114.199.212.102

Basic Info

City: unknown

Region: unknown

Country: Korea, Republic of

Internet Service Provider: Hyundai Communications & Network

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Fail2Ban Ban Triggered	2019-10-23 05:37:01

Comments on same subnet:

IP	Type	Details	Datetime
114.199.212.42	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/114.199.212.42/ KR - 1H : (124) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : KR NAME ASN : ASN10175 IP : 114.199.212.42 CIDR : 114.199.212.0/22 PREFIX COUNT : 45 UNIQUE IP COUNT : 46080 WYKRYTE ATAKI Z ASN10175 : 1H - 1 3H - 1 6H - 2 12H - 2 24H - 3 DateTime : 2019-10-08 13:47:30 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-09 03:09:52
114.199.212.93	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-11 18:45:28

Type

Details

Datetime

114.199.212.42

attackspambots

IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/114.199.212.42/ 
 KR - 1H : (124)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : KR 
 NAME ASN : ASN10175 
 
 IP : 114.199.212.42 
 
 CIDR : 114.199.212.0/22 
 
 PREFIX COUNT : 45 
 
 UNIQUE IP COUNT : 46080 
 
 
 WYKRYTE ATAKI Z ASN10175 :  
  1H - 1 
  3H - 1 
  6H - 2 
 12H - 2 
 24H - 3 
 
 DateTime : 2019-10-08 13:47:30 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery

2019-10-09 03:09:52

114.199.212.93

attack

MultiHost/MultiPort Probe, Scan, Hack -

2019-08-11 18:45:28

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.199.212.102
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37196
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.199.212.102.		IN	A

;; AUTHORITY SECTION:
.			316	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102201 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 23 05:36:59 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 102.212.199.114.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 102.212.199.114.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.48.216	attackbotsspam	Apr 21 17:05:07 gw1 sshd[14863]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.216 Apr 21 17:05:09 gw1 sshd[14863]: Failed password for invalid user bot from 106.12.48.216 port 59828 ssh2 ...	2020-04-21 23:51:30
129.211.94.30	attackspambots	"fail2ban match"	2020-04-21 23:33:14
51.15.226.137	attack	Apr 21 18:02:08 [host] sshd[6047]: Invalid user vo Apr 21 18:02:08 [host] sshd[6047]: pam_unix(sshd:a Apr 21 18:02:10 [host] sshd[6047]: Failed password	2020-04-22 00:10:15
78.134.90.84	attackspambots	Invalid user rt from 78.134.90.84 port 34644	2020-04-22 00:03:12
118.25.10.238	attack	Invalid user ou from 118.25.10.238 port 38100	2020-04-21 23:40:39
80.211.45.85	attack	2020-04-21T16:45:56.797558amanda2.illicoweb.com sshd\[10873\]: Invalid user admin3 from 80.211.45.85 port 44272 2020-04-21T16:45:56.800958amanda2.illicoweb.com sshd\[10873\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 2020-04-21T16:45:59.057334amanda2.illicoweb.com sshd\[10873\]: Failed password for invalid user admin3 from 80.211.45.85 port 44272 ssh2 2020-04-21T16:53:49.015722amanda2.illicoweb.com sshd\[11392\]: Invalid user ftpuser1 from 80.211.45.85 port 38454 2020-04-21T16:53:49.018103amanda2.illicoweb.com sshd\[11392\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.45.85 ...	2020-04-22 00:02:34
106.12.197.67	attack	2020-04-21T14:33:21.683916vps751288.ovh.net sshd\[18190\]: Invalid user ya from 106.12.197.67 port 57856 2020-04-21T14:33:21.696522vps751288.ovh.net sshd\[18190\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.197.67 2020-04-21T14:33:24.204844vps751288.ovh.net sshd\[18190\]: Failed password for invalid user ya from 106.12.197.67 port 57856 ssh2 2020-04-21T14:35:41.489206vps751288.ovh.net sshd\[18208\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.197.67 user=root 2020-04-21T14:35:43.214804vps751288.ovh.net sshd\[18208\]: Failed password for root from 106.12.197.67 port 57294 ssh2	2020-04-21 23:50:38
83.61.242.136	attackspam	83.61.242.136 - - [20/Apr/2020:06:01:11 +0100] "GET /pma2020/index.php?lang=en	2020-04-22 00:01:15
51.91.110.249	attackspam	SSH brute force attempt	2020-04-22 00:08:40
61.19.86.219	attackbotsspam	Invalid user testftp from 61.19.86.219 port 40014	2020-04-22 00:06:10
128.199.36.177	attack	Apr 21 08:23:27 mockhub sshd[8610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.36.177 Apr 21 08:23:28 mockhub sshd[8610]: Failed password for invalid user it from 128.199.36.177 port 46604 ssh2 ...	2020-04-21 23:34:38
113.247.250.238	attackbots	Invalid user hadoop from 113.247.250.238 port 50164	2020-04-21 23:44:51
50.227.195.3	attackbotsspam	prod11 ...	2020-04-22 00:10:35
150.136.163.76	attack	Invalid user fitri from 150.136.163.76 port 40968	2020-04-21 23:27:47
139.99.98.248	attack	(sshd) Failed SSH login from 139.99.98.248 (SG/Singapore/248.ip-139-99-98.eu): 5 in the last 3600 secs	2020-04-21 23:29:57

Recently Reported IPs

174.233.134.218	68.183.188.183	217.70.138.207	189.166.160.142
201.28.8.163	96.58.45.5	34.87.6.255	108.162.212.215
35.187.99.216	34.89.169.196	198.98.183.134	195.144.196.34
202.254.236.150	24.38.142.82	27.75.126.208	118.126.94.215
37.26.209.229	80.82.77.221	194.182.177.163	218.146.254.195