61.83.55.1 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Korea, Republic of

Internet Service Provider: KT Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	23/tcp 23/tcp [2019-10-14/22]2pkt	2019-10-23 04:41:54

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 61.83.55.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37948
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;61.83.55.1.			IN	A

;; AUTHORITY SECTION:
.			476	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102201 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 23 04:41:51 CST 2019
;; MSG SIZE  rcvd: 114

Host info

Host 1.55.83.61.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 1.55.83.61.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
70.89.88.3	attack	Aug 15 02:52:56 lnxded64 sshd[1596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.89.88.3	2019-08-15 12:36:36
18.139.79.240	attack	2019-08-15T01:09:44.319112abusebot-7.cloudsearch.cf sshd\[10849\]: Invalid user victoria from 18.139.79.240 port 44420	2019-08-15 12:07:53
147.135.87.163	attackspam	Automatic report - Banned IP Access	2019-08-15 12:24:06
202.141.160.108	attackspambots	Brute force SMTP login attempted. ...	2019-08-15 12:24:34
213.230.127.250	attackbotsspam	Automatic report - Port Scan Attack	2019-08-15 12:44:28
202.96.112.106	attack	SSHScan	2019-08-15 12:20:37
118.24.92.216	attackspambots	Aug 15 03:43:40 MK-Soft-VM6 sshd\[17431\]: Invalid user tju1 from 118.24.92.216 port 54996 Aug 15 03:43:40 MK-Soft-VM6 sshd\[17431\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.92.216 Aug 15 03:43:42 MK-Soft-VM6 sshd\[17431\]: Failed password for invalid user tju1 from 118.24.92.216 port 54996 ssh2 ...	2019-08-15 12:10:16
35.224.113.101	attack	Splunk® : port scan detected: Aug 15 00:04:17 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:c0:42:d0:39:2c:30:08:00 SRC=35.224.113.101 DST=104.248.11.191 LEN=40 TOS=0x00 PREC=0x00 TTL=237 ID=21766 PROTO=TCP SPT=58746 DPT=3399 WINDOW=1024 RES=0x00 SYN URGP=0	2019-08-15 12:21:23
124.149.214.35	attack	Aug 15 09:26:54 vibhu-HP-Z238-Microtower-Workstation sshd\[24503\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.149.214.35 user=root Aug 15 09:26:56 vibhu-HP-Z238-Microtower-Workstation sshd\[24503\]: Failed password for root from 124.149.214.35 port 36376 ssh2 Aug 15 09:32:42 vibhu-HP-Z238-Microtower-Workstation sshd\[24661\]: Invalid user toor from 124.149.214.35 Aug 15 09:32:42 vibhu-HP-Z238-Microtower-Workstation sshd\[24661\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.149.214.35 Aug 15 09:32:44 vibhu-HP-Z238-Microtower-Workstation sshd\[24661\]: Failed password for invalid user toor from 124.149.214.35 port 54922 ssh2 ...	2019-08-15 12:04:07
122.136.62.123	attackbots	Unauthorised access (Aug 15) SRC=122.136.62.123 LEN=40 TTL=49 ID=18015 TCP DPT=8080 WINDOW=60896 SYN	2019-08-15 12:36:18
203.130.207.135	attackspambots	Aug 14 16:28:44 localhost kernel: [17058717.466550] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=203.130.207.135 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=113 ID=1832 DF PROTO=TCP SPT=53843 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 Aug 14 16:28:44 localhost kernel: [17058717.466591] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=203.130.207.135 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=113 ID=1832 DF PROTO=TCP SPT=53843 DPT=445 SEQ=4058579108 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT (020405B40103030201010402) Aug 14 19:29:54 localhost kernel: [17069587.722076] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=203.130.207.135 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=113 ID=128 DF PROTO=TCP SPT=60078 DPT=139 WINDOW=8192 RES=0x00 SYN URGP=0 Aug 14 19:29:54 localhost kernel: [17069587.722113] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=203.130	2019-08-15 12:25:00
200.111.137.132	attack	2019-08-14 18:31:41 server sshd[96991]: Failed password for invalid user lshields from 200.111.137.132 port 36656 ssh2	2019-08-15 12:35:55
106.75.240.46	attackbotsspam	Aug 15 05:43:45 tux-35-217 sshd\[27763\]: Invalid user ispconfig from 106.75.240.46 port 43948 Aug 15 05:43:45 tux-35-217 sshd\[27763\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.240.46 Aug 15 05:43:47 tux-35-217 sshd\[27763\]: Failed password for invalid user ispconfig from 106.75.240.46 port 43948 ssh2 Aug 15 05:47:47 tux-35-217 sshd\[27765\]: Invalid user oracle from 106.75.240.46 port 50164 Aug 15 05:47:47 tux-35-217 sshd\[27765\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.240.46 ...	2019-08-15 12:34:01
194.28.37.216	attackspambots	Aug 14 23:32:21 roadrisk sshd[22819]: Failed password for invalid user andre from 194.28.37.216 port 37890 ssh2 Aug 14 23:32:22 roadrisk sshd[22819]: Received disconnect from 194.28.37.216: 11: Bye Bye [preauth] Aug 14 23:39:51 roadrisk sshd[23011]: Failed password for invalid user private from 194.28.37.216 port 49878 ssh2 Aug 14 23:39:51 roadrisk sshd[23011]: Received disconnect from 194.28.37.216: 11: Bye Bye [preauth] Aug 14 23:44:44 roadrisk sshd[23153]: Failed password for invalid user testusr from 194.28.37.216 port 43924 ssh2 Aug 14 23:44:45 roadrisk sshd[23153]: Received disconnect from 194.28.37.216: 11: Bye Bye [preauth] Aug 14 23:49:21 roadrisk sshd[23281]: Failed password for invalid user natan from 194.28.37.216 port 37978 ssh2 Aug 14 23:49:21 roadrisk sshd[23281]: Received disconnect from 194.28.37.216: 11: Bye Bye [preauth] Aug 14 23:53:56 roadrisk sshd[23417]: Failed password for invalid user franklin from 194.28.37.216 port 60256 ssh2 ........ ----------------------------------------------	2019-08-15 12:34:22
104.248.147.78	attackspam	Hit on /wp-login.php/	2019-08-15 12:38:15

Recently Reported IPs

202.79.29.150	58.216.197.138	164.163.253.86	135.205.152.172
188.102.222.47	218.52.153.102	37.114.158.123	37.72.70.55
134.209.183.145	121.14.159.100	99.93.175.48	137.182.42.181
78.198.22.136	190.0.1.102	162.168.192.88	220.13.84.111
234.18.199.220	191.212.213.249	96.47.239.222	91.80.152.23