121.201.22.136

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
121.201.22.228	attack	Unauthorised connection attempt detected at AUO NODE 1. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-04-14 13:48:29

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.201.22.136
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21376
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;121.201.22.136.			IN	A

;; AUTHORITY SECTION:
.			288	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030800 1800 900 604800 86400

;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 08 20:07:33 CST 2022
;; MSG SIZE  rcvd: 107

Host info

136.22.201.121.in-addr.arpa domain name pointer 121.201.22.136.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
136.22.201.121.in-addr.arpa	name = 121.201.22.136.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.232.34.247	attack	Feb 27 02:47:54 web1 sshd\[20281\]: Invalid user s from 49.232.34.247 Feb 27 02:47:54 web1 sshd\[20281\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.34.247 Feb 27 02:47:56 web1 sshd\[20281\]: Failed password for invalid user s from 49.232.34.247 port 53114 ssh2 Feb 27 02:57:19 web1 sshd\[21068\]: Invalid user postgres from 49.232.34.247 Feb 27 02:57:19 web1 sshd\[21068\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.34.247	2020-02-27 21:14:16
111.229.185.154	attackspambots	Feb 26 19:35:09 web1 sshd\[14400\]: Invalid user precos from 111.229.185.154 Feb 26 19:35:09 web1 sshd\[14400\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.185.154 Feb 26 19:35:11 web1 sshd\[14400\]: Failed password for invalid user precos from 111.229.185.154 port 41576 ssh2 Feb 26 19:41:24 web1 sshd\[14984\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.185.154 user=root Feb 26 19:41:26 web1 sshd\[14984\]: Failed password for root from 111.229.185.154 port 58892 ssh2	2020-02-27 21:20:27
112.170.23.21	attackspambots	Honeypot attack, port: 81, PTR: PTR record not found	2020-02-27 21:02:21
91.121.219.62	attack	02/27/2020-00:42:08.765419 91.121.219.62 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-02-27 20:43:09
190.25.232.4	attack	Feb 27 06:41:32 MK-Soft-VM4 sshd[30994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.25.232.4 Feb 27 06:41:34 MK-Soft-VM4 sshd[30994]: Failed password for invalid user wangyu from 190.25.232.4 port 57864 ssh2 ...	2020-02-27 21:11:21
124.81.68.99	attackbots	Unauthorized connection attempt from IP address 124.81.68.99 on Port 445(SMB)	2020-02-27 20:57:57
179.50.5.144	attackbots	Feb 27 10:02:40 marvibiene sshd[62523]: Invalid user medieval from 179.50.5.144 port 49416 Feb 27 10:02:41 marvibiene sshd[62523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.50.5.144 Feb 27 10:02:40 marvibiene sshd[62523]: Invalid user medieval from 179.50.5.144 port 49416 Feb 27 10:02:42 marvibiene sshd[62523]: Failed password for invalid user medieval from 179.50.5.144 port 49416 ssh2 ...	2020-02-27 20:54:22
122.51.25.229	attackbotsspam	Feb 27 11:40:51 web2 sshd[6151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.25.229 Feb 27 11:40:53 web2 sshd[6151]: Failed password for invalid user cpaneleximscanner from 122.51.25.229 port 43404 ssh2	2020-02-27 21:06:07
123.113.176.69	attackspambots	Feb 27 05:19:04 mailrelay sshd[30237]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.113.176.69 user=sys Feb 27 05:19:07 mailrelay sshd[30237]: Failed password for sys from 123.113.176.69 port 49991 ssh2 Feb 27 05:19:07 mailrelay sshd[30237]: Received disconnect from 123.113.176.69 port 49991:11: Bye Bye [preauth] Feb 27 05:19:07 mailrelay sshd[30237]: Disconnected from 123.113.176.69 port 49991 [preauth] Feb 27 06:23:00 mailrelay sshd[31573]: Invalid user teamspeak3-server from 123.113.176.69 port 29331 Feb 27 06:23:00 mailrelay sshd[31573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.113.176.69 Feb 27 06:23:03 mailrelay sshd[31573]: Failed password for invalid user teamspeak3-server from 123.113.176.69 port 29331 ssh2 Feb 27 06:23:03 mailrelay sshd[31573]: Received disconnect from 123.113.176.69 port 29331:11: Bye Bye [preauth] Feb 27 06:23:03 mailrelay sshd[31573]: Disconne........ -------------------------------	2020-02-27 20:39:51
196.219.78.237	attack	Feb 27 06:23:03 xxxxxxx0 sshd[6334]: Invalid user admin from 196.219.78.237 port 42637 Feb 27 06:23:03 xxxxxxx0 sshd[6334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.219.78.237 Feb 27 06:23:05 xxxxxxx0 sshd[6334]: Failed password for invalid user admin from 196.219.78.237 port 42637 ssh2 Feb 27 06:23:07 xxxxxxx0 sshd[6353]: Invalid user admin from 196.219.78.237 port 42651 Feb 27 06:23:07 xxxxxxx0 sshd[6353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.219.78.237 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=196.219.78.237	2020-02-27 20:44:46
165.22.33.147	attack	Feb 27 05:26:14 XXX sshd[11614]: Invalid user ubnt from 165.22.33.147 Feb 27 05:26:14 XXX sshd[11614]: Received disconnect from 165.22.33.147: 11: Bye Bye [preauth] Feb 27 05:26:15 XXX sshd[11616]: Invalid user admin from 165.22.33.147 Feb 27 05:26:15 XXX sshd[11616]: Received disconnect from 165.22.33.147: 11: Bye Bye [preauth] Feb 27 05:26:16 XXX sshd[11618]: User r.r from 165.22.33.147 not allowed because none of user's groups are listed in AllowGroups Feb 27 05:26:16 XXX sshd[11618]: Received disconnect from 165.22.33.147: 11: Bye Bye [preauth] Feb 27 05:26:17 XXX sshd[11620]: Invalid user 1234 from 165.22.33.147 Feb 27 05:26:17 XXX sshd[11620]: Received disconnect from 165.22.33.147: 11: Bye Bye [preauth] Feb 27 05:26:18 XXX sshd[11622]: Invalid user usuario from 165.22.33.147 Feb 27 05:26:18 XXX sshd[11622]: Received disconnect from 165.22.33.147: 11: Bye Bye [preauth] Feb 27 05:26:19 XXX sshd[11624]: Invalid user support from 165.22.33.147 Feb 27 05:26:19 XXX ssh........ -------------------------------	2020-02-27 21:01:44
37.49.231.163	attackbots	Feb 27 13:40:46 debian-2gb-nbg1-2 kernel: \[5066440.406712\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=37.49.231.163 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=38998 PROTO=TCP SPT=44380 DPT=5038 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-27 21:13:01
223.100.104.192	attack	Feb 27 13:46:07 MK-Soft-VM8 sshd[25827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.100.104.192 Feb 27 13:46:09 MK-Soft-VM8 sshd[25827]: Failed password for invalid user yaoyiming from 223.100.104.192 port 41564 ssh2 ...	2020-02-27 21:13:32
93.122.192.42	attackspambots	Icarus honeypot on github	2020-02-27 21:01:26
70.117.13.17	attackspam	Honeypot attack, port: 5555, PTR: cpe-70-117-13-17.satx.res.rr.com.	2020-02-27 20:43:35

Recently Reported IPs

121.201.3.11	121.201.2.75	121.201.3.20	121.201.33.100
121.201.33.98	121.201.33.99	121.201.35.166	121.201.37.49
121.201.39.88	114.221.33.64	121.201.38.71	121.201.41.12
121.201.42.10	121.201.44.238	121.201.46.231	121.201.44.207
121.201.53.20	121.201.54.34	121.201.59.135	121.201.64.179