121.146.250.66

Basic Info

City: unknown

Region: unknown

Country: Korea, Republic of

Internet Service Provider: KT Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	19/8/18@00:12:31: FAIL: IoT-Telnet address from=121.146.250.66 ...	2019-08-18 18:36:14

Comments on same subnet:

IP	Type	Details	Datetime
121.146.250.80	attackbotsspam	Unauthorized connection attempt detected from IP address 121.146.250.80 to port 81	2020-07-22 20:23:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.146.250.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25463
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.146.250.66.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Aug 18 18:36:05 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 66.250.146.121.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 66.250.146.121.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
165.22.43.250	attackbots	Sep 14 03:48:56 riskplan-s sshd[28296]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.43.250 user=r.r Sep 14 03:48:59 riskplan-s sshd[28296]: Failed password for r.r from 165.22.43.250 port 53028 ssh2 Sep 14 03:48:59 riskplan-s sshd[28296]: Received disconnect from 165.22.43.250: 11: Bye Bye [preauth] Sep 14 03:49:00 riskplan-s sshd[28327]: Invalid user admin from 165.22.43.250 Sep 14 03:49:00 riskplan-s sshd[28327]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.43.250 Sep 14 03:49:01 riskplan-s sshd[28327]: Failed password for invalid user admin from 165.22.43.250 port 57918 ssh2 Sep 14 03:49:01 riskplan-s sshd[28327]: Received disconnect from 165.22.43.250: 11: Bye Bye [preauth] Sep 14 03:49:02 riskplan-s sshd[28329]: Invalid user admin from 165.22.43.250 Sep 14 03:49:02 riskplan-s sshd[28329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh r........ -------------------------------	2019-09-16 10:45:34
54.37.225.179	attackspam	Sep 16 05:35:48 yabzik sshd[20830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.225.179 Sep 16 05:35:50 yabzik sshd[20830]: Failed password for invalid user console from 54.37.225.179 port 56884 ssh2 Sep 16 05:39:27 yabzik sshd[22028]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.225.179	2019-09-16 10:47:43
207.237.204.11	attack	Sep 16 04:20:43 minden010 sshd[16662]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.237.204.11 Sep 16 04:20:44 minden010 sshd[16663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.237.204.11 Sep 16 04:20:45 minden010 sshd[16662]: Failed password for invalid user pi from 207.237.204.11 port 33114 ssh2 ...	2019-09-16 11:10:55
54.36.150.94	attack	Automatic report - Banned IP Access	2019-09-16 11:11:37
49.83.139.122	attack	Sep 14 02:13:12 wildwolf ssh-honeypotd[26164]: Failed password for supervisor from 49.83.139.122 port 39344 ssh2 (target: 158.69.100.133:22, password: supervisor) Sep 14 02:13:14 wildwolf ssh-honeypotd[26164]: Failed password for supervisor from 49.83.139.122 port 39344 ssh2 (target: 158.69.100.133:22, password: supervisor) Sep 14 02:13:16 wildwolf ssh-honeypotd[26164]: Failed password for supervisor from 49.83.139.122 port 39344 ssh2 (target: 158.69.100.133:22, password: supervisor) Sep 14 02:13:18 wildwolf ssh-honeypotd[26164]: Failed password for supervisor from 49.83.139.122 port 39344 ssh2 (target: 158.69.100.133:22, password: supervisor) Sep 14 02:13:20 wildwolf ssh-honeypotd[26164]: Failed password for supervisor from 49.83.139.122 port 39344 ssh2 (target: 158.69.100.133:22, password: supervisor) Sep 14 02:13:22 wildwolf ssh-honeypotd[26164]: Failed password for supervisor from 49.83.139.122 port 39344 ssh2 (target: 158.69.100.133:22, password: supervisor) Sep 14 ........ ------------------------------	2019-09-16 11:21:30
31.46.16.95	attackbotsspam	Sep 16 04:41:20 markkoudstaal sshd[25704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.46.16.95 Sep 16 04:41:21 markkoudstaal sshd[25704]: Failed password for invalid user laboratorio from 31.46.16.95 port 35790 ssh2 Sep 16 04:45:45 markkoudstaal sshd[26132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.46.16.95	2019-09-16 10:53:55
183.87.157.202	attackbots	Sep 15 18:55:34 aat-srv002 sshd[28670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.87.157.202 Sep 15 18:55:36 aat-srv002 sshd[28670]: Failed password for invalid user wordpress from 183.87.157.202 port 37812 ssh2 Sep 15 18:59:44 aat-srv002 sshd[28803]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.87.157.202 Sep 15 18:59:46 aat-srv002 sshd[28803]: Failed password for invalid user hali from 183.87.157.202 port 51768 ssh2 ...	2019-09-16 11:03:59
198.199.88.103	attackspam	Sep 16 02:53:13 mc1 kernel: \[1145743.933684\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=198.199.88.103 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=29744 PROTO=TCP SPT=3632 DPT=23 WINDOW=8984 RES=0x00 SYN URGP=0 Sep 16 02:53:47 mc1 kernel: \[1145777.670829\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=198.199.88.103 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=29744 PROTO=TCP SPT=3632 DPT=23 WINDOW=8984 RES=0x00 SYN URGP=0 Sep 16 02:54:10 mc1 kernel: \[1145800.919642\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=198.199.88.103 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=29744 PROTO=TCP SPT=3632 DPT=23 WINDOW=8984 RES=0x00 SYN URGP=0 ...	2019-09-16 11:02:59
76.24.176.68	attackspam	SSLBL: Malicious SSL certificate detected (Ransomware C&C)	2019-09-16 11:08:18
193.32.163.182	attackspam	Sep 16 04:55:59 srv206 sshd[28700]: Invalid user admin from 193.32.163.182 ...	2019-09-16 11:25:46
37.156.146.132	attack	Unauthorised access (Sep 16) SRC=37.156.146.132 LEN=40 PREC=0x20 TTL=244 ID=15441 TCP DPT=445 WINDOW=1024 SYN	2019-09-16 10:49:51
167.71.43.127	attackbots	2019-09-16T01:13:45.663176 sshd[25912]: Invalid user camera from 167.71.43.127 port 53548 2019-09-16T01:13:45.676937 sshd[25912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.43.127 2019-09-16T01:13:45.663176 sshd[25912]: Invalid user camera from 167.71.43.127 port 53548 2019-09-16T01:13:47.331880 sshd[25912]: Failed password for invalid user camera from 167.71.43.127 port 53548 ssh2 2019-09-16T01:17:30.172136 sshd[25979]: Invalid user bosstt from 167.71.43.127 port 39080 ...	2019-09-16 11:21:09
121.215.137.5	attackbots	Sep 14 03:56:02 mail sshd[29621]: Invalid user admin from 121.215.137.5 Sep 14 03:56:02 mail sshd[29621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.215.137.5 Sep 14 03:56:04 mail sshd[29621]: Failed password for invalid user admin from 121.215.137.5 port 49075 ssh2 Sep 14 03:56:06 mail sshd[29621]: Failed password for invalid user admin from 121.215.137.5 port 49075 ssh2 Sep 14 03:56:09 mail sshd[29621]: Failed password for invalid user admin from 121.215.137.5 port 49075 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=121.215.137.5	2019-09-16 11:07:52
211.199.232.216	attackbots	Sep 16 01:48:40 mail sshd[29985]: Invalid user edmund from 211.199.232.216 Sep 16 01:48:40 mail sshd[29985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.199.232.216 Sep 16 01:48:40 mail sshd[29985]: Invalid user edmund from 211.199.232.216 Sep 16 01:48:42 mail sshd[29985]: Failed password for invalid user edmund from 211.199.232.216 port 47035 ssh2 Sep 16 02:02:55 mail sshd[31838]: Invalid user ronjones from 211.199.232.216 ...	2019-09-16 11:25:15
82.238.107.124	attackbots	Sep 16 02:58:05 srv206 sshd[28195]: Invalid user roosevelt from 82.238.107.124 ...	2019-09-16 10:46:58

Recently Reported IPs

14.144.185.185	74.169.122.118	27.48.70.149	197.1.141.112
137.127.202.36	91.126.146.100	13.225.63.107	66.106.6.9
173.254.29.47	200.112.214.34	118.121.41.14	40.73.108.181
31.155.99.149	183.83.27.40	87.236.232.11	123.16.36.79
1.171.24.115	190.207.160.95	118.187.4.87	74.124.199.74