112.199.221.124

Basic Info

City: Singapore

Region: unknown

Country: Singapore

Internet Service Provider: M1 Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	" "	2019-11-12 01:01:23

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.199.221.124
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18855
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;112.199.221.124.		IN	A

;; AUTHORITY SECTION:
.			577	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111100 1800 900 604800 86400

;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 12 01:01:18 CST 2019
;; MSG SIZE  rcvd: 119

Host info

124.221.199.112.in-addr.arpa domain name pointer 124.221.199.112.unknown.m1.com.sg.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
124.221.199.112.in-addr.arpa	name = 124.221.199.112.unknown.m1.com.sg.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
60.166.141.43	attackbots	Email rejected due to spam filtering	2020-08-05 20:47:51
94.102.51.17	attackbotsspam	TCP (SYN) 94.102.51.17:46377 -> port 7830, len 44	2020-08-05 20:40:31
187.167.205.95	attackbots	Aug 5 14:19:22 vps339862 kernel: \[777326.054489\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:32:a5:5e:0d:2c:d7:08:00 SRC=187.167.205.95 DST=51.254.206.43 LEN=60 TOS=0x00 PREC=0x00 TTL=46 ID=38934 DF PROTO=TCP SPT=34439 DPT=23 SEQ=1716847313 ACK=0 WINDOW=5840 RES=0x00 SYN URGP=0 OPT \(020405B40402080A368C9AC80000000001030302\) Aug 5 14:19:25 vps339862 kernel: \[777329.054535\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:32:a5:5e:0d:2c:d7:08:00 SRC=187.167.205.95 DST=51.254.206.43 LEN=60 TOS=0x00 PREC=0x00 TTL=46 ID=38935 DF PROTO=TCP SPT=34439 DPT=23 SEQ=1716847313 ACK=0 WINDOW=5840 RES=0x00 SYN URGP=0 OPT \(020405B40402080A368CA6800000000001030302\) Aug 5 14:19:31 vps339862 kernel: \[777335.054565\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:32:a5:5e:0d:2c:d7:08:00 SRC=187.167.205.95 DST=51.254.206.43 LEN=60 TOS=0x00 PREC=0x00 TTL=46 ID=38936 DF PROTO=TCP SPT=34439 DPT=23 SEQ=1716847313 ACK=0 WINDOW=5840 RES=0x00 SYN URGP=0 OPT ...	2020-08-05 21:20:46
189.138.86.45	attack	20/8/5@08:20:19: FAIL: Alarm-Network address from=189.138.86.45 20/8/5@08:20:19: FAIL: Alarm-Network address from=189.138.86.45 ...	2020-08-05 20:39:31
164.132.46.14	attackspam	2020-08-05T12:52:46.159902shield sshd\[20674\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.ip-164-132-46.eu user=root 2020-08-05T12:52:48.081726shield sshd\[20674\]: Failed password for root from 164.132.46.14 port 39630 ssh2 2020-08-05T12:57:12.872237shield sshd\[21061\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.ip-164-132-46.eu user=root 2020-08-05T12:57:15.315392shield sshd\[21061\]: Failed password for root from 164.132.46.14 port 51322 ssh2 2020-08-05T13:01:42.062714shield sshd\[21358\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.ip-164-132-46.eu user=root	2020-08-05 21:15:19
36.7.80.168	attackspam	Attempted to establish connection to non opened port 10270	2020-08-05 21:05:55
41.41.0.187	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-05T11:55:44Z and 2020-08-05T12:19:46Z	2020-08-05 21:18:46
185.82.138.101	attackbots	Automatic report - Port Scan Attack	2020-08-05 21:01:12
222.186.31.83	attack	Aug 5 12:59:51 scw-6657dc sshd[9145]: Failed password for root from 222.186.31.83 port 25342 ssh2 Aug 5 12:59:51 scw-6657dc sshd[9145]: Failed password for root from 222.186.31.83 port 25342 ssh2 Aug 5 12:59:53 scw-6657dc sshd[9145]: Failed password for root from 222.186.31.83 port 25342 ssh2 ...	2020-08-05 21:06:41
139.99.8.3	attack	joshuajohannes.de 139.99.8.3 [05/Aug/2020:14:47:52 +0200] "POST /wp-login.php HTTP/1.1" 200 5961 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" joshuajohannes.de 139.99.8.3 [05/Aug/2020:14:47:53 +0200] "POST /wp-login.php HTTP/1.1" 200 5926 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-05 20:58:32
79.106.160.206	attackspambots	Microsoft SQL Server User Authentication Brute Force Attempt , PTR: PTR record not found	2020-08-05 21:14:24
157.25.142.125	attack	Attempted Brute Force (dovecot)	2020-08-05 21:08:41
192.35.168.226	attackbots	TCP (SYN) 192.35.168.226:32539 -> port 1388, len 44	2020-08-05 21:12:33
45.129.33.13	attack	TCP (SYN) 45.129.33.13:50671 -> port 1815, len 44	2020-08-05 20:55:17
104.143.83.242	attackbotsspam	scans 3 times in preceeding hours on the ports (in chronological order) 6000 6001 7070	2020-08-05 20:39:07

Recently Reported IPs

109.203.106.243	194.36.191.226	190.215.136.177	52.158.25.39
169.38.68.189	35.189.207.60	123.232.156.28	106.12.22.73
42.113.108.128	197.253.242.165	156.96.58.96	167.0.142.70
94.143.193.56	14.240.122.222	45.114.127.223	83.103.212.33
185.197.33.227	94.50.242.70	52.54.87.249	31.208.242.213