121.42.138.121

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Aliyun Computing Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	[26/Nov/2019:07:18:43 +0100] Web-Request: "GET /wp-login.php", User-Agent: "Apache-HttpClient/4.5.2 (Java/1.8.0_151)" [26/Nov/2019:07:18:50 +0100] Web-Request: "GET /wp-login.php", User-Agent: "Apache-HttpClient/4.5.2 (Java/1.8.0_151)"	2019-11-26 22:13:22

Type

Details

Datetime

attackbots

[26/Nov/2019:07:18:43 +0100] Web-Request: "GET /wp-login.php", User-Agent: "Apache-HttpClient/4.5.2 (Java/1.8.0_151)"
[26/Nov/2019:07:18:50 +0100] Web-Request: "GET /wp-login.php", User-Agent: "Apache-HttpClient/4.5.2 (Java/1.8.0_151)"

2019-11-26 22:13:22

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.42.138.121
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5164
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.42.138.121.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050200 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu May 02 17:49:07 +08 2019
;; MSG SIZE  rcvd: 118

Host info

Host 121.138.42.121.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 121.138.42.121.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.166.117.1	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/178.166.117.1/ PT - 1H : (7) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : PT NAME ASN : ASN12353 IP : 178.166.117.1 CIDR : 178.166.0.0/17 PREFIX COUNT : 32 UNIQUE IP COUNT : 1208064 ATTACKS DETECTED ASN12353 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 2 DateTime : 2019-10-29 12:35:58 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-30 00:23:39
162.243.98.66	attackbots	Oct 29 14:38:05 server sshd\[1664\]: Invalid user ortkiese from 162.243.98.66 Oct 29 14:38:05 server sshd\[1664\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.98.66 Oct 29 14:38:07 server sshd\[1664\]: Failed password for invalid user ortkiese from 162.243.98.66 port 43001 ssh2 Oct 29 14:55:42 server sshd\[5849\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.98.66 user=root Oct 29 14:55:43 server sshd\[5849\]: Failed password for root from 162.243.98.66 port 43525 ssh2 ...	2019-10-30 01:00:45
95.213.200.197	attack	Oct 29 18:25:50 server sshd\[24292\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.213.200.197 user=root Oct 29 18:25:52 server sshd\[24292\]: Failed password for root from 95.213.200.197 port 40001 ssh2 Oct 29 18:41:36 server sshd\[27711\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.213.200.197 user=root Oct 29 18:41:38 server sshd\[27711\]: Failed password for root from 95.213.200.197 port 59141 ssh2 Oct 29 18:45:19 server sshd\[28629\]: Invalid user cis from 95.213.200.197 Oct 29 18:45:19 server sshd\[28629\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.213.200.197 ...	2019-10-30 01:04:54
129.28.191.55	attack	Oct 29 01:30:10 php1 sshd\[19525\]: Invalid user mmm from 129.28.191.55 Oct 29 01:30:10 php1 sshd\[19525\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.191.55 Oct 29 01:30:12 php1 sshd\[19525\]: Failed password for invalid user mmm from 129.28.191.55 port 58912 ssh2 Oct 29 01:35:30 php1 sshd\[20129\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.191.55 user=root Oct 29 01:35:32 php1 sshd\[20129\]: Failed password for root from 129.28.191.55 port 40110 ssh2	2019-10-30 00:48:41
188.134.27.156	attack	Sending SPAM email	2019-10-30 00:57:05
58.245.226.180	attackspambots	Port Scan	2019-10-30 00:44:50
178.62.10.18	attackspam	Automatic report - XMLRPC Attack	2019-10-30 00:40:12
95.66.185.2	attack	[portscan] Port scan	2019-10-30 00:36:29
111.122.181.250	attack	SSH brutforce	2019-10-30 00:41:02
92.118.37.86	attackbotsspam	10/29/2019-12:28:18.273108 92.118.37.86 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-10-30 00:46:14
178.182.254.51	attack	Oct 29 13:21:47 vps691689 sshd[20699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.182.254.51 Oct 29 13:21:49 vps691689 sshd[20699]: Failed password for invalid user pkd from 178.182.254.51 port 57066 ssh2 ...	2019-10-30 00:54:25
166.111.68.168	attackbotsspam	Oct 29 13:11:58 microserver sshd[13194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=166.111.68.168 user=root Oct 29 13:12:00 microserver sshd[13194]: Failed password for root from 166.111.68.168 port 55284 ssh2 Oct 29 13:16:09 microserver sshd[13792]: Invalid user ^$%@$^!! from 166.111.68.168 port 57020 Oct 29 13:16:09 microserver sshd[13792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=166.111.68.168 Oct 29 13:16:11 microserver sshd[13792]: Failed password for invalid user ^$%@$^!! from 166.111.68.168 port 57020 ssh2 Oct 29 13:28:28 microserver sshd[15244]: Invalid user raspberrypi from 166.111.68.168 port 34148 Oct 29 13:28:28 microserver sshd[15244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=166.111.68.168 Oct 29 13:28:30 microserver sshd[15244]: Failed password for invalid user raspberrypi from 166.111.68.168 port 34148 ssh2 Oct 29 13:32:40 microserver sshd[15857]: Invali	2019-10-30 00:28:58
23.251.128.200	attackbots	Oct 29 09:12:00 plusreed sshd[12644]: Invalid user guest from 23.251.128.200 ...	2019-10-30 00:34:44
60.249.21.129	attackbotsspam	Oct 29 15:55:48 vserver sshd\[11303\]: Invalid user Password99 from 60.249.21.129Oct 29 15:55:50 vserver sshd\[11303\]: Failed password for invalid user Password99 from 60.249.21.129 port 45992 ssh2Oct 29 15:59:45 vserver sshd\[11327\]: Invalid user chinaIDC444 from 60.249.21.129Oct 29 15:59:47 vserver sshd\[11327\]: Failed password for invalid user chinaIDC444 from 60.249.21.129 port 33492 ssh2 ...	2019-10-30 01:02:52
111.230.73.133	attack	Oct 29 16:24:22 hcbbdb sshd\[28696\]: Invalid user pkd from 111.230.73.133 Oct 29 16:24:22 hcbbdb sshd\[28696\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.73.133 Oct 29 16:24:24 hcbbdb sshd\[28696\]: Failed password for invalid user pkd from 111.230.73.133 port 59006 ssh2 Oct 29 16:30:40 hcbbdb sshd\[29331\]: Invalid user 1234 from 111.230.73.133 Oct 29 16:30:40 hcbbdb sshd\[29331\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.73.133	2019-10-30 00:34:00

Recently Reported IPs

156.194.209.190	134.42.10.58	203.192.213.36	82.102.18.186
15.195.22.168	177.23.138.252	197.44.153.106	109.75.36.93
50.40.186.92	59.152.98.130	193.58.63.22	122.248.103.64
42.67.210.75	178.88.146.138	73.54.225.241	80.73.13.219
190.42.240.29	179.124.11.128	245.134.121.209	178.79.0.24