211.171.244.42

Basic Info

City: unknown

Region: unknown

Country: Korea Republic of

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 211.171.244.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19280
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;211.171.244.42.			IN	A

;; AUTHORITY SECTION:
.			346	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 19 01:26:05 CST 2022
;; MSG SIZE  rcvd: 107

Host info

42.244.171.211.in-addr.arpa domain name pointer telnet.enewshighway.com.
42.244.171.211.in-addr.arpa domain name pointer enewshighway.com.
42.244.171.211.in-addr.arpa domain name pointer ftp.enewshighway.com.
42.244.171.211.in-addr.arpa domain name pointer telnet.newspaper.co.kr.
42.244.171.211.in-addr.arpa domain name pointer mail.newspaper.co.kr.
42.244.171.211.in-addr.arpa domain name pointer mail.enewshighway.com.
42.244.171.211.in-addr.arpa domain name pointer ftp.newspaper.co.kr.
42.244.171.211.in-addr.arpa domain name pointer newspaper.co.kr.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
42.244.171.211.in-addr.arpa	name = telnet.newspaper.co.kr.
42.244.171.211.in-addr.arpa	name = mail.newspaper.co.kr.
42.244.171.211.in-addr.arpa	name = mail.enewshighway.com.
42.244.171.211.in-addr.arpa	name = ftp.newspaper.co.kr.
42.244.171.211.in-addr.arpa	name = newspaper.co.kr.
42.244.171.211.in-addr.arpa	name = telnet.enewshighway.com.
42.244.171.211.in-addr.arpa	name = enewshighway.com.
42.244.171.211.in-addr.arpa	name = ftp.enewshighway.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.153.198.239	attackspam	Port Scan 3389	2019-11-25 23:57:25
182.61.39.131	attackspam	Nov 25 14:40:52 localhost sshd\[3469\]: Invalid user nikkos from 182.61.39.131 port 52836 Nov 25 14:40:52 localhost sshd\[3469\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.39.131 Nov 25 14:40:53 localhost sshd\[3469\]: Failed password for invalid user nikkos from 182.61.39.131 port 52836 ssh2 ...	2019-11-25 23:25:52
190.202.19.26	attackspambots	Unauthorized connection attempt from IP address 190.202.19.26 on Port 445(SMB)	2019-11-25 23:57:02
63.88.23.183	attackbotsspam	63.88.23.183 was recorded 8 times by 6 hosts attempting to connect to the following ports: 80. Incident counter (4h, 24h, all-time): 8, 58, 636	2019-11-26 00:09:51
104.236.239.60	attackbotsspam	Nov 25 15:40:38 lnxded63 sshd[2976]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.239.60	2019-11-25 23:36:41
181.126.83.125	attackspam	Nov 25 16:23:03 eventyay sshd[26106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.126.83.125 Nov 25 16:23:05 eventyay sshd[26106]: Failed password for invalid user stacey from 181.126.83.125 port 53002 ssh2 Nov 25 16:31:39 eventyay sshd[26301]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.126.83.125 ...	2019-11-25 23:46:13
181.177.244.68	attackspam	Triggered by Fail2Ban at Vostok web server	2019-11-26 00:01:30
185.175.93.27	attackspam	13420/tcp 13422/tcp 21518/tcp... [2019-09-25/11-25]1026pkt,339pt.(tcp)	2019-11-26 00:10:08
84.17.52.81	attack	0,56-00/00 [bc00/m33] PostRequest-Spammer scoring: Lusaka01	2019-11-25 23:35:16
118.98.121.195	attack	Nov 25 16:44:12 MK-Soft-Root2 sshd[28769]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.98.121.195 Nov 25 16:44:14 MK-Soft-Root2 sshd[28769]: Failed password for invalid user pa55w0rd from 118.98.121.195 port 33608 ssh2 ...	2019-11-26 00:12:16
46.101.150.9	attackspam	46.101.150.9 - - \[25/Nov/2019:15:40:22 +0100\] "POST /wp-login.php HTTP/1.0" 200 5731 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 46.101.150.9 - - \[25/Nov/2019:15:40:28 +0100\] "POST /wp-login.php HTTP/1.0" 200 5598 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 46.101.150.9 - - \[25/Nov/2019:15:40:34 +0100\] "POST /wp-login.php HTTP/1.0" 200 5594 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-11-25 23:38:43
188.138.163.85	attack	Port scan: Attack repeated for 24 hours	2019-11-26 00:14:00
106.251.118.123	attack	2019-11-25T15:44:33.494780abusebot-5.cloudsearch.cf sshd\[28443\]: Invalid user test from 106.251.118.123 port 42770	2019-11-25 23:44:48
185.209.0.91	attackspambots	11/25/2019-16:47:16.073884 185.209.0.91 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-25 23:52:23
188.226.167.212	attackspambots	Nov 25 16:47:52 sd-53420 sshd\[13777\]: User root from 188.226.167.212 not allowed because none of user's groups are listed in AllowGroups Nov 25 16:47:52 sd-53420 sshd\[13777\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.226.167.212 user=root Nov 25 16:47:54 sd-53420 sshd\[13777\]: Failed password for invalid user root from 188.226.167.212 port 42878 ssh2 Nov 25 16:53:59 sd-53420 sshd\[14869\]: Invalid user http from 188.226.167.212 Nov 25 16:53:59 sd-53420 sshd\[14869\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.226.167.212 ...	2019-11-26 00:00:08

Recently Reported IPs

211.172.247.105	211.172.247.7	211.171.212.249	211.173.34.139
211.18.191.170	211.180.228.222	211.174.63.15	211.18.191.84
211.173.10.10	211.180.247.205	211.174.61.61	211.172.247.20
211.184.43.162	211.181.116.206	211.18.217.246	211.187.234.227
211.181.255.200	211.184.221.53	211.188.204.36	211.188.153.53