211.197.239.13

Basic Info

City: Yongin-si

Region: Gyeonggi-do

Country: South Korea

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
211.197.239.107	attackbots	(ftpd) Failed FTP login from 211.197.239.107 (KR/South Korea/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Mar 22 08:27:37 ir1 pure-ftpd: (?@211.197.239.107) [WARNING] Authentication failed for user [anonymous]	2020-03-22 12:15:30
211.197.239.17	attack	Automatic report - FTP Brute Force	2019-12-29 13:35:24

Type

Details

Datetime

211.197.239.107

attackbots

(ftpd) Failed FTP login from 211.197.239.107 (KR/South Korea/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Mar 22 08:27:37 ir1 pure-ftpd: (?@211.197.239.107) [WARNING] Authentication failed for user [anonymous]

2020-03-22 12:15:30

211.197.239.17

attack

Automatic report - FTP Brute Force

2019-12-29 13:35:24

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 211.197.239.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4255
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;211.197.239.13.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021301 1800 900 604800 86400

;; Query time: 39 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 14 09:54:53 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 13.239.197.211.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 13.239.197.211.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
220.143.48.187	attack	37215/tcp [2019-06-21]1pkt	2019-06-22 06:03:02
191.53.196.38	attackbots	SMTP-sasl brute force ...	2019-06-22 06:03:52
219.157.239.119	attackspambots	23/tcp [2019-06-21]1pkt	2019-06-22 05:34:45
118.80.168.7	attack	5500/tcp [2019-06-21]1pkt	2019-06-22 05:29:22
89.252.172.164	attackspambots	SASL Brute Force	2019-06-22 05:56:40
115.217.103.185	attackspam	Request: "POST /wp-login.php HTTP/1.1" Request: "POST /wp-login.php HTTP/1.1" Request: "POST /wp-login.php HTTP/1.1" Request: "POST /wp-login.php HTTP/1.1"	2019-06-22 05:30:22
66.249.79.109	attack	port scanning (dstport=80) and posible SQL injections	2019-06-22 05:26:17
179.108.245.117	attackspambots	SMTP-sasl brute force ...	2019-06-22 06:11:57
35.241.136.232	attackbots	Request: "GET /wp-admin/setup-config.php?step=1 HTTP/1.1"	2019-06-22 05:32:20
222.72.135.177	attackspam	Jun 21 21:44:12 ncomp sshd[6099]: Invalid user test from 222.72.135.177 Jun 21 21:44:12 ncomp sshd[6099]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.72.135.177 Jun 21 21:44:12 ncomp sshd[6099]: Invalid user test from 222.72.135.177 Jun 21 21:44:14 ncomp sshd[6099]: Failed password for invalid user test from 222.72.135.177 port 61288 ssh2	2019-06-22 06:12:29
201.95.136.61	attack	Request: "GET / HTTP/1.1"	2019-06-22 05:54:53
191.8.186.99	attack	Jun 21 23:19:56 vtv3 sshd\[25684\]: Invalid user teamspeak from 191.8.186.99 port 56249 Jun 21 23:19:56 vtv3 sshd\[25684\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.8.186.99 Jun 21 23:19:58 vtv3 sshd\[25684\]: Failed password for invalid user teamspeak from 191.8.186.99 port 56249 ssh2 Jun 21 23:22:04 vtv3 sshd\[27091\]: Invalid user sammy from 191.8.186.99 port 37770 Jun 21 23:22:04 vtv3 sshd\[27091\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.8.186.99 Jun 21 23:32:28 vtv3 sshd\[31863\]: Invalid user nagios from 191.8.186.99 port 60119 Jun 21 23:32:28 vtv3 sshd\[31863\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.8.186.99 Jun 21 23:32:30 vtv3 sshd\[31863\]: Failed password for invalid user nagios from 191.8.186.99 port 60119 ssh2 Jun 21 23:34:03 vtv3 sshd\[32490\]: Invalid user ai from 191.8.186.99 port 39111 Jun 21 23:34:03 vtv3 sshd\[32490\]: pam_uni	2019-06-22 05:38:15
139.208.70.160	attackbotsspam	5500/tcp [2019-06-21]1pkt	2019-06-22 05:43:22
201.217.237.136	attackbotsspam	Jun 21 20:45:24 debian sshd\[18345\]: Invalid user dang from 201.217.237.136 port 50235 Jun 21 20:45:24 debian sshd\[18345\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.217.237.136 ...	2019-06-22 05:27:11
111.231.71.157	attackbotsspam	$f2bV_matches	2019-06-22 05:55:54

Recently Reported IPs

84.214.23.192	189.121.146.250	49.38.9.5	122.55.154.67
159.234.35.89	131.35.219.66	226.176.51.233	117.250.87.244
141.18.158.244	59.185.8.8	117.90.245.149	93.19.56.147
170.3.12.35	193.157.166.59	92.234.131.60	2.64.160.78
235.178.52.219	91.112.20.215	57.128.175.1	175.240.93.1