121.78.145.241

Basic Info

City: unknown

Region: unknown

Country: Korea, Republic of

Internet Service Provider: KINX

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Unauthorized connection attempt detected from IP address 121.78.145.241 to port 1433 [J]	2020-02-05 06:12:05
attack	Scanning random ports - tries to find possible vulnerable services	2019-09-01 17:04:33

Comments on same subnet:

IP	Type	Details	Datetime
121.78.145.118	attack	SMB Server BruteForce Attack	2019-09-09 10:05:52

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.78.145.241
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45001
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.78.145.241.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090100 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Sep 01 17:04:26 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 241.145.78.121.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 241.145.78.121.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
132.145.223.207	attackbots	Dec 4 19:27:30 hpm sshd\[14723\]: Invalid user hung from 132.145.223.207 Dec 4 19:27:30 hpm sshd\[14723\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.223.207 Dec 4 19:27:33 hpm sshd\[14723\]: Failed password for invalid user hung from 132.145.223.207 port 41364 ssh2 Dec 4 19:33:42 hpm sshd\[15259\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.223.207 user=root Dec 4 19:33:44 hpm sshd\[15259\]: Failed password for root from 132.145.223.207 port 55044 ssh2	2019-12-05 13:41:32
193.188.22.118	attackbotsspam	RDP Bruteforce	2019-12-05 14:03:44
205.211.166.7	attackspam	Dec 5 05:51:18 sbg01 sshd[10067]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=205.211.166.7 Dec 5 05:51:20 sbg01 sshd[10067]: Failed password for invalid user mysql from 205.211.166.7 port 53450 ssh2 Dec 5 05:56:36 sbg01 sshd[10116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=205.211.166.7	2019-12-05 13:56:04
165.227.96.190	attackspambots	Invalid user mysql from 165.227.96.190 port 36096 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.96.190 Failed password for invalid user mysql from 165.227.96.190 port 36096 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.96.190 user=root Failed password for root from 165.227.96.190 port 46882 ssh2	2019-12-05 14:04:09
218.92.0.178	attackbots	sshd jail - ssh hack attempt	2019-12-05 13:36:53
222.186.175.150	attackspambots	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.150 user=root Failed password for root from 222.186.175.150 port 2808 ssh2 Failed password for root from 222.186.175.150 port 2808 ssh2 Failed password for root from 222.186.175.150 port 2808 ssh2 Failed password for root from 222.186.175.150 port 2808 ssh2	2019-12-05 13:48:03
144.202.34.43	attackbotsspam	Dec 5 05:20:28 venus sshd\[27467\]: Invalid user test from 144.202.34.43 port 45503 Dec 5 05:20:29 venus sshd\[27467\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.202.34.43 Dec 5 05:20:31 venus sshd\[27467\]: Failed password for invalid user test from 144.202.34.43 port 45503 ssh2 ...	2019-12-05 13:37:15
120.29.73.97	attackspam	firewall-block, port(s): 26/tcp	2019-12-05 13:59:46
218.93.27.230	attackbotsspam	Dec 5 06:37:56 legacy sshd[30689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.93.27.230 Dec 5 06:37:58 legacy sshd[30689]: Failed password for invalid user rosch from 218.93.27.230 port 52129 ssh2 Dec 5 06:46:29 legacy sshd[31567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.93.27.230 ...	2019-12-05 13:57:04
78.192.6.4	attackbotsspam	Dec 4 19:52:19 kapalua sshd\[18428\]: Invalid user channing from 78.192.6.4 Dec 4 19:52:19 kapalua sshd\[18428\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.192.6.4 Dec 4 19:52:21 kapalua sshd\[18428\]: Failed password for invalid user channing from 78.192.6.4 port 52618 ssh2 Dec 4 19:57:51 kapalua sshd\[19084\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.192.6.4 user=root Dec 4 19:57:53 kapalua sshd\[19084\]: Failed password for root from 78.192.6.4 port 35342 ssh2	2019-12-05 14:01:19
129.211.77.44	attack	Dec 4 19:30:33 auw2 sshd\[15328\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.77.44 user=root Dec 4 19:30:35 auw2 sshd\[15328\]: Failed password for root from 129.211.77.44 port 54814 ssh2 Dec 4 19:37:27 auw2 sshd\[15944\]: Invalid user schonfisch from 129.211.77.44 Dec 4 19:37:27 auw2 sshd\[15944\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.77.44 Dec 4 19:37:28 auw2 sshd\[15944\]: Failed password for invalid user schonfisch from 129.211.77.44 port 33486 ssh2	2019-12-05 13:43:03
175.197.233.197	attackspambots	Dec 5 06:22:22 nextcloud sshd\[4085\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.197.233.197 user=root Dec 5 06:22:25 nextcloud sshd\[4085\]: Failed password for root from 175.197.233.197 port 51766 ssh2 Dec 5 06:32:49 nextcloud sshd\[15487\]: Invalid user lisa from 175.197.233.197 Dec 5 06:32:49 nextcloud sshd\[15487\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.197.233.197 ...	2019-12-05 13:34:16
42.116.255.216	attack	Dec 5 01:01:19 mail sshd\[36000\]: Invalid user ftpuser from 42.116.255.216 Dec 5 01:01:19 mail sshd\[36000\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.116.255.216 ...	2019-12-05 14:03:06
168.195.135.13	attackbots	php WP PHPmyadamin ABUSE blocked for 12h	2019-12-05 13:36:15
178.237.0.229	attack	Dec 4 19:46:44 web9 sshd\[4454\]: Invalid user philmar from 178.237.0.229 Dec 4 19:46:44 web9 sshd\[4454\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.237.0.229 Dec 4 19:46:47 web9 sshd\[4454\]: Failed password for invalid user philmar from 178.237.0.229 port 34992 ssh2 Dec 4 19:52:44 web9 sshd\[5334\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.237.0.229 user=root Dec 4 19:52:46 web9 sshd\[5334\]: Failed password for root from 178.237.0.229 port 46118 ssh2	2019-12-05 13:58:18

Recently Reported IPs

103.211.81.238	156.31.52.137	118.163.234.182	114.220.86.169
170.8.95.106	159.137.147.16	20.141.230.22	55.39.119.78
118.93.96.214	117.163.196.140	117.95.15.203	117.87.216.47
117.54.106.220	117.54.3.220	115.238.228.21	115.127.96.137
115.75.147.151	115.74.194.148	114.236.6.35	49.71.125.236