14.34.20.50 - IPInfo

Basic Info

City: Namdong-gu

Region: Incheon

Country: South Korea

Internet Service Provider: KT Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	SSH bruteforce	2019-10-24 02:09:11

Comments on same subnet:

IP	Type	Details	Datetime
14.34.204.226	attackbotsspam	Unauthorized connection attempt detected from IP address 14.34.204.226 to port 4567 [J]	2020-01-31 09:07:03
14.34.204.226	attackbotsspam	Unauthorized connection attempt detected from IP address 14.34.204.226 to port 4567 [J]	2020-01-07 13:37:18
14.34.204.226	attackspambots	Unauthorized connection attempt detected from IP address 14.34.204.226 to port 4567 [J]	2020-01-05 09:12:01
14.34.202.162	attackspambots	Honeypot attack, port: 5555, PTR: PTR record not found	2019-11-30 16:59:22
14.34.20.144	attackbotsspam	Oct 26 13:09:02 game-panel sshd[11317]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.34.20.144 Oct 26 13:09:04 game-panel sshd[11317]: Failed password for invalid user Hamburger123 from 14.34.20.144 port 35678 ssh2 Oct 26 13:11:19 game-panel sshd[11589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.34.20.144	2019-10-26 22:31:54

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.34.20.50
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17397
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.34.20.50.			IN	A

;; AUTHORITY SECTION:
.			159	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102301 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 24 02:09:07 CST 2019
;; MSG SIZE  rcvd: 115

Host info

Host 50.20.34.14.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 50.20.34.14.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.207.11.10	attackbots	DATE:2020-03-04 12:01:25, IP:103.207.11.10, PORT:ssh SSH brute force auth (docker-dc)	2020-03-04 20:14:01
94.154.30.130	attack	spam	2020-03-04 20:22:31
66.70.160.187	attackspam	php WP PHPmyadamin ABUSE blocked for 12h	2020-03-04 20:11:44
92.117.240.216	attackspambots	Automatic report - Port Scan Attack	2020-03-04 20:23:17
37.151.121.139	attack	Email rejected due to spam filtering	2020-03-04 20:40:51
95.181.131.153	attack	Mar 3 23:30:39 pixelmemory sshd[18500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.181.131.153 Mar 3 23:30:41 pixelmemory sshd[18500]: Failed password for invalid user storm from 95.181.131.153 port 45922 ssh2 Mar 3 23:42:10 pixelmemory sshd[20047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.181.131.153 ...	2020-03-04 20:26:03
77.222.187.20	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-04 20:23:41
68.183.85.75	attackbotsspam	Mar 4 01:51:55 web1 sshd\[7374\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.85.75 user=root Mar 4 01:51:57 web1 sshd\[7374\]: Failed password for root from 68.183.85.75 port 52692 ssh2 Mar 4 01:59:50 web1 sshd\[8101\]: Invalid user steam from 68.183.85.75 Mar 4 01:59:50 web1 sshd\[8101\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.85.75 Mar 4 01:59:52 web1 sshd\[8101\]: Failed password for invalid user steam from 68.183.85.75 port 33116 ssh2	2020-03-04 20:14:28
106.12.28.10	attackspambots	SSH/22 MH Probe, BF, Hack -	2020-03-04 20:48:02
41.209.115.253	attack	Mar 4 00:19:47 lamijardin sshd[20961]: Invalid user test101 from 41.209.115.253 Mar 4 00:19:47 lamijardin sshd[20961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.209.115.253 Mar 4 00:19:49 lamijardin sshd[20961]: Failed password for invalid user test101 from 41.209.115.253 port 35685 ssh2 Mar 4 00:19:49 lamijardin sshd[20961]: Received disconnect from 41.209.115.253 port 35685:11: Bye Bye [preauth] Mar 4 00:19:49 lamijardin sshd[20961]: Disconnected from 41.209.115.253 port 35685 [preauth] Mar 4 01:07:02 lamijardin sshd[21153]: Invalid user app-ohras from 41.209.115.253 Mar 4 01:07:02 lamijardin sshd[21153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.209.115.253 Mar 4 01:07:04 lamijardin sshd[21153]: Failed password for invalid user app-ohras from 41.209.115.253 port 49090 ssh2 Mar 4 01:07:04 lamijardin sshd[21153]: Received disconnect from 41.209.115.253 port 49090:........ -------------------------------	2020-03-04 20:32:57
124.115.173.253	attackspambots	DATE:2020-03-04 12:31:42, IP:124.115.173.253, PORT:ssh SSH brute force auth (docker-dc)	2020-03-04 20:19:40
185.94.111.1	attack	[portscan] udp/1900 [ssdp] *(RWIN=-)(03041211)	2020-03-04 20:44:02
159.89.115.126	attackbotsspam	2020-03-04T12:19:31.683987vps773228.ovh.net sshd[27065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.115.126 user=root 2020-03-04T12:19:34.034009vps773228.ovh.net sshd[27065]: Failed password for root from 159.89.115.126 port 43908 ssh2 2020-03-04T12:29:37.755131vps773228.ovh.net sshd[27274]: Invalid user panyongjia from 159.89.115.126 port 46310 2020-03-04T12:29:37.767673vps773228.ovh.net sshd[27274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.115.126 2020-03-04T12:29:37.755131vps773228.ovh.net sshd[27274]: Invalid user panyongjia from 159.89.115.126 port 46310 2020-03-04T12:29:39.309576vps773228.ovh.net sshd[27274]: Failed password for invalid user panyongjia from 159.89.115.126 port 46310 ssh2 2020-03-04T12:37:43.343868vps773228.ovh.net sshd[27456]: Invalid user store from 159.89.115.126 port 48658 2020-03-04T12:37:43.354302vps773228.ovh.net sshd[27456]: pam_unix(sshd:auth): authe ...	2020-03-04 20:44:57
190.144.135.118	attack	Mar 3 21:13:24 Ubuntu-1404-trusty-64-minimal sshd\[7628\]: Invalid user oracle from 190.144.135.118 Mar 3 21:13:24 Ubuntu-1404-trusty-64-minimal sshd\[7628\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.144.135.118 Mar 3 21:13:25 Ubuntu-1404-trusty-64-minimal sshd\[7628\]: Failed password for invalid user oracle from 190.144.135.118 port 40912 ssh2 Mar 4 05:51:15 Ubuntu-1404-trusty-64-minimal sshd\[7740\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.144.135.118 user=root Mar 4 05:51:17 Ubuntu-1404-trusty-64-minimal sshd\[7740\]: Failed password for root from 190.144.135.118 port 53955 ssh2	2020-03-04 20:37:25
139.162.168.248	attackbots	Automatic report - XMLRPC Attack	2020-03-04 20:50:23

Recently Reported IPs

67.198.230.167	92.53.64.143	156.168.145.114	134.129.189.49
80.232.246.116	91.104.25.201	138.86.69.98	183.7.250.218
178.188.59.157	111.66.84.219	139.175.236.88	198.54.104.38
177.106.23.169	173.153.143.171	182.179.183.74	117.121.204.80
219.105.24.171	210.113.219.93	222.247.87.45	71.173.125.171