121.226.68.132

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Jiangsu Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
121.226.68.160	attack	lfd: (smtpauth) Failed SMTP AUTH login from 121.226.68.160 (160.68.226.121.broad.nt.js.dynamic.163data.com.cn): 5 in the last 3600 secs - Mon Jun 4 21:06:45 2018	2020-04-30 18:30:35
121.226.68.160	attackbots	lfd: (smtpauth) Failed SMTP AUTH login from 121.226.68.160 (160.68.226.121.broad.nt.js.dynamic.163data.com.cn): 5 in the last 3600 secs - Mon Jun 4 21:06:45 2018	2020-02-24 05:36:10
121.226.68.79	attack	Port scan on 1 port(s): 23	2019-12-13 14:26:14
121.226.68.55	attackbots	2019-06-26T18:27:14.470080 X postfix/smtpd[51255]: warning: unknown[121.226.68.55]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-26T21:58:18.108341 X postfix/smtpd[14079]: warning: unknown[121.226.68.55]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-27T05:51:35.401894 X postfix/smtpd[23785]: warning: unknown[121.226.68.55]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-06-27 13:28:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.226.68.132
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42433
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.226.68.132.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080600 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Aug 06 15:57:21 CST 2019
;; MSG SIZE  rcvd: 118

Host info

132.68.226.121.in-addr.arpa domain name pointer 132.68.226.121.broad.nt.js.dynamic.163data.com.cn.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
132.68.226.121.in-addr.arpa	name = 132.68.226.121.broad.nt.js.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.81.92.219	attack	[Aegis] @ 2019-10-14 12:55:06 0100 -> Sendmail rejected message.	2019-10-14 20:40:12
223.99.126.67	attackspambots	Oct 14 13:55:46 [host] sshd[14356]: Invalid user renaud from 223.99.126.67 Oct 14 13:55:46 [host] sshd[14356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.99.126.67 Oct 14 13:55:49 [host] sshd[14356]: Failed password for invalid user renaud from 223.99.126.67 port 57798 ssh2	2019-10-14 20:21:34
8.28.0.17	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-14 20:26:34
45.80.65.35	attackspambots	Oct 14 13:52:10 bouncer sshd\[13833\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.65.35 user=root Oct 14 13:52:12 bouncer sshd\[13833\]: Failed password for root from 45.80.65.35 port 58202 ssh2 Oct 14 13:55:56 bouncer sshd\[13888\]: Invalid user king from 45.80.65.35 port 39510 Oct 14 13:55:56 bouncer sshd\[13888\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.65.35 ...	2019-10-14 20:18:07
94.23.207.207	attackbotsspam	\[2019-10-14 07:51:50\] NOTICE\[1887\] chan_sip.c: Registration from '\' failed for '94.23.207.207:55557' - Wrong password \[2019-10-14 07:51:50\] SECURITY\[1898\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-14T07:51:50.481-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1020",SessionID="0x7fc3acc3d768",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/94.23.207.207/55557",Challenge="1bfb665b",ReceivedChallenge="1bfb665b",ReceivedHash="50ec3d184de2bfb4cece30cf77a629f6" \[2019-10-14 07:55:43\] NOTICE\[1887\] chan_sip.c: Registration from '\' failed for '94.23.207.207:55997' - Wrong password \[2019-10-14 07:55:43\] SECURITY\[1898\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-14T07:55:43.766-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1025",SessionID="0x7fc3ac00c388",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/94.23.207	2019-10-14 20:24:13
148.70.127.233	attack	Oct 14 13:49:23 vps691689 sshd[23746]: Failed password for root from 148.70.127.233 port 34772 ssh2 Oct 14 13:55:14 vps691689 sshd[23843]: Failed password for root from 148.70.127.233 port 46174 ssh2 ...	2019-10-14 20:40:26
112.85.42.227	attackspambots	Oct 14 08:18:36 TORMINT sshd\[20563\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.227 user=root Oct 14 08:18:38 TORMINT sshd\[20563\]: Failed password for root from 112.85.42.227 port 14242 ssh2 Oct 14 08:21:13 TORMINT sshd\[20717\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.227 user=root ...	2019-10-14 20:21:49
13.57.213.209	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-14 20:20:39
159.203.201.147	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-14 20:41:40
138.197.189.138	attackbotsspam	2019-10-14T11:55:40.918545abusebot-7.cloudsearch.cf sshd\[24514\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.189.138 user=root	2019-10-14 20:26:57
107.170.209.246	attackspam	Automatic report - XMLRPC Attack	2019-10-14 20:40:45
149.202.59.85	attackspam	Oct 14 13:51:11 meumeu sshd[21929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.59.85 Oct 14 13:51:12 meumeu sshd[21929]: Failed password for invalid user C3ntos2016 from 149.202.59.85 port 40659 ssh2 Oct 14 13:55:17 meumeu sshd[22585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.59.85 ...	2019-10-14 20:39:01
3.84.76.50	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-14 20:29:18
206.189.35.254	attackspam	Oct 14 07:46:07 ny01 sshd[10521]: Failed password for root from 206.189.35.254 port 39018 ssh2 Oct 14 07:51:03 ny01 sshd[10940]: Failed password for root from 206.189.35.254 port 51300 ssh2	2019-10-14 20:20:57
222.186.175.183	attack	Oct 14 14:10:45 MK-Soft-Root1 sshd[17467]: Failed password for root from 222.186.175.183 port 33096 ssh2 Oct 14 14:10:54 MK-Soft-Root1 sshd[17467]: Failed password for root from 222.186.175.183 port 33096 ssh2 ...	2019-10-14 20:23:04

Recently Reported IPs

169.50.124.158	14.169.146.195	164.160.93.3	60.223.234.47
202.110.78.222	177.220.135.10	14.186.32.81	23.238.35.28
14.231.222.154	180.76.15.24	35.240.84.115	216.187.147.195
123.28.249.169	119.162.178.75	217.112.128.154	182.52.105.197
175.170.7.149	78.4.133.66	103.192.76.13	119.123.61.122