222.101.64.139

Basic Info

City: unknown

Region: unknown

Country: Korea, Republic of

Internet Service Provider: KT Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	23/tcp [2019-10-30]1pkt	2019-10-30 16:36:49

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 222.101.64.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12563
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;222.101.64.139.			IN	A

;; AUTHORITY SECTION:
.			440	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019103000 1800 900 604800 86400

;; Query time: 170 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 30 16:36:46 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 139.64.101.222.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.64.101.222.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
79.6.216.208	attackbots	Lines containing failures of 79.6.216.208 Aug 3 14:59:16 neweola sshd[16388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.6.216.208 user=r.r Aug 3 14:59:17 neweola sshd[16388]: Failed password for r.r from 79.6.216.208 port 51069 ssh2 Aug 3 14:59:18 neweola sshd[16388]: Received disconnect from 79.6.216.208 port 51069:11: Bye Bye [preauth] Aug 3 14:59:18 neweola sshd[16388]: Disconnected from authenticating user r.r 79.6.216.208 port 51069 [preauth] Aug 3 15:03:16 neweola sshd[16588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.6.216.208 user=r.r Aug 3 15:03:18 neweola sshd[16588]: Failed password for r.r from 79.6.216.208 port 59073 ssh2 Aug 3 15:03:18 neweola sshd[16588]: Received disconnect from 79.6.216.208 port 59073:11: Bye Bye [preauth] Aug 3 15:03:18 neweola sshd[16588]: Disconnected from authenticating user r.r 79.6.216.208 port 59073 [preauth] Aug 3 15:07:17........ ------------------------------	2020-08-09 06:12:39
111.229.204.148	attackspam	Lines containing failures of 111.229.204.148 Aug 4 11:54:32 mx-in-01 sshd[14994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.204.148 user=r.r Aug 4 11:54:34 mx-in-01 sshd[14994]: Failed password for r.r from 111.229.204.148 port 57408 ssh2 Aug 4 11:54:36 mx-in-01 sshd[14994]: Received disconnect from 111.229.204.148 port 57408:11: Bye Bye [preauth] Aug 4 11:54:36 mx-in-01 sshd[14994]: Disconnected from authenticating user r.r 111.229.204.148 port 57408 [preauth] Aug 4 12:03:33 mx-in-01 sshd[15957]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.204.148 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=111.229.204.148	2020-08-09 06:33:46
149.56.13.111	attackbotsspam	Aug 8 17:24:41 firewall sshd[13463]: Failed password for root from 149.56.13.111 port 47097 ssh2 Aug 8 17:26:45 firewall sshd[13550]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.13.111 user=root Aug 8 17:26:47 firewall sshd[13550]: Failed password for root from 149.56.13.111 port 35994 ssh2 ...	2020-08-09 06:15:45
134.175.161.251	attackbotsspam	2020-08-08T23:20:54.429278mail.standpoint.com.ua sshd[5759]: Failed password for root from 134.175.161.251 port 37200 ssh2 2020-08-08T23:22:57.701686mail.standpoint.com.ua sshd[6019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.161.251 user=root 2020-08-08T23:23:00.071169mail.standpoint.com.ua sshd[6019]: Failed password for root from 134.175.161.251 port 39404 ssh2 2020-08-08T23:25:03.334303mail.standpoint.com.ua sshd[6313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.161.251 user=root 2020-08-08T23:25:05.337271mail.standpoint.com.ua sshd[6313]: Failed password for root from 134.175.161.251 port 41612 ssh2 ...	2020-08-09 06:15:23
149.56.107.216	attackspam	Aug 9 00:19:16 jane sshd[12063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.107.216 Aug 9 00:19:19 jane sshd[12063]: Failed password for invalid user routhier from 149.56.107.216 port 33422 ssh2 ...	2020-08-09 06:19:37
123.206.108.50	attackbotsspam	Aug 8 22:15:03 roki-contabo sshd\[17256\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.108.50 user=root Aug 8 22:15:05 roki-contabo sshd\[17256\]: Failed password for root from 123.206.108.50 port 37764 ssh2 Aug 8 22:23:03 roki-contabo sshd\[17376\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.108.50 user=root Aug 8 22:23:05 roki-contabo sshd\[17376\]: Failed password for root from 123.206.108.50 port 34348 ssh2 Aug 8 22:26:42 roki-contabo sshd\[17472\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.108.50 user=root ...	2020-08-09 06:20:32
134.175.59.225	attackspam	prod8 ...	2020-08-09 06:40:31
58.234.45.190	attack	Aug 8 22:32:03 melroy-server sshd[2341]: Failed password for root from 58.234.45.190 port 48307 ssh2 ...	2020-08-09 06:38:13
213.217.1.211	attackbots	Unauthorised access (Aug 8) SRC=213.217.1.211 LEN=40 TTL=247 ID=30912 TCP DPT=3389 WINDOW=1024 SYN Unauthorised access (Aug 8) SRC=213.217.1.211 LEN=40 TTL=247 ID=861 TCP DPT=3389 WINDOW=1024 SYN Unauthorised access (Aug 7) SRC=213.217.1.211 LEN=40 TTL=247 ID=20090 TCP DPT=3389 WINDOW=1024 SYN Unauthorised access (Aug 6) SRC=213.217.1.211 LEN=40 TTL=248 ID=2159 TCP DPT=3389 WINDOW=1024 SYN Unauthorised access (Aug 5) SRC=213.217.1.211 LEN=40 TTL=248 ID=45170 TCP DPT=3389 WINDOW=1024 SYN	2020-08-09 06:33:20
185.175.93.104	attackbotsspam	08/08/2020-18:16:15.083524 185.175.93.104 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-08-09 06:21:21
81.91.178.212	attackspam	81.91.178.212 - - [08/Aug/2020:23:27:51 +0100] "POST /wp-login.php HTTP/1.1" 200 1969 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 81.91.178.212 - - [08/Aug/2020:23:27:52 +0100] "POST /wp-login.php HTTP/1.1" 200 1954 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 81.91.178.212 - - [08/Aug/2020:23:27:52 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-09 06:28:22
222.186.42.137	attackbotsspam	Aug 9 00:33:45 ucs sshd\[5126\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.137 user=root Aug 9 00:33:47 ucs sshd\[5124\]: error: PAM: User not known to the underlying authentication module for root from 222.186.42.137 Aug 9 00:33:47 ucs sshd\[5127\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.137 user=root ...	2020-08-09 06:32:55
83.97.20.31	attackspambots	" "	2020-08-09 06:04:59
180.167.225.118	attackspambots	detected by Fail2Ban	2020-08-09 06:07:02
114.69.232.170	attackbotsspam	Lines containing failures of 114.69.232.170 Aug 3 14:45:03 shared12 sshd[18233]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.69.232.170 user=r.r Aug 3 14:45:04 shared12 sshd[18233]: Failed password for r.r from 114.69.232.170 port 30085 ssh2 Aug 3 14:45:04 shared12 sshd[18233]: Received disconnect from 114.69.232.170 port 30085:11: Bye Bye [preauth] Aug 3 14:45:04 shared12 sshd[18233]: Disconnected from authenticating user r.r 114.69.232.170 port 30085 [preauth] Aug 3 15:08:54 shared12 sshd[27379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.69.232.170 user=r.r Aug 3 15:08:56 shared12 sshd[27379]: Failed password for r.r from 114.69.232.170 port 42898 ssh2 Aug 3 15:08:56 shared12 sshd[27379]: Received disconnect from 114.69.232.170 port 42898:11: Bye Bye [preauth] Aug 3 15:08:56 shared12 sshd[27379]: Disconnected from authenticating user r.r 114.69.232.170 port 42898........ ------------------------------	2020-08-09 06:05:21

Recently Reported IPs

110.201.71.119	119.213.169.55	243.91.82.105	254.248.145.123
82.199.7.200	96.222.108.172	197.193.219.19	16.240.193.75
227.190.245.178	160.212.107.156	161.35.135.206	50.89.137.26
212.128.38.105	181.49.45.20	190.24.58.64	196.241.141.60
177.30.111.71	75.170.123.145	177.177.165.0	16.195.236.156