121.136.234.16

Basic Info

City: unknown

Region: unknown

Country: Korea (Republic of)

Internet Service Provider: KT Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	TCP (SYN) 121.136.234.16:51543 -> port 22, len 40	2020-09-21 00:50:34
attackspam	TCP (SYN) 121.136.234.16:51543 -> port 22, len 40	2020-09-20 16:46:21

Comments on same subnet:

IP	Type	Details	Datetime
121.136.234.237	attackspambots	Unauthorized connection attempt detected from IP address 121.136.234.237 to port 81 [J]	2020-01-13 02:22:08
121.136.234.237	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/121.136.234.237/ KR - 1H : (53) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : KR NAME ASN : ASN4766 IP : 121.136.234.237 CIDR : 121.136.128.0/17 PREFIX COUNT : 8136 UNIQUE IP COUNT : 44725248 WYKRYTE ATAKI Z ASN4766 : 1H - 3 3H - 5 6H - 9 12H - 18 24H - 33 DateTime : 2019-10-18 13:43:14 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-18 21:24:33

Type

Details

Datetime

121.136.234.237

attackspambots

Unauthorized connection attempt detected from IP address 121.136.234.237 to port 81 [J]

2020-01-13 02:22:08

121.136.234.237

attackspambots

IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/121.136.234.237/ 
 KR - 1H : (53)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : KR 
 NAME ASN : ASN4766 
 
 IP : 121.136.234.237 
 
 CIDR : 121.136.128.0/17 
 
 PREFIX COUNT : 8136 
 
 UNIQUE IP COUNT : 44725248 
 
 
 WYKRYTE ATAKI Z ASN4766 :  
  1H - 3 
  3H - 5 
  6H - 9 
 12H - 18 
 24H - 33 
 
 DateTime : 2019-10-18 13:43:14 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery

2019-10-18 21:24:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.136.234.16
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1299
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.136.234.16.			IN	A

;; AUTHORITY SECTION:
.			411	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020092000 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 20 16:46:14 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 16.234.136.121.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 16.234.136.121.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.15.160	attackspam	2019-08-22T07:33:19.837582enmeeting.mahidol.ac.th sshd\[20531\]: User root from 222.186.15.160 not allowed because not listed in AllowUsers 2019-08-22T07:33:20.189443enmeeting.mahidol.ac.th sshd\[20531\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.160 user=root 2019-08-22T07:33:22.657372enmeeting.mahidol.ac.th sshd\[20531\]: Failed password for invalid user root from 222.186.15.160 port 17086 ssh2 ...	2019-08-22 08:36:16
178.128.55.49	attackbotsspam	Aug 22 00:16:30 hcbbdb sshd\[20809\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.55.49 user=root Aug 22 00:16:32 hcbbdb sshd\[20809\]: Failed password for root from 178.128.55.49 port 39558 ssh2 Aug 22 00:21:12 hcbbdb sshd\[21462\]: Invalid user moylea from 178.128.55.49 Aug 22 00:21:12 hcbbdb sshd\[21462\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.55.49 Aug 22 00:21:13 hcbbdb sshd\[21462\]: Failed password for invalid user moylea from 178.128.55.49 port 38756 ssh2	2019-08-22 08:26:10
94.23.227.116	attackbots	Aug 22 01:56:15 SilenceServices sshd[15858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.227.116 Aug 22 01:56:17 SilenceServices sshd[15858]: Failed password for invalid user dante from 94.23.227.116 port 39998 ssh2 Aug 22 02:00:01 SilenceServices sshd[18471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.227.116	2019-08-22 08:07:51
66.70.189.93	attackbots	Aug 22 01:06:39 ns41 sshd[23992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.189.93	2019-08-22 08:16:48
118.25.96.30	attackbots	Too many connections or unauthorized access detected from Arctic banned ip	2019-08-22 08:50:38
82.233.232.25	attackbots	Automatic report - Port Scan Attack	2019-08-22 08:39:04
139.199.48.216	attack	Aug 22 02:51:50 pkdns2 sshd\[37102\]: Invalid user redmine from 139.199.48.216Aug 22 02:51:53 pkdns2 sshd\[37102\]: Failed password for invalid user redmine from 139.199.48.216 port 39612 ssh2Aug 22 02:54:59 pkdns2 sshd\[37213\]: Invalid user edgar from 139.199.48.216Aug 22 02:55:01 pkdns2 sshd\[37213\]: Failed password for invalid user edgar from 139.199.48.216 port 41632 ssh2Aug 22 02:58:11 pkdns2 sshd\[37412\]: Invalid user shock from 139.199.48.216Aug 22 02:58:12 pkdns2 sshd\[37412\]: Failed password for invalid user shock from 139.199.48.216 port 43658 ssh2 ...	2019-08-22 08:15:34
185.176.27.38	attack	08/21/2019-19:56:29.169597 185.176.27.38 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-08-22 08:15:00
118.25.237.124	attackspambots	Aug 22 02:49:00 server sshd\[2577\]: Invalid user cs from 118.25.237.124 port 47248 Aug 22 02:49:00 server sshd\[2577\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.237.124 Aug 22 02:49:02 server sshd\[2577\]: Failed password for invalid user cs from 118.25.237.124 port 47248 ssh2 Aug 22 02:54:05 server sshd\[19621\]: Invalid user venta from 118.25.237.124 port 34760 Aug 22 02:54:05 server sshd\[19621\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.237.124	2019-08-22 08:00:38
206.189.136.160	attackspambots	Aug 22 02:18:25 srv206 sshd[17354]: Invalid user www from 206.189.136.160 Aug 22 02:18:25 srv206 sshd[17354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.136.160 Aug 22 02:18:25 srv206 sshd[17354]: Invalid user www from 206.189.136.160 Aug 22 02:18:27 srv206 sshd[17354]: Failed password for invalid user www from 206.189.136.160 port 44216 ssh2 ...	2019-08-22 08:19:43
67.222.106.185	attack	Aug 22 02:10:03 localhost sshd\[19192\]: Invalid user raife from 67.222.106.185 port 31359 Aug 22 02:10:03 localhost sshd\[19192\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.222.106.185 Aug 22 02:10:04 localhost sshd\[19192\]: Failed password for invalid user raife from 67.222.106.185 port 31359 ssh2	2019-08-22 08:32:42
185.77.81.119	attackbotsspam	Aug 21 22:27:26 hermescis postfix/smtpd\[8587\]: NOQUEUE: reject: RCPT from server.deansanderson.co.uk\[185.77.81.119\]: 550 5.1.1 \: Recipient address rejected:* from=\ to=\ proto=ESMTP helo=\	2019-08-22 08:25:43
106.3.133.11	attackspam	Aug 21 19:27:53 debian sshd\[10772\]: Invalid user rogerio from 106.3.133.11 port 60868 Aug 21 19:27:53 debian sshd\[10772\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.3.133.11 Aug 21 19:27:55 debian sshd\[10772\]: Failed password for invalid user rogerio from 106.3.133.11 port 60868 ssh2 ...	2019-08-22 08:22:33
212.1.85.174	attackspambots	port scan and connect, tcp 23 (telnet)	2019-08-22 08:46:38
52.231.64.246	attackspambots	Aug 21 22:27:52 work-partkepr sshd\[8689\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.231.64.246 user=root Aug 21 22:27:53 work-partkepr sshd\[8689\]: Failed password for root from 52.231.64.246 port 45154 ssh2 ...	2019-08-22 08:14:02

Recently Reported IPs

161.35.151.246	103.167.233.238	175.224.80.137	109.166.39.63
103.75.191.166	213.31.189.42	107.167.109.39	61.133.116.9
49.234.221.197	24.5.34.210	171.252.189.8	124.113.218.124
34.123.63.91	23.196.144.199	209.141.54.138	83.234.254.21
93.126.14.158	111.93.33.227	52.63.75.255	231.1.84.252