14.45.1.121 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: South Korea

Internet Service Provider: unknown

Hostname: unknown

Organization: Korea Telecom

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
14.45.166.102	attackbots	Exploited Host.	2020-07-26 01:34:07
14.45.175.139	attackspambots	Unauthorized connection attempt detected from IP address 14.45.175.139 to port 23	2020-07-22 17:14:51
14.45.136.203	attackspam	Unauthorized connection attempt detected from IP address 14.45.136.203 to port 23	2020-07-07 04:35:39
14.45.163.247	attack	Unauthorized connection attempt detected from IP address 14.45.163.247 to port 5555	2020-04-13 01:31:29
14.45.101.204	attackbotsspam	" "	2020-04-08 02:27:12
14.45.175.18	attackspam	Port probing on unauthorized port 23	2020-03-25 16:31:01
14.45.129.5	attackbots	Mar 18 13:06:27 system,error,critical: login failure for user admin from 14.45.129.5 via telnet Mar 18 13:06:28 system,error,critical: login failure for user root from 14.45.129.5 via telnet Mar 18 13:06:30 system,error,critical: login failure for user root from 14.45.129.5 via telnet Mar 18 13:06:34 system,error,critical: login failure for user admin from 14.45.129.5 via telnet Mar 18 13:06:36 system,error,critical: login failure for user root from 14.45.129.5 via telnet Mar 18 13:06:38 system,error,critical: login failure for user admin from 14.45.129.5 via telnet Mar 18 13:06:42 system,error,critical: login failure for user root from 14.45.129.5 via telnet Mar 18 13:06:43 system,error,critical: login failure for user root from 14.45.129.5 via telnet Mar 18 13:06:45 system,error,critical: login failure for user root from 14.45.129.5 via telnet Mar 18 13:06:50 system,error,critical: login failure for user root from 14.45.129.5 via telnet	2020-03-19 03:54:24
14.45.149.221	attack	unauthorized connection attempt	2020-02-26 14:09:01
14.45.134.70	attack	unauthorized connection attempt	2020-02-16 15:20:14
14.45.114.39	attackbots	Unauthorized connection attempt detected from IP address 14.45.114.39 to port 4567 [J]	2020-02-05 06:06:05
14.45.121.59	attack	Unauthorized connection attempt detected from IP address 14.45.121.59 to port 2220 [J]	2020-01-22 02:34:46
14.45.197.116	attackspambots	Unauthorized connection attempt detected from IP address 14.45.197.116 to port 81	2020-01-06 00:02:28

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.45.1.121
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41911
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.45.1.121.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019083101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Sep 01 01:04:40 CST 2019
;; MSG SIZE  rcvd: 115

Host info

Host 121.1.45.14.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 121.1.45.14.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
179.53.192.214	attack	Feb 20 14:15:34 server2101 sshd[9500]: Invalid user user1 from 179.53.192.214 port 50194 Feb 20 14:15:34 server2101 sshd[9500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.53.192.214 Feb 20 14:15:37 server2101 sshd[9500]: Failed password for invalid user user1 from 179.53.192.214 port 50194 ssh2 Feb 20 14:15:37 server2101 sshd[9500]: Received disconnect from 179.53.192.214 port 50194:11: Bye Bye [preauth] Feb 20 14:15:37 server2101 sshd[9500]: Disconnected from 179.53.192.214 port 50194 [preauth] Feb 20 14:19:03 server2101 sshd[9558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.53.192.214 user=uucp ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=179.53.192.214	2020-02-21 02:06:10
92.63.194.11	attackbots	Feb 20 18:23:33 legacy sshd[32465]: Failed password for root from 92.63.194.11 port 40489 ssh2 Feb 20 18:23:46 legacy sshd[32479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.63.194.11 Feb 20 18:23:48 legacy sshd[32479]: Failed password for invalid user guest from 92.63.194.11 port 42589 ssh2 ...	2020-02-21 01:39:04
200.150.69.26	attackspambots	Portscan or hack attempt detected by psad/fwsnort	2020-02-21 02:00:17
31.209.59.165	attack	Feb 20 13:58:39 nxxxxxxx sshd[18772]: Invalid user rstudio-server from 31.209.59.165 Feb 20 13:58:41 nxxxxxxx sshd[18772]: Failed password for invalid user rstudio-server from 31.209.59.165 port 38278 ssh2 Feb 20 14:11:51 nxxxxxxx sshd[20336]: Invalid user sonarqube from 31.209.59.165 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=31.209.59.165	2020-02-21 01:50:45
14.29.177.90	attackbots	Feb 20 15:46:10 lnxded64 sshd[19297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.177.90	2020-02-21 01:30:51
170.253.31.9	attackbots	Port probing on unauthorized port 81	2020-02-21 01:42:18
220.132.84.159	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-21 02:04:47
187.188.193.211	attackbotsspam	Feb 20 07:44:13 hanapaa sshd\[26731\]: Invalid user ftpuser from 187.188.193.211 Feb 20 07:44:13 hanapaa sshd\[26731\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=fixed-187-188-193-211.totalplay.net Feb 20 07:44:15 hanapaa sshd\[26731\]: Failed password for invalid user ftpuser from 187.188.193.211 port 51260 ssh2 Feb 20 07:46:20 hanapaa sshd\[26899\]: Invalid user zhugf from 187.188.193.211 Feb 20 07:46:20 hanapaa sshd\[26899\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=fixed-187-188-193-211.totalplay.net	2020-02-21 01:49:38
86.98.216.234	attackspambots	X-Originating-IP: [193.0.225.34] Received: from 10.220.163.139 (EHLO nessie.cs.ubbcluj.ro) (193.0.225.34) by mta4170.mail.ne1.yahoo.com with SMTP; Thu, 20 Feb 2020 11:31:37 +0000 Received: by nessie.cs.ubbcluj.ro (Postfix, from userid 48) id 722F2481781; Thu, 20 Feb 2020 13:31:20 +0200 (EET) Received: from 86.98.216.234 (SquirrelMail authenticated user pblaga) by www.cs.ubbcluj.ro with HTTP; Thu, 20 Feb 2020 13:31:20 +0200 Message-ID: <63e27939c016b7ce39c9fd6816f5e619.squirrel@www.cs.ubbcluj.ro> Date: Thu, 20 Feb 2020 13:31:20 +0200 Subject: Hello Beautiful From: "WILFRED" <7838@scarlet.be> Reply-To: atiworks@yeah.net User-Agent: SquirrelMail/1.4.22-5.el6 MIME-Version: 1.0 Content-Type: text/plain;charset=utf-8 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal To: undisclosed-recipients:; Content-Length: 225	2020-02-21 01:53:29
106.12.205.34	attack	Feb 20 15:15:06 sd-53420 sshd\[30400\]: Invalid user odoo from 106.12.205.34 Feb 20 15:15:06 sd-53420 sshd\[30400\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.205.34 Feb 20 15:15:08 sd-53420 sshd\[30400\]: Failed password for invalid user odoo from 106.12.205.34 port 40490 ssh2 Feb 20 15:19:31 sd-53420 sshd\[30857\]: Invalid user cpanelconnecttrack from 106.12.205.34 Feb 20 15:19:32 sd-53420 sshd\[30857\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.205.34 ...	2020-02-21 01:25:45
142.93.228.230	attackbotsspam	suspicious action Thu, 20 Feb 2020 10:25:22 -0300	2020-02-21 02:02:14
128.90.59.84	attackspambots	(smtpauth) Failed SMTP AUTH login from 128.90.59.84 (IL/Israel/undefined.hostname.localhost): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2020-02-20 14:18:08 login authenticator failed for (User) [128.90.59.84]: 535 Incorrect authentication data (set_id=printer@forhosting.nl) 2020-02-20 14:25:24 login authenticator failed for (User) [128.90.59.84]: 535 Incorrect authentication data (set_id=reception@forhosting.nl) 2020-02-20 14:33:08 login authenticator failed for (User) [128.90.59.84]: 535 Incorrect authentication data (set_id=security@forhosting.nl) 2020-02-20 14:40:59 login authenticator failed for (User) [128.90.59.84]: 535 Incorrect authentication data (set_id=scanner@forhosting.nl) 2020-02-20 14:48:52 login authenticator failed for (User) [128.90.59.84]: 535 Incorrect authentication data (set_id=mail@forhosting.nl)	2020-02-21 02:01:09
51.75.125.222	attackbots	$f2bV_matches	2020-02-21 01:50:58
189.173.195.86	attack	Feb 20 14:15:46 lvps87-230-18-106 sshd[32485]: reveeclipse mapping checking getaddrinfo for dsl-189-173-195-86-dyn.prod-infinhostnameum.com.mx [189.173.195.86] failed - POSSIBLE BREAK-IN ATTEMPT! Feb 20 14:15:46 lvps87-230-18-106 sshd[32485]: Invalid user cpanel from 189.173.195.86 Feb 20 14:15:46 lvps87-230-18-106 sshd[32485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.173.195.86 Feb 20 14:15:48 lvps87-230-18-106 sshd[32485]: Failed password for invalid user cpanel from 189.173.195.86 port 58089 ssh2 Feb 20 14:15:49 lvps87-230-18-106 sshd[32485]: Received disconnect from 189.173.195.86: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=189.173.195.86	2020-02-21 01:58:36
217.128.110.231	attackbots	Feb 20 15:09:46 localhost sshd\[25895\]: Invalid user cpanel from 217.128.110.231 port 43282 Feb 20 15:09:46 localhost sshd\[25895\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.128.110.231 Feb 20 15:09:48 localhost sshd\[25895\]: Failed password for invalid user cpanel from 217.128.110.231 port 43282 ssh2	2020-02-21 01:33:46

Recently Reported IPs

199.203.24.133	164.49.187.163	71.217.105.139	82.108.81.88
125.175.161.158	186.2.184.82	196.92.230.162	5.175.25.143
38.15.89.182	210.168.244.142	182.74.161.84	173.241.243.85
77.48.64.195	181.168.180.251	217.186.91.60	174.5.179.230
168.90.149.25	62.21.23.55	85.180.93.134	139.199.180.206