121.230.106.80

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
121.230.106.188	attack	SIP/5060 Probe, BF, Hack -	2020-02-19 21:32:36

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.230.106.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22537
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;121.230.106.80.			IN	A

;; AUTHORITY SECTION:
.			543	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091401 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 15 03:13:54 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 80.106.230.121.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 80.106.230.121.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.29.214.188	attackspambots	SSH Brute Force	2020-04-05 06:57:52
46.101.26.21	attackspam	Apr 5 00:40:31 ns382633 sshd\[24449\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.26.21 user=root Apr 5 00:40:33 ns382633 sshd\[24449\]: Failed password for root from 46.101.26.21 port 39162 ssh2 Apr 5 00:50:58 ns382633 sshd\[26648\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.26.21 user=root Apr 5 00:51:00 ns382633 sshd\[26648\]: Failed password for root from 46.101.26.21 port 25567 ssh2 Apr 5 00:54:13 ns382633 sshd\[27241\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.26.21 user=root	2020-04-05 07:15:25
193.254.135.252	attack	Apr 5 01:08:46 mout sshd[27389]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.254.135.252 user=root Apr 5 01:08:48 mout sshd[27389]: Failed password for root from 193.254.135.252 port 35516 ssh2	2020-04-05 07:20:21
114.238.46.227	attackspam	2020-04-04T22:51:52.872396 X postfix/smtpd[68579]: lost connection after AUTH from unknown[114.238.46.227] 2020-04-04T22:51:53.663307 X postfix/smtpd[68579]: lost connection after AUTH from unknown[114.238.46.227] 2020-04-04T22:51:55.051185 X postfix/smtpd[68579]: lost connection after AUTH from unknown[114.238.46.227]	2020-04-05 07:04:02
211.159.177.120	attackbots	[SunApr0500:51:40.8817822020][:error][pid30280:tid47137753908992][client211.159.177.120:50254][client211.159.177.120]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\\\\\\\\\(chr\?\\\\\\\\\(\?[0-9]{1\,3}\?\\\\\\\\$\\|\?=\?f$\?:open\\|write$\?\\\\\\\\$\\|\\\\\\\\b\(\?:passthru\\|serialize\\|php_uname\\|phpinfo\\|shell_exec\\|preg_\\\\\\\\w \\|mysql_query\\|exec\\|eval\\|base64_decode\\|decode_base64\\|rot13\\|base64_url_decode\\|gz\(\?:inflate\\|decode\\|uncompress$\\|strrev\\|zlib_\\\\\\\\w \)\\\\\\\\b\?\(\?..."atARGS:admin.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"767"][id"340095"][rev"53"][msg"Atomicorp.comWAFRules:AttackBlocked-PHPfunctioninArgument-thismaybeanattack."][data"die\(@md5\,ARGS:admin"][severity"CRITICAL"][hostname"148.251.104.85"][uri"/Admin5568fb94/Login.php"][unique_id"XokPfOgPb4SEOTqmb9-7cwAAAIE"][SunApr0500:51:44.8509632020][:error][pid30651:tid47137789630208][client211.159.177.120:50384][client211.159.177.120]ModSecurity:Accessdeniedwith	2020-04-05 07:14:37
180.169.124.178	attack	Apr 4 18:16:35 UTC__SANYALnet-Labs__lste sshd[9903]: Connection from 180.169.124.178 port 49774 on 192.168.1.10 port 22 Apr 4 18:16:36 UTC__SANYALnet-Labs__lste sshd[9903]: Invalid user clamav from 180.169.124.178 port 49774 Apr 4 18:16:37 UTC__SANYALnet-Labs__lste sshd[9903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.169.124.178 Apr 4 18:16:39 UTC__SANYALnet-Labs__lste sshd[9903]: Failed password for invalid user clamav from 180.169.124.178 port 49774 ssh2 Apr 4 18:16:40 UTC__SANYALnet-Labs__lste sshd[9903]: Received disconnect from 180.169.124.178 port 49774:11: Normal Shutdown [preauth] Apr 4 18:16:40 UTC__SANYALnet-Labs__lste sshd[9903]: Disconnected from 180.169.124.178 port 49774 [preauth] Apr 4 18:18:56 UTC__SANYALnet-Labs__lste sshd[10018]: Connection from 180.169.124.178 port 14687 on 192.168.1.10 port 22 Apr 4 18:18:58 UTC__SANYALnet-Labs__lste sshd[10018]: Invalid user squid from 180.169.124.178 port 1........ -------------------------------	2020-04-05 07:13:12
115.68.207.164	attack	Apr 5 00:43:32 vpn01 sshd[24313]: Failed password for root from 115.68.207.164 port 59576 ssh2 ...	2020-04-05 06:59:37
189.106.20.199	attackspambots	Unauthorized connection attempt from IP address 189.106.20.199 on Port 445(SMB)	2020-04-05 06:46:29
93.67.130.28	attack	Attempted connection to port 23.	2020-04-05 06:46:58
92.118.161.9	attackbotsspam	Scanning unused Default website or suspicious access to valid sites from IP marked as abusive	2020-04-05 06:52:21
222.186.180.8	attack	SSH invalid-user multiple login attempts	2020-04-05 06:58:31
163.172.127.251	attackbots	SSH brute force attempt	2020-04-05 07:23:09
145.239.196.14	attackspambots	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-04-05 07:25:56
5.135.165.55	attack	detected by Fail2Ban	2020-04-05 06:56:12
129.28.29.57	attackbotsspam	Apr 5 00:51:49 sshd\[5502\]: User root from 129.28.29.57 not allowed because not listed in AllowUsersApr 5 00:51:51 sshd\[5502\]: Failed password for invalid user root from 129.28.29.57 port 38336 ssh2 ...	2020-04-05 07:11:03

Recently Reported IPs

192.210.228.117	203.96.225.52	185.89.100.219	91.204.15.59
193.202.9.164	110.250.3.235	141.98.86.68	103.27.230.216
3.145.143.227	149.56.45.109	135.181.28.246	134.209.102.109
139.59.108.51	156.146.54.202	139.162.227.152	118.171.62.40
149.127.232.105	103.154.230.129	38.44.72.138	154.92.116.235