121.134.218.148

Basic Info

City: Guro-gu

Region: Seoul

Country: South Korea

Internet Service Provider: KT Corporation

Hostname: unknown

Organization: Korea Telecom

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Sep 8 04:24:47 wbs sshd\[3745\]: Invalid user ryan2010 from 121.134.218.148 Sep 8 04:24:47 wbs sshd\[3745\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.218.148 Sep 8 04:24:48 wbs sshd\[3745\]: Failed password for invalid user ryan2010 from 121.134.218.148 port 35622 ssh2 Sep 8 04:29:25 wbs sshd\[4209\]: Invalid user ftpadmin123 from 121.134.218.148 Sep 8 04:29:25 wbs sshd\[4209\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.218.148	2019-09-08 23:03:58
attackspam	SSH Bruteforce attack	2019-08-26 20:45:43
attackbotsspam	Aug 24 08:40:37 h2177944 sshd\[24948\]: Invalid user steam from 121.134.218.148 port 25906 Aug 24 08:40:37 h2177944 sshd\[24948\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.218.148 Aug 24 08:40:39 h2177944 sshd\[24948\]: Failed password for invalid user steam from 121.134.218.148 port 25906 ssh2 Aug 24 08:45:30 h2177944 sshd\[25119\]: Invalid user bmw from 121.134.218.148 port 14875 ...	2019-08-24 18:47:48
attackspambots	Aug 19 14:37:04 hanapaa sshd\[6928\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.218.148 user=root Aug 19 14:37:06 hanapaa sshd\[6928\]: Failed password for root from 121.134.218.148 port 43000 ssh2 Aug 19 14:42:03 hanapaa sshd\[7442\]: Invalid user llama from 121.134.218.148 Aug 19 14:42:03 hanapaa sshd\[7442\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.218.148 Aug 19 14:42:05 hanapaa sshd\[7442\]: Failed password for invalid user llama from 121.134.218.148 port 33201 ssh2	2019-08-20 10:43:51
attackbots	Aug 15 13:21:14 hosting sshd[16767]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.218.148 user=root Aug 15 13:21:16 hosting sshd[16767]: Failed password for root from 121.134.218.148 port 43590 ssh2 ...	2019-08-15 18:49:49
attackspam	2019-08-13T07:02:47.842245enmeeting.mahidol.ac.th sshd\[11933\]: Invalid user alessia from 121.134.218.148 port 15126 2019-08-13T07:02:47.856985enmeeting.mahidol.ac.th sshd\[11933\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.218.148 2019-08-13T07:02:49.416669enmeeting.mahidol.ac.th sshd\[11933\]: Failed password for invalid user alessia from 121.134.218.148 port 15126 ssh2 ...	2019-08-13 08:08:28
attack	Aug 10 17:09:51 mail sshd\[10395\]: Failed password for invalid user buildbot from 121.134.218.148 port 25614 ssh2 Aug 10 17:25:32 mail sshd\[10531\]: Invalid user chen from 121.134.218.148 port 65036 Aug 10 17:25:32 mail sshd\[10531\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.218.148 ...	2019-08-11 00:31:21
attackspambots	Aug 3 19:28:40 dedicated sshd[17015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.218.148 user=root Aug 3 19:28:41 dedicated sshd[17015]: Failed password for root from 121.134.218.148 port 13605 ssh2	2019-08-04 02:40:13
attack	Automatic report - Banned IP Access	2019-07-26 15:58:53
attackspam	Jul 25 21:01:09 s64-1 sshd[5237]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.218.148 Jul 25 21:01:11 s64-1 sshd[5237]: Failed password for invalid user john1 from 121.134.218.148 port 28621 ssh2 Jul 25 21:06:06 s64-1 sshd[5290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.218.148 ...	2019-07-26 03:25:34
attackbots	Reported by AbuseIPDB proxy server.	2019-07-04 01:33:30
attackbots	Jun 24 21:49:24 xb0 sshd[13397]: Failed password for invalid user openbravo from 121.134.218.148 port 60743 ssh2 Jun 24 21:49:25 xb0 sshd[13397]: Received disconnect from 121.134.218.148: 11: Bye Bye [preauth] Jun 24 21:51:28 xb0 sshd[5598]: Failed password for invalid user postgres from 121.134.218.148 port 23098 ssh2 Jun 24 21:51:28 xb0 sshd[5598]: Received disconnect from 121.134.218.148: 11: Bye Bye [preauth] Jun 24 21:53:13 xb0 sshd[10373]: Failed password for invalid user dh from 121.134.218.148 port 40778 ssh2 Jun 24 21:53:13 xb0 sshd[10373]: Received disconnect from 121.134.218.148: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=121.134.218.148	2019-06-30 00:08:54

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.134.218.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16828
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.134.218.148.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062900 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jun 30 00:08:42 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 148.218.134.121.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 148.218.134.121.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
129.204.188.93	attack	2020-07-29T23:31:06.334930snf-827550 sshd[14995]: Invalid user liupan from 129.204.188.93 port 33462 2020-07-29T23:31:08.034521snf-827550 sshd[14995]: Failed password for invalid user liupan from 129.204.188.93 port 33462 ssh2 2020-07-29T23:34:48.459326snf-827550 sshd[15028]: Invalid user dwhuang from 129.204.188.93 port 46668 ...	2020-07-30 05:08:29
222.165.194.67	attackbotsspam	Dovecot Invalid User Login Attempt.	2020-07-30 05:06:54
158.69.192.35	attackspambots	Jul 29 20:28:45 IngegnereFirenze sshd[6828]: Failed password for invalid user ahadji from 158.69.192.35 port 55534 ssh2 ...	2020-07-30 04:48:18
49.233.214.188	attackspambots	2020-07-29T23:24:04.585760lavrinenko.info sshd[11169]: Failed password for root from 49.233.214.188 port 52942 ssh2 2020-07-29T23:28:49.662622lavrinenko.info sshd[11378]: Invalid user hqw from 49.233.214.188 port 58124 2020-07-29T23:28:49.673067lavrinenko.info sshd[11378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.214.188 2020-07-29T23:28:49.662622lavrinenko.info sshd[11378]: Invalid user hqw from 49.233.214.188 port 58124 2020-07-29T23:28:51.882299lavrinenko.info sshd[11378]: Failed password for invalid user hqw from 49.233.214.188 port 58124 ssh2 ...	2020-07-30 04:41:29
164.132.225.151	attackspam	Jul 29 22:28:21 sso sshd[8284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.225.151 Jul 29 22:28:23 sso sshd[8284]: Failed password for invalid user marco from 164.132.225.151 port 42814 ssh2 ...	2020-07-30 05:04:10
183.61.109.23	attackbots	2020-07-29T15:28:10.907822morrigan.ad5gb.com sshd[2121231]: Invalid user splunk from 183.61.109.23 port 35017 2020-07-29T15:28:13.100403morrigan.ad5gb.com sshd[2121231]: Failed password for invalid user splunk from 183.61.109.23 port 35017 ssh2	2020-07-30 05:10:09
116.254.116.254	attackbotsspam	Fail2Ban Ban Triggered	2020-07-30 04:44:22
106.12.173.60	attackbotsspam	Jul 29 14:28:29 Host-KLAX-C sshd[13639]: Disconnected from invalid user yanwei 106.12.173.60 port 58142 [preauth] ...	2020-07-30 05:01:32
165.227.66.215	attackspam	Jul 29 22:28:28 debian-2gb-nbg1-2 kernel: \[18313002.686905\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=165.227.66.215 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=58676 PROTO=TCP SPT=59545 DPT=6508 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-30 04:59:17
106.12.96.23	attack	2020-07-29T22:27:30.541467vps773228.ovh.net sshd[2049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.96.23 2020-07-29T22:27:30.526389vps773228.ovh.net sshd[2049]: Invalid user lcx from 106.12.96.23 port 47216 2020-07-29T22:27:32.237943vps773228.ovh.net sshd[2049]: Failed password for invalid user lcx from 106.12.96.23 port 47216 ssh2 2020-07-29T22:28:07.686712vps773228.ovh.net sshd[2055]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.96.23 user=root 2020-07-29T22:28:09.464300vps773228.ovh.net sshd[2055]: Failed password for root from 106.12.96.23 port 49090 ssh2 ...	2020-07-30 05:13:23
95.238.7.108	attackbotsspam	$f2bV_matches	2020-07-30 05:10:22
106.52.213.68	attack	Jul 29 13:48:56 dignus sshd[11046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.213.68 Jul 29 13:48:58 dignus sshd[11046]: Failed password for invalid user wusheng from 106.52.213.68 port 39552 ssh2 Jul 29 13:52:55 dignus sshd[11512]: Invalid user zxzhao from 106.52.213.68 port 57140 Jul 29 13:52:55 dignus sshd[11512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.213.68 Jul 29 13:52:57 dignus sshd[11512]: Failed password for invalid user zxzhao from 106.52.213.68 port 57140 ssh2 ...	2020-07-30 05:09:44
121.20.249.91	attackspambots	Unauthorised access (Jul 29) SRC=121.20.249.91 LEN=40 TTL=46 ID=21485 TCP DPT=8080 WINDOW=55752 SYN	2020-07-30 04:39:03
114.235.87.195	attackbots	Lines containing failures of 114.235.87.195 Jul 29 22:30:30 shared07 sshd[7695]: Invalid user orgiast from 114.235.87.195 port 50763 Jul 29 22:30:30 shared07 sshd[7695]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.235.87.195 Jul 29 22:30:32 shared07 sshd[7695]: Failed password for invalid user orgiast from 114.235.87.195 port 50763 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=114.235.87.195	2020-07-30 04:47:09
111.229.203.86	attackbotsspam	Jul 29 22:23:09 rotator sshd\[31170\]: Invalid user qhbz from 111.229.203.86Jul 29 22:23:10 rotator sshd\[31170\]: Failed password for invalid user qhbz from 111.229.203.86 port 55372 ssh2Jul 29 22:25:56 rotator sshd\[31946\]: Invalid user tmatare from 111.229.203.86Jul 29 22:25:58 rotator sshd\[31946\]: Failed password for invalid user tmatare from 111.229.203.86 port 43940 ssh2Jul 29 22:28:40 rotator sshd\[31985\]: Invalid user dudeqing from 111.229.203.86Jul 29 22:28:42 rotator sshd\[31985\]: Failed password for invalid user dudeqing from 111.229.203.86 port 60734 ssh2 ...	2020-07-30 04:48:33

Recently Reported IPs

216.22.171.236	23.72.113.146	194.219.63.125	192.241.221.187
126.238.98.206	39.14.245.204	103.110.253.65	180.82.81.189
185.242.251.52	63.184.191.109	212.19.116.205	94.53.94.141
124.48.84.246	208.46.189.113	125.138.129.101	12.163.8.129
189.200.212.222	82.164.64.86	141.98.81.138	76.113.50.141