121.234.219.123

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
121.234.219.249	attack	Aug 26 04:38:42 shivevps sshd[21284]: Bad protocol version identification '\024' from 121.234.219.249 port 50172 Aug 26 04:38:49 shivevps sshd[21427]: Bad protocol version identification '\024' from 121.234.219.249 port 50342 Aug 26 04:39:21 shivevps sshd[21974]: Bad protocol version identification '\024' from 121.234.219.249 port 50648 Aug 26 04:39:58 shivevps sshd[23441]: Bad protocol version identification '\024' from 121.234.219.249 port 51424 ...	2020-08-26 16:24:52

Type

Details

Datetime

121.234.219.249

attack

Aug 26 04:38:42 shivevps sshd[21284]: Bad protocol version identification '\024' from 121.234.219.249 port 50172
Aug 26 04:38:49 shivevps sshd[21427]: Bad protocol version identification '\024' from 121.234.219.249 port 50342
Aug 26 04:39:21 shivevps sshd[21974]: Bad protocol version identification '\024' from 121.234.219.249 port 50648
Aug 26 04:39:58 shivevps sshd[23441]: Bad protocol version identification '\024' from 121.234.219.249 port 51424
...

2020-08-26 16:24:52

Whois info:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '121.224.0.0 - 121.239.255.255'

% Abuse contact for '121.224.0.0 - 121.239.255.255' is 'anti-spam@chinatelecom.cn'

inetnum:        121.224.0.0 - 121.239.255.255
netname:        CHINANET-JS
descr:          CHINANET jiangsu province network
descr:          China Telecom
descr:          A12,Xin-Jie-Kou-Wai Street
descr:          Beijing 100088
country:        CN
admin-c:        CH93-AP
tech-c:         CJ186-AP
abuse-c:        AC1573-AP
status:         ALLOCATED PORTABLE
mnt-by:         APNIC-HM
mnt-lower:      MAINT-CHINANET-JS
mnt-routes:     MAINT-CHINANET-JS
mnt-irt:        IRT-CHINANET-CN
last-modified:  2021-06-15T08:05:09Z
source:         APNIC

irt:            IRT-CHINANET-CN
address:        No.31 ,jingrong street,beijing
address:        100032
e-mail:         anti-spam@chinatelecom.cn
abuse-mailbox:  anti-spam@chinatelecom.cn
admin-c:        CH93-AP
tech-c:         CH93-AP
auth:           # Filtered
remarks:        anti-spam@chinatelecom.cn was validated on 2025-11-13
mnt-by:         MAINT-CHINANET
last-modified:  2026-03-13T07:12:20Z
source:         APNIC

role:           ABUSE CHINANETCN
country:        ZZ
address:        No.31 ,jingrong street,beijing
address:        100032
phone:          +000000000
e-mail:         anti-spam@chinatelecom.cn
admin-c:        CH93-AP
tech-c:         CH93-AP
nic-hdl:        AC1573-AP
remarks:        Generated from irt object IRT-CHINANET-CN
remarks:        anti-spam@chinatelecom.cn was validated on 2025-11-13
abuse-mailbox:  anti-spam@chinatelecom.cn
mnt-by:         APNIC-ABUSE
last-modified:  2025-11-13T14:15:15Z
source:         APNIC

role:           CHINANET JIANGSU
address:        260 Zhongyang Road,Nanjing 210037
country:        CN
phone:          +86-25-87799222
e-mail:         jsipmanager@163.com
remarks:        send anti-spam reports tojsipmanager@163.com
remarks:        send abuse reports tojsipmanager@163.com
remarks:        times in GMT+8
remarks:        www.jsinfo.net
admin-c:        CH360-AP
tech-c:         CS306-AP
tech-c:         CN142-AP
nic-hdl:        CJ186-AP
notify:         jsipmanager@163.com
mnt-by:         MAINT-CHINANET-JS
last-modified:  2022-08-05T15:34:47Z
source:         APNIC

person:         Chinanet Hostmaster
nic-hdl:        CH93-AP
e-mail:         anti-spam@chinatelecom.cn
address:        No.31 ,jingrong street,beijing
address:        100032
phone:          +86-10-58501724
fax-no:         +86-10-58501724
country:        CN
mnt-by:         MAINT-CHINANET
last-modified:  2022-02-28T06:53:44Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5)

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.234.219.123
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45288
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;121.234.219.123.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026040902 1800 900 604800 86400

;; Query time: 6 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 10 13:04:13 CST 2026
;; MSG SIZE  rcvd: 108

Host info

Host 123.219.234.121.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 123.219.234.121.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
37.187.22.227	attackbots	Sep 29 07:04:47 vps647732 sshd[18989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.22.227 Sep 29 07:04:48 vps647732 sshd[18989]: Failed password for invalid user 123 from 37.187.22.227 port 36154 ssh2 ...	2019-09-29 13:22:47
220.141.24.74	attackspam	Unauthorised access (Sep 29) SRC=220.141.24.74 LEN=40 PREC=0x20 TTL=52 ID=52729 TCP DPT=23 WINDOW=57555 SYN	2019-09-29 13:11:55
23.129.64.184	attackspam	Sep 29 05:55:16 rotator sshd\[30908\]: Invalid user git from 23.129.64.184Sep 29 05:55:18 rotator sshd\[30908\]: Failed password for invalid user git from 23.129.64.184 port 45119 ssh2Sep 29 05:55:20 rotator sshd\[30908\]: Failed password for invalid user git from 23.129.64.184 port 45119 ssh2Sep 29 05:55:23 rotator sshd\[30908\]: Failed password for invalid user git from 23.129.64.184 port 45119 ssh2Sep 29 05:55:25 rotator sshd\[30908\]: Failed password for invalid user git from 23.129.64.184 port 45119 ssh2Sep 29 05:55:28 rotator sshd\[30908\]: Failed password for invalid user git from 23.129.64.184 port 45119 ssh2 ...	2019-09-29 13:07:49
138.68.226.175	attackbots	2019-09-29T04:56:03.372454hub.schaetter.us sshd\[21313\]: Invalid user tg from 138.68.226.175 port 45208 2019-09-29T04:56:03.386360hub.schaetter.us sshd\[21313\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.226.175 2019-09-29T04:56:05.685324hub.schaetter.us sshd\[21313\]: Failed password for invalid user tg from 138.68.226.175 port 45208 ssh2 2019-09-29T05:00:10.248124hub.schaetter.us sshd\[21334\]: Invalid user msfuser from 138.68.226.175 port 56852 2019-09-29T05:00:10.256697hub.schaetter.us sshd\[21334\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.226.175 ...	2019-09-29 13:54:00
35.244.120.16	attack	fail2ban honeypot	2019-09-29 13:13:17
35.237.229.122	attack	Sep 29 11:57:40 webhost01 sshd[20676]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.237.229.122 Sep 29 11:57:41 webhost01 sshd[20676]: Failed password for invalid user siverko from 35.237.229.122 port 48986 ssh2 ...	2019-09-29 13:21:56
101.29.46.137	attackspambots	Unauthorised access (Sep 29) SRC=101.29.46.137 LEN=40 TTL=49 ID=46727 TCP DPT=8080 WINDOW=35065 SYN Unauthorised access (Sep 29) SRC=101.29.46.137 LEN=40 TTL=49 ID=7374 TCP DPT=8080 WINDOW=55977 SYN Unauthorised access (Sep 28) SRC=101.29.46.137 LEN=40 TTL=49 ID=37853 TCP DPT=8080 WINDOW=55977 SYN Unauthorised access (Sep 28) SRC=101.29.46.137 LEN=40 TTL=49 ID=38786 TCP DPT=8080 WINDOW=35065 SYN	2019-09-29 13:50:33
222.186.175.217	attack	Sep 29 07:52:09 dcd-gentoo sshd[27569]: User root from 222.186.175.217 not allowed because none of user's groups are listed in AllowGroups Sep 29 07:52:14 dcd-gentoo sshd[27569]: error: PAM: Authentication failure for illegal user root from 222.186.175.217 Sep 29 07:52:09 dcd-gentoo sshd[27569]: User root from 222.186.175.217 not allowed because none of user's groups are listed in AllowGroups Sep 29 07:52:14 dcd-gentoo sshd[27569]: error: PAM: Authentication failure for illegal user root from 222.186.175.217 Sep 29 07:52:09 dcd-gentoo sshd[27569]: User root from 222.186.175.217 not allowed because none of user's groups are listed in AllowGroups Sep 29 07:52:14 dcd-gentoo sshd[27569]: error: PAM: Authentication failure for illegal user root from 222.186.175.217 Sep 29 07:52:14 dcd-gentoo sshd[27569]: Failed keyboard-interactive/pam for invalid user root from 222.186.175.217 port 9214 ssh2 ...	2019-09-29 14:02:00
182.61.18.254	attack	Sep 29 07:02:18 microserver sshd[18278]: Invalid user shaun from 182.61.18.254 port 33806 Sep 29 07:02:18 microserver sshd[18278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.18.254 Sep 29 07:02:20 microserver sshd[18278]: Failed password for invalid user shaun from 182.61.18.254 port 33806 ssh2 Sep 29 07:07:33 microserver sshd[18938]: Invalid user inssftp from 182.61.18.254 port 45840 Sep 29 07:07:33 microserver sshd[18938]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.18.254 Sep 29 07:18:06 microserver sshd[20207]: Invalid user Pompano from 182.61.18.254 port 41698 Sep 29 07:18:07 microserver sshd[20207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.18.254 Sep 29 07:18:09 microserver sshd[20207]: Failed password for invalid user Pompano from 182.61.18.254 port 41698 ssh2 Sep 29 07:23:23 microserver sshd[20872]: Invalid user ubuntu from 182.61.18.254 port 5373	2019-09-29 13:42:10
92.63.106.108	attackbotsspam	Sep 29 07:28:07 MK-Soft-VM4 sshd[10809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.63.106.108 Sep 29 07:28:09 MK-Soft-VM4 sshd[10809]: Failed password for invalid user splunk from 92.63.106.108 port 47572 ssh2 ...	2019-09-29 13:47:56
89.179.118.84	attackbots	Sep 29 06:46:51 intra sshd\[60603\]: Invalid user miroslav from 89.179.118.84Sep 29 06:46:54 intra sshd\[60603\]: Failed password for invalid user miroslav from 89.179.118.84 port 57426 ssh2Sep 29 06:51:01 intra sshd\[60684\]: Invalid user testwww from 89.179.118.84Sep 29 06:51:03 intra sshd\[60684\]: Failed password for invalid user testwww from 89.179.118.84 port 40540 ssh2Sep 29 06:55:09 intra sshd\[60765\]: Invalid user melquisedeque from 89.179.118.84Sep 29 06:55:10 intra sshd\[60765\]: Failed password for invalid user melquisedeque from 89.179.118.84 port 51886 ssh2 ...	2019-09-29 13:24:15
195.159.103.189	attackspambots	2019-09-29T01:18:46.8320001495-001 sshd\[43981\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195-159-103-189.customer.powertech.no 2019-09-29T01:18:48.8339621495-001 sshd\[43981\]: Failed password for invalid user vetye from 195.159.103.189 port 34574 ssh2 2019-09-29T01:36:15.4159601495-001 sshd\[45243\]: Invalid user znc-admin from 195.159.103.189 port 45772 2019-09-29T01:36:15.4193811495-001 sshd\[45243\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195-159-103-189.customer.powertech.no 2019-09-29T01:36:17.2999441495-001 sshd\[45243\]: Failed password for invalid user znc-admin from 195.159.103.189 port 45772 ssh2 2019-09-29T01:41:54.5056291495-001 sshd\[45692\]: Invalid user oracle from 195.159.103.189 port 58916 2019-09-29T01:41:54.5142751495-001 sshd\[45692\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195-159-103-189.customer.powertech.no ...	2019-09-29 13:59:43
46.229.168.137	attackbotsspam	Automatic report - Banned IP Access	2019-09-29 13:15:22
93.64.183.162	attackbotsspam	2019-09-29T07:27:40.393924MailD postfix/smtpd[29990]: NOQUEUE: reject: RCPT from net-93-64-183-162.cust.vodafonedsl.it[93.64.183.162]: 554 5.7.1 Service unavailable; Client host [93.64.183.162] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?93.64.183.162; from= to= proto=ESMTP helo= 2019-09-29T07:27:40.598424MailD postfix/smtpd[29990]: NOQUEUE: reject: RCPT from net-93-64-183-162.cust.vodafonedsl.it[93.64.183.162]: 554 5.7.1 Service unavailable; Client host [93.64.183.162] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?93.64.183.162; from= to= proto=ESMTP helo= 2019-09-29T07:27:40.773405MailD postfix/smtpd[29990]: NOQUEUE: reject: RCPT from net-93-64-183-162.cust.vodafonedsl.it[93.64.183.162]: 554 5.7.1 Service unavailable; Client host [93.64.183.162] blocked using bl.spamcop.net;	2019-09-29 13:57:40
62.234.9.150	attackbotsspam	Invalid user stress from 62.234.9.150 port 49450	2019-09-29 13:10:23

Recently Reported IPs

2606:4700:10::ac43:2255	2606:4700:10::ac43:2213	138.68.76.25	207.154.197.196
167.99.134.35	157.230.104.210	35.203.210.224	165.245.208.120
165.227.144.20	164.90.225.199	104.248.254.23	2606:4700:10::6814:5692
2606:4700:10::6814:9375	2606:4700:10::6814:8719	2606:4700:10::6816:1844	110.78.154.111
110.77.248.130	2606:4700:10::6814:4537	2606:4700:10::6814:6373	2606:4700:10::6814:8244