121.232.148.56

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
121.232.148.7	attackbots	account brute force by foreign IP	2019-08-06 10:49:02
121.232.148.122	attack	account brute force by foreign IP	2019-08-06 10:37:19

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.232.148.56
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52264
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;121.232.148.56.			IN	A

;; AUTHORITY SECTION:
.			198	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030900 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 22:09:45 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 56.148.232.121.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 56.148.232.121.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
37.187.114.135	attack	Sep 9 03:49:48 vps200512 sshd\[5633\]: Invalid user tmpuser from 37.187.114.135 Sep 9 03:49:48 vps200512 sshd\[5633\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.114.135 Sep 9 03:49:50 vps200512 sshd\[5633\]: Failed password for invalid user tmpuser from 37.187.114.135 port 43904 ssh2 Sep 9 03:56:42 vps200512 sshd\[9758\]: Invalid user abc@1234 from 37.187.114.135 Sep 9 03:56:42 vps200512 sshd\[9758\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.114.135	2019-09-09 17:06:13
178.57.193.14	attackspambots	[portscan] Port scan	2019-09-09 17:05:33
218.98.40.151	attackspambots	Sep 9 07:37:20 *** sshd[14337]: User root from 218.98.40.151 not allowed because not listed in AllowUsers	2019-09-09 17:01:53
66.240.236.119	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-09-09 16:58:27
217.74.6.97	attackspam	Sep 9 06:36:29 ubuntu-2gb-nbg1-dc3-1 sshd[14754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.74.6.97 Sep 9 06:36:32 ubuntu-2gb-nbg1-dc3-1 sshd[14754]: Failed password for invalid user admin from 217.74.6.97 port 36962 ssh2 ...	2019-09-09 16:53:29
201.66.230.67	attack	Sep 8 22:51:48 friendsofhawaii sshd\[14890\]: Invalid user oracle from 201.66.230.67 Sep 8 22:51:48 friendsofhawaii sshd\[14890\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.stv.com.br Sep 8 22:51:49 friendsofhawaii sshd\[14890\]: Failed password for invalid user oracle from 201.66.230.67 port 56149 ssh2 Sep 8 23:00:15 friendsofhawaii sshd\[15570\]: Invalid user owncloud from 201.66.230.67 Sep 8 23:00:15 friendsofhawaii sshd\[15570\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.stv.com.br	2019-09-09 17:01:17
206.81.11.216	attackspam	Sep 8 21:50:47 tdfoods sshd\[13738\]: Invalid user bot from 206.81.11.216 Sep 8 21:50:47 tdfoods sshd\[13738\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.11.216 Sep 8 21:50:49 tdfoods sshd\[13738\]: Failed password for invalid user bot from 206.81.11.216 port 55070 ssh2 Sep 8 21:56:54 tdfoods sshd\[14322\]: Invalid user tomcattomcat from 206.81.11.216 Sep 8 21:56:54 tdfoods sshd\[14322\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.11.216	2019-09-09 17:14:01
177.67.38.194	attack	2019-09-08 23:36:35 H=(luxexcess.it) [177.67.38.194]:33709 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-09-08 23:36:36 H=(luxexcess.it) [177.67.38.194]:33709 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/query/ip/177.67.38.194) 2019-09-08 23:36:37 H=(luxexcess.it) [177.67.38.194]:33709 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/query/ip/177.67.38.194) ...	2019-09-09 16:51:27
77.79.245.1	attack	WordPress wp-login brute force :: 77.79.245.1 0.144 BYPASS [09/Sep/2019:17:05:04 1000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-09-09 16:36:12
89.36.220.145	attack	Sep 9 06:14:31 marvibiene sshd[59293]: Invalid user ts3srv from 89.36.220.145 port 45208 Sep 9 06:14:31 marvibiene sshd[59293]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.36.220.145 Sep 9 06:14:31 marvibiene sshd[59293]: Invalid user ts3srv from 89.36.220.145 port 45208 Sep 9 06:14:33 marvibiene sshd[59293]: Failed password for invalid user ts3srv from 89.36.220.145 port 45208 ssh2 ...	2019-09-09 16:50:26
71.6.233.157	attackspam	Sep 8 10:38:31 localhost kernel: [1691328.300735] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=71.6.233.157 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=242 ID=54321 PROTO=TCP SPT=16992 DPT=16992 WINDOW=65535 RES=0x00 SYN URGP=0 Sep 8 10:38:31 localhost kernel: [1691328.300766] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=71.6.233.157 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=242 ID=54321 PROTO=TCP SPT=16992 DPT=16992 SEQ=2028551281 ACK=0 WINDOW=65535 RES=0x00 SYN URGP=0 Sep 9 00:36:02 localhost kernel: [1741578.780712] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=71.6.233.157 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=242 ID=54321 PROTO=TCP SPT=8081 DPT=8081 WINDOW=65535 RES=0x00 SYN URGP=0 Sep 9 00:36:02 localhost kernel: [1741578.780719] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=71.6.233.157 DST=[mungedIP2] LEN=40 TOS=0x08 PREC	2019-09-09 17:11:44
178.62.41.7	attackbotsspam	Sep 9 10:17:46 mail sshd\[8006\]: Invalid user ubuntu from 178.62.41.7 port 53776 Sep 9 10:17:46 mail sshd\[8006\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.41.7 Sep 9 10:17:48 mail sshd\[8006\]: Failed password for invalid user ubuntu from 178.62.41.7 port 53776 ssh2 Sep 9 10:25:21 mail sshd\[9458\]: Invalid user demo1 from 178.62.41.7 port 52358 Sep 9 10:25:21 mail sshd\[9458\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.41.7	2019-09-09 16:42:16
40.117.135.57	attack	Sep 9 10:40:34 vps01 sshd[28851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.117.135.57 Sep 9 10:40:36 vps01 sshd[28851]: Failed password for invalid user minecraft from 40.117.135.57 port 39724 ssh2	2019-09-09 16:47:33
206.189.212.81	attack	Sep 9 06:49:25 MK-Soft-VM5 sshd\[10821\]: Invalid user weblogic from 206.189.212.81 port 55358 Sep 9 06:49:25 MK-Soft-VM5 sshd\[10821\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.212.81 Sep 9 06:49:27 MK-Soft-VM5 sshd\[10821\]: Failed password for invalid user weblogic from 206.189.212.81 port 55358 ssh2 ...	2019-09-09 16:29:49
171.244.140.174	attackspambots	Sep 9 08:46:20 MK-Soft-VM4 sshd\[20441\]: Invalid user tomcat7 from 171.244.140.174 port 27264 Sep 9 08:46:20 MK-Soft-VM4 sshd\[20441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.244.140.174 Sep 9 08:46:22 MK-Soft-VM4 sshd\[20441\]: Failed password for invalid user tomcat7 from 171.244.140.174 port 27264 ssh2 ...	2019-09-09 16:51:46

Recently Reported IPs

121.232.148.52	121.232.148.58	121.232.148.60	121.232.148.64
121.232.148.66	121.232.148.68	121.232.148.70	121.232.148.72
121.232.148.74	121.232.148.76	121.232.148.78	121.232.148.8
121.232.148.80	121.232.148.82	121.232.148.84	121.232.148.86
177.16.19.211	121.232.148.88	121.232.148.90	121.232.148.92