14.45.149.221 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Korea (Republic of)

Internet Service Provider: KT Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	unauthorized connection attempt	2020-02-26 14:09:01

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.45.149.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5630
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.45.149.221.			IN	A

;; AUTHORITY SECTION:
.			551	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022601 1800 900 604800 86400

;; Query time: 50 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 26 14:08:56 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 221.149.45.14.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 221.149.45.14.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
203.114.109.61	attackspam	Jul 16 10:42:43 rpi sshd[26378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.114.109.61 Jul 16 10:42:45 rpi sshd[26378]: Failed password for invalid user ministerium from 203.114.109.61 port 46322 ssh2	2019-07-16 17:15:36
185.222.211.237	attack	Jul 16 09:23:49 relay postfix/smtpd\[19408\]: NOQUEUE: reject: RCPT from unknown\[185.222.211.237\]: 554 5.7.1 \: Relay access denied\; from=\<8g88z60h9uk0rfc@svatebni-saty-natali.cz\> to=\ proto=ESMTP helo=\<\[185.222.211.2\]\> Jul 16 09:23:49 relay postfix/smtpd\[19408\]: NOQUEUE: reject: RCPT from unknown\[185.222.211.237\]: 554 5.7.1 \: Relay access denied\; from=\<8g88z60h9uk0rfc@svatebni-saty-natali.cz\> to=\ proto=ESMTP helo=\<\[185.222.211.2\]\> Jul 16 09:23:49 relay postfix/smtpd\[19408\]: NOQUEUE: reject: RCPT from unknown\[185.222.211.237\]: 554 5.7.1 \: Relay access denied\; from=\<8g88z60h9uk0rfc@svatebni-saty-natali.cz\> to=\ proto=ESMTP helo=\<\[185.222.211.2\]\> Jul 16 09:23:49 relay postfix/smtpd\[19408\]: NOQUEUE: reject: RCPT from unknown\[185.222.211.237\]: 554 5.7.1 \: Relay access denied\; fro ...	2019-07-16 16:40:25
185.254.120.22	attackbots	RDP Bruteforce	2019-07-16 16:34:14
106.66.205.187	attackspambots	MagicSpam Rule: valid_helo_domain; Spammer IP: 106.66.205.187	2019-07-16 16:49:38
96.75.52.245	attackbots	Jul 16 06:56:55 s64-1 sshd[12777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.75.52.245 Jul 16 06:56:57 s64-1 sshd[12777]: Failed password for invalid user oracle from 96.75.52.245 port 39207 ssh2 Jul 16 07:01:35 s64-1 sshd[12878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.75.52.245 ...	2019-07-16 17:02:01
112.85.42.194	attackbotsspam	16.07.2019 04:26:08 SSH access blocked by firewall	2019-07-16 17:18:35
111.67.43.104	attackbotsspam	Jul 15 20:13:49 box kernel: [1329054.377955] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=111.67.43.104 DST=[munged] LEN=52 TOS=0x00 PREC=0x00 TTL=118 ID=26903 DF PROTO=TCP SPT=51414 DPT=65353 WINDOW=8192 RES=0x00 SYN URGP=0 Jul 15 20:13:52 box kernel: [1329057.452242] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=111.67.43.104 DST=[munged] LEN=52 TOS=0x00 PREC=0x00 TTL=118 ID=5006 DF PROTO=TCP SPT=51414 DPT=65353 WINDOW=8192 RES=0x00 SYN URGP=0 Jul 15 20:13:58 box kernel: [1329063.458481] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=111.67.43.104 DST=[munged] LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=11930 DF PROTO=TCP SPT=51414 DPT=65353 WINDOW=8192 RES=0x00 SYN URGP=0 Jul 16 03:31:06 box kernel: [1355290.761223] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=111.67.43.104 DST=[munged] LEN=52 TOS=0x00 PREC=0x00 TTL=118 ID=31517 DF PROTO=TCP SPT=59078 DPT=65353 WINDOW=8192 RES=0x00 SYN URGP=0 Jul 16 03:31:09 box kernel: [1355293.791141] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=111.67.43.104 DST=[munged] LEN=52 TOS=0x00 PR	2019-07-16 17:05:03
188.254.0.224	attackspambots	Jul 16 10:52:25 vps647732 sshd[1553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.224 Jul 16 10:52:27 vps647732 sshd[1553]: Failed password for invalid user bobby from 188.254.0.224 port 51752 ssh2 ...	2019-07-16 17:07:25
115.210.30.45	attack	[Aegis] @ 2019-07-16 02:30:35 0100 -> Attempt to use mail server as relay (550: Requested action not taken).	2019-07-16 17:08:50
201.13.164.93	attackbots	Automatic report - Port Scan Attack	2019-07-16 17:16:05
213.98.181.220	attackspam	Jul 16 10:56:28 ubuntu-2gb-nbg1-dc3-1 sshd[15871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.98.181.220 Jul 16 10:56:30 ubuntu-2gb-nbg1-dc3-1 sshd[15871]: Failed password for invalid user nagios from 213.98.181.220 port 49569 ssh2 ...	2019-07-16 17:07:06
202.70.65.193	attack	MagicSpam Rule: valid_helo_domain; Spammer IP: 202.70.65.193	2019-07-16 16:44:34
185.222.211.235	attackspambots	Jul 16 09:38:54 relay postfix/smtpd\[19465\]: NOQUEUE: reject: RCPT from unknown\[185.222.211.235\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[185.222.211.2\]\> Jul 16 09:38:54 relay postfix/smtpd\[19465\]: NOQUEUE: reject: RCPT from unknown\[185.222.211.235\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[185.222.211.2\]\> Jul 16 09:38:54 relay postfix/smtpd\[19465\]: NOQUEUE: reject: RCPT from unknown\[185.222.211.235\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[185.222.211.2\]\> Jul 16 09:38:54 relay postfix/smtpd\[19465\]: NOQUEUE: reject: RCPT from unknown\[185.222.211.235\]: 554 5.7.1 \: ...	2019-07-16 16:58:09
59.148.43.97	attack	Invalid user admin from 59.148.43.97 port 37788	2019-07-16 16:37:59
122.175.55.196	attackspambots	Invalid user insserver from 122.175.55.196 port 26875 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.175.55.196 Failed password for invalid user insserver from 122.175.55.196 port 26875 ssh2 Invalid user ci from 122.175.55.196 port 53668 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.175.55.196	2019-07-16 16:55:24

Recently Reported IPs

42.118.127.248	41.157.88.249	41.140.234.85	36.105.34.203
174.255.137.106	27.71.204.116	14.35.12.173	5.65.54.84
220.135.246.70	220.132.223.235	220.86.235.45	153.198.154.82
212.200.65.86	203.255.153.99	197.44.152.107	197.1.208.131
190.144.61.51	157.74.115.14	189.41.87.69	112.121.124.11