121.78.145.241

Basic Info

City: unknown

Region: unknown

Country: Korea, Republic of

Internet Service Provider: KINX

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Unauthorized connection attempt detected from IP address 121.78.145.241 to port 1433 [J]	2020-02-05 06:12:05
attack	Scanning random ports - tries to find possible vulnerable services	2019-09-01 17:04:33

Comments on same subnet:

IP	Type	Details	Datetime
121.78.145.118	attack	SMB Server BruteForce Attack	2019-09-09 10:05:52

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.78.145.241
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45001
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.78.145.241.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090100 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Sep 01 17:04:26 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 241.145.78.121.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 241.145.78.121.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.16.179	attackspam	Sep 4 06:48:52 taivassalofi sshd[164603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.16.179 Sep 4 06:48:54 taivassalofi sshd[164603]: Failed password for invalid user agustin from 106.12.16.179 port 56562 ssh2 ...	2019-09-04 11:57:35
84.201.165.126	attack	Sep 4 07:05:47 www sshd\[26304\]: Invalid user tom from 84.201.165.126 Sep 4 07:05:47 www sshd\[26304\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.201.165.126 Sep 4 07:05:49 www sshd\[26304\]: Failed password for invalid user tom from 84.201.165.126 port 44330 ssh2 ...	2019-09-04 12:10:51
165.22.251.90	attackspambots	Sep 4 05:07:29 debian sshd\[29596\]: Invalid user db2inst3 from 165.22.251.90 port 44194 Sep 4 05:07:29 debian sshd\[29596\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.251.90 ...	2019-09-04 12:13:25
23.129.64.159	attackbots	2019-09-04T04:29:40.352924abusebot-2.cloudsearch.cf sshd\[9853\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.emeraldonion.org user=root	2019-09-04 12:30:17
86.56.81.242	attackbots	2019-09-04T04:02:26.532114abusebot-8.cloudsearch.cf sshd\[16787\]: Invalid user testtest from 86.56.81.242 port 51538	2019-09-04 12:31:07
80.211.171.195	attack	Sep 3 18:00:07 wbs sshd\[18924\]: Invalid user gitolite from 80.211.171.195 Sep 3 18:00:07 wbs sshd\[18924\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.171.195 Sep 3 18:00:10 wbs sshd\[18924\]: Failed password for invalid user gitolite from 80.211.171.195 port 34634 ssh2 Sep 3 18:04:32 wbs sshd\[19357\]: Invalid user botmaster from 80.211.171.195 Sep 3 18:04:32 wbs sshd\[19357\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.171.195	2019-09-04 12:15:51
112.215.113.10	attack	Sep 4 06:05:36 mail sshd\[31076\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.215.113.10 Sep 4 06:05:38 mail sshd\[31076\]: Failed password for invalid user sinus from 112.215.113.10 port 49020 ssh2 Sep 4 06:10:27 mail sshd\[31679\]: Invalid user whmcs from 112.215.113.10 port 36706 Sep 4 06:10:27 mail sshd\[31679\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.215.113.10 Sep 4 06:10:29 mail sshd\[31679\]: Failed password for invalid user whmcs from 112.215.113.10 port 36706 ssh2	2019-09-04 12:19:10
14.29.237.125	attack	Sep 4 03:48:13 www_kotimaassa_fi sshd[25162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.237.125 Sep 4 03:48:15 www_kotimaassa_fi sshd[25162]: Failed password for invalid user malviya from 14.29.237.125 port 49950 ssh2 ...	2019-09-04 12:00:52
115.159.237.89	attack	Sep 4 05:54:12 legacy sshd[7751]: Failed password for root from 115.159.237.89 port 42064 ssh2 Sep 4 05:57:41 legacy sshd[7819]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.237.89 Sep 4 05:57:42 legacy sshd[7819]: Failed password for invalid user vgorder from 115.159.237.89 port 43926 ssh2 ...	2019-09-04 12:23:37
120.52.152.18	attack	Sep 3 11:34:36 localhost kernel: [1262692.734626] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=120.52.152.18 DST=[mungedIP2] LEN=28 TOS=0x00 PREC=0x00 TTL=240 ID=36350 PROTO=UDP SPT=58914 DPT=20000 LEN=8 Sep 3 23:29:18 localhost kernel: [1305574.265492] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=120.52.152.18 DST=[mungedIP2] LEN=28 TOS=0x00 PREC=0x00 TTL=240 ID=1124 PROTO=UDP SPT=58914 DPT=2424 LEN=8 Sep 3 23:29:18 localhost kernel: [1305574.265519] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=120.52.152.18 DST=[mungedIP2] LEN=28 TOS=0x00 PREC=0x00 TTL=240 ID=1124 PROTO=UDP SPT=58914 DPT=2424 LEN=8	2019-09-04 12:12:00
218.98.26.176	attack	SSH Brute Force, server-1 sshd[27738]: Failed password for root from 218.98.26.176 port 26357 ssh2	2019-09-04 11:54:30
174.75.32.242	attackbotsspam	Sep 4 06:59:24 yabzik sshd[29178]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.75.32.242 Sep 4 06:59:26 yabzik sshd[29178]: Failed password for invalid user yamazaki from 174.75.32.242 port 60804 ssh2 Sep 4 07:03:46 yabzik sshd[30761]: Failed password for root from 174.75.32.242 port 48376 ssh2	2019-09-04 12:04:27
103.114.107.125	attackspam	Sep 4 10:28:51 lcl-usvr-02 sshd[4531]: Invalid user ubnt from 103.114.107.125 port 51077 ...	2019-09-04 12:32:53
190.151.105.182	attackbotsspam	Sep 3 23:49:07 plusreed sshd[9123]: Invalid user wuhao from 190.151.105.182 ...	2019-09-04 11:52:52
158.69.112.95	attackbots	$f2bV_matches	2019-09-04 12:23:16

Recently Reported IPs

103.211.81.238	156.31.52.137	118.163.234.182	114.220.86.169
170.8.95.106	159.137.147.16	20.141.230.22	55.39.119.78
118.93.96.214	117.163.196.140	117.95.15.203	117.87.216.47
117.54.106.220	117.54.3.220	115.238.228.21	115.127.96.137
115.75.147.151	115.74.194.148	114.236.6.35	49.71.125.236