141.223.163.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Korea, Republic of

Internet Service Provider: Pohang University of Science and Technology

Hostname: unknown

Organization: unknown

Usage Type: University/College/School

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	...	2020-02-02 04:41:59
attack	Nov 23 02:19:59 sso sshd[29517]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.223.163.2 Nov 23 02:20:01 sso sshd[29517]: Failed password for invalid user liferay from 141.223.163.2 port 49990 ssh2 ...	2019-11-23 09:31:53

Type

Details

Datetime

attackbotsspam

...

2020-02-02 04:41:59

attack

Nov 23 02:19:59 sso sshd[29517]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.223.163.2
Nov 23 02:20:01 sso sshd[29517]: Failed password for invalid user liferay from 141.223.163.2 port 49990 ssh2
...

2019-11-23 09:31:53

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 141.223.163.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60354
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;141.223.163.2.			IN	A

;; AUTHORITY SECTION:
.			543	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112201 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 23 09:31:50 CST 2019
;; MSG SIZE  rcvd: 117

Host info

2.163.223.141.in-addr.arpa domain name pointer minerva.postech.ac.kr.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.163.223.141.in-addr.arpa	name = minerva.postech.ac.kr.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
150.254.222.97	attackbots	Failed password for invalid user jakob from 150.254.222.97 port 33790 ssh2 Invalid user redmine from 150.254.222.97 port 59925 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.254.222.97 Failed password for invalid user redmine from 150.254.222.97 port 59925 ssh2 Invalid user aman from 150.254.222.97 port 57833	2019-08-04 19:34:12
200.216.30.74	attackspambots	Aug 4 12:53:17 OPSO sshd\[11949\]: Invalid user donny from 200.216.30.74 port 34654 Aug 4 12:53:17 OPSO sshd\[11949\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.216.30.74 Aug 4 12:53:19 OPSO sshd\[11949\]: Failed password for invalid user donny from 200.216.30.74 port 34654 ssh2 Aug 4 12:58:55 OPSO sshd\[12577\]: Invalid user lynx from 200.216.30.74 port 21626 Aug 4 12:58:55 OPSO sshd\[12577\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.216.30.74	2019-08-04 19:21:30
104.236.112.52	attack	Jul 30 13:51:17 vps65 sshd\[23122\]: Invalid user yan from 104.236.112.52 port 50253 Jul 30 13:51:17 vps65 sshd\[23122\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.112.52 ...	2019-08-04 19:34:43
185.53.88.125	attackbots	Port scan on 5 port(s): 81 82 87 88 90	2019-08-04 19:19:30
138.197.213.233	attackbotsspam	Aug 4 10:54:55 localhost sshd\[46174\]: Invalid user Access from 138.197.213.233 port 43386 Aug 4 10:54:55 localhost sshd\[46174\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.213.233 Aug 4 10:54:57 localhost sshd\[46174\]: Failed password for invalid user Access from 138.197.213.233 port 43386 ssh2 Aug 4 10:59:17 localhost sshd\[46325\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.213.233 user=root Aug 4 10:59:19 localhost sshd\[46325\]: Failed password for root from 138.197.213.233 port 37874 ssh2 ...	2019-08-04 19:06:56
72.68.125.94	attackbotsspam	Jul 26 12:50:43 vps65 sshd\[1059\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=72.68.125.94 Jul 26 12:50:43 vps65 sshd\[1061\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=72.68.125.94 ...	2019-08-04 19:33:50
177.21.52.131	attack	Aug 4 12:58:56 ubuntu-2gb-nbg1-dc3-1 sshd[1336]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.21.52.131 Aug 4 12:58:58 ubuntu-2gb-nbg1-dc3-1 sshd[1336]: Failed password for invalid user jojo from 177.21.52.131 port 54982 ssh2 ...	2019-08-04 19:17:33
187.19.49.73	attack	Aug 4 06:58:48 plusreed sshd[14148]: Invalid user ubuntu from 187.19.49.73 ...	2019-08-04 19:24:31
49.88.112.73	attackspam	Aug 4 12:50:32 vps691689 sshd[16217]: Failed password for root from 49.88.112.73 port 37072 ssh2 Aug 4 12:59:14 vps691689 sshd[16271]: Failed password for root from 49.88.112.73 port 45013 ssh2 ...	2019-08-04 19:11:48
37.115.185.241	attack	fail2ban honeypot	2019-08-04 19:12:38
121.131.234.173	attack	Aug 4 12:59:34 heissa sshd\[9482\]: Invalid user betsy from 121.131.234.173 port 62932 Aug 4 12:59:34 heissa sshd\[9482\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.131.234.173 Aug 4 12:59:36 heissa sshd\[9482\]: Failed password for invalid user betsy from 121.131.234.173 port 62932 ssh2 Aug 4 12:59:49 heissa sshd\[9532\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.131.234.173 user=root Aug 4 12:59:52 heissa sshd\[9532\]: Failed password for root from 121.131.234.173 port 61586 ssh2	2019-08-04 19:03:34
138.255.148.5	attackbots	scan r	2019-08-04 18:57:34
128.199.234.63	attackbots	Feb 23 00:59:30 motanud sshd\[22737\]: Invalid user weblogic from 128.199.234.63 port 49268 Feb 23 00:59:30 motanud sshd\[22737\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.234.63 Feb 23 00:59:31 motanud sshd\[22737\]: Failed password for invalid user weblogic from 128.199.234.63 port 49268 ssh2	2019-08-04 18:55:13
104.131.84.59	attackspambots	Jul 30 03:34:28 vps65 sshd\[1734\]: Invalid user tmp from 104.131.84.59 port 43370 Jul 30 03:34:28 vps65 sshd\[1734\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.84.59 ...	2019-08-04 19:39:07
104.238.116.94	attack	Jul 21 13:00:46 vps65 sshd\[7933\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.238.116.94 user=www-data Jul 21 13:00:48 vps65 sshd\[7933\]: Failed password for www-data from 104.238.116.94 port 57300 ssh2 ...	2019-08-04 19:23:26

Recently Reported IPs

174.87.63.122	42.247.5.89	45.232.243.124	206.81.16.240
109.187.23.221	26.214.68.198	246.107.15.211	64.97.29.221
52.185.177.213	99.243.63.233	115.28.255.250	194.26.83.225
166.113.184.54	41.86.56.209	144.158.66.89	47.34.216.98
42.63.19.102	112.170.239.182	156.227.67.67	121.243.17.149