AbuseIPDB » 14.6.16.137

14.6.16.137 was found in our database!

This IP was reported 3,241 times. Confidence of Abuse is 100%: ?

100%

ISP	Dacom Corp.
Usage Type	Fixed Line ISP
Domain Name	uplus.co.kr
Country	Korea (Republic of)
City	Seoul, Seoul-teukbyeolsi

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 14.6.16.137

Whois 14.6.16.137

IP Abuse Reports for 14.6.16.137:

This IP address has been reported a total of 3,241 times from 438 distinct sources. 14.6.16.137 was first reported on November 17th 2021, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	Date	Comment	Categories
R.G.	1 hour ago	14.6.16.137 (KR/South Korea/-), 7 distributed smtpauth attacks on account [cloacked] in the last 900 ... show more14.6.16.137 (KR/South Korea/-), 7 distributed smtpauth attacks on account [cloacked] in the last 900 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: show less	Brute-Force
chris_yooo	1 hour ago	Sep 30 17:40:01 dwc1 postfix/smtpd[4183652]: warning: unknown[14.6.16.137]: SASL LOGIN authenticatio ... show moreSep 30 17:40:01 dwc1 postfix/smtpd[4183652]: warning: unknown[14.6.16.137]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 30 17:40:01 dwc1 postfix/smtpd[4183652]: lost connection after AUTH from unknown[14.6.16.137] Sep 30 17:40:01 dwc1 postfix/smtpd[4183652]: disconnect from unknown[14.6.16.137] ehlo=1 auth=0/1 commands=1/2 ... show less	Spoofing Brute-Force
Paul Smith	2 hours ago	Email Auth Brute force attack 11/11 in last day	Brute-Force
shimizu	2 hours ago	1 times SMTP brute-force	Hacking Brute-Force
IpdbBot	3 hours ago	Too many invalid connections	Hacking
dwmp	3 hours ago	Sep 30 16:10:21 plesk postfix/smtpd[1575010]: warning: unknown[14.6.16.137]: SASL LOGIN authenticati ... show moreSep 30 16:10:21 plesk postfix/smtpd[1575010]: warning: unknown[14.6.16.137]: SASL LOGIN authentication failed: authentication failure Sep 30 16:10:21 plesk postfix/smtpd[1575010]: lost connection after AUTH from unknown[14.6.16.137] Sep 30 16:10:21 plesk postfix/smtpd[1575010]: disconnect from unknown[14.6.16.137] ehlo=1 auth=0/1 commands=1/2 ... show less	Brute-Force SSH
Rip	3 hours ago	⚠ Brute Force Bot or Scanner Attempting Authentication Access To Server - SASL LOGIN authenticatio ... show more⚠ Brute Force Bot or Scanner Attempting Authentication Access To Server - SASL LOGIN authentication failed: show less	Port Scan Brute-Force
Hirte	4 hours ago	LT: Brutforce SMTP Login	Brute-Force
dn-systems.net	9 hours ago	2023-09-30 03:43:55.708 [12287] no MAIL in SMTP connection from [14.6.16.137]:33759 I=[193.108.181.1 ... show more2023-09-30 03:43:55.708 [12287] no MAIL in SMTP connection from [14.6.16.137]:33759 I=[193.108.181.150]:25 D=0.042s 2023-09-30 06:29:58.261 [13824] no MAIL in SMTP connection from [14.6.16.137]:35168 I=[193.108.181.150]:25 D=0.003s ... show less	Brute-Force
Anonymous	10 hours ago	Sep 30 08:46:29 postfix/smtpd[21782]: warning: unknown[14.6.16.137]: SASL LOGIN authentication fail ... show moreSep 30 08:46:29 postfix/smtpd[21782]: warning: unknown[14.6.16.137]: SASL LOGIN authentication failed: authentication failure ... show less	Brute-Force
Fusl	14 hours ago	received unsolicited smtp data stream: Date: Sat, 30 Sep 2023 06:28:17 +0300 From: postm ... show morereceived unsolicited smtp data stream: Date: Sat, 30 Sep 2023 06:28:17 +0300 From: [email protected] Subject: =?UTF-8?B?cG9zdG1hc3RlckBmZWt4cnYuYWRkci5lcztwb3N0bWFzdGVyQGZla3hydi5h?= =?UTF-8?B?ZGRyLmVzOzEyMzMyMTtmZWt4cnYuYWRkci5lczsyNTswO0xPR0lO?= To: [email protected] show less	Email Spam
Anonymous	15 hours ago	14.6.16.137 (KR/South Korea/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; ... show more14.6.16.137 (KR/South Korea/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 29 21:36:58 server2 sshd[31073]: Failed password for root from 82.157.137.218 port 55992 ssh2 Sep 29 21:38:05 server2 sshd[31342]: Failed password for root from 104.225.159.240 port 55714 ssh2 Sep 29 21:39:21 server2 sshd[31675]: Failed password for root from 59.3.76.218 port 51418 ssh2 Sep 29 21:36:45 server2 sshd[31027]: Failed password for root from 14.6.16.137 port 51301 ssh2 Sep 29 21:39:25 server2 sshd[31717]: Failed password for root from 95.90.12.120 port 51434 ssh2 IP Addresses Blocked: 82.157.137.218 (CN/China/-) 104.225.159.240 (US/United States/-) 59.3.76.218 (KR/South Korea/-) show less	Brute-Force
dblanque	16 hours ago	Fail2ban - Dovecot Ban Event Triggered. (IP: 14.6.16.137)	Email Spam Brute-Force
Birdflew	17 hours ago	Failed SMTP login	Brute-Force
AvonleaConsulting	18 hours ago	Brute force attack stopped by firewall	Web Spam Brute-Force Web App Attack

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩