112.161.204.57

Basic Info

City: unknown

Region: unknown

Country: Korea (Republic of)

Internet Service Provider: KT Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 112.161.204.57 to port 23 [J]	2020-02-29 19:23:07

Comments on same subnet:

IP	Type	Details	Datetime
112.161.204.22	attack	unauthorized connection attempt	2020-02-16 15:49:51

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.161.204.57
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34177
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;112.161.204.57.			IN	A

;; AUTHORITY SECTION:
.			560	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022900 1800 900 604800 86400

;; Query time: 172 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 29 19:23:04 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 57.204.161.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 57.204.161.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
112.85.42.194	attackspambots	SSH Brute-Force attacks	2019-12-21 13:44:00
222.186.175.215	attackspambots	Dec 18 18:35:16 microserver sshd[54437]: Failed none for root from 222.186.175.215 port 34406 ssh2 Dec 18 18:35:21 microserver sshd[54437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.215 user=root Dec 18 18:35:23 microserver sshd[54437]: Failed password for root from 222.186.175.215 port 34406 ssh2 Dec 18 18:35:27 microserver sshd[54437]: Failed password for root from 222.186.175.215 port 34406 ssh2 Dec 18 18:35:31 microserver sshd[54437]: Failed password for root from 222.186.175.215 port 34406 ssh2 Dec 18 20:44:38 microserver sshd[10273]: Failed none for root from 222.186.175.215 port 61016 ssh2 Dec 18 20:44:39 microserver sshd[10273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.215 user=root Dec 18 20:44:40 microserver sshd[10273]: Failed password for root from 222.186.175.215 port 61016 ssh2 Dec 18 20:44:44 microserver sshd[10273]: Failed password for root from 222.186.175.215 port 61016 ssh2	2019-12-21 13:38:48
103.76.22.118	attackbots	Dec 20 19:12:38 tdfoods sshd\[28817\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.76.22.118 user=root Dec 20 19:12:41 tdfoods sshd\[28817\]: Failed password for root from 103.76.22.118 port 55746 ssh2 Dec 20 19:19:03 tdfoods sshd\[29426\]: Invalid user biologisk from 103.76.22.118 Dec 20 19:19:03 tdfoods sshd\[29426\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.76.22.118 Dec 20 19:19:05 tdfoods sshd\[29426\]: Failed password for invalid user biologisk from 103.76.22.118 port 34430 ssh2	2019-12-21 13:28:45
159.203.193.47	attackbots	Unauthorized connection attempt detected from IP address 159.203.193.47 to port 2082	2019-12-21 13:28:26
157.230.153.75	attackbotsspam	Dec 20 19:55:14 eddieflores sshd\[21957\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.153.75 user=root Dec 20 19:55:16 eddieflores sshd\[21957\]: Failed password for root from 157.230.153.75 port 39701 ssh2 Dec 20 20:00:36 eddieflores sshd\[22393\]: Invalid user Rim from 157.230.153.75 Dec 20 20:00:36 eddieflores sshd\[22393\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.153.75 Dec 20 20:00:38 eddieflores sshd\[22393\]: Failed password for invalid user Rim from 157.230.153.75 port 42766 ssh2	2019-12-21 14:04:31
62.210.10.244	attackbots	12/20/2019-23:58:16.213026 62.210.10.244 Protocol: 17 ATTACK [PTSecurity] Cisco ASA and Cisco FTD possible DoS (CVE-2018-15454)	2019-12-21 13:35:58
49.247.214.67	attack	Dec 21 02:09:25 server sshd\[6482\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.214.67 Dec 21 02:09:27 server sshd\[6482\]: Failed password for invalid user odlum from 49.247.214.67 port 54414 ssh2 Dec 21 08:19:44 server sshd\[10162\]: Invalid user backup from 49.247.214.67 Dec 21 08:19:44 server sshd\[10162\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.214.67 Dec 21 08:19:45 server sshd\[10162\]: Failed password for invalid user backup from 49.247.214.67 port 39426 ssh2 ...	2019-12-21 13:39:58
219.109.200.107	attack	Dec 20 19:11:36 eddieflores sshd\[17941\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=tcn010107.tcn-catv.ne.jp user=root Dec 20 19:11:37 eddieflores sshd\[17941\]: Failed password for root from 219.109.200.107 port 50012 ssh2 Dec 20 19:17:56 eddieflores sshd\[18521\]: Invalid user rpc from 219.109.200.107 Dec 20 19:17:56 eddieflores sshd\[18521\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=tcn010107.tcn-catv.ne.jp Dec 20 19:17:58 eddieflores sshd\[18521\]: Failed password for invalid user rpc from 219.109.200.107 port 53888 ssh2	2019-12-21 13:30:34
106.13.15.122	attackbotsspam	Dec 21 05:38:20 v22018086721571380 sshd[12221]: Failed password for invalid user yue from 106.13.15.122 port 53584 ssh2	2019-12-21 14:02:07
185.156.73.52	attackbots	12/21/2019-01:05:06.219812 185.156.73.52 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-12-21 14:09:14
180.166.192.66	attack	Dec 21 05:39:39 localhost sshd[8457]: Failed password for invalid user elicopower2 from 180.166.192.66 port 44015 ssh2 Dec 21 05:53:20 localhost sshd[9073]: Failed password for invalid user mattingly from 180.166.192.66 port 44867 ssh2 Dec 21 05:58:33 localhost sshd[9443]: Failed password for invalid user juan from 180.166.192.66 port 9703 ssh2	2019-12-21 13:27:56
54.69.230.166	attackspam	54.69.230.166 - - \[21/Dec/2019:05:57:57 +0100\] "POST /wp-login.php HTTP/1.0" 200 7427 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 54.69.230.166 - - \[21/Dec/2019:05:57:59 +0100\] "POST /wp-login.php HTTP/1.0" 200 7242 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 54.69.230.166 - - \[21/Dec/2019:05:58:01 +0100\] "POST /wp-login.php HTTP/1.0" 200 7239 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-12-21 13:45:09
222.186.175.151	attack	Dec 21 06:57:27 tux-35-217 sshd\[3818\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.151 user=root Dec 21 06:57:29 tux-35-217 sshd\[3818\]: Failed password for root from 222.186.175.151 port 59684 ssh2 Dec 21 06:57:33 tux-35-217 sshd\[3818\]: Failed password for root from 222.186.175.151 port 59684 ssh2 Dec 21 06:57:36 tux-35-217 sshd\[3818\]: Failed password for root from 222.186.175.151 port 59684 ssh2 ...	2019-12-21 13:58:05
113.190.116.170	attackspam	Unauthorized connection attempt detected from IP address 113.190.116.170 to port 445	2019-12-21 13:30:04
184.75.211.139	attack	(From robert.henninger93@outlook.com) Would you like to submit your ad on 1000's of Advertising sites every month? Pay one low monthly fee and get virtually unlimited traffic to your site forever! To find out more check out our site here: http://www.postyouradsontonsofsites.xyz	2019-12-21 13:35:27

Recently Reported IPs

36.224.141.72	124.78.48.10	112.118.207.138	182.68.21.181
124.207.183.109	112.115.231.44	117.5.52.203	114.33.185.234
112.104.87.137	58.213.68.94	114.4.220.184	72.240.115.2
59.112.252.246	111.91.20.228	111.91.119.151	113.67.154.67
42.191.209.171	140.238.145.45	111.88.249.27	5.137.206.64