14.48.55.239 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Korea (Republic of)

Internet Service Provider: KT Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 14.48.55.239 to port 23	2020-04-13 01:31:01

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.48.55.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32220
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.48.55.239.			IN	A

;; AUTHORITY SECTION:
.			596	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041200 1800 900 604800 86400

;; Query time: 111 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 13 01:30:58 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 239.55.48.14.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 239.55.48.14.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
137.74.188.47	attackspam	Oct 18 18:16:46 cumulus sshd[15259]: Invalid user oracle from 137.74.188.47 port 57920 Oct 18 18:16:46 cumulus sshd[15259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.188.47 Oct 18 18:16:48 cumulus sshd[15259]: Failed password for invalid user oracle from 137.74.188.47 port 57920 ssh2 Oct 18 18:16:49 cumulus sshd[15259]: Received disconnect from 137.74.188.47 port 57920:11: Bye Bye [preauth] Oct 18 18:16:49 cumulus sshd[15259]: Disconnected from 137.74.188.47 port 57920 [preauth] Oct 18 18:28:36 cumulus sshd[15767]: Invalid user ghostnameadmin from 137.74.188.47 port 39966 Oct 18 18:28:36 cumulus sshd[15767]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.188.47 Oct 18 18:28:38 cumulus sshd[15767]: Failed password for invalid user ghostnameadmin from 137.74.188.47 port 39966 ssh2 Oct 18 18:28:38 cumulus sshd[15767]: Received disconnect from 137.74.188.47 port 39966:11: By........ -------------------------------	2019-10-20 13:29:15
202.152.0.14	attackbots	Oct 20 04:08:33 game-panel sshd[27665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.152.0.14 Oct 20 04:08:35 game-panel sshd[27665]: Failed password for invalid user 123QAZ!@# from 202.152.0.14 port 48014 ssh2 Oct 20 04:12:54 game-panel sshd[27834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.152.0.14	2019-10-20 13:56:01
123.207.127.177	attackbots	invalid login attempt	2019-10-20 13:10:32
222.186.175.147	attackbotsspam	10/20/2019-00:54:35.472866 222.186.175.147 Protocol: 6 ET SCAN Potential SSH Scan	2019-10-20 13:10:09
91.207.107.237	attackbots	[portscan] Port scan	2019-10-20 13:07:34
138.68.12.43	attackspambots	Oct 20 07:05:34 vps647732 sshd[1960]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.12.43 Oct 20 07:05:36 vps647732 sshd[1960]: Failed password for invalid user polarbear from 138.68.12.43 port 59442 ssh2 ...	2019-10-20 13:07:02
36.66.16.235	attackbots	invalid login attempt	2019-10-20 13:21:25
61.133.232.251	attackspambots	Invalid user vincintz from 61.133.232.251 port 11595	2019-10-20 13:00:03
41.79.35.253	attack	10/19/2019-23:57:19.992788 41.79.35.253 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-10-20 13:04:13
222.186.180.147	attackbots	Oct 20 05:21:11 game-panel sshd[30406]: Failed password for root from 222.186.180.147 port 46356 ssh2 Oct 20 05:21:25 game-panel sshd[30406]: Failed password for root from 222.186.180.147 port 46356 ssh2 Oct 20 05:21:30 game-panel sshd[30406]: Failed password for root from 222.186.180.147 port 46356 ssh2 Oct 20 05:21:30 game-panel sshd[30406]: error: maximum authentication attempts exceeded for root from 222.186.180.147 port 46356 ssh2 [preauth]	2019-10-20 13:21:45
186.10.17.84	attackspambots	Oct 19 19:40:45 hpm sshd\[5014\]: Invalid user from 186.10.17.84 Oct 19 19:40:45 hpm sshd\[5014\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.10.17.84 Oct 19 19:40:47 hpm sshd\[5014\]: Failed password for invalid user from 186.10.17.84 port 42416 ssh2 Oct 19 19:45:10 hpm sshd\[5394\]: Invalid user ymw from 186.10.17.84 Oct 19 19:45:10 hpm sshd\[5394\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.10.17.84	2019-10-20 13:51:10
18.207.134.98	attack	Joomla User : try to access forms...	2019-10-20 13:08:24
192.169.214.83	attackbots	invalid login attempt	2019-10-20 13:20:05
36.67.83.169	attackspam	invalid login attempt	2019-10-20 13:19:51
80.82.78.100	attackbotsspam	20.10.2019 05:48:21 Connection to port 49 blocked by firewall	2019-10-20 13:56:50

Recently Reported IPs

197.205.17.117	248.151.185.77	197.44.235.91	195.158.95.241
194.126.224.9	190.201.169.95	190.113.132.170	190.25.225.114
187.17.175.241	47.190.40.144	186.237.232.12	156.163.166.160
57.209.21.6	186.116.147.59	185.128.241.7	183.109.34.41
179.159.58.18	179.156.238.230	91.6.139.170	178.128.235.185