121.142.165.111

Basic Info

City: unknown

Region: unknown

Country: Korea, Republic of

Internet Service Provider: KT Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Nov 25 09:38:48 ny01 sshd[6001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.142.165.111 Nov 25 09:38:50 ny01 sshd[6001]: Failed password for invalid user admin from 121.142.165.111 port 37470 ssh2 Nov 25 09:38:53 ny01 sshd[6001]: Failed password for invalid user admin from 121.142.165.111 port 37470 ssh2 Nov 25 09:38:55 ny01 sshd[6001]: Failed password for invalid user admin from 121.142.165.111 port 37470 ssh2	2019-11-26 00:45:11
attack	SSH Bruteforce	2019-11-18 15:30:34
attack	Nov 9 09:28:39 server sshd\[29909\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.142.165.111 user=root Nov 9 09:28:41 server sshd\[29909\]: Failed password for root from 121.142.165.111 port 45354 ssh2 Nov 9 09:28:42 server sshd\[29909\]: Failed password for root from 121.142.165.111 port 45354 ssh2 Nov 9 09:28:45 server sshd\[29909\]: Failed password for root from 121.142.165.111 port 45354 ssh2 Nov 9 09:28:48 server sshd\[29909\]: Failed password for root from 121.142.165.111 port 45354 ssh2 ...	2019-11-09 15:29:07
attack	Oct 27 05:51:00 intra sshd\[48900\]: Invalid user admin from 121.142.165.111Oct 27 05:51:02 intra sshd\[48900\]: Failed password for invalid user admin from 121.142.165.111 port 49551 ssh2Oct 27 05:51:04 intra sshd\[48900\]: Failed password for invalid user admin from 121.142.165.111 port 49551 ssh2Oct 27 05:51:06 intra sshd\[48900\]: Failed password for invalid user admin from 121.142.165.111 port 49551 ssh2Oct 27 05:51:09 intra sshd\[48900\]: Failed password for invalid user admin from 121.142.165.111 port 49551 ssh2Oct 27 05:51:11 intra sshd\[48900\]: Failed password for invalid user admin from 121.142.165.111 port 49551 ssh2 ...	2019-10-27 16:17:57
attackbotsspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-10-07 18:13:51
attackbots	Honeypot attack, port: 23, PTR: PTR record not found	2019-09-30 12:01:06
attackbotsspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-08-26 16:27:49
attackspambots	Honeypot attack, port: 23, PTR: PTR record not found	2019-07-30 02:50:56
attackbotsspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-07-15 23:32:09
attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-07-06 09:33:57

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.142.165.111
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35220
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.142.165.111.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070501 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jul 06 09:33:51 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 111.165.142.121.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 111.165.142.121.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
95.85.26.23	attackbotsspam	Invalid user ftpuser from 95.85.26.23 port 49808	2020-07-16 21:10:49
13.68.226.46	attackspambots	Jul 16 07:45:25 vm1 sshd[3117]: Failed password for root from 13.68.226.46 port 49226 ssh2 Jul 16 15:10:05 vm1 sshd[18698]: Failed password for root from 13.68.226.46 port 12324 ssh2 ...	2020-07-16 21:46:30
78.2.26.211	attackbots	2020-07-16T11:47:04.735901dmca.cloudsearch.cf sshd[28716]: Invalid user kris from 78.2.26.211 port 60210 2020-07-16T11:47:04.741711dmca.cloudsearch.cf sshd[28716]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78-2-26-211.adsl.net.t-com.hr 2020-07-16T11:47:04.735901dmca.cloudsearch.cf sshd[28716]: Invalid user kris from 78.2.26.211 port 60210 2020-07-16T11:47:07.191037dmca.cloudsearch.cf sshd[28716]: Failed password for invalid user kris from 78.2.26.211 port 60210 ssh2 2020-07-16T11:53:33.668943dmca.cloudsearch.cf sshd[28799]: Invalid user rcj from 78.2.26.211 port 41088 2020-07-16T11:53:33.675209dmca.cloudsearch.cf sshd[28799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78-2-26-211.adsl.net.t-com.hr 2020-07-16T11:53:33.668943dmca.cloudsearch.cf sshd[28799]: Invalid user rcj from 78.2.26.211 port 41088 2020-07-16T11:53:35.527553dmca.cloudsearch.cf sshd[28799]: Failed password for invalid user rcj fr ...	2020-07-16 21:40:27
46.38.150.132	attack	Jul 16 14:28:40 srv01 postfix/smtpd\[20174\]: warning: unknown\[46.38.150.132\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 16 14:29:38 srv01 postfix/smtpd\[20174\]: warning: unknown\[46.38.150.132\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 16 14:30:07 srv01 postfix/smtpd\[20174\]: warning: unknown\[46.38.150.132\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 16 14:30:33 srv01 postfix/smtpd\[17200\]: warning: unknown\[46.38.150.132\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 16 14:31:05 srv01 postfix/smtpd\[17200\]: warning: unknown\[46.38.150.132\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-16 21:13:24
61.177.172.177	attackbotsspam	Jul 16 13:24:11 scw-6657dc sshd[30065]: Failed password for root from 61.177.172.177 port 4643 ssh2 Jul 16 13:24:11 scw-6657dc sshd[30065]: Failed password for root from 61.177.172.177 port 4643 ssh2 Jul 16 13:24:15 scw-6657dc sshd[30065]: Failed password for root from 61.177.172.177 port 4643 ssh2 ...	2020-07-16 21:25:44
49.72.212.22	attack	Invalid user www from 49.72.212.22 port 57312	2020-07-16 21:40:53
178.32.123.99	attackbots	Automated report (2020-07-16T20:35:25+08:00). Hack attempt detected.	2020-07-16 21:21:20
20.50.53.234	attack	Jul 16 13:18:30 IngegnereFirenze sshd[22537]: User root from 20.50.53.234 not allowed because not listed in AllowUsers ...	2020-07-16 21:29:00
117.5.148.172	attack	Jul 16 13:53:41 icecube postfix/smtpd[54064]: NOQUEUE: reject: RCPT from unknown[117.5.148.172]: 554 5.7.1 Service unavailable; Client host [117.5.148.172] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/117.5.148.172 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=	2020-07-16 21:33:55
129.211.42.153	attack	Invalid user info from 129.211.42.153 port 40576	2020-07-16 21:33:29
185.163.109.66	attack	[Thu Jun 11 17:01:14 2020] - DDoS Attack From IP: 185.163.109.66 Port: 18020	2020-07-16 21:34:42
61.216.131.31	attackbots	Jul 16 13:45:20 vps sshd[13310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.216.131.31 Jul 16 13:45:22 vps sshd[13310]: Failed password for invalid user jomar from 61.216.131.31 port 36838 ssh2 Jul 16 13:53:32 vps sshd[13696]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.216.131.31 ...	2020-07-16 21:34:21
104.168.28.214	attackspambots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-07-16 21:30:55
45.171.237.37	attackspam	1591815071 - 06/10/2020 20:51:11 Host: 45.171.237.37/45.171.237.37 Port: 445 TCP Blocked	2020-07-16 22:15:33
129.204.148.56	attackbotsspam	fail2ban -- 129.204.148.56 ...	2020-07-16 21:11:46

Recently Reported IPs

144.1.204.255	112.15.176.170	41.39.47.190	27.212.140.211
185.107.37.90	118.163.244.173	218.102.132.129	190.96.155.180
79.73.26.190	113.154.243.46	228.157.247.133	220.208.240.154
191.7.8.2	112.62.179.67	85.111.245.188	33.96.193.111
97.248.179.93	119.136.198.140	27.168.166.255	209.142.198.188