221.132.89.150

Basic Info

City: unknown

Region: unknown

Country: Korea, Republic of

Internet Service Provider: NexG Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	firewall-block, port(s): 445/tcp	2020-01-10 17:13:09

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 221.132.89.150
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11020
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;221.132.89.150.			IN	A

;; AUTHORITY SECTION:
.			412	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011000 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 10 17:13:06 CST 2020
;; MSG SIZE  rcvd: 118

Host info

150.89.132.221.in-addr.arpa domain name pointer static.221-132-89-150.nexg.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
150.89.132.221.in-addr.arpa	name = static.221-132-89-150.nexg.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
113.88.138.69	attackspam	Jun 3 18:41:53 mail sshd[8994]: Failed password for root from 113.88.138.69 port 46839 ssh2 ...	2020-06-04 01:26:56
93.157.62.102	attackbots	Jun 3 19:54:32 server2 sshd\[26598\]: User root from 93.157.62.102 not allowed because not listed in AllowUsers Jun 3 19:54:45 server2 sshd\[26604\]: User root from 93.157.62.102 not allowed because not listed in AllowUsers Jun 3 19:54:59 server2 sshd\[26608\]: User root from 93.157.62.102 not allowed because not listed in AllowUsers Jun 3 19:55:14 server2 sshd\[26794\]: User root from 93.157.62.102 not allowed because not listed in AllowUsers Jun 3 19:55:28 server2 sshd\[26796\]: User root from 93.157.62.102 not allowed because not listed in AllowUsers Jun 3 19:55:43 server2 sshd\[26804\]: User root from 93.157.62.102 not allowed because not listed in AllowUsers	2020-06-04 00:58:43
176.9.25.107	attack	20 attempts against mh-misbehave-ban on comet	2020-06-04 00:57:29
106.54.237.119	attackspam	[ssh] SSH attack	2020-06-04 01:05:46
185.220.102.6	attackbots	CMS (WordPress or Joomla) login attempt.	2020-06-04 01:30:48
123.108.35.186	attack	SSH brute-force attempt	2020-06-04 01:12:08
162.12.217.214	attackbotsspam	Jun 3 18:59:03 vps647732 sshd[5866]: Failed password for root from 162.12.217.214 port 60256 ssh2 ...	2020-06-04 01:08:29
45.143.223.62	attack	2020-06-03T13:50:42.056551 X postfix/smtpd[267071]: NOQUEUE: reject: RCPT from unknown[45.143.223.62]: 554 5.7.1 Service unavailable; Client host [45.143.223.62] blocked using zen.spamhaus.org; from= to= proto=ESMTP helo=	2020-06-04 01:21:02
68.183.82.97	attackbotsspam	Jun 3 16:58:44 ns382633 sshd\[25681\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.82.97 user=root Jun 3 16:58:46 ns382633 sshd\[25681\]: Failed password for root from 68.183.82.97 port 56150 ssh2 Jun 3 17:11:41 ns382633 sshd\[28202\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.82.97 user=root Jun 3 17:11:44 ns382633 sshd\[28202\]: Failed password for root from 68.183.82.97 port 32808 ssh2 Jun 3 17:15:10 ns382633 sshd\[28928\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.82.97 user=root	2020-06-04 01:34:43
5.188.86.207	attackspambots	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-06-03T16:13:44Z and 2020-06-03T16:21:35Z	2020-06-04 01:20:34
160.153.147.140	attackbots	Automatic report - XMLRPC Attack	2020-06-04 01:08:51
185.153.197.104	attackbots	Jun 3 17:35:43 debian-2gb-nbg1-2 kernel: \[13457305.439572\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.153.197.104 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=47280 PROTO=TCP SPT=53822 DPT=18236 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-04 01:16:27
110.172.184.207	attackspam	Automatic report - Port Scan Attack	2020-06-04 00:58:15
112.85.42.176	attackbots	2020-06-03T20:13:06.109916ollin.zadara.org sshd[29020]: Failed password for root from 112.85.42.176 port 14620 ssh2 2020-06-03T20:13:10.153105ollin.zadara.org sshd[29020]: Failed password for root from 112.85.42.176 port 14620 ssh2 ...	2020-06-04 01:33:05
110.52.151.59	attackspambots	Jun 3 16:32:10 web01.agentur-b-2.de pure-ftpd: (?@110.52.151.59) [WARNING] Authentication failed for user [anonymous] Jun 3 16:32:17 web01.agentur-b-2.de pure-ftpd: (?@110.52.151.59) [WARNING] Authentication failed for user [www] Jun 3 16:32:26 web01.agentur-b-2.de pure-ftpd: (?@110.52.151.59) [WARNING] Authentication failed for user [www] Jun 3 16:32:33 web01.agentur-b-2.de pure-ftpd: (?@110.52.151.59) [WARNING] Authentication failed for user [www] Jun 3 16:32:42 web01.agentur-b-2.de pure-ftpd: (?@110.52.151.59) [WARNING] Authentication failed for user [www]	2020-06-04 01:09:08

Recently Reported IPs

14.170.221.15	77.244.16.241	202.134.171.200	128.1.133.215
91.93.168.162	14.228.135.36	62.180.9.125	5.188.206.34
191.251.202.92	250.0.59.100	110.252.80.213	190.111.239.144
140.198.239.122	77.126.8.232	189.218.107.216	36.75.140.107
216.185.83.46	103.66.79.160	14.166.197.31	168.90.71.82