City: Gangseo-gu
Region: Seoul Special City
Country: South Korea
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
query : 175.198.43.209
# KOREAN(UTF8)
조회하신 IPv4주소는 한국인터넷진흥원으로부터 아래의 관리대행자에게 할당되었으며, 할당 정보는 다음과 같습니다.
[ 네트워크 할당 정보 ]
IPv4주소 : 175.192.0.0 - 175.207.255.255 (/12)
기관명 : 주식회사 케이티
서비스명 : KORNET
주소 : 경기도 성남시 분당구 불정로 90
우편번호 : 13606
할당일자 : 20100211
이름 : IP주소 담당자
전화번호 : +82-2-500-6630
전자우편 : kornet_ip@kt.com
조회하신 IPv4주소는 위의 관리대행자로부터 아래의 사용자에게 할당되었으며, 할당 정보는 다음과 같습니다.
--------------------------------------------------------------------------------
[ 네트워크 할당 정보 ]
IPv4주소 : 175.198.43.0 - 175.198.43.255 (/24)
기관명 : 주식회사 케이티
네트워크 구분 : INFRA
주소 : 경기도 성남시 분당구 불정로 90
우편번호 : 13606
할당내역 등록일 : 20251121
이름 : IP주소 담당자
전화번호 : +82-2-500-6630
전자우편 : kornet_ip@kt.com
# ENGLISH
KRNIC is not an ISP but a National Internet Registry similar to APNIC.
[ Network Information ]
IPv4 Address : 175.192.0.0 - 175.207.255.255 (/12)
Organization Name : Korea Telecom
Service Name : KORNET
Address : Gyeonggi-do Bundang-gu, Seongnam-si Buljeong-ro 90
Zip Code : 13606
Registration Date : 20100211
Name : IP Manager
Phone : +82-2-500-6630
E-Mail : kornet_ip@kt.com
--------------------------------------------------------------------------------
More specific assignment information is as follows.
[ Network Information ]
IPv4 Address : 175.198.43.0 - 175.198.43.255 (/24)
Organization Name : Korea Telecom
Network Type : INFRA
Address : Gyeonggi-do Bundang-gu, Seongnam-si Buljeong-ro 90
Zip Code : 13606
Registration Date : 20251121
Name : IP Manager
Phone : +82-2-500-6630
E-Mail : kornet_ip@kt.com
- KISA/KRNIC WHOIS Service -; <<>> DiG 9.10.3-P4-Ubuntu <<>> 175.198.43.209
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24166
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;175.198.43.209. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026032401 1800 900 604800 86400
;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 25 05:18:33 CST 2026
;; MSG SIZE rcvd: 107Host 209.43.198.175.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 209.43.198.175.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 193.70.38.187 | attack | 20 attempts against mh-ssh on echoip |
2020-10-05 12:33:33 |
| 206.189.231.196 | attack | 206.189.231.196 - - [05/Oct/2020:01:16:14 +0100] "POST /wp-login.php HTTP/1.1" 200 2673 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 206.189.231.196 - - [05/Oct/2020:01:16:16 +0100] "POST /wp-login.php HTTP/1.1" 200 2668 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 206.189.231.196 - - [05/Oct/2020:01:16:18 +0100] "POST /wp-login.php HTTP/1.1" 200 2626 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-10-05 12:11:52 |
| 129.211.82.59 | attackspam | 129.211.82.59 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Oct 4 16:41:17 jbs1 sshd[6580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.228.33 user=root Oct 4 16:40:46 jbs1 sshd[6383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.82.59 user=root Oct 4 16:40:48 jbs1 sshd[6383]: Failed password for root from 129.211.82.59 port 38014 ssh2 Oct 4 16:35:08 jbs1 sshd[4715]: Failed password for root from 190.210.231.34 port 35549 ssh2 Oct 4 16:39:55 jbs1 sshd[6117]: Failed password for root from 193.70.38.187 port 46870 ssh2 IP Addresses Blocked: 106.13.228.33 (CN/China/-) |
2020-10-05 12:37:35 |
| 113.76.148.191 | attackspam | Oct 4 18:39:39 shivevps sshd[18626]: Failed password for root from 113.76.148.191 port 22170 ssh2 Oct 4 18:43:55 shivevps sshd[18941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.76.148.191 user=root Oct 4 18:43:57 shivevps sshd[18941]: Failed password for root from 113.76.148.191 port 46837 ssh2 ... |
2020-10-05 12:36:41 |
| 139.162.112.248 | attackspambots |
|
2020-10-05 12:06:17 |
| 184.75.235.204 | attackbots | Oct 4 22:26:03 CT721 sshd[32094]: Invalid user admin from 184.75.235.204 port 51982 Oct 4 22:26:04 CT721 sshd[32094]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.75.235.204 Oct 4 22:26:06 CT721 sshd[32094]: Failed password for invalid user admin from 184.75.235.204 port 51982 ssh2 Oct 4 22:26:06 CT721 sshd[32094]: Connection closed by 184.75.235.204 port 51982 [preauth] Oct 4 22:26:08 CT721 sshd[32096]: Invalid user admin from 184.75.235.204 port 51987 Oct 4 22:26:08 CT721 sshd[32096]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.75.235.204 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=184.75.235.204 |
2020-10-05 12:06:38 |
| 119.28.227.100 | attackspambots | Oct 5 04:02:00 mail sshd[32119]: Failed password for root from 119.28.227.100 port 47734 ssh2 |
2020-10-05 12:20:39 |
| 142.93.47.124 | attackbots | 4922/tcp 2859/tcp 22992/tcp... [2020-08-07/10-04]188pkt,106pt.(tcp) |
2020-10-05 12:02:45 |
| 121.241.244.92 | attackspam | Oct 4 18:01:12 php1 sshd\[1141\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.241.244.92 user=root Oct 4 18:01:14 php1 sshd\[1141\]: Failed password for root from 121.241.244.92 port 53514 ssh2 Oct 4 18:03:10 php1 sshd\[1331\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.241.244.92 user=root Oct 4 18:03:12 php1 sshd\[1331\]: Failed password for root from 121.241.244.92 port 39830 ssh2 Oct 4 18:05:04 php1 sshd\[1555\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.241.244.92 user=root |
2020-10-05 12:10:02 |
| 58.216.160.214 | attack | 1433/tcp 1433/tcp 1433/tcp... [2020-08-10/10-04]8pkt,1pt.(tcp) |
2020-10-05 12:29:56 |
| 60.167.176.184 | attack | Oct 4 21:50:36 vm1 sshd[514]: Failed password for root from 60.167.176.184 port 47616 ssh2 ... |
2020-10-05 12:36:01 |
| 78.190.194.81 | attack | Listed on barracudaCentral plus zen-spamhaus / proto=6 . srcport=45614 . dstport=445 SMB . (3561) |
2020-10-05 12:27:57 |
| 124.31.204.119 | attackspambots | 1433/tcp 445/tcp... [2020-09-10/10-04]7pkt,2pt.(tcp) |
2020-10-05 12:13:46 |
| 103.83.232.17 | attackbots | Lines containing failures of 103.83.232.17 Oct 4 22:26:19 shared11 sshd[9581]: Did not receive identification string from 103.83.232.17 port 52733 Oct 4 22:26:25 shared11 sshd[9585]: Invalid user system from 103.83.232.17 port 53115 Oct 4 22:26:26 shared11 sshd[9585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.83.232.17 Oct 4 22:26:28 shared11 sshd[9585]: Failed password for invalid user system from 103.83.232.17 port 53115 ssh2 Oct 4 22:26:28 shared11 sshd[9585]: Connection closed by invalid user system 103.83.232.17 port 53115 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.83.232.17 |
2020-10-05 12:10:32 |
| 103.28.32.18 | attackbotsspam | Unauthorized SSH login attempts |
2020-10-05 12:28:26 |