AbuseIPDB » 1.220.59.220

1.220.59.220 was found in our database!

This IP was reported 3,517 times. Confidence of Abuse is 100%: ?

100%

ISP	LG Dacom Corporation
Usage Type	Unknown
Domain Name	uplus.co.kr
Country	Korea (Republic of)
City	Seoul, Seoul-teukbyeolsi

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 1.220.59.220

Whois 1.220.59.220

IP Abuse Reports for 1.220.59.220:

This IP address has been reported a total of 3,517 times from 431 distinct sources. 1.220.59.220 was first reported on October 31st 2021, and the most recent report was 25 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	Date	Comment	Categories
Anonymous	25 minutes ago	IMAP password guessing	Brute-Force
wlt-blocker	3 hours ago	Attempts to login to mail server with wrong username and/or password	Brute-Force
Pizza Taxi 24	6 hours ago	$f2bV_matches	Brute-Force
MortimerCat	8 hours ago	Attempt to log onto Postfix	Brute-Force
dsmidge	8 hours ago	Oct 4 06:45:23 server postfix/smtpd[2857306]: connect from unknown[1.220.59.220] Oct 4 06:45 ... show moreOct 4 06:45:23 server postfix/smtpd[2857306]: connect from unknown[1.220.59.220] Oct 4 06:45:38 server postfix/smtpd[2857306]: lost connection after AUTH from unknown[1.220.59.220] ... show less	Email Spam
Fusl	9 hours ago	received unsolicited smtp data stream: Date: Wed, 04 Oct 2023 06:06:42 +0200 From: zzwnk ... show morereceived unsolicited smtp data stream: Date: Wed, 04 Oct 2023 06:06:42 +0200 From: [email protected] Subject: =?UTF-8?B?enp3bmtjQG1haWwuYWRkci5lczt6endua2NAbWFpbC5hZGRyLmVzO3Bhc3N3?= =?UTF-8?B?b3JkO21haWwuYWRkci5lczs1ODc7MDtMT0dJTg==?= To: [email protected] show less	Email Spam
chronos	11 hours ago	[[03/10/2023 - 22:31:35 -03:00 UTC] Attack from [IP Manager] [1.220.59.220]-[RANGE:1.208 ... show more[[03/10/2023 - 22:31:35 -03:00 UTC] Attack from [IP Manager] [1.220.59.220]-[RANGE:1.208.0.0 - 1.223.255.255] Action: BLocKed Phishing -> Phishing websites and/or email. Email Spam -> Spam email content, infected attachments, and phishing emails. Hacking... Unauthorized attempts to access the server. Spoofing -> Email sender spoofing. Brute-Force ] ... show less	Phishing Email Spam Hacking Spoofing Brute-Force
Paul Smith	14 hours ago	Email Auth Brute force attack 2/2 in last day	Brute-Force
AvonleaConsulting	14 hours ago	Brute force attack stopped by firewall	Web Spam Brute-Force Web App Attack
tjiricek	16 hours ago	Dec 18 04:49:55 raspberrypi sshd[8081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 ... show moreDec 18 04:49:55 raspberrypi sshd[8081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.220.59.220 Dec 18 04:49:58 raspberrypi sshd[8081]: Failed password for invalid user admin from 1.220.59.220 port 55365 ssh2 show less	Brute-Force SSH
Anonymous	16 hours ago	2023-10-03T22:11:01.685133+01:00 soli-gate postfix/submissions/smtpd[1963465]: warning: unknown[1.22 ... show more2023-10-03T22:11:01.685133+01:00 soli-gate postfix/submissions/smtpd[1963465]: warning: unknown[1.220.59.220]: SASL LOGIN authentication failed: authentication failure ... show less	Brute-Force
rd1742	17 hours ago	Oct 3 19:31:19 quad dovecot: auth-worker(1583076): sql(info,1.220.59.220): unknown user	Brute-Force Exploited Host
XeroX	21 hours ago	2023-10-03T18:03:59.516995+02:00 de2 sshd[1212782]: pam_unix(sshd:auth): authentication failure; log ... show more2023-10-03T18:03:59.516995+02:00 de2 sshd[1212782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.220.59.220 user=root 2023-10-03T18:04:01.150952+02:00 de2 sshd[1212782]: Failed password for invalid user root from 1.220.59.220 port 36708 ssh2 ... show less	Brute-Force SSH
security.rdmc.fr	22 hours ago	IP in Malicious Database	Web App Attack
Daemonlord	03 Oct 2023	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "test" at 2023-10-03T11:03:48Z	Brute-Force SSH

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩