121.40.145.196

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.40.145.196
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39343
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;121.40.145.196.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022500 1800 900 604800 86400

;; Query time: 35 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 25 19:25:37 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 196.145.40.121.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 196.145.40.121.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
92.112.61.169	attackbots	(mod_security) mod_security (id:920350) triggered by 92.112.61.169 (UA/-/169-61-112-92.pool.ukrtel.net): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/09 05:55:45 [error] 3682#0: 26148 [client 92.112.61.169] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "159694534593.207344"] [ref "o0,14v21,14"], client: 92.112.61.169, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-08-09 12:27:07
92.63.197.66	attackbots	Aug 9 05:51:21 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=92.63.197.66 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=32772 PROTO=TCP SPT=58985 DPT=26009 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 9 05:51:23 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=92.63.197.66 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=12224 PROTO=TCP SPT=58985 DPT=26472 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 9 05:53:16 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=92.63.197.66 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=9693 PROTO=TCP SPT=58985 DPT=24238 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 9 05:54:43 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=92.63.197.66 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=18343 PROTO=TCP SPT=58985 DPT=25552 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 9 05:55:44 hidden kernel: [ ...	2020-08-09 12:28:36
149.202.79.125	attackbots	Port scan: Attack repeated for 24 hours	2020-08-09 12:46:00
122.51.60.39	attackbotsspam	Aug 9 06:59:03 hosting sshd[3301]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.60.39 user=root Aug 9 06:59:06 hosting sshd[3301]: Failed password for root from 122.51.60.39 port 51810 ssh2 Aug 9 07:10:25 hosting sshd[4207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.60.39 user=root Aug 9 07:10:27 hosting sshd[4207]: Failed password for root from 122.51.60.39 port 46524 ssh2 Aug 9 07:14:39 hosting sshd[4288]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.60.39 user=root Aug 9 07:14:41 hosting sshd[4288]: Failed password for root from 122.51.60.39 port 33032 ssh2 ...	2020-08-09 12:24:02
129.226.185.201	attack	Aug 9 05:53:55 ip106 sshd[14849]: Failed password for root from 129.226.185.201 port 44686 ssh2 ...	2020-08-09 12:24:53
222.186.175.148	attackbots	Aug 9 06:26:34 cosmoit sshd[22757]: Failed password for root from 222.186.175.148 port 60886 ssh2	2020-08-09 12:43:02
62.82.75.58	attackbotsspam	Aug 9 00:07:37 ny01 sshd[20889]: Failed password for root from 62.82.75.58 port 27774 ssh2 Aug 9 00:11:45 ny01 sshd[22021]: Failed password for root from 62.82.75.58 port 28626 ssh2	2020-08-09 12:21:38
112.85.42.185	attackspam	Aug 9 06:00:52 host sshd\[16868\]: User user from 112.85.42.185 not allowed because none of user's groups are listed in AllowGroups	2020-08-09 12:22:50
49.88.112.65	attack	2020-08-09T04:00:13.963321abusebot-6.cloudsearch.cf sshd[3208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.65 user=root 2020-08-09T04:00:15.486407abusebot-6.cloudsearch.cf sshd[3208]: Failed password for root from 49.88.112.65 port 35394 ssh2 2020-08-09T04:00:17.848788abusebot-6.cloudsearch.cf sshd[3208]: Failed password for root from 49.88.112.65 port 35394 ssh2 2020-08-09T04:00:13.963321abusebot-6.cloudsearch.cf sshd[3208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.65 user=root 2020-08-09T04:00:15.486407abusebot-6.cloudsearch.cf sshd[3208]: Failed password for root from 49.88.112.65 port 35394 ssh2 2020-08-09T04:00:17.848788abusebot-6.cloudsearch.cf sshd[3208]: Failed password for root from 49.88.112.65 port 35394 ssh2 2020-08-09T04:00:13.963321abusebot-6.cloudsearch.cf sshd[3208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.8 ...	2020-08-09 12:42:27
2a03:b0c0:3:e0::33c:b001	attackbotsspam	2a03:b0c0:3:e0::33c:b001 - - [09/Aug/2020:04:55:21 +0100] "POST /wp-login.php HTTP/1.1" 200 1836 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 2a03:b0c0:3:e0::33c:b001 - - [09/Aug/2020:04:55:22 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 2a03:b0c0:3:e0::33c:b001 - - [09/Aug/2020:04:55:22 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-09 12:47:58
197.238.89.153	attackbots	php WP PHPmyadamin ABUSE blocked for 12h	2020-08-09 12:17:42
159.203.30.50	attackbots	2020-08-09T03:47:08.882905abusebot-4.cloudsearch.cf sshd[29467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.30.50 user=root 2020-08-09T03:47:10.305568abusebot-4.cloudsearch.cf sshd[29467]: Failed password for root from 159.203.30.50 port 34046 ssh2 2020-08-09T03:51:23.034870abusebot-4.cloudsearch.cf sshd[29486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.30.50 user=root 2020-08-09T03:51:24.798890abusebot-4.cloudsearch.cf sshd[29486]: Failed password for root from 159.203.30.50 port 44748 ssh2 2020-08-09T03:55:38.769975abusebot-4.cloudsearch.cf sshd[29549]: Invalid user ~#$%^&(),.; from 159.203.30.50 port 55456 2020-08-09T03:55:38.776148abusebot-4.cloudsearch.cf sshd[29549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.30.50 2020-08-09T03:55:38.769975abusebot-4.cloudsearch.cf sshd[29549]: Invalid user ~#$%^&(),.; from 159.203.30 ...	2020-08-09 12:32:54
220.85.104.202	attackbotsspam	Aug 9 05:56:01 lnxweb61 sshd[8184]: Failed password for root from 220.85.104.202 port 24713 ssh2 Aug 9 05:56:01 lnxweb61 sshd[8184]: Failed password for root from 220.85.104.202 port 24713 ssh2	2020-08-09 12:17:24
49.233.75.234	attackbots	(sshd) Failed SSH login from 49.233.75.234 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 9 05:33:25 grace sshd[10809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.75.234 user=root Aug 9 05:33:27 grace sshd[10809]: Failed password for root from 49.233.75.234 port 59940 ssh2 Aug 9 05:50:36 grace sshd[14088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.75.234 user=root Aug 9 05:50:38 grace sshd[14088]: Failed password for root from 49.233.75.234 port 53490 ssh2 Aug 9 05:55:17 grace sshd[15095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.75.234 user=root	2020-08-09 12:46:49
222.186.180.130	attackbotsspam	Aug 9 06:27:13 abendstille sshd\[9694\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.130 user=root Aug 9 06:27:15 abendstille sshd\[9694\]: Failed password for root from 222.186.180.130 port 23735 ssh2 Aug 9 06:27:21 abendstille sshd\[9753\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.130 user=root Aug 9 06:27:23 abendstille sshd\[9753\]: Failed password for root from 222.186.180.130 port 48032 ssh2 Aug 9 06:27:32 abendstille sshd\[9789\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.130 user=root ...	2020-08-09 12:27:43

Recently Reported IPs

56.38.176.28	88.82.180.108	194.229.25.171	117.34.69.230
123.144.19.123	104.127.38.200	124.62.48.59	225.93.166.110
152.149.54.72	235.197.157.15	212.72.33.22	101.37.78.119
243.215.188.160	171.24.97.59	154.234.248.215	251.130.143.62
118.19.94.190	141.251.253.26	69.145.3.62	57.144.32.100