121.134.159.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Korea, Republic of

Internet Service Provider: KT Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	SSH login attempts with user root at 2020-01-02.	2020-01-03 03:00:54

Comments on same subnet:

IP	Type	Details	Datetime
121.134.159.21	attackbotsspam	Sep 25 01:57:54 v22019038103785759 sshd\[17034\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 user=root Sep 25 01:57:56 v22019038103785759 sshd\[17034\]: Failed password for root from 121.134.159.21 port 43850 ssh2 Sep 25 02:01:56 v22019038103785759 sshd\[17377\]: Invalid user princess from 121.134.159.21 port 51704 Sep 25 02:01:56 v22019038103785759 sshd\[17377\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 Sep 25 02:01:58 v22019038103785759 sshd\[17377\]: Failed password for invalid user princess from 121.134.159.21 port 51704 ssh2 ...	2020-09-25 08:50:38
121.134.159.21	attackspambots	2020-08-29T08:46:15.393715lavrinenko.info sshd[4756]: Failed password for root from 121.134.159.21 port 58952 ssh2 2020-08-29T08:49:20.267410lavrinenko.info sshd[4906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 user=root 2020-08-29T08:49:22.551211lavrinenko.info sshd[4906]: Failed password for root from 121.134.159.21 port 47558 ssh2 2020-08-29T08:52:22.663095lavrinenko.info sshd[5009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 user=root 2020-08-29T08:52:24.595999lavrinenko.info sshd[5009]: Failed password for root from 121.134.159.21 port 36154 ssh2 ...	2020-08-29 13:59:59
121.134.159.21	attackspam	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-28T04:58:49Z and 2020-08-28T05:06:29Z	2020-08-28 15:33:12
121.134.159.21	attack	Aug 3 22:32:36 kh-dev-server sshd[16951]: Failed password for root from 121.134.159.21 port 37308 ssh2 ...	2020-08-04 08:42:02
121.134.159.21	attack	Failed password for invalid user wangq from 121.134.159.21 port 44120 ssh2	2020-07-30 19:00:38
121.134.159.21	attackbots	Jul 24 00:13:47 ajax sshd[22291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 Jul 24 00:13:49 ajax sshd[22291]: Failed password for invalid user zli from 121.134.159.21 port 41674 ssh2	2020-07-24 07:15:02
121.134.159.21	attackbotsspam	invalid login attempt (staff)	2020-07-23 22:10:36
121.134.159.21	attack	Jul 23 05:58:59 hidden sshd[44568]: Invalid user nui from 121.134.159.21 port 59858 Jul 23 05:58:59 hidden sshd[44568]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 Jul 23 05:59:01 hidden sshd[44568]: Failed password for invalid user nui from 121.134.159.21 port 59858 ssh2	2020-07-23 12:36:58
121.134.159.21	attack	$f2bV_matches	2020-07-23 00:46:35
121.134.159.21	attackspam	Bruteforce detected by fail2ban	2020-07-22 00:09:42
121.134.159.21	attack	Jul 17 00:45:14 mockhub sshd[25153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 Jul 17 00:45:17 mockhub sshd[25153]: Failed password for invalid user postgres from 121.134.159.21 port 51558 ssh2 ...	2020-07-17 15:45:37
121.134.159.21	attack	Jul 16 11:45:56 ip-172-31-62-245 sshd\[17801\]: Invalid user danny from 121.134.159.21\ Jul 16 11:45:57 ip-172-31-62-245 sshd\[17801\]: Failed password for invalid user danny from 121.134.159.21 port 55842 ssh2\ Jul 16 11:50:02 ip-172-31-62-245 sshd\[17853\]: Invalid user malina from 121.134.159.21\ Jul 16 11:50:04 ip-172-31-62-245 sshd\[17853\]: Failed password for invalid user malina from 121.134.159.21 port 60106 ssh2\ Jul 16 11:54:06 ip-172-31-62-245 sshd\[17921\]: Invalid user rori from 121.134.159.21\	2020-07-16 21:04:32
121.134.159.21	attackspam	2020-07-08T13:29:10.252297ns386461 sshd\[20890\]: Invalid user ryc from 121.134.159.21 port 34208 2020-07-08T13:29:10.257046ns386461 sshd\[20890\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 2020-07-08T13:29:12.541969ns386461 sshd\[20890\]: Failed password for invalid user ryc from 121.134.159.21 port 34208 ssh2 2020-07-08T13:48:06.585995ns386461 sshd\[6125\]: Invalid user tanjunhui from 121.134.159.21 port 35390 2020-07-08T13:48:06.589768ns386461 sshd\[6125\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 ...	2020-07-08 21:10:57
121.134.159.21	attackbots	Jul 8 sshd[10934]: Invalid user sonya from 121.134.159.21 port 39248	2020-07-08 14:40:31
121.134.159.21	attackbots	Jul 7 14:44:54 ns382633 sshd\[30845\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 user=root Jul 7 14:44:56 ns382633 sshd\[30845\]: Failed password for root from 121.134.159.21 port 44476 ssh2 Jul 7 14:49:37 ns382633 sshd\[31684\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 user=root Jul 7 14:49:39 ns382633 sshd\[31684\]: Failed password for root from 121.134.159.21 port 51754 ssh2 Jul 7 14:52:48 ns382633 sshd\[32449\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 user=root	2020-07-07 21:11:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.134.159.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3390
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.134.159.2.			IN	A

;; AUTHORITY SECTION:
.			387	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010200 1800 900 604800 86400

;; Query time: 879 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 03 03:00:51 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 2.159.134.121.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.159.134.121.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.181.41.234	attackspambots	Invalid user design from 190.181.41.234 port 44388	2020-01-22 00:20:03
116.97.234.250	attack	Invalid user admin from 116.97.234.250 port 58772	2020-01-22 00:43:45
222.221.248.242	attack	Invalid user xxl from 222.221.248.242 port 47978	2020-01-22 00:07:47
206.189.40.248	attack	Invalid user admin from 206.189.40.248 port 53206	2020-01-22 00:12:11
14.160.39.106	attackspam	Invalid user admin from 14.160.39.106 port 55310	2020-01-22 00:06:09
197.251.188.154	attackbotsspam	Invalid user admin from 197.251.188.154 port 46800	2020-01-22 00:14:47
139.199.20.202	attackspam	Invalid user catherine from 139.199.20.202 port 46940	2020-01-22 00:33:50
138.197.113.240	attackbotsspam	Invalid user cip from 138.197.113.240 port 56122	2020-01-22 00:34:04
197.232.47.210	attackspam	Jan 21 16:05:22 MainVPS sshd[20779]: Invalid user ab from 197.232.47.210 port 30861 Jan 21 16:05:22 MainVPS sshd[20779]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.232.47.210 Jan 21 16:05:22 MainVPS sshd[20779]: Invalid user ab from 197.232.47.210 port 30861 Jan 21 16:05:23 MainVPS sshd[20779]: Failed password for invalid user ab from 197.232.47.210 port 30861 ssh2 Jan 21 16:09:38 MainVPS sshd[29164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.232.47.210 user=root Jan 21 16:09:40 MainVPS sshd[29164]: Failed password for root from 197.232.47.210 port 21671 ssh2 ...	2020-01-22 00:15:10
138.68.72.7	attackbotsspam	Invalid user icaro from 138.68.72.7 port 53500	2020-01-22 00:34:58
213.82.114.206	attackspambots	Fail2Ban - SSH Bruteforce Attempt	2020-01-22 00:10:35
212.64.44.165	attackbotsspam	Unauthorized connection attempt detected from IP address 212.64.44.165 to port 2220 [J]	2020-01-22 00:11:13
193.188.22.229	attack	2020-01-21T16:14:47.394672shield sshd\[7364\]: Invalid user admin from 193.188.22.229 port 12155 2020-01-21T16:14:47.470168shield sshd\[7364\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.188.22.229 2020-01-21T16:14:49.329156shield sshd\[7364\]: Failed password for invalid user admin from 193.188.22.229 port 12155 ssh2 2020-01-21T16:14:49.982136shield sshd\[7382\]: Invalid user admin from 193.188.22.229 port 14395 2020-01-21T16:14:50.057295shield sshd\[7382\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.188.22.229	2020-01-22 00:17:15
121.46.27.20	attackspambots	Unauthorized connection attempt detected from IP address 121.46.27.20 to port 22 [J]	2020-01-22 00:40:57
171.244.43.52	attackspambots	Jan 21 17:51:56 hosting sshd[5349]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.244.43.52 user=root Jan 21 17:51:58 hosting sshd[5349]: Failed password for root from 171.244.43.52 port 43802 ssh2 ...	2020-01-22 00:26:08

Recently Reported IPs

159.238.109.173	14.172.161.174	14.135.47.157	90.157.179.31
211.142.96.13	18.166.200.90	198.106.40.247	176.4.166.140
61.109.208.189	201.129.12.124	191.55.95.81	194.13.147.8
104.209.178.147	117.205.84.8	211.231.139.189	156.211.3.119
1.57.235.170	116.185.52.88	17.30.122.161	116.255.166.2