110.12.1.59 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Korea, Republic of

Internet Service Provider: SK Broadband Co Ltd

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Dec 25 17:25:53 mercury kernel: [UFW ALLOW] IN=eth0 OUT= MAC=f2:3c:91:bc:4d:f8:84:78:ac:5a:1a:41:08:00 SRC=110.12.1.59 DST=109.74.200.221 LEN=32 TOS=0x00 PREC=0x00 TTL=55 ID=0 DF PROTO=UDP SPT=123 DPT=123 LEN=12 ...	2020-03-03 21:39:49

Type

Details

Datetime

attackspambots

Dec 25 17:25:53 mercury kernel: [UFW ALLOW] IN=eth0 OUT= MAC=f2:3c:91:bc:4d:f8:84:78:ac:5a:1a:41:08:00 SRC=110.12.1.59 DST=109.74.200.221 LEN=32 TOS=0x00 PREC=0x00 TTL=55 ID=0 DF PROTO=UDP SPT=123 DPT=123 LEN=12 
...

2020-03-03 21:39:49

Comments on same subnet:

IP	Type	Details	Datetime
110.12.193.98	attackbots	Invalid user nginx from 110.12.193.98 port 39260	2020-09-29 05:00:30
110.12.193.98	attackspam	21 attempts against mh-ssh on soil	2020-09-28 21:19:50
110.12.181.67	attackbots	Unauthorized connection attempt detected from IP address 110.12.181.67 to port 5555 [J]	2020-02-02 02:54:02

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 110.12.1.59
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55259
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;110.12.1.59.			IN	A

;; AUTHORITY SECTION:
.			583	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030202 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 03 21:39:35 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 59.1.12.110.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 59.1.12.110.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.166.206.11	attackbots	Port probing on unauthorized port 445	2020-09-06 20:08:34
117.240.89.18	attackbots	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-09-06 19:45:15
104.140.188.58	attackspam	TCP port : 5432	2020-09-06 19:40:36
93.43.223.61	attackspam	IP attempted unauthorised action	2020-09-06 20:01:15
188.124.37.133	attackspambots	TCP (SYN) 188.124.37.133:35110 -> port 3389, len 44	2020-09-06 20:10:40
23.92.17.246	attack	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: li641-246.members.linode.com.	2020-09-06 20:05:19
51.75.86.211	attackspam	1 VoIP Fraud Attacks in last 24 hours	2020-09-06 20:03:03
187.106.81.102	attack	Sep 6 12:21:28 marvibiene sshd[28517]: Failed password for root from 187.106.81.102 port 55184 ssh2 Sep 6 12:26:03 marvibiene sshd[28725]: Failed password for root from 187.106.81.102 port 34794 ssh2	2020-09-06 19:50:12
62.173.154.220	attackbotsspam	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: www.bgf.vt.	2020-09-06 20:06:33
80.169.101.204	attackbotsspam	Sep 5 18:39:23 xxxx sshd[30698]: Invalid user admin from 80.169.101.204 Sep 5 18:39:23 xxxx sshd[30698]: Failed none for invalid user admin from 80.169.101.204 port 35822 ssh2 Sep 5 18:39:23 xxxx sshd[30698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.169.101.204 Sep 5 18:39:25 xxxx sshd[30698]: Failed password for invalid user admin from 80.169.101.204 port 35822 ssh2 Sep 5 18:39:25 xxxx sshd[30700]: Invalid user admin from 80.169.101.204 Sep 5 18:39:25 xxxx sshd[30700]: Failed none for invalid user admin from 80.169.101.204 port 35887 ssh2 Sep 5 18:39:25 xxxx sshd[30700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.169.101.204 Sep 5 18:39:27 xxxx sshd[30700]: Failed password for invalid user admin from 80.169.101.204 port 35887 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=80.169.101.204	2020-09-06 19:43:19
54.38.55.136	attack	...	2020-09-06 20:10:23
5.188.84.115	attackspam	0,31-01/02 [bc01/m10] PostRequest-Spammer scoring: harare01_holz	2020-09-06 20:02:14
98.157.45.0	attackspam	SSH brute-force attempt	2020-09-06 19:53:18
89.121.151.103	attackspambots	Automatic report - Port Scan Attack	2020-09-06 20:07:01
193.228.135.144	attackbots	DATE:2020-09-05 18:39:43, IP:193.228.135.144, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-09-06 19:57:15

Recently Reported IPs

111.67.92.66	109.206.131.197	36.229.22.20	143.202.172.181
125.209.82.222	123.17.188.92	112.216.55.178	201.148.123.1
176.106.46.97	116.106.7.255	113.184.55.249	106.79.198.168
103.70.227.209	199.180.255.41	108.61.160.176	45.119.80.39
198.58.11.89	43.241.144.98	81.149.94.146	198.199.113.61