Go
121.67.246.139
is a
Hacker
100 %
Korea, Republic of
Report Abuse
1018attacks reported
833Brute-ForceSSH
67Brute-Force
58SSH
17HackingBrute-ForceSSH
13Port ScanBrute-ForceSSH
9uncategorized
6Port ScanHackingBrute-ForceWeb App AttackSSH
5Hacking
3DDoS Attack
3
...
from 149 distinct reporters
and 9 distinct sources : BadIPs.com, Blocklist.de, darklist.de, FireHOL, Charles Haley, NoThink.org, NormShield.com, GreenSnow.co, AbuseIPDB
121.67.246.139 was first signaled at 2018-10-21 10:43 and last record was at 2019-07-23 19:41.
IP

121.67.246.139

Organization
LG DACOM Corporation
Localisation
Korea, Republic of
NetRange : First & Last IP
121.64.0.0 - 121.67.255.255
Network CIDR
121.64.0.0/14

Cybercrime IP Feeds

Date UTC Category Sub Categories Source List Source Logs
2019-04-08 07:35 attacks Brute-ForceSSH AbuseIPDB Apr 8 18:35:14 cvbmail sshd\[15665\]: Invalid user mona from 121.67.246.139 Apr 8 18:35:14 cvbmail sshd\[15665\]: pam_unix\(sshd:auth\): authenticatio
2019-04-08 07:01 attacks Brute-ForceSSH AbuseIPDB Apr 8 17:56:03 v22018086721571380 sshd[5551]: Invalid user ts3server from 121.67.246.139 Apr 8 17:56:03 v22018086721571380 sshd[5551]: pam_unix(sshd:a
2019-04-08 06:32 attacks Brute-ForceSSH AbuseIPDB Apr 8 15:31:59 MK-Soft-VM3 sshd\[22139\]: Invalid user wpyan from 121.67.246.139 port 57276 Apr 8 15:31:59 MK-Soft-VM3 sshd\[22139\]: pam_unix\(sshd:a
2019-04-08 05:57 attacks Brute-ForceSSH AbuseIPDB [ssh] SSH attack
2019-04-08 05:56 attacks Brute-ForceSSH AbuseIPDB Apr 8 17:51:20 lukav-desktop sshd\[23677\]: Invalid user jv from 121.67.246.139 Apr 8 17:51:20 lukav-desktop sshd\[23677\]: pam_unix\(sshd:auth\): aut
2019-04-08 05:01 attacks Brute-ForceSSH AbuseIPDB Apr 8 16:00:13 host sshd\[8552\]: Invalid user elizabet from 121.67.246.139 port 55526 Apr 8 16:00:13 host sshd\[8552\]: pam_unix\(sshd:auth\): authen
2019-04-08 02:37 attacks Brute-ForceSSH AbuseIPDB Triggered by Fail2Ban at Vostok web server
2019-04-08 02:27 attacks Brute-ForceSSH AbuseIPDB Apr 8 14:21:36 yabzik sshd[17475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.67.246.139 Apr 8 14:21:
2019-04-08 00:40 attacks Brute-ForceSSH AbuseIPDB Apr 8 11:34:24 ns37 sshd[2782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.67.246.139 Apr 8 11:34:27
2019-04-07 19:52 attacks Brute-Force AbuseIPDB Fail2Ban Ban Triggered
2019-04-07 17:10 attacks Brute-ForceSSH AbuseIPDB Apr 7 22:10:30 debian sshd\[16346\]: Invalid user nj from 121.67.246.139 port 45368 Apr 7 22:10:30 debian sshd\[16346\]: pam_unix\(sshd:auth\): authen
2019-04-07 14:57 attacks Brute-ForceSSH AbuseIPDB  
2019-04-07 07:44 attacks Brute-ForceSSH AbuseIPDB Apr 7 18:44:22 MK-Soft-Root1 sshd\[1497\]: Invalid user oracli from 121.67.246.139 port 38168 Apr 7 18:44:22 MK-Soft-Root1 sshd\[1497\]: pam_unix\(ssh
2019-04-07 07:43 attacks Port Scan AbuseIPDB SSH/RDP/Plesk/Webmin sniffing
2019-04-07 06:31 attacks Brute-ForceSSH AbuseIPDB Apr 7 17:30:42 host sshd\[42529\]: Invalid user roger from 121.67.246.139 port 46370 Apr 7 17:30:42 host sshd\[42529\]: pam_unix\(sshd:auth\): authent
2019-04-07 04:28 attacks Brute-ForceSSH AbuseIPDB Apr 7 15:21:00 tux-35-217 sshd\[3901\]: Invalid user user from 121.67.246.139 port 44184 Apr 7 15:21:00 tux-35-217 sshd\[3901\]: pam_unix\(sshd:auth\)
2019-04-07 04:06 attacks Brute-ForceSSH AbuseIPDB Apr 7 15:01:32 apollo sshd\[23689\]: Failed password for news from 121.67.246.139 port 51490 ssh2Apr 7 15:06:52 apollo sshd\[23765\]: Invalid user mon
2019-04-07 02:52 attacks Brute-ForceSSH AbuseIPDB Apr 7 13:52:16 icinga sshd[20940]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.67.246.139 Apr 7 13:52:
2019-04-07 02:32 attacks Brute-ForceSSH AbuseIPDB Apr 7 11:27:32 mail sshd\[11962\]: Invalid user vp from 121.67.246.139 port 49404 Apr 7 11:27:32 mail sshd\[11962\]: pam_unix\(sshd:auth\): authentica
2019-04-07 02:06 attacks Brute-ForceSSH AbuseIPDB Apr 7 13:06:51 ncomp sshd[1639]: Invalid user csvn from 121.67.246.139 Apr 7 13:06:51 ncomp sshd[1639]: pam_unix(sshd:auth): authentication failure; l
2019-04-06 21:51 attacks Brute-ForceSSH AbuseIPDB Invalid user www from 121.67.246.139 port 41318 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.67.246.
2019-04-06 19:54 attacks Hacking AbuseIPDB Apr 7 06:50:00 h2177944 sshd\[17813\]: Invalid user cw from 121.67.246.139 port 51786 Apr 7 06:50:00 h2177944 sshd\[17813\]: pam_unix\(sshd:auth\): au
2019-04-06 19:32 attacks Brute-ForceSSH AbuseIPDB Apr 7 06:27:44 mail sshd\[77894\]: Invalid user ts3 from 121.67.246.139 Apr 7 06:27:44 mail sshd\[77894\]: pam_unix\(sshd:auth\): authentication failu
2019-04-06 18:44 attacks Brute-ForceSSH AbuseIPDB Apr 7 05:37:33 vserver sshd\[12865\]: Invalid user adm from 121.67.246.139Apr 7 05:37:35 vserver sshd\[12865\]: Failed password for invalid user adm f
2019-04-06 15:41 attacks Brute-Force AbuseIPDB Apr 6 20:36:03 bilbo sshd\[28206\]: Invalid user henk from 121.67.246.139\ Apr 6 20:36:05 bilbo sshd\[28206\]: Failed password for invalid user henk f
2019-04-06 12:27 attacks Brute-ForceSSH AbuseIPDB SSH Brute-Force reported by Fail2Ban
2019-04-06 10:42 attacks Brute-ForceSSH AbuseIPDB Triggered by Fail2Ban at Ares web server
2019-04-06 02:58 attacks Brute-ForceSSH AbuseIPDB  
2019-04-06 02:56 attacks Brute-ForceSSH AbuseIPDB 2019-04-06T13:55:08.0954361240 sshd\[30981\]: Invalid user odoo from 121.67.246.139 port 44598 2019-04-06T13:55:08.1001501240 sshd\[30981\]: pam_unix\
2019-04-06 00:26 attacks Brute-Force AbuseIPDB Apr 6 09:26:54 unicornsoft sshd\[23036\]: Invalid user tuna from 121.67.246.139 Apr 6 09:26:54 unicornsoft sshd\[23036\]: pam_unix\(sshd:auth\): authe
2019-04-05 22:15 attacks Brute-ForceSSH AbuseIPDB 2019-04-06T09:14:59.243880scmdmz1 sshd\[3022\]: Invalid user rpm from 121.67.246.139 port 52824 2019-04-06T09:14:59.246563scmdmz1 sshd\[3022\]: pam_un
2019-04-05 20:49 attacks Brute-ForceSSH AbuseIPDB Apr 6 05:49:08 *** sshd[23073]: Invalid user appserver from 121.67.246.139
2019-04-05 19:28 attacks Brute-ForceSSH AbuseIPDB Apr 6 06:28:44 server sshd[30135]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.67.246.139
2019-04-05 14:54 attacks Port ScanBrute-ForceSSH AbuseIPDB $f2bV_matches
2019-04-05 14:18 attacks Brute-ForceSSH AbuseIPDB Apr 6 01:18:19 bouncer sshd\[20860\]: Invalid user eleve from 121.67.246.139 port 50720 Apr 6 01:18:19 bouncer sshd\[20860\]: pam_unix\(sshd:auth\): a
2019-04-05 11:03 attacks Brute-ForceSSH AbuseIPDB Apr 5 09:08:45 *** sshd[3969]: Failed password for invalid user log from 121.67.246.139 port 44268 ssh2
2019-04-05 10:42 attacks Brute-ForceSSH AbuseIPDB Apr 5 21:42:13 vps65 sshd\[28151\]: Invalid user zabbix from 121.67.246.139 port 38150 Apr 5 21:42:13 vps65 sshd\[28151\]: pam_unix\(sshd:auth\): auth
2019-04-05 07:57 attacks Brute-ForceSSH AbuseIPDB Apr 5 12:57:41 TORMINT sshd\[4917\]: Invalid user zabbix from 121.67.246.139 Apr 5 12:57:41 TORMINT sshd\[4917\]: pam_unix\(sshd:auth\): authenticatio
2019-04-05 06:26 attacks Brute-ForceSSH AbuseIPDB Apr 5 22:26:40 itv-usvr-01 sshd[4910]: Invalid user aa from 121.67.246.139
2019-04-05 04:25 attacks Brute-ForceSSH AbuseIPDB SSH bruteforce (Triggered fail2ban)
2019-04-05 03:49 attacks Brute-ForceSSH AbuseIPDB SSH Brute Force
2019-04-05 02:57 attacks Brute-ForceSSH AbuseIPDB  
2019-04-04 23:47 attacks Brute-ForceSSH AbuseIPDB SSH Brute-Force reported by Fail2Ban
2019-04-04 18:42 attacks Brute-ForceSSH AbuseIPDB Apr 5 03:41:59 MK-Soft-VM4 sshd\[22717\]: Invalid user plexuser from 121.67.246.139 port 41184 Apr 5 03:41:59 MK-Soft-VM4 sshd\[22717\]: pam_unix\(ssh
2019-04-04 17:34 attacks Brute-ForceSSH AbuseIPDB Apr 5 02:34:46 *** sshd[19882]: Invalid user fadl from 121.67.246.139
2019-04-04 16:17 attacks Brute-Force AbuseIPDB Apr 5 01:17:26 marvibiene sshd[18405]: Invalid user css from 121.67.246.139 port 36796 Apr 5 01:17:26 marvibiene sshd[18405]: pam_unix(sshd:auth): aut
2019-04-04 13:35 attacks Brute-ForceSSH AbuseIPDB  
2019-04-04 11:08 attacks Brute-Force AbuseIPDB Apr 4 20:08:26 unicornsoft sshd\[23139\]: Invalid user alan from 121.67.246.139 Apr 4 20:08:26 unicornsoft sshd\[23139\]: pam_unix\(sshd:auth\): authe
2019-04-04 06:23 attacks Brute-ForceSSH AbuseIPDB Apr 4 17:23:16 mail sshd[26920]: Invalid user flw from 121.67.246.139
2019-04-04 06:07 attacks Brute-ForceSSH AbuseIPDB Apr 4 11:07:09 debian sshd\[27735\]: Invalid user aaa from 121.67.246.139 port 52740 Apr 4 11:07:09 debian sshd\[27735\]: pam_unix\(sshd:auth\): authe
2018-10-21 10:43 attacks FTP Brute-ForceHacking AbuseIPDB Oct 21 20:47:21 localhost sshd[32400]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.67.246.139 Oct 21 2
2018-10-21 15:24 attacks Brute-ForceSSH AbuseIPDB Oct 21 17:24:53 cac1d2 sshd\[7636\]: Invalid user rstudio from 121.67.246.139 port 51752 Oct 21 17:24:53 cac1d2 sshd\[7636\]: pam_unix\(sshd:auth\): a
2018-10-21 18:28 attacks Brute-ForceSSHWeb App Attack AbuseIPDB Oct 22 05:28:25 wbeazlqrct sshd[1512]: Invalid user larry from 121.67.246.139 port 36364
2018-10-21 18:32 attacks HackingBrute-ForceSSH AbuseIPDB Attempts against SSH
2018-10-22 03:20 attacks Brute-ForceSSH AbuseIPDB Oct 22 13:56:22 ns382633 sshd\[12781\]: Invalid user ramon from 121.67.246.139 port 33600 Oct 22 13:56:22 ns382633 sshd\[12781\]: pam_unix\(sshd:auth\
2018-10-22 08:33 attacks Brute-ForceSSH AbuseIPDB  
2018-10-22 08:42 attacks Brute-ForceSSH AbuseIPDB SSH Bruteforce
2018-10-22 10:53 attacks HackingBrute-ForceSSH AbuseIPDB SSH authentication failure x 6 reported by Fail2Ban
2018-10-22 14:18 attacks Brute-ForceSSH AbuseIPDB auto-add
2018-10-22 14:28 attacks Brute-ForceSSH AbuseIPDB Oct 22 23:28:06 scw-f8708f sshd[26440]: Invalid user user1 from 121.67.246.139 Oct 22 23:28:06 scw-f8708f sshd[26440]: Invalid user user1 from 121.67.
2019-03-29 18:18 attacks bi_any_0_1d BadIPs.com  
2019-03-29 18:19 attacks Bad Web Bot bi_badbots_0_1d BadIPs.com  
2019-03-29 18:19 attacks Brute-Force bi_bruteforce_0_1d BadIPs.com  
2019-03-29 18:19 attacks bi_default_0_1d BadIPs.com  
2019-03-29 18:20 attacks SSH bi_sshd_0_1d BadIPs.com  
2019-03-29 18:20 attacks SSH bi_ssh_0_1d BadIPs.com  
2019-03-29 18:20 attacks bi_unknown_0_1d BadIPs.com  
2019-03-29 18:21 attacks blocklist_de Blocklist.de  
2019-03-29 18:21 attacks SSH blocklist_de_ssh Blocklist.de  
2019-03-29 18:21 attacks blocklist_de_strongips Blocklist.de  
2019-03-29 18:23 attacks darklist_de darklist.de  
2019-03-29 18:27 attacks firehol_level2 FireHOL  
2019-03-29 18:27 attacks firehol_level4 FireHOL  
2019-03-29 18:34 attacks SSH haley_ssh Charles Haley  
2019-06-03 22:59 attacks SSH nt_ssh_7d NoThink.org  
2019-06-29 20:42 attacks Brute-Force normshield_all_bruteforce NormShield.com  
2019-06-29 20:42 attacks Brute-Force normshield_high_bruteforce NormShield.com  
2019-07-23 19:41 attacks greensnow GreenSnow.co  
only last 50 and first 10 AbuseIPDB logs are shown

Threats Categories :

abuse
IPs used to spam forum, boards, blogs or smtp servers, automated web scripts or scrappers (bad bots)
anonymizer
Onion Router IP addresses. TOR network IPs, TOR exit points, socks or ssl proxy.
attacks
bruteforce ssh/ftp/system account, IPs that have been detected by fail2ban, ports scan, vulnerabilities scan, DDoS.
malware
Addresses that have been identified distributing malware, form-grabber and stealer, Viruses, Worms, Trojans, Ransomware, Adware, Spyware

Whois

inetnum: 121.64.0.0 - 121.67.255.255
netname: BORANET
descr: LG DACOM Corporation
admin-c: IM646-AP
tech-c: IM646-AP
country: KR
status: ALLOCATED PORTABLE
mnt-by: MNT-KRNIC-AP
mnt-irt: IRT-KRNIC-KR
last-modified: 2017-02-03T00:55:05Z
source: APNIC

irt: IRT-KRNIC-KR
address: Seocho-ro 398, Seocho-gu, Seoul, Korea
e-mail: hostmaster@nic.or.kr
abuse-mailbox: hostmaster@nic.or.kr
admin-c: IM574-AP
tech-c: IM574-AP
auth: # Filtered
mnt-by: MNT-KRNIC-AP
last-modified: 2017-10-19T07:36:36Z
source: APNIC

person: IP Manager
address: Seoul Yongsan-gu Hangang-daero 32
country: KR
phone: +82-2-10-1
e-mail: ipadm@lguplus.co.kr
nic-hdl: IM646-AP
mnt-by: MNT-KRNIC-AP
last-modified: 2017-08-07T01:06:21Z
source: APNIC

inetnum: 121.64.0.0 - 121.67.255.255
netname: BORANET-KR
descr: LG DACOM Corporation
country: KR
admin-c: IA5-KR
tech-c: IA5-KR
status: ALLOCATED PORTABLE
mnt-by: MNT-KRNIC-AP
mnt-irt: IRT-KRNIC-KR
remarks: This information has been partially mirrored by APNIC from
remarks: KRNIC. To obtain more specific information, please use the
remarks: KRNIC whois server at whois.kisa.or.kr.
changed: hostmaster@nic.or.kr
source: KRNIC

person: IP Manager
address: Seoul Yongsan-gu Hangang-daero 32
address: LG UPLUS
country: KR
phone: +82-2-10-1
e-mail: ipadm@lguplus.co.kr
nic-hdl: IA5-KR
mnt-by: MNT-KRNIC-AP
changed: hostmaster@nic.or.kr
source: KRNIC
most specific ip range is highlighted
Updated : 2019-07-01