175.212.120.145

Basic Info

City: unknown

Region: unknown

Country: Korea, Republic of

Internet Service Provider: KT Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 175.212.120.145 to port 81	2020-01-05 07:57:31

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 175.212.120.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23376
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;175.212.120.145.		IN	A

;; AUTHORITY SECTION:
.			469	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010402 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 05 07:57:28 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 145.120.212.175.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.120.212.175.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
46.101.19.133	attackbotsspam	Jun 4 05:52:35 sip sshd[532773]: Failed password for root from 46.101.19.133 port 52434 ssh2 Jun 4 05:56:10 sip sshd[532842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.19.133 user=root Jun 4 05:56:12 sip sshd[532842]: Failed password for root from 46.101.19.133 port 53808 ssh2 ...	2020-06-04 14:04:28
220.130.178.36	attackspambots	$f2bV_matches	2020-06-04 14:29:23
222.186.30.35	attackbots	Jun 4 08:11:45 piServer sshd[3911]: Failed password for root from 222.186.30.35 port 18905 ssh2 Jun 4 08:11:49 piServer sshd[3911]: Failed password for root from 222.186.30.35 port 18905 ssh2 Jun 4 08:11:53 piServer sshd[3911]: Failed password for root from 222.186.30.35 port 18905 ssh2 ...	2020-06-04 14:15:23
222.186.30.76	attack	Jun 4 03:33:45 firewall sshd[30214]: Failed password for root from 222.186.30.76 port 60269 ssh2 Jun 4 03:33:48 firewall sshd[30214]: Failed password for root from 222.186.30.76 port 60269 ssh2 Jun 4 03:33:50 firewall sshd[30214]: Failed password for root from 222.186.30.76 port 60269 ssh2 ...	2020-06-04 14:35:33
203.81.78.180	attack	Jun 4 06:57:24 server sshd[23560]: Failed password for root from 203.81.78.180 port 51200 ssh2 Jun 4 07:01:39 server sshd[26962]: Failed password for root from 203.81.78.180 port 57074 ssh2 Jun 4 07:05:58 server sshd[30259]: Failed password for root from 203.81.78.180 port 34826 ssh2	2020-06-04 14:01:48
198.108.66.232	attack	" "	2020-06-04 14:34:09
67.207.88.180	attackspam	Jun 4 07:40:09 home sshd[1987]: Failed password for root from 67.207.88.180 port 59604 ssh2 Jun 4 07:41:44 home sshd[2275]: Failed password for root from 67.207.88.180 port 56334 ssh2 ...	2020-06-04 13:59:13
139.219.5.244	attackspam	139.219.5.244 - - [04/Jun/2020:07:39:09 +0200] "POST /wp-login.php HTTP/1.1" 200 6062 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 139.219.5.244 - - [04/Jun/2020:07:39:42 +0200] "POST /wp-login.php HTTP/1.1" 200 6062 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 139.219.5.244 - - [04/Jun/2020:07:40:08 +0200] "POST /wp-login.php HTTP/1.1" 200 6062 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 139.219.5.244 - - [04/Jun/2020:07:41:08 +0200] "POST /wp-login.php HTTP/1.1" 200 6062 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 139.219.5.244 - - [04/Jun/2020:07:41:42 +0200] "POST /wp-login.php HTTP/1.1" 200 6062 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safar ...	2020-06-04 13:58:47
222.186.175.23	attackspam	Jun 4 08:13:22 vps sshd[696984]: Failed password for root from 222.186.175.23 port 59504 ssh2 Jun 4 08:13:24 vps sshd[696984]: Failed password for root from 222.186.175.23 port 59504 ssh2 Jun 4 08:13:27 vps sshd[697556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.23 user=root Jun 4 08:13:29 vps sshd[697556]: Failed password for root from 222.186.175.23 port 48312 ssh2 Jun 4 08:13:31 vps sshd[697556]: Failed password for root from 222.186.175.23 port 48312 ssh2 ...	2020-06-04 14:18:48
51.178.51.152	attack	Jun 3 19:43:38 web9 sshd\[25197\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.51.152 user=root Jun 3 19:43:40 web9 sshd\[25197\]: Failed password for root from 51.178.51.152 port 43514 ssh2 Jun 3 19:46:59 web9 sshd\[25668\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.51.152 user=root Jun 3 19:47:01 web9 sshd\[25668\]: Failed password for root from 51.178.51.152 port 41938 ssh2 Jun 3 19:50:03 web9 sshd\[26161\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.51.152 user=root	2020-06-04 13:55:51
45.113.69.153	attackbotsspam	Jun 4 05:57:40 hcbbdb sshd\[20366\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.113.69.153 user=root Jun 4 05:57:42 hcbbdb sshd\[20366\]: Failed password for root from 45.113.69.153 port 44552 ssh2 Jun 4 06:01:16 hcbbdb sshd\[20765\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.113.69.153 user=root Jun 4 06:01:18 hcbbdb sshd\[20765\]: Failed password for root from 45.113.69.153 port 51906 ssh2 Jun 4 06:04:48 hcbbdb sshd\[21123\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.113.69.153 user=root	2020-06-04 14:18:19
103.246.240.30	attack	5x Failed Password	2020-06-04 14:02:26
125.137.191.215	attackspam	Jun 4 04:57:01 ip-172-31-61-156 sshd[10312]: Failed password for root from 125.137.191.215 port 58484 ssh2 Jun 4 05:00:50 ip-172-31-61-156 sshd[10500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.137.191.215 user=root Jun 4 05:00:52 ip-172-31-61-156 sshd[10500]: Failed password for root from 125.137.191.215 port 60366 ssh2 Jun 4 05:00:50 ip-172-31-61-156 sshd[10500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.137.191.215 user=root Jun 4 05:00:52 ip-172-31-61-156 sshd[10500]: Failed password for root from 125.137.191.215 port 60366 ssh2 ...	2020-06-04 14:10:53
202.103.202.80	attackbotsspam	RDP brute force attack detected by fail2ban	2020-06-04 14:38:24
195.54.160.180	attackbots	Jun 4 02:07:19 mail sshd\[26763\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.54.160.180 user=root ...	2020-06-04 14:18:03

Recently Reported IPs

78.187.27.122	78.187.9.193	78.186.21.191	78.166.93.5
130.57.209.101	78.157.49.255	78.134.20.223	76.240.125.9
69.3.170.174	2.73.32.7	61.84.247.221	59.13.9.112
49.51.9.157	46.5.215.98	41.222.11.219	39.119.230.52
37.116.235.111	37.32.41.221	31.128.22.74	24.231.105.166