Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Korea (Republic of)

Internet Service Provider: KT Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
Type Details Datetime
attackbots
$f2bV_matches
2020-09-17 18:17:46
attackspam
Sep 16 23:47:07 gospond sshd[32535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129  user=root
Sep 16 23:47:08 gospond sshd[32535]: Failed password for root from 121.145.78.129 port 57840 ssh2
...
2020-09-17 09:30:20
attack
2020-09-08T19:55:46.178523ks3355764 sshd[5673]: Invalid user vnc from 121.145.78.129 port 43932
2020-09-08T19:55:47.559113ks3355764 sshd[5673]: Failed password for invalid user vnc from 121.145.78.129 port 43932 ssh2
...
2020-09-09 03:13:08
attack
Time:     Tue Sep  8 11:47:09 2020 +0200
IP:       121.145.78.129 (KR/South Korea/-)
Failures: 5 (sshd)
Interval: 3600 seconds
Blocked:  Permanent Block [LF_SSHD]

Log entries:

Sep  8 11:39:24 mail-03 sshd[23288]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129  user=root
Sep  8 11:39:26 mail-03 sshd[23288]: Failed password for root from 121.145.78.129 port 38522 ssh2
Sep  8 11:43:37 mail-03 sshd[23348]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129  user=root
Sep  8 11:43:39 mail-03 sshd[23348]: Failed password for root from 121.145.78.129 port 50396 ssh2
Sep  8 11:47:07 mail-03 sshd[23449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129  user=root
2020-09-08 18:47:03
attackbots
Jul 27 22:13:47 vmd26974 sshd[5726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129
Jul 27 22:13:49 vmd26974 sshd[5726]: Failed password for invalid user zhanggang from 121.145.78.129 port 40118 ssh2
...
2020-07-28 04:25:15
attackspam
Wordpress malicious attack:[sshd]
2020-07-08 15:35:54
attack
(sshd) Failed SSH login from 121.145.78.129 (KR/South Korea/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 17 23:21:56 amsweb01 sshd[20329]: Invalid user bserver from 121.145.78.129 port 42484
Jun 17 23:21:58 amsweb01 sshd[20329]: Failed password for invalid user bserver from 121.145.78.129 port 42484 ssh2
Jun 17 23:34:53 amsweb01 sshd[22090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129  user=root
Jun 17 23:34:54 amsweb01 sshd[22090]: Failed password for root from 121.145.78.129 port 38484 ssh2
Jun 17 23:40:56 amsweb01 sshd[22947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129  user=root
2020-06-18 08:27:10
attackbotsspam
SSH Brute-Force reported by Fail2Ban
2020-06-17 05:29:51
attack
May 31 22:50:35 vps687878 sshd\[13750\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129  user=root
May 31 22:50:37 vps687878 sshd\[13750\]: Failed password for root from 121.145.78.129 port 56824 ssh2
May 31 22:53:53 vps687878 sshd\[13964\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129  user=root
May 31 22:53:55 vps687878 sshd\[13964\]: Failed password for root from 121.145.78.129 port 34066 ssh2
May 31 22:57:07 vps687878 sshd\[14344\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129  user=root
...
2020-06-01 06:09:24
attackbots
(sshd) Failed SSH login from 121.145.78.129 (KR/South Korea/-): 5 in the last 3600 secs
2020-05-27 03:21:31
attackspambots
May 20 19:50:36 vpn01 sshd[21843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129
May 20 19:50:38 vpn01 sshd[21843]: Failed password for invalid user fmc from 121.145.78.129 port 41586 ssh2
...
2020-05-21 04:03:58
attackbotsspam
Invalid user production from 121.145.78.129 port 48990
2020-05-15 20:24:24
attackspam
Invalid user production from 121.145.78.129 port 48990
2020-05-13 16:29:17
attack
May  1 12:51:39 l02a sshd[5643]: Invalid user gustavo from 121.145.78.129
May  1 12:51:39 l02a sshd[5643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129 
May  1 12:51:39 l02a sshd[5643]: Invalid user gustavo from 121.145.78.129
May  1 12:51:42 l02a sshd[5643]: Failed password for invalid user gustavo from 121.145.78.129 port 33118 ssh2
2020-05-01 21:54:51
attackbotsspam
Apr 27 16:03:21 nextcloud sshd\[3372\]: Invalid user steam from 121.145.78.129
Apr 27 16:03:21 nextcloud sshd\[3372\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129
Apr 27 16:03:24 nextcloud sshd\[3372\]: Failed password for invalid user steam from 121.145.78.129 port 35218 ssh2
2020-04-27 22:29:04
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.145.78.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10427
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.145.78.129.			IN	A

;; AUTHORITY SECTION:
.			428	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042700 1800 900 604800 86400

;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 27 22:28:56 CST 2020
;; MSG SIZE  rcvd: 118
Host info
Host 129.78.145.121.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 129.78.145.121.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
94.191.104.32 attack
SSH authentication failure x 6 reported by Fail2Ban
...
2020-04-05 17:05:32
37.187.54.45 attackbots
Apr  5 10:57:17 pve sshd[21543]: Failed password for root from 37.187.54.45 port 54690 ssh2
Apr  5 11:01:17 pve sshd[22160]: Failed password for root from 37.187.54.45 port 37996 ssh2
2020-04-05 17:08:19
1.54.113.195 attackspambots
Apr  5 03:14:19 Ubuntu-1404-trusty-64-minimal sshd\[24349\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.54.113.195  user=root
Apr  5 03:14:20 Ubuntu-1404-trusty-64-minimal sshd\[24349\]: Failed password for root from 1.54.113.195 port 54895 ssh2
Apr  5 07:00:56 Ubuntu-1404-trusty-64-minimal sshd\[28518\]: Invalid user service from 1.54.113.195
Apr  5 07:00:56 Ubuntu-1404-trusty-64-minimal sshd\[28518\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.54.113.195
Apr  5 07:00:58 Ubuntu-1404-trusty-64-minimal sshd\[28518\]: Failed password for invalid user service from 1.54.113.195 port 52622 ssh2
2020-04-05 17:08:46
104.236.22.133 attackbotsspam
frenzy
2020-04-05 16:32:55
35.194.64.202 attack
$f2bV_matches
2020-04-05 17:04:42
180.76.141.184 attackspam
Invalid user lintingyu from 180.76.141.184 port 57078
2020-04-05 17:13:41
103.89.91.253 attackbots
$f2bV_matches
2020-04-05 17:13:23
106.12.23.198 attackspam
5x Failed Password
2020-04-05 17:11:39
106.12.59.23 attackbotsspam
Invalid user gerrit2 from 106.12.59.23 port 35820
2020-04-05 16:39:51
112.217.196.74 attackbotsspam
Apr  5 09:35:43 Ubuntu-1404-trusty-64-minimal sshd\[22463\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.217.196.74  user=root
Apr  5 09:35:44 Ubuntu-1404-trusty-64-minimal sshd\[22463\]: Failed password for root from 112.217.196.74 port 41968 ssh2
Apr  5 09:59:31 Ubuntu-1404-trusty-64-minimal sshd\[32260\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.217.196.74  user=root
Apr  5 09:59:33 Ubuntu-1404-trusty-64-minimal sshd\[32260\]: Failed password for root from 112.217.196.74 port 34366 ssh2
Apr  5 10:03:53 Ubuntu-1404-trusty-64-minimal sshd\[6484\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.217.196.74  user=root
2020-04-05 16:34:49
149.56.15.98 attack
$f2bV_matches
2020-04-05 16:47:30
85.185.93.138 attackspambots
Apr  5 07:08:25 mail sshd\[18389\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.185.93.138  user=root
Apr  5 07:08:27 mail sshd\[18389\]: Failed password for root from 85.185.93.138 port 40882 ssh2
Apr  5 07:12:25 mail sshd\[18599\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.185.93.138  user=root
...
2020-04-05 16:45:27
159.89.38.234 attackbots
Invalid user student06 from 159.89.38.234 port 45100
2020-04-05 16:37:44
92.151.110.11 attackspam
<6 unauthorized SSH connections
2020-04-05 16:56:16
89.163.209.26 attackspam
Apr  5 10:06:57 silence02 sshd[20278]: Failed password for root from 89.163.209.26 port 55865 ssh2
Apr  5 10:10:38 silence02 sshd[20612]: Failed password for root from 89.163.209.26 port 33201 ssh2
2020-04-05 16:46:35

Recently Reported IPs

150.109.117.118 183.89.238.167 77.42.76.253 66.181.160.49
188.226.197.249 51.106.121.78 10.129.175.0 213.132.219.175
189.208.189.22 80.82.64.242 220.168.22.51 203.205.250.33
187.84.146.190 63.143.99.52 36.90.208.243 132.232.40.131
192.99.247.102 132.145.187.94 92.222.79.157 79.142.76.210