Failed password for root from 118.42.125.170 port 47012 ssh2	2020-03-19 22:37:01
118.42.125.170	attackspambots	SSH / Telnet Brute Force Attempts on Honeypot	2020-03-19 10:47:29
118.42.125.170	attack	2020-03-07T17:33:59.633960shield sshd\[30217\]: Invalid user ftpuser from 118.42.125.170 port 42974 2020-03-07T17:33:59.639254shield sshd\[30217\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.42.125.170 2020-03-07T17:34:01.432532shield sshd\[30217\]: Failed password for invalid user ftpuser from 118.42.125.170 port 42974 ssh2 2020-03-07T17:36:59.385996shield sshd\[30977\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.42.125.170 user=root 2020-03-07T17:37:01.891617shield sshd\[30977\]: Failed password for root from 118.42.125.170 port 42812 ssh2	2020-03-08 01:55:39
118.42.176.54	attackspambots	unauthorized connection attempt	2020-02-24 15:41:51
118.42.189.218	attackbotsspam	Unauthorized connection attempt detected from IP address 118.42.189.218 to port 23 [J]	2020-02-23 19:57:04
118.42.136.243	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-16 01:05:52
118.42.152.67	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-16 01:02:35
118.42.173.113	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-16 00:57:58
118.42.176.54	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-16 00:54:20
118.42.189.218	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-16 00:48:32
118.42.125.170	attack	Feb 14 02:57:35 firewall sshd[27689]: Invalid user QLogic66 from 118.42.125.170 Feb 14 02:57:37 firewall sshd[27689]: Failed password for invalid user QLogic66 from 118.42.125.170 port 56180 ssh2 Feb 14 03:00:38 firewall sshd[27814]: Invalid user araceli from 118.42.125.170 ...	2020-02-14 15:01:51
118.42.125.170	attackbots	SSH invalid-user multiple login attempts	2020-02-10 14:06:52

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 118.42.1.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8532
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;118.42.1.49.			IN	A

;; AUTHORITY SECTION:
.			513	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 16:32:27 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 49.1.42.118.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 49.1.42.118.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
138.197.98.251	attackspam	Fail2Ban	2020-06-24 20:27:24
178.137.82.147	attackbots	Automatic report - Banned IP Access	2020-06-24 21:05:26
222.186.180.17	attack	Jun 24 14:51:09 vm1 sshd[304]: Failed password for root from 222.186.180.17 port 61384 ssh2 Jun 24 14:51:23 vm1 sshd[304]: error: maximum authentication attempts exceeded for root from 222.186.180.17 port 61384 ssh2 [preauth] ...	2020-06-24 20:57:44
46.38.148.18	attackspam	2020-06-24 12:43:14 auth_plain authenticator failed for (User) [46.38.148.18]: 535 Incorrect authentication data (set_id=crs@csmailer.org) 2020-06-24 12:43:38 auth_plain authenticator failed for (User) [46.38.148.18]: 535 Incorrect authentication data (set_id=sml@csmailer.org) 2020-06-24 12:44:00 auth_plain authenticator failed for (User) [46.38.148.18]: 535 Incorrect authentication data (set_id=defiant@csmailer.org) 2020-06-24 12:44:21 auth_plain authenticator failed for (User) [46.38.148.18]: 535 Incorrect authentication data (set_id=advertise@csmailer.org) 2020-06-24 12:44:44 auth_plain authenticator failed for (User) [46.38.148.18]: 535 Incorrect authentication data (set_id=noname@csmailer.org) ...	2020-06-24 20:48:04
38.102.172.61	attackspambots	Jun 24 14:09:41 debian-2gb-nbg1-2 kernel: \[15259247.953718\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=38.102.172.61 DST=195.201.40.59 LEN=40 TOS=0x08 PREC=0x00 TTL=236 ID=55713 PROTO=TCP SPT=46251 DPT=13833 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-24 20:38:45
74.82.47.21	attackspam	1593000528 - 06/24/2020 19:08:48 Host: scan-12c.shadowserver.org/74.82.47.21 Port: 17 UDP Blocked ...	2020-06-24 20:30:16
111.229.134.68	attackspambots	2020-06-24T12:17:15+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)	2020-06-24 21:03:33
78.187.193.70	attackspam	Automatic report - Banned IP Access	2020-06-24 20:40:42
94.25.181.227	attackspam	failed_logins	2020-06-24 21:08:15
132.154.126.101	attackspam	132.154.126.101 - - [24/Jun/2020:13:32:46 +0100] "POST /wp-login.php HTTP/1.1" 200 5999 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 132.154.126.101 - - [24/Jun/2020:13:33:44 +0100] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 132.154.126.101 - - [24/Jun/2020:13:34:47 +0100] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" ...	2020-06-24 20:39:05
89.34.27.43	attack	Automatic report - Banned IP Access	2020-06-24 20:59:43
94.131.204.40	attackspam	Hit honeypot r.	2020-06-24 20:32:42
222.186.15.62	attack	24.06.2020 12:51:46 SSH access blocked by firewall	2020-06-24 20:53:39
82.178.172.39	attackbotsspam	Unauthorized connection attempt from IP address 82.178.172.39 on Port 445(SMB)	2020-06-24 20:50:25
106.12.195.99	attackspam	Jun 24 15:26:27 pkdns2 sshd\[57378\]: Invalid user henry from 106.12.195.99Jun 24 15:26:28 pkdns2 sshd\[57378\]: Failed password for invalid user henry from 106.12.195.99 port 34488 ssh2Jun 24 15:28:49 pkdns2 sshd\[57444\]: Invalid user ymx from 106.12.195.99Jun 24 15:28:50 pkdns2 sshd\[57444\]: Failed password for invalid user ymx from 106.12.195.99 port 39774 ssh2Jun 24 15:31:16 pkdns2 sshd\[57593\]: Failed password for root from 106.12.195.99 port 45052 ssh2Jun 24 15:33:48 pkdns2 sshd\[57669\]: Invalid user admin from 106.12.195.99 ...	2020-06-24 20:49:08

Recently Reported IPs

118.38.129.163	118.44.241.237	118.40.78.24	118.42.102.106
118.45.109.49	118.45.123.10	118.46.79.143	118.43.85.61
118.46.93.244	118.40.31.227	118.67.102.69	118.68.122.124
118.68.118.107	118.68.156.144	118.68.165.202	118.68.107.137
118.68.160.60	118.68.183.218	118.68.231.243	118.68.26.116