121.199.163.238

Basic Info

City: Hangzhou

Region: Zhejiang

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '121.196.0.0 - 121.199.255.255'

% Abuse contact for '121.196.0.0 - 121.199.255.255' is 'didong.jc@alibaba-inc.com'

inetnum:        121.196.0.0 - 121.199.255.255
netname:        ALISOFT
descr:          Aliyun Computing Co., LTD
descr:          5F, Builing D, the West Lake International Plaza of S&T
descr:          No.391 Wen'er Road, Hangzhou, Zhejiang, China, 310099
country:        CN
admin-c:        ZM1015-AP
tech-c:         ZM877-AP
tech-c:         ZM876-AP
tech-c:         ZM875-AP
abuse-c:        AC1601-AP
status:         ALLOCATED PORTABLE
mnt-by:         MAINT-CNNIC-AP
mnt-irt:        IRT-ALISOFT-CN
last-modified:  2023-11-28T00:57:01Z
source:         APNIC

irt:            IRT-ALISOFT-CN
address:        No.391 Wen'er Road, Hangzhou, Zhejiang, China, 310099
e-mail:         didong.jc@alibaba-inc.com
abuse-mailbox:  didong.jc@alibaba-inc.com
admin-c:        ZM877-AP
tech-c:         ZM877-AP
auth:           # Filtered
mnt-by:         MAINT-CNNIC-AP
last-modified:  2025-11-18T00:35:07Z
source:         APNIC

role:           ABUSE CNNICCN
country:        ZZ
address:        Beijing, China
phone:          +000000000
e-mail:         ipas@cnnic.cn
admin-c:        IP50-AP
tech-c:         IP50-AP
nic-hdl:        AC1601-AP
remarks:        Generated from irt object IRT-CNNIC-CN
remarks:        ipas@cnnic.cn is invalid
abuse-mailbox:  ipas@cnnic.cn
mnt-by:         APNIC-ABUSE
last-modified:  2025-09-19T17:20:32Z
source:         APNIC

person:         Li Jia
address:        NO.969 West Wen Yi Road, Yu Hang District, Hangzhou
country:        CN
phone:          +86-0571-85022088
e-mail:         jiali.jl@alibaba-inc.com
nic-hdl:        ZM1015-AP
mnt-by:         MAINT-CNNIC-AP
last-modified:  2025-07-01T07:12:42Z
source:         APNIC

person:         Guoxin Gao
address:        5F, Builing D, the West Lake International Plaza of S&T
address:        No.391 Wen'er Road, Hangzhou City
address:        Zhejiang, China, 310099
country:        CN
phone:          +86-0571-85022600
fax-no:         +86-0571-85022600
e-mail:         anti-spam@list.alibaba-inc.com
nic-hdl:        ZM875-AP
mnt-by:         MAINT-CNNIC-AP
last-modified:  2014-07-30T01:56:01Z
source:         APNIC

person:         security trouble
e-mail:         abuse@alibaba-inc.com
address:        5th,floor,Building D,the West Lake International Plaza of S&T,391#Wen??r Road
address:        Hangzhou, Zhejiang, China
phone:          +86-0571-85022600
country:        CN
mnt-by:         MAINT-CNNIC-AP
nic-hdl:        ZM876-AP
last-modified:  2025-07-01T07:06:11Z
source:         APNIC

person:         Guowei Pan
address:        5F, Builing D, the West Lake International Plaza of S&T
address:        No.391 Wen'er Road, Hangzhou City
address:        Zhejiang, China, 310099
country:        CN
phone:          +86-0571-85022088-30763
fax-no:         +86-0571-85022600
e-mail:         abuse@alibaba-inc.com
nic-hdl:        ZM877-AP
mnt-by:         MAINT-CNNIC-AP
last-modified:  2025-07-01T07:05:46Z
source:         APNIC

% Information related to '121.196.0.0/14AS37963'

route:          121.196.0.0/14
descr:          Hangzhou Alibaba Advertising Co.,Ltd.
country:        CN
origin:         AS37963
mnt-by:         MAINT-CNNIC-AP
last-modified:  2019-08-06T02:28:03Z
source:         APNIC

% Information related to '121.196.0.0/14AS45102'

route:          121.196.0.0/14
descr:          Alibaba (US) Technology Co., Ltd.
country:        CN
origin:         AS45102
mnt-by:         MAINT-CNNIC-AP
last-modified:  2019-08-06T02:28:04Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU5)

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.199.163.238
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43006
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;121.199.163.238.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026042300 1800 900 604800 86400

;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 24 00:00:06 CST 2026
;; MSG SIZE  rcvd: 108

Host info

Host 238.163.199.121.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 238.163.199.121.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
198.23.149.123	attackspambots	Jul 29 19:29:28 ift sshd\[14721\]: Invalid user rack from 198.23.149.123Jul 29 19:29:31 ift sshd\[14721\]: Failed password for invalid user rack from 198.23.149.123 port 35504 ssh2Jul 29 19:32:28 ift sshd\[15301\]: Invalid user xn from 198.23.149.123Jul 29 19:32:31 ift sshd\[15301\]: Failed password for invalid user xn from 198.23.149.123 port 50300 ssh2Jul 29 19:35:18 ift sshd\[15838\]: Invalid user carlos from 198.23.149.123 ...	2020-07-30 01:29:57
196.0.117.110	attack	failed_logins	2020-07-30 01:47:17
49.144.102.207	attackbots	Automatic report - Port Scan	2020-07-30 01:32:55
5.8.119.101	attack	xmlrpc attack	2020-07-30 01:27:37
172.67.73.189	attack	From: "Amazon.com" Amazon account phishing/fraud - MALICIOUS REDIRECT UBE aimanbauk ([40.87.105.33]) Microsoft Spam link parg.co = 178.238.224.248 Contabo GmbH – BLACKLISTED MALICIOUS REDIRECT: - sum.vn = 104.26.12.141, 104.26.13.141, 172.67.73.189 Cloudflare – blacklisted see https://www.phishtank.com/phish_detail.php?phish_id=6360304 - amazon.verification.kozow.com = 94.249.167.244 GHOSTnet GmbH – blacklisted see https://transparencyreport.google.com/safe-browsing/search?url=http%3A%2F%2Famazon.verification.kozow.com%2F%3F16shop SPF fxamplwo395845.com = aspmx.l.google.com 108.177.15.26, 108.177.15.27 Google	2020-07-30 01:47:45
185.53.88.113	attackbots	[portscan] Port scan	2020-07-30 01:38:37
128.199.143.89	attackbotsspam	Jul 29 19:15:06 * sshd[11834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.143.89 Jul 29 19:15:08 * sshd[11834]: Failed password for invalid user lyh from 128.199.143.89 port 37055 ssh2	2020-07-30 01:42:51
178.62.229.48	attack	Jul 29 14:09:10 b-vps wordpress(rreb.cz)[23367]: Authentication attempt for unknown user barbora from 178.62.229.48 ...	2020-07-30 01:22:10
187.95.10.162	attackbots	Jul 29 13:21:03 plex-server sshd[1704799]: Invalid user jl from 187.95.10.162 port 56648 Jul 29 13:21:03 plex-server sshd[1704799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.95.10.162 Jul 29 13:21:03 plex-server sshd[1704799]: Invalid user jl from 187.95.10.162 port 56648 Jul 29 13:21:05 plex-server sshd[1704799]: Failed password for invalid user jl from 187.95.10.162 port 56648 ssh2 Jul 29 13:25:55 plex-server sshd[1707422]: Invalid user yangyongqiang from 187.95.10.162 port 41686 ...	2020-07-30 01:41:43
221.249.140.17	attack	Jul 29 15:30:05 vlre-nyc-1 sshd\[10397\]: Invalid user ncs from 221.249.140.17 Jul 29 15:30:05 vlre-nyc-1 sshd\[10397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.249.140.17 Jul 29 15:30:07 vlre-nyc-1 sshd\[10397\]: Failed password for invalid user ncs from 221.249.140.17 port 42488 ssh2 Jul 29 15:37:32 vlre-nyc-1 sshd\[10596\]: Invalid user zhaojp from 221.249.140.17 Jul 29 15:37:32 vlre-nyc-1 sshd\[10596\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.249.140.17 ...	2020-07-30 01:20:00
222.180.208.14	attackspam	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-07-29T14:13:44Z and 2020-07-29T14:23:13Z	2020-07-30 01:50:13
115.164.47.191	attackspam	Blocked by jail apache-security2	2020-07-30 01:23:50
106.12.220.19	attackspambots	Automatic report BANNED IP	2020-07-30 01:11:15
182.151.41.208	attack	Jul 29 17:40:48 h2829583 sshd[25246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.151.41.208	2020-07-30 01:17:44
5.188.206.196	attackspam	2020-07-29 19:12:22 dovecot_login authenticator failed for \(\[5.188.206.196\]\) \[5.188.206.196\]: 535 Incorrect authentication data \(set_id=ssl@nophost.com\) 2020-07-29 19:12:32 dovecot_login authenticator failed for \(\[5.188.206.196\]\) \[5.188.206.196\]: 535 Incorrect authentication data 2020-07-29 19:12:43 dovecot_login authenticator failed for \(\[5.188.206.196\]\) \[5.188.206.196\]: 535 Incorrect authentication data 2020-07-29 19:13:00 dovecot_login authenticator failed for \(\[5.188.206.196\]\) \[5.188.206.196\]: 535 Incorrect authentication data 2020-07-29 19:13:02 dovecot_login authenticator failed for \(\[5.188.206.196\]\) \[5.188.206.196\]: 535 Incorrect authentication data \(set_id=ssl\)	2020-07-30 01:16:00

Recently Reported IPs

48.215.98.69	168.144.38.34	52.23.194.58	121.41.171.45
134.35.157.69	2606:4700:10::6814:9398	2606:4700:10::ac43:1875	2606:4700:10::6816:4505
121.230.89.132	39.100.69.170	159.223.63.125	183.54.234.241
164.90.142.228	134.209.166.40	207.249.232.48	207.249.232.84
2606:4700:10::ac43:1118	2606:4700:10::6816:2693	66.42.41.213	2606:4700:10::6816:4705