121.146.39.85 - IPInfo

Basic Info

City: Ulsan

Region: Ulsan

Country: South Korea

Internet Service Provider: KT Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Unauthorized connection attempt detected from IP address 121.146.39.85 to port 5555 [J]	2020-01-26 04:37:34

Comments on same subnet:

IP	Type	Details	Datetime
121.146.39.68	attackspam	May 23 16:08:38 master sshd[10931]: Failed password for root from 121.146.39.68 port 10378 ssh2	2020-05-24 00:42:17
121.146.39.23	attackspambots	Honeypot attack, port: 5555, PTR: PTR record not found	2020-01-26 01:03:42

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.146.39.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40332
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.146.39.85.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012502 1800 900 604800 86400

;; Query time: 135 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 26 04:37:31 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 85.39.146.121.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 85.39.146.121.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
158.69.217.87	attackbotsspam	Oct 6 13:06:53 vpn01 sshd[17610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.217.87 Oct 6 13:06:55 vpn01 sshd[17610]: Failed password for invalid user aerodynamik from 158.69.217.87 port 57476 ssh2 ...	2019-10-06 19:50:03
5.196.225.45	attack	Oct 6 13:42:03 SilenceServices sshd[18789]: Failed password for root from 5.196.225.45 port 46568 ssh2 Oct 6 13:45:55 SilenceServices sshd[19889]: Failed password for root from 5.196.225.45 port 58084 ssh2	2019-10-06 20:09:43
171.244.18.14	attack	2019-10-06T13:40:08.077938lon01.zurich-datacenter.net sshd\[29605\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.244.18.14 user=root 2019-10-06T13:40:10.298396lon01.zurich-datacenter.net sshd\[29605\]: Failed password for root from 171.244.18.14 port 49838 ssh2 2019-10-06T13:44:57.413956lon01.zurich-datacenter.net sshd\[29683\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.244.18.14 user=root 2019-10-06T13:44:59.309589lon01.zurich-datacenter.net sshd\[29683\]: Failed password for root from 171.244.18.14 port 60918 ssh2 2019-10-06T13:49:50.232065lon01.zurich-datacenter.net sshd\[29785\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.244.18.14 user=root ...	2019-10-06 20:01:04
58.229.208.187	attack	Oct 6 13:49:13 MK-Soft-VM7 sshd[24067]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.229.208.187 Oct 6 13:49:15 MK-Soft-VM7 sshd[24067]: Failed password for invalid user Darkness@123 from 58.229.208.187 port 40392 ssh2 ...	2019-10-06 20:16:22
51.75.195.25	attackspam	Oct 6 07:49:41 plusreed sshd[19245]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.195.25 user=root Oct 6 07:49:42 plusreed sshd[19245]: Failed password for root from 51.75.195.25 port 42924 ssh2 ...	2019-10-06 20:06:03
124.74.110.230	attackspambots	Oct 6 13:49:42 [host] sshd[22370]: Invalid user Pa55w0rd[at]2018 from 124.74.110.230 Oct 6 13:49:42 [host] sshd[22370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.74.110.230 Oct 6 13:49:44 [host] sshd[22370]: Failed password for invalid user Pa55w0rd[at]2018 from 124.74.110.230 port 2866 ssh2	2019-10-06 20:03:57
182.61.111.254	attackbotsspam	Oct 6 02:01:26 web9 sshd\[24662\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.111.254 user=root Oct 6 02:01:28 web9 sshd\[24662\]: Failed password for root from 182.61.111.254 port 42694 ssh2 Oct 6 02:05:52 web9 sshd\[25296\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.111.254 user=root Oct 6 02:05:54 web9 sshd\[25296\]: Failed password for root from 182.61.111.254 port 54912 ssh2 Oct 6 02:10:24 web9 sshd\[26004\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.111.254 user=root	2019-10-06 20:18:37
138.197.89.212	attack	Oct 6 13:38:58 core sshd[13619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.89.212 user=root Oct 6 13:38:59 core sshd[13619]: Failed password for root from 138.197.89.212 port 54800 ssh2 ...	2019-10-06 19:46:34
2.57.77.13	attack	B: Magento admin pass test (wrong country)	2019-10-06 20:17:53
222.186.175.183	attackspam	Oct 6 14:57:43 pkdns2 sshd\[34831\]: Failed password for root from 222.186.175.183 port 32852 ssh2Oct 6 14:57:48 pkdns2 sshd\[34831\]: Failed password for root from 222.186.175.183 port 32852 ssh2Oct 6 14:57:52 pkdns2 sshd\[34831\]: Failed password for root from 222.186.175.183 port 32852 ssh2Oct 6 14:57:57 pkdns2 sshd\[34831\]: Failed password for root from 222.186.175.183 port 32852 ssh2Oct 6 14:58:00 pkdns2 sshd\[34831\]: Failed password for root from 222.186.175.183 port 32852 ssh2Oct 6 14:58:12 pkdns2 sshd\[34867\]: Failed password for root from 222.186.175.183 port 48046 ssh2 ...	2019-10-06 20:06:28
222.186.180.17	attackspambots	2019-10-06T14:10:35.9062811240 sshd\[30722\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.17 user=root 2019-10-06T14:10:38.6095371240 sshd\[30722\]: Failed password for root from 222.186.180.17 port 20852 ssh2 2019-10-06T14:10:43.0123861240 sshd\[30722\]: Failed password for root from 222.186.180.17 port 20852 ssh2 ...	2019-10-06 20:11:50
201.149.12.249	attack	Oct 6 07:49:41 localhost kernel: [4100400.740219] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=201.149.12.249 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=27914 PROTO=TCP SPT=46810 DPT=445 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 6 07:49:41 localhost kernel: [4100400.740254] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=201.149.12.249 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=27914 PROTO=TCP SPT=46810 DPT=445 SEQ=2518224073 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0	2019-10-06 20:06:51
81.177.98.52	attack	Oct 6 18:13:45 webhost01 sshd[3330]: Failed password for root from 81.177.98.52 port 33844 ssh2 ...	2019-10-06 19:48:37
58.87.114.13	attackspam	Oct 6 02:01:18 kapalua sshd\[10325\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.114.13 user=root Oct 6 02:01:20 kapalua sshd\[10325\]: Failed password for root from 58.87.114.13 port 39654 ssh2 Oct 6 02:05:23 kapalua sshd\[10692\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.114.13 user=root Oct 6 02:05:25 kapalua sshd\[10692\]: Failed password for root from 58.87.114.13 port 49194 ssh2 Oct 6 02:09:34 kapalua sshd\[11237\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.114.13 user=root	2019-10-06 20:20:51
177.220.135.10	attackspambots	Oct 6 14:04:04 meumeu sshd[22235]: Failed password for root from 177.220.135.10 port 30049 ssh2 Oct 6 14:09:00 meumeu sshd[23148]: Failed password for root from 177.220.135.10 port 55777 ssh2 ...	2019-10-06 20:17:11

Recently Reported IPs

113.128.105.66	193.210.88.79	162.230.19.139	166.70.140.68
99.247.108.253	110.93.135.204	182.141.206.219	110.49.21.19
123.156.179.236	210.213.143.249	106.12.196.50	60.245.38.73
136.55.34.174	16.105.226.57	77.113.178.215	106.12.131.162
133.203.225.126	88.233.76.79	149.13.80.233	104.244.228.170