121.149.93.3 - IPInfo

Basic Info

City: Shinal-li

Region: Jeollanam-do

Country: South Korea

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
121.149.93.150	attack	Sep 26 22:34:38 andromeda sshd\[11039\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.149.93.150 user=root Sep 26 22:34:40 andromeda sshd\[11039\]: Failed password for root from 121.149.93.150 port 50090 ssh2 Sep 26 22:34:43 andromeda sshd\[11057\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.149.93.150 user=root	2020-09-28 02:40:06
121.149.93.150	attackbots	Sep 26 22:34:38 andromeda sshd\[11039\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.149.93.150 user=root Sep 26 22:34:40 andromeda sshd\[11039\]: Failed password for root from 121.149.93.150 port 50090 ssh2 Sep 26 22:34:43 andromeda sshd\[11057\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.149.93.150 user=root	2020-09-27 18:46:41

Type

Details

Datetime

121.149.93.150

attack

Sep 26 22:34:38 andromeda sshd\[11039\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.149.93.150  user=root
Sep 26 22:34:40 andromeda sshd\[11039\]: Failed password for root from 121.149.93.150 port 50090 ssh2
Sep 26 22:34:43 andromeda sshd\[11057\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.149.93.150  user=root

2020-09-28 02:40:06

121.149.93.150

attackbots

Sep 26 22:34:38 andromeda sshd\[11039\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.149.93.150  user=root
Sep 26 22:34:40 andromeda sshd\[11039\]: Failed password for root from 121.149.93.150 port 50090 ssh2
Sep 26 22:34:43 andromeda sshd\[11057\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.149.93.150  user=root

2020-09-27 18:46:41

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.149.93.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32359
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;121.149.93.3.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020201 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 10:49:48 CST 2025
;; MSG SIZE  rcvd: 105

Host info

Host 3.93.149.121.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 3.93.149.121.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
61.19.54.66	attack	Unauthorized connection attempt from IP address 61.19.54.66 on Port 445(SMB)	2020-02-03 20:43:47
213.112.113.239	attack	Unauthorized connection attempt detected from IP address 213.112.113.239 to port 2220 [J]	2020-02-03 21:04:35
77.40.56.147	attackspam	Honeypot attack, port: 445, PTR: 147.56.pppoe.mari-el.ru.	2020-02-03 20:57:27
103.94.2.154	attack	Unauthorized connection attempt detected from IP address 103.94.2.154 to port 2220 [J]	2020-02-03 21:14:36
220.175.137.216	attackspambots	Unauthorized connection attempt detected from IP address 220.175.137.216 to port 2220 [J]	2020-02-03 20:47:23
52.96.79.130	attack	[DoS attack: FIN Scan] attack packets in last 20 sec from ip [52.96.79.130], Monday, Feb 03,2020 05:01:26	2020-02-03 21:10:10
61.7.185.109	attackbotsspam	Unauthorized connection attempt from IP address 61.7.185.109 on Port 445(SMB)	2020-02-03 21:00:52
223.196.88.189	attackspambots	unauthorized connection attempt	2020-02-03 20:49:18
110.78.112.38	attackspam	20/2/3@00:33:37: FAIL: Alarm-Network address from=110.78.112.38 ...	2020-02-03 20:46:57
92.118.37.61	attackspam	scans 5 times in preceeding hours on the ports (in chronological order) 3503 3554 3553 3538 3525 resulting in total of 36 scans from 92.118.37.0/24 block.	2020-02-03 21:12:31
122.254.200.161	attack	Honeypot attack, port: 4567, PTR: PTR record not found	2020-02-03 20:40:17
118.141.163.99	attack	Honeypot attack, port: 5555, PTR: sr-99-163-141-118-on-nets.com.	2020-02-03 21:18:46
45.43.54.115	attackbots	Feb 3 01:11:15 rama sshd[711086]: Invalid user usuario from 45.43.54.115 Feb 3 01:11:15 rama sshd[711086]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.43.54.115 Feb 3 01:11:18 rama sshd[711086]: Failed password for invalid user usuario from 45.43.54.115 port 51994 ssh2 Feb 3 01:11:18 rama sshd[711086]: Received disconnect from 45.43.54.115: 11: Bye Bye [preauth] Feb 3 01:19:55 rama sshd[713165]: Invalid user wbkim from 45.43.54.115 Feb 3 01:19:55 rama sshd[713165]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.43.54.115 Feb 3 01:19:56 rama sshd[713165]: Failed password for invalid user wbkim from 45.43.54.115 port 52428 ssh2 Feb 3 01:19:56 rama sshd[713165]: Received disconnect from 45.43.54.115: 11: Bye Bye [preauth] Feb 3 01:22:55 rama sshd[714157]: Invalid user celica from 45.43.54.115 Feb 3 01:22:55 rama sshd[714157]: pam_unix(sshd:auth): authentication failure; l........ -------------------------------	2020-02-03 20:55:06
45.40.166.141	attackspam	xmlrpc attack	2020-02-03 21:14:58
120.76.190.182	attackbotsspam	03.02.2020 12:28:49 Connection to port 1433 blocked by firewall	2020-02-03 21:01:43

Recently Reported IPs

27.147.123.25	240.254.176.32	154.179.80.220	135.217.121.209
238.81.133.169	76.10.241.55	137.60.109.37	251.60.46.55
62.175.226.206	213.106.47.36	238.7.175.121	230.178.86.123
9.126.69.111	93.224.204.204	248.14.248.227	240.48.128.49
242.51.204.84	34.199.217.29	236.208.224.122	211.240.115.96