121.140.84.199

Basic Info

City: Geumcheon-gu

Region: Seoul Special City

Country: South Korea

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.140.84.199
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32077
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;121.140.84.199.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025011500 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 15 14:20:18 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 199.84.140.121.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 199.84.140.121.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.175.154	attack	Nov 27 02:21:21 localhost sshd\[16060\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.154 user=root Nov 27 02:21:23 localhost sshd\[16060\]: Failed password for root from 222.186.175.154 port 8226 ssh2 Nov 27 02:21:27 localhost sshd\[16060\]: Failed password for root from 222.186.175.154 port 8226 ssh2	2019-11-27 09:21:40
222.186.169.194	attack	Nov 26 22:39:59 firewall sshd[2787]: Failed password for root from 222.186.169.194 port 47500 ssh2 Nov 26 22:40:02 firewall sshd[2787]: Failed password for root from 222.186.169.194 port 47500 ssh2 Nov 26 22:40:06 firewall sshd[2787]: Failed password for root from 222.186.169.194 port 47500 ssh2 ...	2019-11-27 09:41:29
201.174.46.234	attackbotsspam	Nov 27 05:47:36 itv-usvr-01 sshd[5678]: Invalid user loomis from 201.174.46.234 Nov 27 05:47:36 itv-usvr-01 sshd[5678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.174.46.234 Nov 27 05:47:36 itv-usvr-01 sshd[5678]: Invalid user loomis from 201.174.46.234 Nov 27 05:47:38 itv-usvr-01 sshd[5678]: Failed password for invalid user loomis from 201.174.46.234 port 40061 ssh2 Nov 27 05:53:33 itv-usvr-01 sshd[5891]: Invalid user temp from 201.174.46.234	2019-11-27 09:26:50
115.78.8.83	attackspam	Nov 27 00:58:38 markkoudstaal sshd[12611]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.78.8.83 Nov 27 00:58:40 markkoudstaal sshd[12611]: Failed password for invalid user test from 115.78.8.83 port 52963 ssh2 Nov 27 01:03:06 markkoudstaal sshd[13020]: Failed password for lp from 115.78.8.83 port 42769 ssh2	2019-11-27 09:30:27
172.105.178.30	attackspambots	Unauthorized access to SSH at 27/Nov/2019:00:51:00 +0000. Attempted use of non-SSH protocol over SSH port 22.	2019-11-27 09:20:45
27.69.242.187	attackbots	Nov 26 20:14:36 plusreed sshd[28880]: Invalid user sysadmin from 27.69.242.187 ...	2019-11-27 09:17:55
185.242.5.46	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/185.242.5.46/ US - 1H : (73) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : US NAME ASN : ASN9009 IP : 185.242.5.46 CIDR : 185.242.5.0/24 PREFIX COUNT : 1708 UNIQUE IP COUNT : 749056 ATTACKS DETECTED ASN9009 : 1H - 2 3H - 2 6H - 2 12H - 3 24H - 3 DateTime : 2019-11-26 23:53:19 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-27 09:34:35
200.98.130.34	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/200.98.130.34/ BR - 1H : (262) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BR NAME ASN : ASN7162 IP : 200.98.130.34 CIDR : 200.98.128.0/21 PREFIX COUNT : 115 UNIQUE IP COUNT : 231424 ATTACKS DETECTED ASN7162 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-11-26 23:53:23 INFO :	2019-11-27 09:31:36
129.211.22.160	attack	Invalid user http from 129.211.22.160 port 34342	2019-11-27 09:44:50
124.236.22.54	attack	2019-11-26T23:41:59.668652ns386461 sshd\[9447\]: Invalid user lafont from 124.236.22.54 port 34666 2019-11-26T23:41:59.673209ns386461 sshd\[9447\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.236.22.54 2019-11-26T23:42:02.498544ns386461 sshd\[9447\]: Failed password for invalid user lafont from 124.236.22.54 port 34666 ssh2 2019-11-26T23:53:08.078099ns386461 sshd\[19015\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.236.22.54 user=root 2019-11-26T23:53:10.412479ns386461 sshd\[19015\]: Failed password for root from 124.236.22.54 port 48834 ssh2 ...	2019-11-27 09:39:57
13.81.249.225	attackspam	Nov 27 11:58:36 webhost01 sshd[18114]: Failed password for nagacorp from 13.81.249.225 port 46528 ssh2 ...	2019-11-27 13:02:28
189.209.191.136	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/189.209.191.136/ MX - 1H : (120) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : MX NAME ASN : ASN6503 IP : 189.209.191.136 CIDR : 189.209.188.0/22 PREFIX COUNT : 2074 UNIQUE IP COUNT : 1522176 ATTACKS DETECTED ASN6503 : 1H - 15 3H - 19 6H - 32 12H - 59 24H - 85 DateTime : 2019-11-26 23:53:18 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-27 09:34:57
82.23.77.149	attackbots	[WedNov2705:11:19.0405612019][:error][pid1029:tid47011376146176][client82.23.77.149:59590][client82.23.77.149]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles$disablethisruleifyourequireaccesstofilesthatendwith.sql$"][severity"CRITICAL"][hostname"appalti-contratti.ch"][uri"/fallback.sql"][unique_id"Xd33ZwTwcDLXoZj2WO0bQgAAAIY"][WedNov2705:58:14.3228592019][:error][pid1029:tid47011395057408][client82.23.77.149:59386][client82.23.77.149]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles$disablethisruleifyourequireaccesstofilesthatendwith.sql$"]	2019-11-27 13:01:32
212.30.52.243	attack	Nov 26 22:53:50 *** sshd[12744]: Invalid user hamlet from 212.30.52.243	2019-11-27 09:16:57
81.18.66.4	attackbotsspam	(Nov 27) LEN=52 TTL=119 ID=30231 DF TCP DPT=445 WINDOW=8192 SYN (Nov 26) LEN=52 TTL=119 ID=19407 DF TCP DPT=1433 WINDOW=8192 SYN (Nov 26) LEN=52 TTL=119 ID=13045 DF TCP DPT=445 WINDOW=8192 SYN (Nov 26) LEN=52 TTL=119 ID=19251 DF TCP DPT=1433 WINDOW=8192 SYN (Nov 26) LEN=52 TTL=117 ID=19185 DF TCP DPT=445 WINDOW=8192 SYN (Nov 26) LEN=52 TTL=117 ID=10003 DF TCP DPT=1433 WINDOW=8192 SYN (Nov 26) LEN=52 TTL=117 ID=21856 DF TCP DPT=445 WINDOW=8192 SYN (Nov 26) LEN=52 TTL=119 ID=28994 DF TCP DPT=1433 WINDOW=8192 SYN (Nov 26) LEN=52 TTL=119 ID=20991 DF TCP DPT=445 WINDOW=8192 SYN (Nov 26) LEN=52 TTL=119 ID=16219 DF TCP DPT=445 WINDOW=8192 SYN (Nov 26) LEN=52 TTL=119 ID=8040 DF TCP DPT=1433 WINDOW=8192 SYN (Nov 26) LEN=52 TTL=119 ID=31309 DF TCP DPT=445 WINDOW=8192 SYN (Nov 26) LEN=52 TTL=119 ID=573 DF TCP DPT=1433 WINDOW=8192 SYN (Nov 25) LEN=52 TTL=119 ID=22344 DF TCP DPT=445 WINDOW=8192 SYN (Nov 25) LEN=52 TTL=117 ID=15104 DF TCP DPT=445 WINDOW=81...	2019-11-27 09:15:51

Recently Reported IPs

131.93.106.190	51.185.194.93	54.143.10.80	251.148.181.98
191.214.108.211	249.233.96.74	35.132.206.58	177.103.32.120
86.247.174.64	37.168.179.224	63.197.85.104	115.196.110.179
228.252.45.146	139.69.207.246	167.44.85.2	7.53.251.0
175.211.169.89	28.179.95.201	88.204.4.242	132.252.150.66