121.40.162.239

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Aliyun Computing Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Autoban 121.40.162.239 AUTH/CONNECT	2020-02-16 09:14:30
attack	spam	2020-01-24 16:18:53
attackbotsspam	Unauthorized SSH login attempts	2020-01-22 18:43:04
attackbots	Nov 4 00:41:18 mxgate1 postfix/postscreen[5913]: CONNECT from [121.40.162.239]:63166 to [176.31.12.44]:25 Nov 4 00:41:18 mxgate1 postfix/dnsblog[5983]: addr 121.40.162.239 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 4 00:41:18 mxgate1 postfix/dnsblog[5987]: addr 121.40.162.239 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 4 00:41:18 mxgate1 postfix/dnsblog[5987]: addr 121.40.162.239 listed by domain zen.spamhaus.org as 127.0.0.3 Nov 4 00:41:18 mxgate1 postfix/dnsblog[5985]: addr 121.40.162.239 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Nov 4 00:41:18 mxgate1 postfix/dnsblog[5986]: addr 121.40.162.239 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 4 00:41:18 mxgate1 postfix/dnsblog[5984]: addr 121.40.162.239 listed by domain bl.spamcop.net as 127.0.0.2 Nov 4 00:41:18 mxgate1 postfix/postscreen[5913]: PREGREET 14 after 0.49 from [121.40.162.239]:63166: EHLO 0sg.net Nov 4 00:41:18 mxgate1 postfix/postscreen[5913]: DNSBL rank 6 for [121........ -------------------------------	2019-11-04 18:10:37

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.40.162.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28059
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.40.162.239.			IN	A

;; AUTHORITY SECTION:
.			461	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110400 1800 900 604800 86400

;; Query time: 382 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 04 18:10:34 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 239.162.40.121.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 239.162.40.121.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
46.38.145.252	attack	Jun 8 11:11:38 relay postfix/smtpd\[3184\]: warning: unknown\[46.38.145.252\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 8 11:12:50 relay postfix/smtpd\[20827\]: warning: unknown\[46.38.145.252\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 8 11:13:11 relay postfix/smtpd\[5674\]: warning: unknown\[46.38.145.252\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 8 11:14:20 relay postfix/smtpd\[20827\]: warning: unknown\[46.38.145.252\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 8 11:14:43 relay postfix/smtpd\[7553\]: warning: unknown\[46.38.145.252\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-08 17:19:05
36.26.82.40	attackspam	Jun 8 09:20:26 ntop sshd[12787]: User r.r from 36.26.82.40 not allowed because not listed in AllowUsers Jun 8 09:20:26 ntop sshd[12787]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.26.82.40 user=r.r Jun 8 09:20:28 ntop sshd[12787]: Failed password for invalid user r.r from 36.26.82.40 port 60129 ssh2 Jun 8 09:20:29 ntop sshd[12787]: Received disconnect from 36.26.82.40 port 60129:11: Bye Bye [preauth] Jun 8 09:20:29 ntop sshd[12787]: Disconnected from invalid user r.r 36.26.82.40 port 60129 [preauth] Jun 8 09:28:21 ntop sshd[30468]: User r.r from 36.26.82.40 not allowed because not listed in AllowUsers Jun 8 09:28:21 ntop sshd[30468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.26.82.40 user=r.r Jun 8 09:28:23 ntop sshd[30468]: Failed password for invalid user r.r from 36.26.82.40 port 53150 ssh2 Jun 8 09:28:24 ntop sshd[30468]: Received disconnect from 36.26.82.40 p........ -------------------------------	2020-06-08 16:29:30
140.246.215.19	attack	...	2020-06-08 17:17:23
190.111.100.66	attackbotsspam	$f2bV_matches	2020-06-08 17:06:44
192.144.199.95	attackbotsspam	Jun 8 05:44:49 mail sshd\[9598\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.199.95 user=root Jun 8 05:44:50 mail sshd\[9598\]: Failed password for root from 192.144.199.95 port 47146 ssh2 Jun 8 05:48:58 mail sshd\[9640\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.199.95 user=root ...	2020-06-08 17:11:52
195.154.237.111	attackbots	Jun 8 04:49:36 ms-srv sshd[56710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.154.237.111 user=root Jun 8 04:49:38 ms-srv sshd[56710]: Failed password for invalid user root from 195.154.237.111 port 45228 ssh2	2020-06-08 16:38:57
118.89.237.111	attack	Unauthorized SSH login attempts	2020-06-08 17:08:15
160.153.154.27	attackbotsspam	"new/wp-includes/wlwmanifest.xml"_	2020-06-08 16:31:17
120.188.65.53	attackbotsspam	1591588147 - 06/08/2020 05:49:07 Host: 120.188.65.53/120.188.65.53 Port: 445 TCP Blocked	2020-06-08 17:02:32
51.68.229.73	attackspambots	2020-06-08T10:03:00.551923sd-86998 sshd[42749]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=73.ip-51-68-229.eu user=root 2020-06-08T10:03:02.860702sd-86998 sshd[42749]: Failed password for root from 51.68.229.73 port 51252 ssh2 2020-06-08T10:06:10.119874sd-86998 sshd[43994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=73.ip-51-68-229.eu user=root 2020-06-08T10:06:12.513785sd-86998 sshd[43994]: Failed password for root from 51.68.229.73 port 54608 ssh2 2020-06-08T10:09:27.012456sd-86998 sshd[44992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=73.ip-51-68-229.eu user=root 2020-06-08T10:09:29.451084sd-86998 sshd[44992]: Failed password for root from 51.68.229.73 port 57968 ssh2 ...	2020-06-08 16:46:51
183.91.86.174	attack	(From wrixon.darrel@gmail.com) Healthcare, health-care, or medical care is the upkeep or renovation of health using the prevention, diagnosis, treatment, recovery, or treatment of disease, illness, injury, and various other physical and also psychological disabilities in people. Health care is supplied by wellness specialists in allied health areas. Physicians and also doctor affiliates belong of these health professionals. Dental care, drug store, midwifery, nursing, medication, optometry, audiology, psychology, work treatment, physical therapy, sports training as well as other health professions are all part of health care. It includes work performed in giving medical care, second care, and tertiary care, in addition to in public health. Accessibility to healthcare may differ throughout countries, communities, and also individuals, affected by social and economic conditions in addition to health and wellness policies. Giving health care solutions indicates "the ti	2020-06-08 16:52:58
68.183.71.55	attackbots	Jun 8 05:44:11 reporting3 sshd[13885]: User r.r from 68.183.71.55 not allowed because not listed in AllowUsers Jun 8 05:44:11 reporting3 sshd[13885]: Failed password for invalid user r.r from 68.183.71.55 port 56410 ssh2 Jun 8 05:47:43 reporting3 sshd[18301]: User r.r from 68.183.71.55 not allowed because not listed in AllowUsers Jun 8 05:47:43 reporting3 sshd[18301]: Failed password for invalid user r.r from 68.183.71.55 port 35848 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=68.183.71.55	2020-06-08 16:50:11
162.243.144.127	attackbotsspam	" "	2020-06-08 17:15:18
134.122.96.20	attack	2020-06-08T10:58:27.982465amanda2.illicoweb.com sshd\[21864\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.96.20 user=root 2020-06-08T10:58:30.365198amanda2.illicoweb.com sshd\[21864\]: Failed password for root from 134.122.96.20 port 60892 ssh2 2020-06-08T11:05:03.636324amanda2.illicoweb.com sshd\[22126\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.96.20 user=root 2020-06-08T11:05:06.049229amanda2.illicoweb.com sshd\[22126\]: Failed password for root from 134.122.96.20 port 41082 ssh2 2020-06-08T11:08:24.379340amanda2.illicoweb.com sshd\[22513\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.96.20 user=root ...	2020-06-08 17:12:38
192.35.168.86	attackspam	Hits on port : 11211	2020-06-08 17:01:09

Recently Reported IPs

218.26.172.61	14.169.219.156	161.0.158.172	156.194.130.10
184.82.193.253	83.20.207.37	153.37.97.184	35.189.253.58
104.245.145.42	104.211.90.120	45.95.33.112	83.135.138.20
187.120.216.22	178.128.85.156	139.217.131.17	167.250.98.11
122.51.87.23	178.219.84.175	185.131.155.180	167.249.44.194