121.145.78.129

Basic Info

City: unknown

Region: unknown

Country: Korea (Republic of)

Internet Service Provider: KT Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	$f2bV_matches	2020-09-17 18:17:46
attackspam	Sep 16 23:47:07 gospond sshd[32535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129 user=root Sep 16 23:47:08 gospond sshd[32535]: Failed password for root from 121.145.78.129 port 57840 ssh2 ...	2020-09-17 09:30:20
attack	2020-09-08T19:55:46.178523ks3355764 sshd[5673]: Invalid user vnc from 121.145.78.129 port 43932 2020-09-08T19:55:47.559113ks3355764 sshd[5673]: Failed password for invalid user vnc from 121.145.78.129 port 43932 ssh2 ...	2020-09-09 03:13:08
attack	Time: Tue Sep 8 11:47:09 2020 +0200 IP: 121.145.78.129 (KR/South Korea/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 8 11:39:24 mail-03 sshd[23288]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129 user=root Sep 8 11:39:26 mail-03 sshd[23288]: Failed password for root from 121.145.78.129 port 38522 ssh2 Sep 8 11:43:37 mail-03 sshd[23348]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129 user=root Sep 8 11:43:39 mail-03 sshd[23348]: Failed password for root from 121.145.78.129 port 50396 ssh2 Sep 8 11:47:07 mail-03 sshd[23449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129 user=root	2020-09-08 18:47:03
attackbots	Jul 27 22:13:47 vmd26974 sshd[5726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129 Jul 27 22:13:49 vmd26974 sshd[5726]: Failed password for invalid user zhanggang from 121.145.78.129 port 40118 ssh2 ...	2020-07-28 04:25:15
attackspam	Wordpress malicious attack:[sshd]	2020-07-08 15:35:54
attack	(sshd) Failed SSH login from 121.145.78.129 (KR/South Korea/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 17 23:21:56 amsweb01 sshd[20329]: Invalid user bserver from 121.145.78.129 port 42484 Jun 17 23:21:58 amsweb01 sshd[20329]: Failed password for invalid user bserver from 121.145.78.129 port 42484 ssh2 Jun 17 23:34:53 amsweb01 sshd[22090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129 user=root Jun 17 23:34:54 amsweb01 sshd[22090]: Failed password for root from 121.145.78.129 port 38484 ssh2 Jun 17 23:40:56 amsweb01 sshd[22947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129 user=root	2020-06-18 08:27:10
attackbotsspam	SSH Brute-Force reported by Fail2Ban	2020-06-17 05:29:51
attack	May 31 22:50:35 vps687878 sshd\[13750\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129 user=root May 31 22:50:37 vps687878 sshd\[13750\]: Failed password for root from 121.145.78.129 port 56824 ssh2 May 31 22:53:53 vps687878 sshd\[13964\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129 user=root May 31 22:53:55 vps687878 sshd\[13964\]: Failed password for root from 121.145.78.129 port 34066 ssh2 May 31 22:57:07 vps687878 sshd\[14344\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129 user=root ...	2020-06-01 06:09:24
attackbots	(sshd) Failed SSH login from 121.145.78.129 (KR/South Korea/-): 5 in the last 3600 secs	2020-05-27 03:21:31
attackspambots	May 20 19:50:36 vpn01 sshd[21843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129 May 20 19:50:38 vpn01 sshd[21843]: Failed password for invalid user fmc from 121.145.78.129 port 41586 ssh2 ...	2020-05-21 04:03:58
attackbotsspam	Invalid user production from 121.145.78.129 port 48990	2020-05-15 20:24:24
attackspam	Invalid user production from 121.145.78.129 port 48990	2020-05-13 16:29:17
attack	May 1 12:51:39 l02a sshd[5643]: Invalid user gustavo from 121.145.78.129 May 1 12:51:39 l02a sshd[5643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129 May 1 12:51:39 l02a sshd[5643]: Invalid user gustavo from 121.145.78.129 May 1 12:51:42 l02a sshd[5643]: Failed password for invalid user gustavo from 121.145.78.129 port 33118 ssh2	2020-05-01 21:54:51
attackbotsspam	Apr 27 16:03:21 nextcloud sshd\[3372\]: Invalid user steam from 121.145.78.129 Apr 27 16:03:21 nextcloud sshd\[3372\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.145.78.129 Apr 27 16:03:24 nextcloud sshd\[3372\]: Failed password for invalid user steam from 121.145.78.129 port 35218 ssh2	2020-04-27 22:29:04

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.145.78.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10427
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.145.78.129.			IN	A

;; AUTHORITY SECTION:
.			428	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042700 1800 900 604800 86400

;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 27 22:28:56 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 129.78.145.121.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 129.78.145.121.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.13.135.107	attack	$f2bV_matches	2020-03-24 14:18:39
188.87.101.119	attackbotsspam	Mar 24 08:40:00 server sshd\[26246\]: Invalid user wangyi from 188.87.101.119 Mar 24 08:40:00 server sshd\[26246\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.87.101.119 Mar 24 08:40:02 server sshd\[26246\]: Failed password for invalid user wangyi from 188.87.101.119 port 11429 ssh2 Mar 24 08:54:42 server sshd\[29788\]: Invalid user mai from 188.87.101.119 Mar 24 08:54:42 server sshd\[29788\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.87.101.119 ...	2020-03-24 14:07:07
185.164.72.113	attack	xmlrpc attack	2020-03-24 13:23:42
101.255.75.226	attackbots	Mar 24 16:51:48 our-server-hostname sshd[23100]: Invalid user sensivhostnamey from 101.255.75.226 Mar 24 16:51:48 our-server-hostname sshd[23100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.255.75.226 Mar 24 16:51:51 our-server-hostname sshd[23100]: Failed password for invalid user sensivhostnamey from 101.255.75.226 port 37756 ssh2 Mar 24 17:00:20 our-server-hostname sshd[24721]: Invalid user opensource from 101.255.75.226 Mar 24 17:00:20 our-server-hostname sshd[24721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.255.75.226 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=101.255.75.226	2020-03-24 14:12:46
178.128.162.10	attack	Mar 24 06:58:31 MainVPS sshd[24885]: Invalid user trash from 178.128.162.10 port 44004 Mar 24 06:58:31 MainVPS sshd[24885]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.162.10 Mar 24 06:58:31 MainVPS sshd[24885]: Invalid user trash from 178.128.162.10 port 44004 Mar 24 06:58:32 MainVPS sshd[24885]: Failed password for invalid user trash from 178.128.162.10 port 44004 ssh2 Mar 24 07:02:42 MainVPS sshd[543]: Invalid user ankit from 178.128.162.10 port 59264 ...	2020-03-24 14:11:20
49.234.206.45	attackspambots	Mar 24 06:10:23 ns3042688 sshd\[20621\]: Invalid user shantel from 49.234.206.45 Mar 24 06:10:23 ns3042688 sshd\[20621\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.206.45 Mar 24 06:10:25 ns3042688 sshd\[20621\]: Failed password for invalid user shantel from 49.234.206.45 port 42636 ssh2 Mar 24 06:16:08 ns3042688 sshd\[21706\]: Invalid user fm from 49.234.206.45 Mar 24 06:16:08 ns3042688 sshd\[21706\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.206.45 ...	2020-03-24 13:52:14
51.38.130.242	attack	Mar 24 06:16:26 silence02 sshd[15272]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.130.242 Mar 24 06:16:28 silence02 sshd[15272]: Failed password for invalid user ike from 51.38.130.242 port 42844 ssh2 Mar 24 06:23:39 silence02 sshd[23440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.130.242	2020-03-24 13:28:56
213.138.77.238	attackbotsspam	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-03-24 13:29:16
222.186.42.7	attackbotsspam	Mar 24 10:54:24 areeb-Workstation sshd[17715]: Failed password for root from 222.186.42.7 port 39498 ssh2 Mar 24 10:54:27 areeb-Workstation sshd[17715]: Failed password for root from 222.186.42.7 port 39498 ssh2 ...	2020-03-24 13:50:48
146.115.157.201	attack	" "	2020-03-24 14:03:53
202.152.0.14	attackbots	SSH Authentication Attempts Exceeded	2020-03-24 14:09:59
92.222.90.130	attackbotsspam	Mar 24 08:48:53 server sshd\[28567\]: Invalid user xadrez from 92.222.90.130 Mar 24 08:48:53 server sshd\[28567\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.ip-92-222-90.eu Mar 24 08:48:55 server sshd\[28567\]: Failed password for invalid user xadrez from 92.222.90.130 port 58348 ssh2 Mar 24 08:54:32 server sshd\[29739\]: Invalid user twigathy from 92.222.90.130 Mar 24 08:54:32 server sshd\[29739\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.ip-92-222-90.eu ...	2020-03-24 14:20:16
111.229.167.10	attack	Mar 24 01:34:50 vps46666688 sshd[2541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.167.10 Mar 24 01:34:52 vps46666688 sshd[2541]: Failed password for invalid user test from 111.229.167.10 port 43168 ssh2 ...	2020-03-24 13:41:45
185.156.73.52	attackspambots	03/23/2020-23:57:45.296607 185.156.73.52 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-03-24 13:51:48
222.186.15.91	attackspambots	Mar 24 06:06:07 vps647732 sshd[8277]: Failed password for root from 222.186.15.91 port 12381 ssh2 Mar 24 06:06:10 vps647732 sshd[8277]: Failed password for root from 222.186.15.91 port 12381 ssh2 ...	2020-03-24 13:22:28

Recently Reported IPs

150.109.117.118	183.89.238.167	77.42.76.253	66.181.160.49
188.226.197.249	51.106.121.78	10.129.175.0	213.132.219.175
189.208.189.22	80.82.64.242	220.168.22.51	203.205.250.33
187.84.146.190	63.143.99.52	36.90.208.243	132.232.40.131
192.99.247.102	132.145.187.94	92.222.79.157	79.142.76.210