81.221.2.124 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Switzerland

Internet Service Provider: unknown

Hostname: unknown

Organization: green.ch AG

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
81.221.234.204	attack	Jul 5 10:55:05 sip sshd[842341]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.221.234.204 Jul 5 10:55:05 sip sshd[842341]: Invalid user mb from 81.221.234.204 port 17845 Jul 5 10:55:07 sip sshd[842341]: Failed password for invalid user mb from 81.221.234.204 port 17845 ssh2 ...	2020-07-05 16:58:16
81.221.234.204	attackspambots	(sshd) Failed SSH login from 81.221.234.204 (CH/Switzerland/204-234-221-81.pool.dsl-net.ch): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 20 06:48:38 amsweb01 sshd[14761]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.221.234.204 user=admin Jun 20 06:48:41 amsweb01 sshd[14761]: Failed password for admin from 81.221.234.204 port 43858 ssh2 Jun 20 07:08:12 amsweb01 sshd[17778]: Invalid user summit from 81.221.234.204 port 52725 Jun 20 07:08:13 amsweb01 sshd[17778]: Failed password for invalid user summit from 81.221.234.204 port 52725 ssh2 Jun 20 07:19:16 amsweb01 sshd[19457]: Invalid user www from 81.221.234.204 port 32728	2020-06-20 13:47:36
81.221.254.153	attackspambots	SSH login attempts.	2020-06-19 14:47:51
81.221.234.204	attackspambots	Brute-force attempt banned	2020-06-19 00:07:04

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 81.221.2.124
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52696
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;81.221.2.124.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080600 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Aug 07 00:34:02 CST 2019
;; MSG SIZE  rcvd: 116

Host info

124.2.221.81.in-addr.arpa domain name pointer 124-2-221-81.static.dsl-net.ch.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
124.2.221.81.in-addr.arpa	name = 124-2-221-81.static.dsl-net.ch.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
13.76.162.90	attack	Aug 10 08:18:44 xtremcommunity sshd\[9162\]: Invalid user ensp from 13.76.162.90 port 57258 Aug 10 08:18:44 xtremcommunity sshd\[9162\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.76.162.90 Aug 10 08:18:46 xtremcommunity sshd\[9162\]: Failed password for invalid user ensp from 13.76.162.90 port 57258 ssh2 Aug 10 08:23:57 xtremcommunity sshd\[9295\]: Invalid user fu from 13.76.162.90 port 53348 Aug 10 08:23:57 xtremcommunity sshd\[9295\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.76.162.90 ...	2019-08-10 20:30:18
82.81.55.198	attackbots	Automatic report - Port Scan Attack	2019-08-10 20:45:35
74.113.235.38	attackspam	ICMP MP Probe, Scan -	2019-08-10 20:41:06
198.108.67.51	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-10 21:18:12
94.159.56.146	attackspam	" "	2019-08-10 20:56:00
184.168.193.73	attackbotsspam	xmlrpc	2019-08-10 20:52:07
178.93.28.137	attackbots	Aug 10 11:30:06 online-web-vs-1 postfix/smtpd[26012]: connect from 137-28-93-178.pool.ukrtel.net[178.93.28.137] Aug x@x Aug 10 11:30:13 online-web-vs-1 postfix/smtpd[26012]: lost connection after RCPT from 137-28-93-178.pool.ukrtel.net[178.93.28.137] Aug 10 11:30:13 online-web-vs-1 postfix/smtpd[26012]: disconnect from 137-28-93-178.pool.ukrtel.net[178.93.28.137] Aug 10 14:07:02 online-web-vs-1 postfix/smtpd[2466]: connect from 137-28-93-178.pool.ukrtel.net[178.93.28.137] Aug x@x Aug x@x Aug x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=178.93.28.137	2019-08-10 20:38:37
14.139.228.217	attack	Mar 5 22:43:40 motanud sshd\[28509\]: Invalid user hq from 14.139.228.217 port 33099 Mar 5 22:43:40 motanud sshd\[28509\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.228.217 Mar 5 22:43:42 motanud sshd\[28509\]: Failed password for invalid user hq from 14.139.228.217 port 33099 ssh2	2019-08-10 21:05:09
198.108.67.102	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-10 20:44:07
180.248.121.42	attack	Aug 10 13:39:42 georgia postfix/smtpd[10615]: connect from unknown[180.248.121.42] Aug 10 13:39:42 georgia postfix/smtpd[10613]: connect from unknown[180.248.121.42] Aug 10 13:39:42 georgia postfix/smtpd[10613]: SSL_accept error from unknown[180.248.121.42]: lost connection Aug 10 13:39:42 georgia postfix/smtpd[10613]: lost connection after CONNECT from unknown[180.248.121.42] Aug 10 13:39:42 georgia postfix/smtpd[10613]: disconnect from unknown[180.248.121.42] commands=0/0 Aug 10 13:39:42 georgia postfix/smtpd[10615]: lost connection after CONNECT from unknown[180.248.121.42] Aug 10 13:39:42 georgia postfix/smtpd[10615]: disconnect from unknown[180.248.121.42] commands=0/0 Aug 10 13:39:56 georgia postfix/smtpd[10613]: connect from unknown[180.248.121.42] Aug 10 13:39:57 georgia postfix/smtpd[10613]: warning: unknown[180.248.121.42]: SASL CRAM-MD5 authentication failed: authentication failure Aug 10 13:39:57 georgia postfix/smtpd[10613]: warning: unknown[180.248.121.42]........ -------------------------------	2019-08-10 21:18:46
118.127.10.152	attackbots	Aug 10 14:18:29 root sshd[24658]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.127.10.152 Aug 10 14:18:32 root sshd[24658]: Failed password for invalid user os from 118.127.10.152 port 50001 ssh2 Aug 10 14:23:45 root sshd[24682]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.127.10.152 ...	2019-08-10 20:39:04
66.150.8.0	attack	ICMP MP Probe, Scan -	2019-08-10 21:04:45
74.113.236.38	attackbots	ICMP MP Probe, Scan -	2019-08-10 20:29:47
139.208.128.146	attackspambots	Unauthorised access (Aug 10) SRC=139.208.128.146 LEN=40 TTL=49 ID=61083 TCP DPT=8080 WINDOW=8810 SYN	2019-08-10 20:43:43
45.55.231.94	attackbotsspam	Aug 10 14:23:28 host sshd\[40310\]: Invalid user jy from 45.55.231.94 port 46094 Aug 10 14:23:28 host sshd\[40310\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.231.94 ...	2019-08-10 20:51:00

Recently Reported IPs

162.227.90.98	38.254.35.219	2403:6200:8816:5dd:8445:5ef8:76d3:1d5	221.158.203.101
100.186.29.236	206.186.25.237	162.210.237.171	107.175.167.75
42.43.9.123	44.146.91.130	23.204.70.228	1.36.228.84
100.197.157.151	80.28.45.80	152.136.214.13	214.146.130.9
53.14.153.254	32.119.138.81	213.41.32.158	54.218.230.50