121.161.99.72 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Korea Republic of

Internet Service Provider: KT Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Unauthorized connection attempt detected from IP address 121.161.99.72 to port 23	2020-04-13 01:10:58
attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 07:43:21

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.161.99.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50497
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.161.99.72.			IN	A

;; AUTHORITY SECTION:
.			561	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022301 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 24 09:58:05 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 72.99.161.121.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 72.99.161.121.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
78.155.206.144	attack	fell into ViewStateTrap:harare01	2019-11-07 01:40:36
185.211.245.198	attackspam	Nov 6 19:01:59 mail postfix/smtpd[31678]: warning: unknown[185.211.245.198]: SASL PLAIN authentication failed: Nov 6 19:02:05 mail postfix/smtps/smtpd[25524]: warning: unknown[185.211.245.198]: SASL PLAIN authentication failed: Nov 6 19:02:29 mail postfix/smtps/smtpd[22670]: warning: unknown[185.211.245.198]: SASL PLAIN authentication failed:	2019-11-07 02:05:38
112.216.129.138	attack	Nov 6 14:33:24 web8 sshd\[13353\]: Invalid user jomar from 112.216.129.138 Nov 6 14:33:24 web8 sshd\[13353\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.216.129.138 Nov 6 14:33:25 web8 sshd\[13353\]: Failed password for invalid user jomar from 112.216.129.138 port 37734 ssh2 Nov 6 14:38:03 web8 sshd\[15514\]: Invalid user rizal from 112.216.129.138 Nov 6 14:38:03 web8 sshd\[15514\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.216.129.138	2019-11-07 02:08:29
162.243.99.164	attackbotsspam	Nov 6 17:46:10 bouncer sshd\[21776\]: Invalid user zou from 162.243.99.164 port 55080 Nov 6 17:46:10 bouncer sshd\[21776\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.99.164 Nov 6 17:46:11 bouncer sshd\[21776\]: Failed password for invalid user zou from 162.243.99.164 port 55080 ssh2 ...	2019-11-07 01:39:20
222.186.175.167	attack	2019-11-06T18:34:40.240947scmdmz1 sshd\[20591\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.167 user=root 2019-11-06T18:34:42.743582scmdmz1 sshd\[20591\]: Failed password for root from 222.186.175.167 port 56024 ssh2 2019-11-06T18:34:46.688641scmdmz1 sshd\[20591\]: Failed password for root from 222.186.175.167 port 56024 ssh2 ...	2019-11-07 01:39:01
217.17.161.50	attackspambots	[portscan] Port scan	2019-11-07 02:07:35
125.64.94.0	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-07 01:32:21
51.254.123.127	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/51.254.123.127/ FR - 1H : (45) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : FR NAME ASN : ASN16276 IP : 51.254.123.127 CIDR : 51.254.0.0/15 PREFIX COUNT : 132 UNIQUE IP COUNT : 3052544 ATTACKS DETECTED ASN16276 : 1H - 1 3H - 4 6H - 8 12H - 10 24H - 24 DateTime : 2019-11-06 16:39:23 INFO : Port SSH 22 Scan Detected and Blocked by ADMIN - data recovery	2019-11-07 01:38:41
83.48.101.184	attackspambots	Nov 6 18:40:13 ns381471 sshd[3241]: Failed password for root from 83.48.101.184 port 40972 ssh2 Nov 6 18:46:36 ns381471 sshd[3441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.48.101.184	2019-11-07 01:56:14
188.151.1.233	attack	Connection by 188.151.1.233 on port: 5555 got caught by honeypot at 11/6/2019 1:38:54 PM	2019-11-07 01:35:15
159.192.218.178	attackbotsspam	Unauthorized IMAP connection attempt	2019-11-07 02:04:16
128.14.209.234	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-07 01:31:09
111.230.247.243	attackspam	Oct 4 09:23:30 microserver sshd[49822]: Invalid user Hugo@123 from 111.230.247.243 port 41269 Oct 4 09:23:30 microserver sshd[49822]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.247.243 Oct 4 09:23:32 microserver sshd[49822]: Failed password for invalid user Hugo@123 from 111.230.247.243 port 41269 ssh2 Oct 4 09:28:54 microserver sshd[50505]: Invalid user Image@2017 from 111.230.247.243 port 59547 Oct 4 09:28:54 microserver sshd[50505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.247.243 Oct 4 09:44:23 microserver sshd[52539]: Invalid user 123Mini from 111.230.247.243 port 57883 Oct 4 09:44:23 microserver sshd[52539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.247.243 Oct 4 09:44:25 microserver sshd[52539]: Failed password for invalid user 123Mini from 111.230.247.243 port 57883 ssh2 Oct 4 09:49:26 microserver sshd[53220]: Invalid user Mass2017 f	2019-11-07 02:10:57
92.222.47.41	attackspam	frenzy	2019-11-07 01:49:14
218.211.169.103	attackbotsspam	Nov 5 22:07:24 server sshd\[11744\]: Failed password for invalid user hduser from 218.211.169.103 port 33094 ssh2 Nov 6 17:33:30 server sshd\[22067\]: Invalid user zabbix from 218.211.169.103 Nov 6 17:33:30 server sshd\[22067\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.211.169.103 Nov 6 17:33:32 server sshd\[22067\]: Failed password for invalid user zabbix from 218.211.169.103 port 41374 ssh2 Nov 6 20:38:54 server sshd\[4450\]: Invalid user qhsupport from 218.211.169.103 Nov 6 20:38:54 server sshd\[4450\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.211.169.103 ...	2019-11-07 01:56:40

Recently Reported IPs

150.242.185.86	228.145.65.173	193.157.214.162	20.197.11.36
72.129.140.117	128.199.29.83	113.45.39.23	116.79.202.217
23.211.222.52	238.185.100.170	215.197.92.142	5.114.145.244
169.92.60.94	193.134.190.212	5.157.28.127	103.139.37.2
103.111.15.94	76.134.244.156	77.40.2.12	217.10.50.123