121.204.145.238

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
121.204.145.50	attack	Jul 29 07:12:11 pkdns2 sshd\[5990\]: Invalid user liuxikai from 121.204.145.50Jul 29 07:12:13 pkdns2 sshd\[5990\]: Failed password for invalid user liuxikai from 121.204.145.50 port 36664 ssh2Jul 29 07:14:53 pkdns2 sshd\[6058\]: Invalid user bill from 121.204.145.50Jul 29 07:14:56 pkdns2 sshd\[6058\]: Failed password for invalid user bill from 121.204.145.50 port 44198 ssh2Jul 29 07:17:42 pkdns2 sshd\[6204\]: Invalid user hmx from 121.204.145.50Jul 29 07:17:45 pkdns2 sshd\[6204\]: Failed password for invalid user hmx from 121.204.145.50 port 51736 ssh2 ...	2020-07-29 12:37:09
121.204.145.50	attackspam	SSH Bruteforce attack	2020-07-25 15:36:27
121.204.145.50	attackbotsspam	Jul 24 07:44:40 sshd\[26901\]: Invalid user gsq from 121.204.145.50Jul 24 07:44:42 sshd\[26901\]: Failed password for invalid user gsq from 121.204.145.50 port 40152 ssh2 ...	2020-07-24 17:11:28
121.204.145.50	attackspambots	Jul 15 11:42:36 web1 sshd[32028]: Invalid user mario from 121.204.145.50 port 53710 Jul 15 11:42:36 web1 sshd[32028]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.204.145.50 Jul 15 11:42:36 web1 sshd[32028]: Invalid user mario from 121.204.145.50 port 53710 Jul 15 11:42:38 web1 sshd[32028]: Failed password for invalid user mario from 121.204.145.50 port 53710 ssh2 Jul 15 12:01:24 web1 sshd[4279]: Invalid user ubuntu from 121.204.145.50 port 59600 Jul 15 12:01:24 web1 sshd[4279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.204.145.50 Jul 15 12:01:24 web1 sshd[4279]: Invalid user ubuntu from 121.204.145.50 port 59600 Jul 15 12:01:26 web1 sshd[4279]: Failed password for invalid user ubuntu from 121.204.145.50 port 59600 ssh2 Jul 15 12:05:32 web1 sshd[5716]: Invalid user peer from 121.204.145.50 port 51704 ...	2020-07-15 11:01:04
121.204.145.50	attack	Jul 8 01:03:09 lukav-desktop sshd\[3645\]: Invalid user postgres from 121.204.145.50 Jul 8 01:03:09 lukav-desktop sshd\[3645\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.204.145.50 Jul 8 01:03:11 lukav-desktop sshd\[3645\]: Failed password for invalid user postgres from 121.204.145.50 port 60214 ssh2 Jul 8 01:06:46 lukav-desktop sshd\[8012\]: Invalid user corrie from 121.204.145.50 Jul 8 01:06:46 lukav-desktop sshd\[8012\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.204.145.50	2020-07-08 09:07:11
121.204.145.50	attackbotsspam	2020-06-29T21:48:25.624399vps773228.ovh.net sshd[32195]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.204.145.50 user=root 2020-06-29T21:48:27.604693vps773228.ovh.net sshd[32195]: Failed password for root from 121.204.145.50 port 39102 ssh2 2020-06-29T21:51:15.863449vps773228.ovh.net sshd[32225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.204.145.50 user=root 2020-06-29T21:51:18.180271vps773228.ovh.net sshd[32225]: Failed password for root from 121.204.145.50 port 57114 ssh2 2020-06-29T21:54:09.900372vps773228.ovh.net sshd[32237]: Invalid user git from 121.204.145.50 port 46882 ...	2020-06-30 03:57:06
121.204.145.50	attackspam	Jun 14 01:11:01 server sshd[48351]: Failed password for invalid user tj from 121.204.145.50 port 35772 ssh2 Jun 14 01:13:56 server sshd[50658]: Failed password for root from 121.204.145.50 port 51008 ssh2 Jun 14 01:16:59 server sshd[52959]: Failed password for invalid user bmdmserver from 121.204.145.50 port 37992 ssh2	2020-06-14 08:46:34
121.204.145.50	attackbots	SSH login attempts.	2020-06-10 17:03:23
121.204.145.50	attack	Jun 2 05:21:15 vps sshd[12085]: Failed password for root from 121.204.145.50 port 41814 ssh2 Jun 2 05:49:16 vps sshd[13758]: Failed password for root from 121.204.145.50 port 42568 ssh2 ...	2020-06-02 14:57:50
121.204.145.50	attack	SSH Invalid Login	2020-05-02 05:49:33
121.204.145.50	attackspambots	Invalid user sharon from 121.204.145.50 port 49600	2020-04-30 03:26:59
121.204.145.50	attack	Fail2Ban Ban Triggered (2)	2020-04-27 04:29:35
121.204.145.50	attackspam	2020-04-23T10:25:31.437988sd-86998 sshd[34202]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.204.145.50 user=root 2020-04-23T10:25:33.314864sd-86998 sshd[34202]: Failed password for root from 121.204.145.50 port 49200 ssh2 2020-04-23T10:34:40.373762sd-86998 sshd[35739]: Invalid user test0 from 121.204.145.50 port 58360 2020-04-23T10:34:40.378920sd-86998 sshd[35739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.204.145.50 2020-04-23T10:34:40.373762sd-86998 sshd[35739]: Invalid user test0 from 121.204.145.50 port 58360 2020-04-23T10:34:42.958329sd-86998 sshd[35739]: Failed password for invalid user test0 from 121.204.145.50 port 58360 ssh2 ...	2020-04-23 17:36:56
121.204.145.50	attack	Apr 22 22:06:15 h2646465 sshd[28191]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.204.145.50 user=root Apr 22 22:06:17 h2646465 sshd[28191]: Failed password for root from 121.204.145.50 port 58616 ssh2 Apr 22 22:12:45 h2646465 sshd[28906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.204.145.50 user=root Apr 22 22:12:47 h2646465 sshd[28906]: Failed password for root from 121.204.145.50 port 60614 ssh2 Apr 22 22:20:51 h2646465 sshd[30120]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.204.145.50 user=root Apr 22 22:20:52 h2646465 sshd[30120]: Failed password for root from 121.204.145.50 port 50738 ssh2 Apr 22 22:31:51 h2646465 sshd[31473]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.204.145.50 user=root Apr 22 22:31:53 h2646465 sshd[31473]: Failed password for root from 121.204.145.50 port 46976 ssh2 Apr 22 22:42:27 h264	2020-04-23 05:01:11
121.204.145.50	attackspam	$f2bV_matches	2020-04-21 04:24:21

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.204.145.238
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2441
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;121.204.145.238.		IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 84 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 06:45:28 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 238.145.204.121.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 238.145.204.121.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.95.168.202	attackspam	Oct 8 16:47:13 santamaria sshd\[31114\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.95.168.202 user=root Oct 8 16:47:15 santamaria sshd\[31114\]: Failed password for root from 45.95.168.202 port 34650 ssh2 Oct 8 16:54:10 santamaria sshd\[31156\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.95.168.202 user=root ...	2020-10-09 02:42:31
167.248.133.29	attack	TCP (SYN) 167.248.133.29:60439 -> port 993, len 44	2020-10-09 02:17:58
27.72.109.15	attackbots	Oct 8 04:44:50 Tower sshd[27234]: refused connect from 49.88.112.115 (49.88.112.115) Oct 8 09:46:01 Tower sshd[27234]: Connection from 27.72.109.15 port 51122 on 192.168.10.220 port 22 rdomain "" Oct 8 09:46:13 Tower sshd[27234]: Failed password for root from 27.72.109.15 port 51122 ssh2 Oct 8 09:46:13 Tower sshd[27234]: Received disconnect from 27.72.109.15 port 51122:11: Bye Bye [preauth] Oct 8 09:46:13 Tower sshd[27234]: Disconnected from authenticating user root 27.72.109.15 port 51122 [preauth]	2020-10-09 02:41:45
59.149.207.23	attack	2020-10-07T20:41:28+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)	2020-10-09 02:37:09
218.92.0.165	attackspambots	2020-10-08T21:28:44.474962afi-git.jinr.ru sshd[3280]: Failed password for root from 218.92.0.165 port 28318 ssh2 2020-10-08T21:28:47.904883afi-git.jinr.ru sshd[3280]: Failed password for root from 218.92.0.165 port 28318 ssh2 2020-10-08T21:28:51.563790afi-git.jinr.ru sshd[3280]: Failed password for root from 218.92.0.165 port 28318 ssh2 2020-10-08T21:28:51.563926afi-git.jinr.ru sshd[3280]: error: maximum authentication attempts exceeded for root from 218.92.0.165 port 28318 ssh2 [preauth] 2020-10-08T21:28:51.563940afi-git.jinr.ru sshd[3280]: Disconnecting: Too many authentication failures [preauth] ...	2020-10-09 02:40:10
122.202.32.70	attackspam	2020-10-08T21:19:43.874139mail.standpoint.com.ua sshd[32335]: Failed password for root from 122.202.32.70 port 46216 ssh2 2020-10-08T21:21:26.479593mail.standpoint.com.ua sshd[32715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.202.32.70 user=root 2020-10-08T21:21:28.383685mail.standpoint.com.ua sshd[32715]: Failed password for root from 122.202.32.70 port 38256 ssh2 2020-10-08T21:23:08.444175mail.standpoint.com.ua sshd[741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.202.32.70 user=root 2020-10-08T21:23:10.349303mail.standpoint.com.ua sshd[741]: Failed password for root from 122.202.32.70 port 58528 ssh2 ...	2020-10-09 02:29:59
27.206.53.98	attackbotsspam	DATE:2020-10-07 22:38:49, IP:27.206.53.98, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-10-09 02:27:45
125.119.82.237	attack	Port probing on unauthorized port 1433	2020-10-09 02:20:24
60.250.29.230	attackbots	[munged]::443 60.250.29.230 - - [08/Oct/2020:16:32:54 +0200] "POST /[munged]: HTTP/1.1" 200 8158 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 60.250.29.230 - - [08/Oct/2020:16:32:56 +0200] "POST /[munged]: HTTP/1.1" 200 8158 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 60.250.29.230 - - [08/Oct/2020:16:32:59 +0200] "POST /[munged]: HTTP/1.1" 200 8158 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 60.250.29.230 - - [08/Oct/2020:16:33:03 +0200] "POST /[munged]: HTTP/1.1" 200 8158 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 60.250.29.230 - - [08/Oct/2020:16:33:05 +0200] "POST /[munged]: HTTP/1.1" 200 8158 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 60.250.29.230 - - [08/Oct/2020:16:33:08	2020-10-09 02:50:09
5.188.84.228	attackbots	fell into ViewStateTrap:harare01	2020-10-09 02:32:03
129.204.249.11	attackspambots	2020-10-08T18:14:37.045682abusebot-4.cloudsearch.cf sshd[15637]: Invalid user deployer from 129.204.249.11 port 51874 2020-10-08T18:14:37.051545abusebot-4.cloudsearch.cf sshd[15637]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.249.11 2020-10-08T18:14:37.045682abusebot-4.cloudsearch.cf sshd[15637]: Invalid user deployer from 129.204.249.11 port 51874 2020-10-08T18:14:39.141988abusebot-4.cloudsearch.cf sshd[15637]: Failed password for invalid user deployer from 129.204.249.11 port 51874 ssh2 2020-10-08T18:23:03.528951abusebot-4.cloudsearch.cf sshd[15744]: Invalid user mdpi from 129.204.249.11 port 34834 2020-10-08T18:23:03.536881abusebot-4.cloudsearch.cf sshd[15744]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.249.11 2020-10-08T18:23:03.528951abusebot-4.cloudsearch.cf sshd[15744]: Invalid user mdpi from 129.204.249.11 port 34834 2020-10-08T18:23:05.090702abusebot-4.cloudsearch.cf sshd[ ...	2020-10-09 02:33:05
162.142.125.26	attackspambots	firewall-block, port(s): 33389/tcp	2020-10-09 02:16:10
139.59.93.93	attack	(sshd) Failed SSH login from 139.59.93.93 (IN/India/rupal-chaudhary-ubuntu-18.04): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 8 14:21:21 server sshd[30790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.93.93 user=root Oct 8 14:21:22 server sshd[30790]: Failed password for root from 139.59.93.93 port 36748 ssh2 Oct 8 14:22:01 server sshd[30959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.93.93 user=root Oct 8 14:22:03 server sshd[30959]: Failed password for root from 139.59.93.93 port 42698 ssh2 Oct 8 14:22:37 server sshd[31090]: Invalid user test from 139.59.93.93 port 48308	2020-10-09 02:49:18
119.248.7.129	attackspam	Oct 7 22:24:19 host sshd[23237]: Invalid user ghostnameer from 119.248.7.129 port 6576 Oct 7 22:24:19 host sshd[23237]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.248.7.129 Oct 7 22:24:21 host sshd[23237]: Failed password for invalid user ghostnameer from 119.248.7.129 port 6576 ssh2 Oct 7 22:24:22 host sshd[23237]: Received disconnect from 119.248.7.129 port 6576:11: Normal Shutdown, Thank you for playing [preauth] Oct 7 22:24:22 host sshd[23237]: Disconnected from invalid user ghostnameer 119.248.7.129 port 6576 [preauth] Oct 7 22:25:25 host sshd[23255]: User r.r from 119.248.7.129 not allowed because none of user's groups are listed in AllowGroups Oct 7 22:25:25 host sshd[23255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.248.7.129 user=r.r Oct 7 22:25:27 host sshd[23255]: Failed password for invalid user r.r from 119.248.7.129 port 7966 ssh2 Oct 7 22:25:27 hos........ -------------------------------	2020-10-09 02:39:27
107.175.129.51	attackspam	0,98-07/07 [bc04/m145] PostRequest-Spammer scoring: brussels	2020-10-09 02:28:35

Recently Reported IPs

121.204.102.109	121.204.153.203	121.204.88.63	121.205.177.140
121.205.213.199	121.205.177.169	121.205.214.11	121.205.214.224
121.205.215.106	121.205.214.14	121.205.222.42	121.205.223.60
121.205.56.56	121.206.10.187	121.206.141.189	121.206.141.194
121.206.141.216	121.206.140.187	121.206.141.41	121.206.153.170