121.52.150.219

Basic Info

City: Islamabad

Region: Islamabad

Country: Pakistan

Internet Service Provider: Pern-Pakistan Education & Research Network is an

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	TCP (SYN) 121.52.150.219:54623 -> port 1433, len 40	2020-09-07 01:07:52
attackbotsspam	Honeypot attack, port: 445, PTR: uettaxila.edu.pk/chakwal.	2020-09-06 16:29:15
attackbotsspam	Honeypot attack, port: 445, PTR: uettaxila.edu.pk/chakwal.	2020-09-06 08:29:41

Comments on same subnet:

IP	Type	Details	Datetime
121.52.150.220	attackspambots	PK_APNIC-HM_<177>1582677940 [1:2010935:3] ET SCAN Suspicious inbound to MSSQL port 1433 [Classification: Potentially Bad Traffic] [Priority: 2] {TCP} 121.52.150.220:55630	2020-02-26 10:09:02
121.52.150.220	attack	unauthorized connection attempt	2020-02-04 17:35:24
121.52.150.220	attackbots	Unauthorized connection attempt detected from IP address 121.52.150.220 to port 1433 [J]	2020-01-29 09:44:09
121.52.150.94	attackbots	Aug 13 14:35:58 xtremcommunity sshd\[9762\]: Invalid user spark from 121.52.150.94 port 47634 Aug 13 14:35:58 xtremcommunity sshd\[9762\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.52.150.94 Aug 13 14:36:01 xtremcommunity sshd\[9762\]: Failed password for invalid user spark from 121.52.150.94 port 47634 ssh2 Aug 13 14:42:01 xtremcommunity sshd\[9977\]: Invalid user elias from 121.52.150.94 port 40332 Aug 13 14:42:01 xtremcommunity sshd\[9977\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.52.150.94 ...	2019-08-14 05:44:32
121.52.150.94	attackspam	Aug 12 15:34:03 * sshd[10646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.52.150.94 Aug 12 15:34:04 * sshd[10646]: Failed password for invalid user mqm from 121.52.150.94 port 54542 ssh2	2019-08-13 05:03:08
121.52.150.94	attackspambots	Jul 14 17:06:10 tuxlinux sshd[9050]: Invalid user admin from 121.52.150.94 port 35750 Jul 14 17:06:10 tuxlinux sshd[9050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.52.150.94 Jul 14 17:06:10 tuxlinux sshd[9050]: Invalid user admin from 121.52.150.94 port 35750 Jul 14 17:06:10 tuxlinux sshd[9050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.52.150.94 Jul 14 17:06:10 tuxlinux sshd[9050]: Invalid user admin from 121.52.150.94 port 35750 Jul 14 17:06:10 tuxlinux sshd[9050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.52.150.94 Jul 14 17:06:11 tuxlinux sshd[9050]: Failed password for invalid user admin from 121.52.150.94 port 35750 ssh2 ...	2019-07-15 04:08:56

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.52.150.219
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58410
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.52.150.219.			IN	A

;; AUTHORITY SECTION:
.			182	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020090501 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 06 08:29:36 CST 2020
;; MSG SIZE  rcvd: 118

Host info

219.150.52.121.in-addr.arpa domain name pointer uettaxila.edu.pk/chakwal.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
219.150.52.121.in-addr.arpa	name = uettaxila.edu.pk/chakwal.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
34.68.6.107	attackspambots	2019-06-26T22:57:31Z - RDP login failed multiple times. (34.68.6.107)	2019-06-27 07:54:34
185.53.88.37	attack	firewall-block_invalid_GET_Request	2019-06-27 08:23:30
144.48.82.75	attackspambots	scan r	2019-06-27 07:50:56
92.119.160.125	attackspambots	26.06.2019 22:56:23 Connection to port 2875 blocked by firewall	2019-06-27 07:59:53
198.108.66.80	attackbotsspam	Automatic report - Web App Attack	2019-06-27 08:12:54
91.177.33.112	attackbotsspam	Jun 27 00:56:35 vpn01 sshd\[15904\]: Invalid user silverline from 91.177.33.112 Jun 27 00:56:35 vpn01 sshd\[15904\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.177.33.112 Jun 27 00:56:37 vpn01 sshd\[15904\]: Failed password for invalid user silverline from 91.177.33.112 port 40446 ssh2	2019-06-27 07:52:50
114.232.134.137	attackspam	2019-06-26T23:58:11.250467 X postfix/smtpd[30759]: warning: unknown[114.232.134.137]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-27T00:45:00.148370 X postfix/smtpd[37072]: warning: unknown[114.232.134.137]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-27T00:55:30.463523 X postfix/smtpd[38972]: warning: unknown[114.232.134.137]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-06-27 08:16:21
213.128.88.99	attackbots	firewall-block_invalid_GET_Request	2019-06-27 08:21:50
172.247.109.52	attack	firewall-block_invalid_GET_Request	2019-06-27 08:27:02
62.210.162.128	attackbots	Port Scan detected from 62.210.162.128 (FR/France/62-210-162-128.rev.poneytelecom.eu). 4 hits in the last 290 seconds	2019-06-27 08:32:19
77.247.110.58	attack	Port Scan detected from 77.247.110.58 (NL/Netherlands/-). 4 hits in the last 291 seconds	2019-06-27 08:30:46
54.37.204.232	attackspambots	Jun 27 01:43:23 dedicated sshd[21327]: Invalid user debian from 54.37.204.232 port 44436	2019-06-27 08:09:40
142.93.241.93	attackspambots	2019-06-27T05:55:13.690005enmeeting.mahidol.ac.th sshd\[2678\]: Invalid user autoroute from 142.93.241.93 port 39004 2019-06-27T05:55:13.704123enmeeting.mahidol.ac.th sshd\[2678\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mobilia.com.pe 2019-06-27T05:55:15.633887enmeeting.mahidol.ac.th sshd\[2678\]: Failed password for invalid user autoroute from 142.93.241.93 port 39004 ssh2 ...	2019-06-27 08:25:43
157.230.129.73	attackspam	Jun 26 19:37:00 TORMINT sshd\[10279\]: Invalid user ftptest from 157.230.129.73 Jun 26 19:37:00 TORMINT sshd\[10279\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.129.73 Jun 26 19:37:02 TORMINT sshd\[10279\]: Failed password for invalid user ftptest from 157.230.129.73 port 59823 ssh2 ...	2019-06-27 08:24:29
91.134.231.96	attackbotsspam	masters-of-media.de 91.134.231.96 \[27/Jun/2019:00:56:36 +0200\] "POST /wp-login.php HTTP/1.1" 200 5856 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" masters-of-media.de 91.134.231.96 \[27/Jun/2019:00:56:36 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4103 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-06-27 07:56:57

Recently Reported IPs

67.143.192.177	82.105.250.246	118.243.65.64	62.4.19.112
179.197.2.154	166.167.114.190	190.39.30.148	45.220.39.191
45.155.205.164	83.154.198.90	110.70.56.133	212.199.63.188
160.156.211.4	76.90.162.14	45.155.205.159	221.107.1.4
208.230.171.14	74.34.165.219	106.174.66.58	47.155.219.113