121.200.54.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: India

Internet Service Provider: Wireless Solution India Pvt Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Honeypot attack, port: 445, PTR: psnacet.edu.in.	2020-02-10 15:41:23
attack	Honeypot attack, port: 445, PTR: psnacet.edu.in.	2020-01-27 19:23:10
attackbotsspam	Unauthorized connection attempt from IP address 121.200.54.2 on Port 445(SMB)	2019-08-09 18:18:11

Comments on same subnet:

IP	Type	Details	Datetime
121.200.54.18	attack	445/tcp 445/tcp 445/tcp [2020-01-27/02-21]3pkt	2020-02-21 21:19:16

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.200.54.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9198
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.200.54.2.			IN	A

;; AUTHORITY SECTION:
.			455	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080900 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 09 18:17:59 CST 2019
;; MSG SIZE  rcvd: 116

Host info

2.54.200.121.in-addr.arpa domain name pointer psnacet.edu.in.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
2.54.200.121.in-addr.arpa	name = psnacet.edu.in.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
76.104.243.253	attackspambots	Aug 17 00:42:04 XXX sshd[28945]: Invalid user ofsaa from 76.104.243.253 port 56782	2019-08-17 09:05:24
122.165.149.75	attack	Aug 16 12:12:55 aiointranet sshd\[17995\]: Invalid user sef from 122.165.149.75 Aug 16 12:12:55 aiointranet sshd\[17995\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.165.149.75 Aug 16 12:12:57 aiointranet sshd\[17995\]: Failed password for invalid user sef from 122.165.149.75 port 46946 ssh2 Aug 16 12:18:31 aiointranet sshd\[18639\]: Invalid user ibm from 122.165.149.75 Aug 16 12:18:31 aiointranet sshd\[18639\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.165.149.75	2019-08-17 08:39:22
119.196.83.10	attackspam	Invalid user debora from 119.196.83.10 port 42956	2019-08-17 09:12:04
117.2.104.3	attack	Aug 16 14:26:31 *** sshd[20942]: Failed password for invalid user tit0nich from 117.2.104.3 port 60003 ssh2	2019-08-17 09:14:25
128.199.133.249	attackbotsspam	Aug 17 01:10:29 debian sshd\[1005\]: Invalid user zimbra from 128.199.133.249 port 50058 Aug 17 01:10:29 debian sshd\[1005\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.133.249 ...	2019-08-17 08:45:22
37.187.248.10	attackbots	SSH-BruteForce	2019-08-17 09:05:55
180.153.58.183	attackbots	Aug 17 02:05:24 pornomens sshd\[14562\]: Invalid user vargas from 180.153.58.183 port 55836 Aug 17 02:05:24 pornomens sshd\[14562\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.153.58.183 Aug 17 02:05:26 pornomens sshd\[14562\]: Failed password for invalid user vargas from 180.153.58.183 port 55836 ssh2 ...	2019-08-17 08:57:54
200.57.9.141	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-16 19:32:14,627 INFO [amun_request_handler] PortScan Detected on Port: 445 (200.57.9.141)	2019-08-17 08:57:36
208.90.180.55	attackbotsspam	Aug 16 21:37:45 XXX sshd[25599]: Invalid user jed from 208.90.180.55 port 54224	2019-08-17 09:12:23
209.141.34.95	attack	08/16/2019-21:03:24.750442 209.141.34.95 Protocol: 6 ET COMPROMISED Known Compromised or Hostile Host Traffic group 17	2019-08-17 09:16:04
183.240.157.3	attackspam	Aug 17 00:20:21 MK-Soft-VM7 sshd\[26834\]: Invalid user hbase from 183.240.157.3 port 49488 Aug 17 00:20:21 MK-Soft-VM7 sshd\[26834\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.240.157.3 Aug 17 00:20:23 MK-Soft-VM7 sshd\[26834\]: Failed password for invalid user hbase from 183.240.157.3 port 49488 ssh2 ...	2019-08-17 08:52:32
217.77.221.85	attackspambots	Invalid user test from 217.77.221.85 port 48872	2019-08-17 09:13:16
37.59.99.243	attackspambots	Aug 17 02:16:51 h2177944 sshd\[784\]: Invalid user irine from 37.59.99.243 port 13897 Aug 17 02:16:51 h2177944 sshd\[784\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.99.243 Aug 17 02:16:53 h2177944 sshd\[784\]: Failed password for invalid user irine from 37.59.99.243 port 13897 ssh2 Aug 17 02:20:43 h2177944 sshd\[860\]: Invalid user admin from 37.59.99.243 port 59751 ...	2019-08-17 09:10:12
189.47.168.151	attackbots	Unauthorized connection attempt from IP address 189.47.168.151 on Port 445(SMB)	2019-08-17 09:04:54
54.39.29.105	attackspam	Aug 17 06:25:41 vibhu-HP-Z238-Microtower-Workstation sshd\[2741\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.29.105 user=root Aug 17 06:25:43 vibhu-HP-Z238-Microtower-Workstation sshd\[2741\]: Failed password for root from 54.39.29.105 port 54562 ssh2 Aug 17 06:30:10 vibhu-HP-Z238-Microtower-Workstation sshd\[2850\]: Invalid user isabelle from 54.39.29.105 Aug 17 06:30:10 vibhu-HP-Z238-Microtower-Workstation sshd\[2850\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.29.105 Aug 17 06:30:12 vibhu-HP-Z238-Microtower-Workstation sshd\[2850\]: Failed password for invalid user isabelle from 54.39.29.105 port 48472 ssh2 ...	2019-08-17 09:02:27

Recently Reported IPs

73.127.99.236	227.109.48.182	219.133.249.98	197.58.37.71
115.126.224.30	75.99.47.98	46.61.89.197	23.106.123.160
128.71.120.55	103.129.98.40	216.181.216.227	212.3.49.119
80.240.165.147	24.15.205.252	24.255.155.148	198.252.106.72
107.15.255.224	105.70.107.145	186.226.216.253	156.211.54.103