121.242.92.187

Basic Info

City: unknown

Region: unknown

Country: India

Internet Service Provider: Tata Communications Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Fail2Ban - SSH Bruteforce Attempt	2020-05-11 18:30:28
attackspam	SSH brutforce	2020-05-06 17:14:08
attackbots	Invalid user nk from 121.242.92.187 port 44908	2020-04-21 22:11:41
attack	$f2bV_matches	2020-04-17 21:45:07
attack	Apr 15 05:30:45 h2646465 sshd[8228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.242.92.187 user=root Apr 15 05:30:47 h2646465 sshd[8228]: Failed password for root from 121.242.92.187 port 5972 ssh2 Apr 15 05:47:13 h2646465 sshd[10408]: Invalid user zxin10 from 121.242.92.187 Apr 15 05:47:13 h2646465 sshd[10408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.242.92.187 Apr 15 05:47:13 h2646465 sshd[10408]: Invalid user zxin10 from 121.242.92.187 Apr 15 05:47:15 h2646465 sshd[10408]: Failed password for invalid user zxin10 from 121.242.92.187 port 26467 ssh2 Apr 15 05:51:23 h2646465 sshd[11007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.242.92.187 user=root Apr 15 05:51:25 h2646465 sshd[11007]: Failed password for root from 121.242.92.187 port 54799 ssh2 Apr 15 05:55:22 h2646465 sshd[11589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh r	2020-04-15 15:12:34

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.242.92.187
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55385
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.242.92.187.			IN	A

;; AUTHORITY SECTION:
.			491	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041500 1800 900 604800 86400

;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 15 15:12:28 CST 2020
;; MSG SIZE  rcvd: 118

Host info

187.92.242.121.in-addr.arpa domain name pointer 121.242.92.187.static-delhi.vsnl.net.in.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
187.92.242.121.in-addr.arpa	name = 121.242.92.187.static-delhi.vsnl.net.in.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.99.203.202	attack	Feb 8 00:48:17 debian-2gb-nbg1-2 kernel: \[3378538.422793\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=167.99.203.202 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=50927 PROTO=TCP SPT=51082 DPT=9324 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-08 08:07:59
219.142.140.2	attackspam	Feb 7 19:35:45 firewall sshd[16455]: Invalid user ytl from 219.142.140.2 Feb 7 19:35:47 firewall sshd[16455]: Failed password for invalid user ytl from 219.142.140.2 port 56787 ssh2 Feb 7 19:39:03 firewall sshd[16540]: Invalid user ncr from 219.142.140.2 ...	2020-02-08 07:43:03
175.139.166.45	attack	[portscan] Port scan	2020-02-08 08:14:58
112.85.42.178	attack	Feb 8 00:36:10 v22018076622670303 sshd\[7829\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.178 user=root Feb 8 00:36:12 v22018076622670303 sshd\[7829\]: Failed password for root from 112.85.42.178 port 61258 ssh2 Feb 8 00:36:16 v22018076622670303 sshd\[7829\]: Failed password for root from 112.85.42.178 port 61258 ssh2 ...	2020-02-08 07:46:48
222.186.15.18	attackbots	Feb 8 00:48:44 OPSO sshd\[3472\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.18 user=root Feb 8 00:48:46 OPSO sshd\[3472\]: Failed password for root from 222.186.15.18 port 58370 ssh2 Feb 8 00:48:48 OPSO sshd\[3472\]: Failed password for root from 222.186.15.18 port 58370 ssh2 Feb 8 00:48:50 OPSO sshd\[3472\]: Failed password for root from 222.186.15.18 port 58370 ssh2 Feb 8 00:49:49 OPSO sshd\[3494\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.18 user=root	2020-02-08 08:04:01
196.52.43.62	attackspam	135/tcp 401/tcp 554/tcp... [2019-12-09/2020-02-07]78pkt,52pt.(tcp),5pt.(udp)	2020-02-08 08:06:34
218.92.0.171	attackspambots	2020-2-8 12:50:10 AM: failed ssh attempt	2020-02-08 07:56:55
187.188.182.152	attackspam	445/tcp 445/tcp 445/tcp... [2019-12-10/2020-02-07]8pkt,1pt.(tcp)	2020-02-08 08:17:25
51.91.199.233	attackbots	08.02.2020 00:31:39 - RDP Login Fail Detected by https://www.elinox.de/RDP-Wächter	2020-02-08 07:39:42
112.85.42.173	attackbots	Feb 8 00:25:56 srv206 sshd[22128]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.173 user=root Feb 8 00:25:58 srv206 sshd[22128]: Failed password for root from 112.85.42.173 port 57333 ssh2 ...	2020-02-08 07:34:49
112.84.91.154	attackspambots	Feb 7 23:38:34 grey postfix/smtpd\[12187\]: NOQUEUE: reject: RCPT from unknown\[112.84.91.154\]: 554 5.7.1 Service unavailable\; Client host \[112.84.91.154\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[112.84.91.154\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-08 07:59:31
92.222.209.223	attackspam	02/07/2020-17:38:54.915703 92.222.209.223 Protocol: 17 ET SCAN Sipvicious Scan	2020-02-08 07:47:56
49.234.51.56	attack	Automatic report - SSH Brute-Force Attack	2020-02-08 08:08:57
189.213.166.130	attackspam	Port probing on unauthorized port 23	2020-02-08 08:04:57
89.248.172.101	attack	Feb 8 00:19:00 debian-2gb-nbg1-2 kernel: \[3376782.125154\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=89.248.172.101 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=2977 PROTO=TCP SPT=50124 DPT=20868 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-08 07:52:54

Recently Reported IPs

115.207.21.223	227.57.236.86	42.119.149.26	183.89.120.45
14.186.80.104	21.156.82.30	60.22.40.51	29.191.101.222
14.177.112.222	196.3.245.92	69.4.71.93	32.151.189.153
27.240.248.181	26.207.205.105	146.108.93.102	155.198.78.198
26.149.19.72	123.231.167.2	211.188.193.195	113.169.81.82