121.202.145.18

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: SmarTone Mobile Communications Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 121.202.145.18 to port 5555	2020-01-03 08:53:44

Comments on same subnet:

IP	Type	Details	Datetime
121.202.145.248	attackspam	2020-08-16 15:27:25.325112-0500 localhost smtpd[95812]: NOQUEUE: reject: RCPT from unknown[121.202.145.248]: 554 5.7.1 Service unavailable; Client host [121.202.145.248] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/121.202.145.248; from= to= proto=ESMTP helo=	2020-08-17 05:51:07

Type

Details

Datetime

121.202.145.248

attackspam

2020-08-16 15:27:25.325112-0500  localhost smtpd[95812]: NOQUEUE: reject: RCPT from unknown[121.202.145.248]: 554 5.7.1 Service unavailable; Client host [121.202.145.248] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/121.202.145.248; from= to= proto=ESMTP helo=

2020-08-17 05:51:07

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.202.145.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45721
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.202.145.18.			IN	A

;; AUTHORITY SECTION:
.			137	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010201 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 03 08:53:41 CST 2020
;; MSG SIZE  rcvd: 118

Host info

18.145.202.121.in-addr.arpa domain name pointer m121-202-145-18.smartone.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
18.145.202.121.in-addr.arpa	name = m121-202-145-18.smartone.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
199.195.249.6	attackbotsspam	Dec 31 16:00:55 server sshd[30234]: Failed password for root from 199.195.249.6 port 53520 ssh2 Dec 31 16:20:08 server sshd[30861]: User lp from 199.195.249.6 not allowed because not listed in AllowUsers Dec 31 16:20:10 server sshd[30861]: Failed password for invalid user lp from 199.195.249.6 port 56816 ssh2	2019-12-31 23:46:25
51.75.246.176	attack	Dec 31 10:27:06 plusreed sshd[28459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.246.176 user=root Dec 31 10:27:07 plusreed sshd[28459]: Failed password for root from 51.75.246.176 port 54836 ssh2 ...	2019-12-31 23:39:29
182.71.127.250	attackbotsspam	Dec 31 10:54:03 plusreed sshd[2767]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.71.127.250 user=root Dec 31 10:54:05 plusreed sshd[2767]: Failed password for root from 182.71.127.250 port 50406 ssh2 ...	2020-01-01 00:09:16
82.209.197.111	attackbotsspam	$f2bV_matches	2020-01-01 00:08:54
173.28.230.43	attack	port scan and connect, tcp 23 (telnet)	2019-12-31 23:47:00
75.137.29.196	attack	$f2bV_matches	2020-01-01 00:03:20
218.78.29.16	attack	Dec 31 15:37:26 zeus sshd[14962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.78.29.16 Dec 31 15:37:28 zeus sshd[14962]: Failed password for invalid user estabrooks from 218.78.29.16 port 35000 ssh2 Dec 31 15:40:32 zeus sshd[15105]: Failed password for bin from 218.78.29.16 port 56460 ssh2 Dec 31 15:43:43 zeus sshd[15142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.78.29.16	2019-12-31 23:44:19
107.170.242.183	attackbots	xmlrpc attack	2020-01-01 00:17:51
119.29.170.120	attackspam	Dec 31 17:41:37 server sshd\[20540\]: Invalid user institutt from 119.29.170.120 Dec 31 17:41:37 server sshd\[20540\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.170.120 Dec 31 17:41:40 server sshd\[20540\]: Failed password for invalid user institutt from 119.29.170.120 port 38700 ssh2 Dec 31 17:52:24 server sshd\[22831\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.170.120 user=root Dec 31 17:52:27 server sshd\[22831\]: Failed password for root from 119.29.170.120 port 35100 ssh2 ...	2020-01-01 00:14:02
79.8.86.148	attackbotsspam	5,03-02/01 [bc01/m68] PostRequest-Spammer scoring: brussels	2020-01-01 00:14:28
222.186.42.4	attack	Unauthorized connection attempt detected from IP address 222.186.42.4 to port 22	2019-12-31 23:57:37
178.62.0.138	attack	Dec 31 15:53:24 srv206 sshd[28593]: Invalid user mysql from 178.62.0.138 Dec 31 15:53:24 srv206 sshd[28593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.0.138 Dec 31 15:53:24 srv206 sshd[28593]: Invalid user mysql from 178.62.0.138 Dec 31 15:53:26 srv206 sshd[28593]: Failed password for invalid user mysql from 178.62.0.138 port 52670 ssh2 ...	2019-12-31 23:38:49
159.89.134.64	attackspam	"Fail2Ban detected SSH brute force attempt"	2020-01-01 00:01:56
218.107.213.89	attackbots	Dec 31 15:52:41 host postfix/smtpd[57641]: warning: unknown[218.107.213.89]: SASL LOGIN authentication failed: authentication failure Dec 31 15:52:45 host postfix/smtpd[57641]: warning: unknown[218.107.213.89]: SASL LOGIN authentication failed: authentication failure ...	2020-01-01 00:06:43
159.65.180.64	attackspambots	Dec 31 16:58:04 [host] sshd[10369]: Invalid user harriett from 159.65.180.64 Dec 31 16:58:04 [host] sshd[10369]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.180.64 Dec 31 16:58:06 [host] sshd[10369]: Failed password for invalid user harriett from 159.65.180.64 port 54814 ssh2	2020-01-01 00:20:15

Recently Reported IPs

72.178.150.254	207.118.19.206	150.221.69.242	166.130.154.128
49.203.172.152	4.146.51.148	183.141.9.93	146.154.3.79
194.82.53.71	141.189.58.78	157.20.178.117	180.245.220.51
66.41.51.47	186.156.105.48	92.141.104.110	125.24.70.253
85.241.12.225	183.46.57.11	69.8.15.227	180.242.214.250