196.48.115.42 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Korea (the Republic of)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 196.48.115.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1064
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;196.48.115.42.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021400 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 14 14:46:21 CST 2025
;; MSG SIZE  rcvd: 106

Host info

Host 42.115.48.196.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.115.48.196.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
114.232.104.42	attack	Sep 1 05:42:39 bacztwo courieresmtpd[23152]: error,relay=::ffff:114.232.104.42,msg="535 Authentication failed.",cmd: AUTH LOGIN hr Sep 1 05:43:31 bacztwo courieresmtpd[14239]: error,relay=::ffff:114.232.104.42,msg="535 Authentication failed.",cmd: AUTH LOGIN hr Sep 1 05:45:09 bacztwo courieresmtpd[6092]: error,relay=::ffff:114.232.104.42,msg="535 Authentication failed.",cmd: AUTH LOGIN andcycle Sep 1 05:45:17 bacztwo courieresmtpd[24698]: error,relay=::ffff:114.232.104.42,msg="535 Authentication failed.",cmd: AUTH LOGIN hr Sep 1 05:45:42 bacztwo courieresmtpd[10302]: error,relay=::ffff:114.232.104.42,msg="535 Authentication failed.",cmd: AUTH LOGIN hr ...	2019-09-01 12:22:16
221.214.9.91	attackspambots	Invalid user thomas from 221.214.9.91 port 56716	2019-09-01 11:49:57
222.186.30.111	attack	01.09.2019 03:28:30 SSH access blocked by firewall	2019-09-01 11:45:54
112.78.45.40	attack	Invalid user firma from 112.78.45.40 port 40040	2019-09-01 12:19:04
37.187.248.10	attackspambots	Invalid user jerrard from 37.187.248.10 port 13780	2019-09-01 12:21:32
103.65.194.5	attack	Sep 1 03:12:46 dev0-dcde-rnet sshd[19602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.65.194.5 Sep 1 03:12:48 dev0-dcde-rnet sshd[19602]: Failed password for invalid user diana from 103.65.194.5 port 35564 ssh2 Sep 1 03:17:58 dev0-dcde-rnet sshd[19616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.65.194.5	2019-09-01 11:59:04
82.185.94.181	attack	Telnetd brute force attack detected by fail2ban	2019-09-01 12:04:20
144.217.85.183	attackspam	Aug 31 17:34:46 auw2 sshd\[31144\]: Invalid user shan from 144.217.85.183 Aug 31 17:34:46 auw2 sshd\[31144\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.ip-144-217-85.net Aug 31 17:34:48 auw2 sshd\[31144\]: Failed password for invalid user shan from 144.217.85.183 port 52585 ssh2 Aug 31 17:43:30 auw2 sshd\[32015\]: Invalid user johnny from 144.217.85.183 Aug 31 17:43:30 auw2 sshd\[32015\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.ip-144-217-85.net	2019-09-01 11:48:25
106.12.107.201	attackspambots	Sep 1 06:41:05 www5 sshd\[24929\]: Invalid user git from 106.12.107.201 Sep 1 06:41:05 www5 sshd\[24929\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.107.201 Sep 1 06:41:07 www5 sshd\[24929\]: Failed password for invalid user git from 106.12.107.201 port 50102 ssh2 ...	2019-09-01 11:58:29
118.97.113.234	attackbotsspam	f2b trigger Multiple SASL failures	2019-09-01 11:50:35
140.224.111.187	attack	Lines containing failures of 140.224.111.187 Aug 31 23:37:11 home sshd[8263]: Invalid user admin from 140.224.111.187 port 55763 Aug 31 23:37:11 home sshd[8263]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.224.111.187 Aug 31 23:37:13 home sshd[8263]: Failed password for invalid user admin from 140.224.111.187 port 55763 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=140.224.111.187	2019-09-01 11:40:19
198.228.145.150	attack	Sep 1 03:19:19 MK-Soft-VM6 sshd\[11799\]: Invalid user exim from 198.228.145.150 port 33390 Sep 1 03:19:19 MK-Soft-VM6 sshd\[11799\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.228.145.150 Sep 1 03:19:22 MK-Soft-VM6 sshd\[11799\]: Failed password for invalid user exim from 198.228.145.150 port 33390 ssh2 ...	2019-09-01 12:17:12
106.13.33.181	attack	Sep 1 03:42:17 hcbbdb sshd\[19414\]: Invalid user kayten from 106.13.33.181 Sep 1 03:42:17 hcbbdb sshd\[19414\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.33.181 Sep 1 03:42:19 hcbbdb sshd\[19414\]: Failed password for invalid user kayten from 106.13.33.181 port 52924 ssh2 Sep 1 03:47:31 hcbbdb sshd\[19995\]: Invalid user FB from 106.13.33.181 Sep 1 03:47:31 hcbbdb sshd\[19995\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.33.181	2019-09-01 11:57:02
175.197.74.237	attackbots	Sep 1 05:54:56 minden010 sshd[30844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.197.74.237 Sep 1 05:54:58 minden010 sshd[30844]: Failed password for invalid user richard from 175.197.74.237 port 8802 ssh2 Sep 1 06:02:14 minden010 sshd[3263]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.197.74.237 ...	2019-09-01 12:14:44
165.227.97.108	attackbotsspam	Aug 31 23:40:25 debian sshd[14039]: Unable to negotiate with 165.227.97.108 port 52554: no matching key exchange method found. Their offer: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] Aug 31 23:46:11 debian sshd[14261]: Unable to negotiate with 165.227.97.108 port 39624: no matching key exchange method found. Their offer: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] ...	2019-09-01 12:19:28

Recently Reported IPs

64.135.175.182	23.173.88.60	100.254.50.238	124.97.74.131
220.147.250.40	46.76.86.142	41.147.81.187	206.201.87.252
213.212.94.230	251.89.235.14	142.130.230.247	161.74.60.7
143.207.42.127	26.97.20.198	86.27.95.195	84.252.0.86
144.111.179.98	254.249.130.179	178.66.123.104	97.105.105.126