121.134.159.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Korea, Republic of

Internet Service Provider: KT Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	SSH login attempts with user root at 2020-01-02.	2020-01-03 03:00:54

Comments on same subnet:

IP	Type	Details	Datetime
121.134.159.21	attackbotsspam	Sep 25 01:57:54 v22019038103785759 sshd\[17034\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 user=root Sep 25 01:57:56 v22019038103785759 sshd\[17034\]: Failed password for root from 121.134.159.21 port 43850 ssh2 Sep 25 02:01:56 v22019038103785759 sshd\[17377\]: Invalid user princess from 121.134.159.21 port 51704 Sep 25 02:01:56 v22019038103785759 sshd\[17377\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 Sep 25 02:01:58 v22019038103785759 sshd\[17377\]: Failed password for invalid user princess from 121.134.159.21 port 51704 ssh2 ...	2020-09-25 08:50:38
121.134.159.21	attackspambots	2020-08-29T08:46:15.393715lavrinenko.info sshd[4756]: Failed password for root from 121.134.159.21 port 58952 ssh2 2020-08-29T08:49:20.267410lavrinenko.info sshd[4906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 user=root 2020-08-29T08:49:22.551211lavrinenko.info sshd[4906]: Failed password for root from 121.134.159.21 port 47558 ssh2 2020-08-29T08:52:22.663095lavrinenko.info sshd[5009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 user=root 2020-08-29T08:52:24.595999lavrinenko.info sshd[5009]: Failed password for root from 121.134.159.21 port 36154 ssh2 ...	2020-08-29 13:59:59
121.134.159.21	attackspam	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-28T04:58:49Z and 2020-08-28T05:06:29Z	2020-08-28 15:33:12
121.134.159.21	attack	Aug 3 22:32:36 kh-dev-server sshd[16951]: Failed password for root from 121.134.159.21 port 37308 ssh2 ...	2020-08-04 08:42:02
121.134.159.21	attack	Failed password for invalid user wangq from 121.134.159.21 port 44120 ssh2	2020-07-30 19:00:38
121.134.159.21	attackbots	Jul 24 00:13:47 ajax sshd[22291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 Jul 24 00:13:49 ajax sshd[22291]: Failed password for invalid user zli from 121.134.159.21 port 41674 ssh2	2020-07-24 07:15:02
121.134.159.21	attackbotsspam	invalid login attempt (staff)	2020-07-23 22:10:36
121.134.159.21	attack	Jul 23 05:58:59 hidden sshd[44568]: Invalid user nui from 121.134.159.21 port 59858 Jul 23 05:58:59 hidden sshd[44568]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 Jul 23 05:59:01 hidden sshd[44568]: Failed password for invalid user nui from 121.134.159.21 port 59858 ssh2	2020-07-23 12:36:58
121.134.159.21	attack	$f2bV_matches	2020-07-23 00:46:35
121.134.159.21	attackspam	Bruteforce detected by fail2ban	2020-07-22 00:09:42
121.134.159.21	attack	Jul 17 00:45:14 mockhub sshd[25153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 Jul 17 00:45:17 mockhub sshd[25153]: Failed password for invalid user postgres from 121.134.159.21 port 51558 ssh2 ...	2020-07-17 15:45:37
121.134.159.21	attack	Jul 16 11:45:56 ip-172-31-62-245 sshd\[17801\]: Invalid user danny from 121.134.159.21\ Jul 16 11:45:57 ip-172-31-62-245 sshd\[17801\]: Failed password for invalid user danny from 121.134.159.21 port 55842 ssh2\ Jul 16 11:50:02 ip-172-31-62-245 sshd\[17853\]: Invalid user malina from 121.134.159.21\ Jul 16 11:50:04 ip-172-31-62-245 sshd\[17853\]: Failed password for invalid user malina from 121.134.159.21 port 60106 ssh2\ Jul 16 11:54:06 ip-172-31-62-245 sshd\[17921\]: Invalid user rori from 121.134.159.21\	2020-07-16 21:04:32
121.134.159.21	attackspam	2020-07-08T13:29:10.252297ns386461 sshd\[20890\]: Invalid user ryc from 121.134.159.21 port 34208 2020-07-08T13:29:10.257046ns386461 sshd\[20890\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 2020-07-08T13:29:12.541969ns386461 sshd\[20890\]: Failed password for invalid user ryc from 121.134.159.21 port 34208 ssh2 2020-07-08T13:48:06.585995ns386461 sshd\[6125\]: Invalid user tanjunhui from 121.134.159.21 port 35390 2020-07-08T13:48:06.589768ns386461 sshd\[6125\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 ...	2020-07-08 21:10:57
121.134.159.21	attackbots	Jul 8 sshd[10934]: Invalid user sonya from 121.134.159.21 port 39248	2020-07-08 14:40:31
121.134.159.21	attackbots	Jul 7 14:44:54 ns382633 sshd\[30845\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 user=root Jul 7 14:44:56 ns382633 sshd\[30845\]: Failed password for root from 121.134.159.21 port 44476 ssh2 Jul 7 14:49:37 ns382633 sshd\[31684\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 user=root Jul 7 14:49:39 ns382633 sshd\[31684\]: Failed password for root from 121.134.159.21 port 51754 ssh2 Jul 7 14:52:48 ns382633 sshd\[32449\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 user=root	2020-07-07 21:11:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.134.159.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3390
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.134.159.2.			IN	A

;; AUTHORITY SECTION:
.			387	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010200 1800 900 604800 86400

;; Query time: 879 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 03 03:00:51 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 2.159.134.121.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.159.134.121.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.25.129.144	attack	2019-12-12T06:45:03.400634shield sshd\[30539\]: Invalid user server from 118.25.129.144 port 33352 2019-12-12T06:45:03.404774shield sshd\[30539\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.129.144 2019-12-12T06:45:04.788705shield sshd\[30539\]: Failed password for invalid user server from 118.25.129.144 port 33352 ssh2 2019-12-12T06:52:53.105515shield sshd\[32082\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.129.144 user=root 2019-12-12T06:52:55.011485shield sshd\[32082\]: Failed password for root from 118.25.129.144 port 35446 ssh2	2019-12-12 15:09:56
45.141.86.122	attackspambots	Fail2Ban Ban Triggered	2019-12-12 15:02:48
104.248.55.99	attackspambots	Dec 12 08:16:02 vps691689 sshd[25987]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.55.99 Dec 12 08:16:04 vps691689 sshd[25987]: Failed password for invalid user vrathi from 104.248.55.99 port 52972 ssh2 ...	2019-12-12 15:31:44
125.230.37.12	attackbotsspam	Unauthorised access (Dec 12) SRC=125.230.37.12 LEN=52 TTL=109 ID=22898 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-12 14:56:22
49.235.134.72	attackspam	Dec 12 14:05:15 webhost01 sshd[19386]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.134.72 Dec 12 14:05:17 webhost01 sshd[19386]: Failed password for invalid user baldermann from 49.235.134.72 port 54216 ssh2 ...	2019-12-12 15:26:21
152.250.252.179	attackspambots	Dec 12 12:35:09 vibhu-HP-Z238-Microtower-Workstation sshd\[2300\]: Invalid user vicente from 152.250.252.179 Dec 12 12:35:09 vibhu-HP-Z238-Microtower-Workstation sshd\[2300\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.250.252.179 Dec 12 12:35:10 vibhu-HP-Z238-Microtower-Workstation sshd\[2300\]: Failed password for invalid user vicente from 152.250.252.179 port 36194 ssh2 Dec 12 12:42:25 vibhu-HP-Z238-Microtower-Workstation sshd\[2950\]: Invalid user cerrah from 152.250.252.179 Dec 12 12:42:25 vibhu-HP-Z238-Microtower-Workstation sshd\[2950\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.250.252.179 ...	2019-12-12 15:25:30
34.66.28.207	attackbotsspam	Dec 11 21:02:16 web9 sshd\[22414\]: Invalid user krom from 34.66.28.207 Dec 11 21:02:16 web9 sshd\[22414\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.66.28.207 Dec 11 21:02:18 web9 sshd\[22414\]: Failed password for invalid user krom from 34.66.28.207 port 38726 ssh2 Dec 11 21:07:43 web9 sshd\[23273\]: Invalid user q1w2e3r4t5y6 from 34.66.28.207 Dec 11 21:07:43 web9 sshd\[23273\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.66.28.207	2019-12-12 15:13:07
93.61.134.60	attackspam	Dec 12 11:59:59 areeb-Workstation sshd[17583]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.61.134.60 Dec 12 12:00:02 areeb-Workstation sshd[17583]: Failed password for invalid user musique from 93.61.134.60 port 39410 ssh2 ...	2019-12-12 14:58:29
49.234.56.194	attackbotsspam	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.56.194 user=root Failed password for root from 49.234.56.194 port 42238 ssh2 Invalid user tylar from 49.234.56.194 port 40898 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.56.194 Failed password for invalid user tylar from 49.234.56.194 port 40898 ssh2	2019-12-12 15:23:26
186.101.32.102	attackspambots	Dec 11 20:47:45 php1 sshd\[15380\]: Invalid user klau from 186.101.32.102 Dec 11 20:47:45 php1 sshd\[15380\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.101.32.102 Dec 11 20:47:47 php1 sshd\[15380\]: Failed password for invalid user klau from 186.101.32.102 port 50717 ssh2 Dec 11 20:57:04 php1 sshd\[16275\]: Invalid user pzhccb from 186.101.32.102 Dec 11 20:57:04 php1 sshd\[16275\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.101.32.102	2019-12-12 15:20:40
183.150.31.238	attackbots	SASL broute force	2019-12-12 15:06:12
31.27.149.45	attackbots	Automatic report - Banned IP Access	2019-12-12 15:03:59
106.12.77.199	attack	Dec 12 07:22:52 meumeu sshd[655]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.77.199 Dec 12 07:22:54 meumeu sshd[655]: Failed password for invalid user henriette from 106.12.77.199 port 46340 ssh2 Dec 12 07:30:03 meumeu sshd[1676]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.77.199 ...	2019-12-12 14:57:49
185.198.167.94	attack	SASL BRute Force	2019-12-12 15:33:54
175.150.20.30	attack	Automatic report - Port Scan Attack	2019-12-12 15:31:18

Recently Reported IPs

159.238.109.173	14.172.161.174	14.135.47.157	90.157.179.31
211.142.96.13	18.166.200.90	198.106.40.247	176.4.166.140
61.109.208.189	201.129.12.124	191.55.95.81	194.13.147.8
104.209.178.147	117.205.84.8	211.231.139.189	156.211.3.119
1.57.235.170	116.185.52.88	17.30.122.161	116.255.166.2