121.166.149.68

Basic Info

City: unknown

Region: unknown

Country: Korea, Republic of

Internet Service Provider: KT Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	IP reached maximum auth failures	2019-10-08 20:58:36

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.166.149.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44154
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.166.149.68.			IN	A

;; AUTHORITY SECTION:
.			208	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100800 1800 900 604800 86400

;; Query time: 253 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 08 20:58:29 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 68.149.166.121.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 68.149.166.121.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
114.237.109.218	attackbotsspam	$f2bV_matches	2019-12-05 07:48:37
182.117.87.2	attack	Honeypot attack, port: 23, PTR: hn.kd.ny.adsl.	2019-12-05 08:01:19
175.204.91.168	attackbotsspam	Dec 5 00:41:30 microserver sshd[9981]: Invalid user sawane from 175.204.91.168 port 60724 Dec 5 00:41:30 microserver sshd[9981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.204.91.168 Dec 5 00:41:32 microserver sshd[9981]: Failed password for invalid user sawane from 175.204.91.168 port 60724 ssh2 Dec 5 00:47:45 microserver sshd[10865]: Invalid user ts from 175.204.91.168 port 33610 Dec 5 00:47:45 microserver sshd[10865]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.204.91.168 Dec 5 01:00:18 microserver sshd[13002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.204.91.168 user=root Dec 5 01:00:20 microserver sshd[13002]: Failed password for root from 175.204.91.168 port 35346 ssh2 Dec 5 01:06:30 microserver sshd[13882]: Invalid user fuser2 from 175.204.91.168 port 35684 Dec 5 01:06:30 microserver sshd[13882]: pam_unix(sshd:auth): authentication failure; logname	2019-12-05 07:50:17
104.131.111.64	attackspam	Dec 5 04:19:16 vibhu-HP-Z238-Microtower-Workstation sshd\[16833\]: Invalid user guest from 104.131.111.64 Dec 5 04:19:16 vibhu-HP-Z238-Microtower-Workstation sshd\[16833\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.111.64 Dec 5 04:19:18 vibhu-HP-Z238-Microtower-Workstation sshd\[16833\]: Failed password for invalid user guest from 104.131.111.64 port 34579 ssh2 Dec 5 04:28:13 vibhu-HP-Z238-Microtower-Workstation sshd\[17329\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.111.64 user=root Dec 5 04:28:15 vibhu-HP-Z238-Microtower-Workstation sshd\[17329\]: Failed password for root from 104.131.111.64 port 40163 ssh2 ...	2019-12-05 07:33:34
134.175.111.215	attack	Dec 4 22:54:00 legacy sshd[12483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.111.215 Dec 4 22:54:03 legacy sshd[12483]: Failed password for invalid user celeron from 134.175.111.215 port 44306 ssh2 Dec 4 23:00:29 legacy sshd[12821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.111.215 ...	2019-12-05 07:49:16
148.66.135.178	attackspam	SSH Bruteforce attempt	2019-12-05 08:02:21
106.241.16.119	attackspam	Dec 5 00:12:30 markkoudstaal sshd[25831]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.241.16.119 Dec 5 00:12:32 markkoudstaal sshd[25831]: Failed password for invalid user netbios from 106.241.16.119 port 38810 ssh2 Dec 5 00:19:06 markkoudstaal sshd[26485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.241.16.119	2019-12-05 07:30:42
52.177.129.251	attackbots	$f2bV_matches	2019-12-05 07:33:14
189.174.90.135	attackspam	Scanning random ports - tries to find possible vulnerable services	2019-12-05 07:31:14
177.101.255.26	attackbots	2019-12-04 17:48:47,688 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 177.101.255.26 2019-12-04 18:25:16,520 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 177.101.255.26 2019-12-04 19:09:40,397 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 177.101.255.26 2019-12-04 19:46:59,010 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 177.101.255.26 2019-12-04 20:23:58,012 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 177.101.255.26 ...	2019-12-05 07:35:05
213.182.92.37	attackspam	2019-12-04T23:26:33.154688vps751288.ovh.net sshd\[31415\]: Invalid user qc from 213.182.92.37 port 45264 2019-12-04T23:26:33.167019vps751288.ovh.net sshd\[31415\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.182.92.37 2019-12-04T23:26:35.256072vps751288.ovh.net sshd\[31415\]: Failed password for invalid user qc from 213.182.92.37 port 45264 ssh2 2019-12-04T23:32:15.838308vps751288.ovh.net sshd\[31493\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.182.92.37 user=root 2019-12-04T23:32:17.877250vps751288.ovh.net sshd\[31493\]: Failed password for root from 213.182.92.37 port 56136 ssh2	2019-12-05 07:31:36
168.243.91.19	attack	Dec 5 00:13:16 heissa sshd\[16691\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.243.91.19 user=root Dec 5 00:13:18 heissa sshd\[16691\]: Failed password for root from 168.243.91.19 port 57036 ssh2 Dec 5 00:22:48 heissa sshd\[18176\]: Invalid user cloud from 168.243.91.19 port 44205 Dec 5 00:22:48 heissa sshd\[18176\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.243.91.19 Dec 5 00:22:50 heissa sshd\[18176\]: Failed password for invalid user cloud from 168.243.91.19 port 44205 ssh2	2019-12-05 07:34:27
70.122.225.165	attackbotsspam	Honeypot attack, port: 23, PTR: cpe-70-122-225-165.tx.res.rr.com.	2019-12-05 07:30:15
27.192.124.122	attackspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-05 07:37:44
203.83.176.234	attackbotsspam	Dec 4 21:19:48 *** sshd[9645]: Invalid user sniffer from 203.83.176.234 port 63124	2019-12-05 07:34:07

Recently Reported IPs

217.219.35.3	191.17.240.90	103.125.191.106	183.82.35.28
179.95.22.89	12.99.227.102	168.77.62.162	137.63.196.39
14.248.99.237	14.141.199.166	5.184.32.108	159.146.11.174
125.161.137.95	118.171.45.5	103.82.211.142	193.93.193.24
61.159.1.87	213.230.97.116	81.0.119.151	121.97.159.141