103.121.68.99 - IPInfo

Basic Info

City: Pune

Region: Maharashtra

Country: India

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
103.121.68.199	attack	20/6/9@10:50:12: FAIL: Alarm-Network address from=103.121.68.199 ...	2020-06-10 04:15:07
103.121.68.199	attackbotsspam	Unauthorized connection attempt from IP address 103.121.68.199 on Port 445(SMB)	2020-01-24 22:45:48

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.121.68.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33987
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.121.68.99.			IN	A

;; AUTHORITY SECTION:
.			583	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 09:31:13 CST 2022
;; MSG SIZE  rcvd: 106

Host info

99.68.121.103.in-addr.arpa domain name pointer pnq-static-99.68.121.103-sbcplindia.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
99.68.121.103.in-addr.arpa	name = pnq-static-99.68.121.103-sbcplindia.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
66.42.77.85	attackbotsspam	TCP 3389 (RDP)	2020-03-19 21:07:16
139.213.220.70	attackspambots	Mar 19 17:58:34 gw1 sshd[12843]: Failed password for root from 139.213.220.70 port 37952 ssh2 ...	2020-03-19 21:19:52
222.186.30.209	attackbotsspam	SSH bruteforce (Triggered fail2ban)	2020-03-19 21:53:00
190.105.73.142	attack	C2,WP GET /wp-login.php	2020-03-19 21:30:11
18.218.131.215	attackbotsspam	Mar 19 08:44:14 esmtp postfix/smtpd[21910]: lost connection after AUTH from em3-18-218-131-215.us-east-2.compute.amazonaws.com[18.218.131.215] Mar 19 08:44:14 esmtp postfix/smtpd[21910]: lost connection after AUTH from em3-18-218-131-215.us-east-2.compute.amazonaws.com[18.218.131.215] Mar 19 08:44:14 esmtp postfix/smtpd[21910]: lost connection after AUTH from em3-18-218-131-215.us-east-2.compute.amazonaws.com[18.218.131.215] Mar 19 08:44:14 esmtp postfix/smtpd[21910]: lost connection after AUTH from em3-18-218-131-215.us-east-2.compute.amazonaws.com[18.218.131.215] Mar 19 08:44:14 esmtp postfix/smtpd[21910]: lost connection after AUTH from em3-18-218-131-215.us-east-2.compute.amazonaws.com[18.218.131.215] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=18.218.131.215	2020-03-19 21:36:29
182.226.49.80	attackbotsspam	GET /shell?busybox HTTP/1.1	2020-03-19 21:13:31
101.109.248.24	attack	Unauthorized connection attempt from IP address 101.109.248.24 on Port 445(SMB)	2020-03-19 21:51:58
191.241.244.6	attack	Unauthorized connection attempt from IP address 191.241.244.6 on Port 445(SMB)	2020-03-19 21:46:36
123.133.86.238	attackspambots	TCP 3389 (RDP)	2020-03-19 21:17:56
172.94.23.136	attackbotsspam	Lines containing failures of 172.94.23.136 Mar 19 12:58:44 * sshd[60242]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.94.23.136 user=r.r Mar 19 12:58:45 * sshd[60242]: Failed password for r.r from 172.94.23.136 port 53460 ssh2 Mar 19 12:58:45 * sshd[60242]: Received disconnect from 172.94.23.136 port 53460:11: Bye Bye [preauth] Mar 19 12:58:45 * sshd[60242]: Disconnected from authenticating user r.r 172.94.23.136 port 53460 [preauth] Mar 19 13:14:18 * sshd[61408]: Invalid user odoo from 172.94.23.136 port 57196 Mar 19 13:14:18 * sshd[61408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.94.23.136 Mar 19 13:14:20 * sshd[61408]: Failed password for invalid user odoo from 172.94.23.136 port 57196 ssh2 Mar 19 13:14:20 * sshd[61408]: Received disconnect from 172.94.23.136 port 57196:11: Bye Bye [preauth] Mar 19 13:14:20 *** sshd[61408]: Disconnected from invalid user........ ------------------------------	2020-03-19 21:22:54
140.82.16.26	attackspam	TCP 3389 (RDP)	2020-03-19 21:16:28
103.109.108.50	attackbotsspam	WordPress login Brute force / Web App Attack on client site.	2020-03-19 21:08:03
201.77.124.248	attack	Lines containing failures of 201.77.124.248 (max 1000) Mar 19 18:43:26 Server sshd[19826]: User r.r from 201.77.124.248 not allowed because not listed in AllowUsers Mar 19 18:43:26 Server sshd[19826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.77.124.248 user=r.r Mar 19 18:43:28 Server sshd[19826]: Failed password for invalid user r.r from 201.77.124.248 port 3467 ssh2 Mar 19 18:43:28 Server sshd[19826]: Received disconnect from 201.77.124.248 port 3467:11: Bye Bye [preauth] Mar 19 18:43:28 Server sshd[19826]: Disconnected from invalid user r.r 201.77.124.248 port 3467 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=201.77.124.248	2020-03-19 21:28:42
177.82.108.79	attackbotsspam	SSH login attempts.	2020-03-19 21:03:08
129.82.138.12	attackspam	Nearly every day: ------------------------ Date: 3/19/2020 13:47:21 The packet below Src: 129.82.138.12 Dst: 0.0.0.0 (ICMP) IP-Packet (32 Bytes): 45 00 00 20 00 00 40 00 33 01 4e 57 81 52 8a 0c \| E.. ..@. 3.NW.R.. 00 00 00 00 08 00 7c 54 86 19 7b ed a0 90 d9 13 \| ......\|T ..{..... matched this filter rule: intruder detection	2020-03-19 21:03:54

Recently Reported IPs

103.120.167.29	103.121.62.141	103.122.201.124	103.122.5.150
103.122.67.43	103.122.66.60	103.123.73.249	103.122.85.190
103.124.55.214	103.123.79.164	103.123.86.152	103.126.13.188
103.123.235.1	103.126.13.189	103.127.67.34	103.126.250.177
103.124.196.202	103.124.92.85	103.126.204.68	103.129.77.144