211.196.253.48

Basic Info

City: Seoul

Region: Seoul

Country: South Korea

Internet Service Provider: unknown

Hostname: unknown

Organization: Korea Telecom

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 211.196.253.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31570
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;211.196.253.48.			IN	A

;; AUTHORITY SECTION:
.			1474	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051700 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri May 17 22:52:16 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 48.253.196.211.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 48.253.196.211.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.65.249.48	attack	May 27 09:46:46 lukav-desktop sshd\[30280\]: Invalid user honeyridge from 222.65.249.48 May 27 09:46:46 lukav-desktop sshd\[30280\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.65.249.48 May 27 09:46:47 lukav-desktop sshd\[30280\]: Failed password for invalid user honeyridge from 222.65.249.48 port 59296 ssh2 May 27 09:53:33 lukav-desktop sshd\[30306\]: Invalid user nagios from 222.65.249.48 May 27 09:53:33 lukav-desktop sshd\[30306\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.65.249.48	2020-05-27 15:49:00
142.44.161.209	attackbotsspam	Lines containing failures of 142.44.161.209 May 25 09:31:34 * sshd[93632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.161.209 user=r.r May 25 09:31:36 * sshd[93632]: Failed password for r.r from 142.44.161.209 port 34264 ssh2 May 25 09:31:36 * sshd[93632]: Received disconnect from 142.44.161.209 port 34264:11: Bye Bye [preauth] May 25 09:31:36 * sshd[93632]: Disconnected from authenticating user r.r 142.44.161.209 port 34264 [preauth] May 25 10:06:43 * sshd[98469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.161.209 user=r.r May 25 10:06:45 * sshd[98469]: Failed password for r.r from 142.44.161.209 port 55474 ssh2 May 25 10:06:45 * sshd[98469]: Received disconnect from 142.44.161.209 port 55474:11: Bye Bye [preauth] May 25 10:06:45 * sshd[98469]: Disconnected from authenticating user r.r 142.44.161.209 port 55474 [preauth] May 25 10:14:09 *** sshd[9923........ ------------------------------	2020-05-27 15:45:52
89.189.186.45	attackspam	May 27 09:35:39 piServer sshd[19156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.189.186.45 May 27 09:35:41 piServer sshd[19156]: Failed password for invalid user toor from 89.189.186.45 port 46590 ssh2 May 27 09:41:18 piServer sshd[19883]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.189.186.45 ...	2020-05-27 15:49:44
3.126.137.60	attackspam	May 27 07:20:41 dev0-dcde-rnet sshd[9601]: Failed password for root from 3.126.137.60 port 37788 ssh2 May 27 07:34:13 dev0-dcde-rnet sshd[9626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.126.137.60 May 27 07:34:15 dev0-dcde-rnet sshd[9626]: Failed password for invalid user doug from 3.126.137.60 port 37598 ssh2	2020-05-27 15:24:11
125.140.155.81	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-05-27 15:42:19
103.145.12.122	attackbots	May 27 09:14:28 debian-2gb-nbg1-2 kernel: \[12822464.158337\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=103.145.12.122 DST=195.201.40.59 LEN=445 TOS=0x00 PREC=0x00 TTL=53 ID=46930 DF PROTO=UDP SPT=5246 DPT=5060 LEN=425	2020-05-27 15:22:35
84.198.12.82	attackspambots	DATE:2020-05-27 05:53:52, IP:84.198.12.82, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-05-27 15:25:39
106.12.113.111	attackbots	DATE:2020-05-27 05:53:53, IP:106.12.113.111, PORT:ssh SSH brute force auth (docker-dc)	2020-05-27 15:23:31
128.199.206.140	attackbotsspam	WordPress login Brute force / Web App Attack on client site.	2020-05-27 15:28:11
103.25.21.34	attackspam	$f2bV_matches	2020-05-27 15:30:57
61.147.111.177	attackspam	05/26/2020-23:53:26.998486 61.147.111.177 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-05-27 15:44:12
222.252.11.10	attackspambots	2020-05-27T08:13:33.310193v22018076590370373 sshd[27996]: Failed password for root from 222.252.11.10 port 41227 ssh2 2020-05-27T08:17:35.024884v22018076590370373 sshd[29981]: Invalid user rOot.123 from 222.252.11.10 port 42795 2020-05-27T08:17:35.029447v22018076590370373 sshd[29981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.252.11.10 2020-05-27T08:17:35.024884v22018076590370373 sshd[29981]: Invalid user rOot.123 from 222.252.11.10 port 42795 2020-05-27T08:17:36.776884v22018076590370373 sshd[29981]: Failed password for invalid user rOot.123 from 222.252.11.10 port 42795 ssh2 ...	2020-05-27 15:41:22
77.42.91.245	attackbots	Automatic report - Port Scan Attack	2020-05-27 15:31:15
123.206.219.211	attackspambots	$f2bV_matches	2020-05-27 15:41:03
62.78.80.45	attack	20/5/27@02:25:11: FAIL: Alarm-Network address from=62.78.80.45 20/5/27@02:25:11: FAIL: Alarm-Network address from=62.78.80.45 ...	2020-05-27 15:40:45

Recently Reported IPs

195.88.63.18	206.204.247.173	80.211.55.164	47.237.209.148
191.113.57.71	200.148.143.86	14.139.39.133	35.103.16.102
98.41.142.133	181.40.66.61	179.2.156.205	178.218.1.139
192.194.106.206	89.251.144.37	181.156.86.166	129.98.19.12
98.52.206.80	213.20.90.147	109.168.57.242	111.186.215.74