221.145.156.109

Basic Info

City: Seongnam-si

Region: Gyeonggi-do

Country: South Korea

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 221.145.156.109
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3844
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;221.145.156.109.		IN	A

;; AUTHORITY SECTION:
.			415	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040102 1800 900 604800 86400

;; Query time: 41 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 02 11:58:22 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 109.156.145.221.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 109.156.145.221.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.235.96.146	attackspam	May 31 23:09:35 piServer sshd[17918]: Failed password for root from 49.235.96.146 port 53108 ssh2 May 31 23:14:34 piServer sshd[18340]: Failed password for root from 49.235.96.146 port 50932 ssh2 ...	2020-06-01 05:27:41
103.133.114.14	attackbots	103.133.114.14 - - [31/May/2020:22:26:23 +0200] "GET /wp-login.php HTTP/1.1" 200 6287 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.133.114.14 - - [31/May/2020:22:26:26 +0200] "POST /wp-login.php HTTP/1.1" 200 6583 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.133.114.14 - - [31/May/2020:22:26:27 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-01 04:58:40
167.172.69.52	attack	May 31 22:22:07 serwer sshd\[6013\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.69.52 user=root May 31 22:22:09 serwer sshd\[6013\]: Failed password for root from 167.172.69.52 port 56632 ssh2 May 31 22:25:51 serwer sshd\[6389\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.69.52 user=root ...	2020-06-01 05:32:51
49.88.112.60	attackspam	May 31 23:14:28 vps sshd[117464]: Failed password for root from 49.88.112.60 port 39843 ssh2 May 31 23:14:31 vps sshd[117464]: Failed password for root from 49.88.112.60 port 39843 ssh2 May 31 23:15:24 vps sshd[125510]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.60 user=root May 31 23:15:26 vps sshd[125510]: Failed password for root from 49.88.112.60 port 16836 ssh2 May 31 23:15:28 vps sshd[125510]: Failed password for root from 49.88.112.60 port 16836 ssh2 ...	2020-06-01 05:26:06
222.186.180.223	attackspambots	May 31 23:13:38 vmi345603 sshd[16325]: Failed password for root from 222.186.180.223 port 26014 ssh2 May 31 23:13:42 vmi345603 sshd[16325]: Failed password for root from 222.186.180.223 port 26014 ssh2 ...	2020-06-01 05:20:46
93.144.230.56	attackspambots	Automatic report - Banned IP Access	2020-06-01 05:15:21
142.93.212.213	attackspambots	SSH bruteforce	2020-06-01 05:28:45
178.128.217.168	attackspam	May 31 22:18:49 zulu412 sshd\[2804\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.217.168 user=root May 31 22:18:51 zulu412 sshd\[2804\]: Failed password for root from 178.128.217.168 port 59924 ssh2 May 31 22:25:54 zulu412 sshd\[3474\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.217.168 user=root ...	2020-06-01 05:32:23
113.172.54.6	attackspambots	2020-05-3122:25:441jfUWc-0006Ar-VF\<=info@whatsup2013.chH=\(localhost\)[123.22.58.240]:60963P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2965id=ac40916f644f9a694ab442111acef75b7892725438@whatsup2013.chT="todankemp153"fordankemp153@yahoo.comliljuan2000173@gmail.comvaehb57@gmail.com2020-05-3122:24:581jfUVs-00068K-T9\<=info@whatsup2013.chH=\(localhost\)[180.167.183.134]:37485P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3006id=244e46878ca77281a25caaf9f2261fb3907a7df818@whatsup2013.chT="toaustinmathews1010"foraustinmathews1010@gmail.comyobito2510@gmail.comjcolaluca@captiveresources.com2020-05-3122:25:061jfUW2-00069M-95\<=info@whatsup2013.chH=\(localhost\)[113.190.130.74]:42212P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3009id=04c2cec1cae134c7e41aecbfb46059f5d63c498dbc@whatsup2013.chT="tozacharyshepherd"forzacharyshepherd@gmail.comeenestcasiano2830@gmail.comalejandronoriel	2020-06-01 05:23:58
123.207.157.120	attackbotsspam	May 31 16:26:16 Host-KEWR-E sshd[11468]: Disconnected from invalid user root 123.207.157.120 port 55474 [preauth] ...	2020-06-01 05:09:17
96.8.121.32	attackspambots	Lines containing failures of 96.8.121.32 May 30 08:01:29 neweola sshd[6918]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.8.121.32 user=r.r May 30 08:01:31 neweola sshd[6918]: Failed password for r.r from 96.8.121.32 port 53866 ssh2 May 30 08:01:31 neweola sshd[6918]: Received disconnect from 96.8.121.32 port 53866:11: Bye Bye [preauth] May 30 08:01:31 neweola sshd[6918]: Disconnected from authenticating user r.r 96.8.121.32 port 53866 [preauth] May 30 08:17:59 neweola sshd[8584]: Invalid user user2 from 96.8.121.32 port 58094 May 30 08:17:59 neweola sshd[8584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.8.121.32 May 30 08:18:01 neweola sshd[8584]: Failed password for invalid user user2 from 96.8.121.32 port 58094 ssh2 May 30 08:18:03 neweola sshd[8584]: Received disconnect from 96.8.121.32 port 58094:11: Bye Bye [preauth] May 30 08:18:03 neweola sshd[8584]: Disconnected from ........ ------------------------------	2020-06-01 05:35:05
188.166.217.55	attack	May 31 22:55:05 h2779839 sshd[23485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.217.55 user=root May 31 22:55:07 h2779839 sshd[23485]: Failed password for root from 188.166.217.55 port 38458 ssh2 May 31 22:56:30 h2779839 sshd[23520]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.217.55 user=root May 31 22:56:32 h2779839 sshd[23520]: Failed password for root from 188.166.217.55 port 32926 ssh2 May 31 22:57:54 h2779839 sshd[23562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.217.55 user=root May 31 22:57:56 h2779839 sshd[23562]: Failed password for root from 188.166.217.55 port 55626 ssh2 May 31 22:59:18 h2779839 sshd[23586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.217.55 user=root May 31 22:59:20 h2779839 sshd[23586]: Failed password for root from 188.166.217.55 port 50096 s ...	2020-06-01 05:02:17
1.179.137.10	attackbots	May 31 22:18:50 MainVPS sshd[20097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.179.137.10 user=root May 31 22:18:52 MainVPS sshd[20097]: Failed password for root from 1.179.137.10 port 38383 ssh2 May 31 22:22:27 MainVPS sshd[23132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.179.137.10 user=root May 31 22:22:30 MainVPS sshd[23132]: Failed password for root from 1.179.137.10 port 37482 ssh2 May 31 22:25:49 MainVPS sshd[26044]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.179.137.10 user=root May 31 22:25:51 MainVPS sshd[26044]: Failed password for root from 1.179.137.10 port 36584 ssh2 ...	2020-06-01 05:36:31
176.112.75.3	attack	Lines containing failures of 176.112.75.3 (max 1000) May 30 06:22:40 UTC__SANYALnet-Labs__cac12 sshd[16702]: Connection from 176.112.75.3 port 44970 on 64.137.176.104 port 22 May 30 06:22:42 UTC__SANYALnet-Labs__cac12 sshd[16702]: Address 176.112.75.3 maps to desire24.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! May 30 06:22:42 UTC__SANYALnet-Labs__cac12 sshd[16702]: Invalid user admin from 176.112.75.3 port 44970 May 30 06:22:42 UTC__SANYALnet-Labs__cac12 sshd[16702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.112.75.3 May 30 06:22:44 UTC__SANYALnet-Labs__cac12 sshd[16702]: Failed password for invalid user admin from 176.112.75.3 port 44970 ssh2 May 30 06:22:44 UTC__SANYALnet-Labs__cac12 sshd[16702]: Received disconnect from 176.112.75.3 port 44970:11: Bye Bye [preauth] May 30 06:22:44 UTC__SANYALnet-Labs__cac12 sshd[16702]: Disconnected from 176.112.75.3 port 44970 [preauth] ........ -------------------------------------------	2020-06-01 05:00:52
173.212.245.240	attackspam	20 attempts against mh-misbehave-ban on tree	2020-06-01 05:12:22

Recently Reported IPs

135.14.236.100	185.9.226.236	193.49.213.47	172.136.8.64
214.4.50.195	191.115.36.206	36.201.85.20	89.253.185.42
202.86.57.203	220.95.229.96	223.204.12.153	202.137.142.24
106.13.77.151	103.120.220.34	2a02:598:aaaa:2::8049	117.252.252.96
180.76.183.59	165.22.68.228	15.111.109.140	175.218.43.205