121.46.250.113

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Guangdong Aofei Data Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	port scan and connect, tcp 8080 (http-proxy)	2019-10-06 23:58:42

Comments on same subnet:

IP	Type	Details	Datetime
121.46.250.156	attackspambots	Automatic report - SSH Brute-Force Attack	2020-02-14 10:47:45
121.46.250.178	attackbots	Feb 13 06:48:56 markkoudstaal sshd[15560]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.250.178 Feb 13 06:48:58 markkoudstaal sshd[15560]: Failed password for invalid user beagle from 121.46.250.178 port 47906 ssh2 Feb 13 06:51:19 markkoudstaal sshd[15981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.250.178	2020-02-13 14:20:46
121.46.250.156	attackbotsspam	Feb 12 00:33:57 MK-Soft-Root2 sshd[9826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.250.156 Feb 12 00:33:59 MK-Soft-Root2 sshd[9826]: Failed password for invalid user joyce from 121.46.250.156 port 60410 ssh2 ...	2020-02-12 07:41:43
121.46.250.175	attack	Feb 9 12:15:09 plusreed sshd[25066]: Invalid user tdr from 121.46.250.175 ...	2020-02-10 03:38:17
121.46.250.180	attackbotsspam	Feb 9 16:53:28 ovpn sshd\[31563\]: Invalid user hwr from 121.46.250.180 Feb 9 16:53:28 ovpn sshd\[31563\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.250.180 Feb 9 16:53:30 ovpn sshd\[31563\]: Failed password for invalid user hwr from 121.46.250.180 port 26115 ssh2 Feb 9 16:55:19 ovpn sshd\[32050\]: Invalid user ymy from 121.46.250.180 Feb 9 16:55:19 ovpn sshd\[32050\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.250.180	2020-02-10 00:11:21
121.46.250.184	attackspambots	Feb 9 09:50:55 ncomp sshd[4306]: Invalid user wus from 121.46.250.184 Feb 9 09:50:55 ncomp sshd[4306]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.250.184 Feb 9 09:50:55 ncomp sshd[4306]: Invalid user wus from 121.46.250.184 Feb 9 09:50:56 ncomp sshd[4306]: Failed password for invalid user wus from 121.46.250.184 port 5472 ssh2	2020-02-09 17:34:02
121.46.250.175	attackspam	Feb 8 14:08:16 web1 sshd\[18048\]: Invalid user jse from 121.46.250.175 Feb 8 14:08:16 web1 sshd\[18048\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.250.175 Feb 8 14:08:18 web1 sshd\[18048\]: Failed password for invalid user jse from 121.46.250.175 port 35170 ssh2 Feb 8 14:10:35 web1 sshd\[18253\]: Invalid user cgj from 121.46.250.175 Feb 8 14:10:35 web1 sshd\[18253\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.250.175	2020-02-09 08:26:35
121.46.250.184	attackbots	Feb 8 17:51:18 tuxlinux sshd[4192]: Invalid user byg from 121.46.250.184 port 48398 Feb 8 17:51:18 tuxlinux sshd[4192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.250.184 Feb 8 17:51:18 tuxlinux sshd[4192]: Invalid user byg from 121.46.250.184 port 48398 Feb 8 17:51:18 tuxlinux sshd[4192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.250.184 Feb 8 17:51:18 tuxlinux sshd[4192]: Invalid user byg from 121.46.250.184 port 48398 Feb 8 17:51:18 tuxlinux sshd[4192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.250.184 Feb 8 17:51:20 tuxlinux sshd[4192]: Failed password for invalid user byg from 121.46.250.184 port 48398 ssh2 ...	2020-02-09 03:48:56
121.46.250.153	attackbotsspam	Failed password for invalid user jms from 121.46.250.153 port 47530 ssh2 Invalid user jal from 121.46.250.153 port 34452 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.250.153 Failed password for invalid user jal from 121.46.250.153 port 34452 ssh2 Invalid user miz from 121.46.250.153 port 49598	2020-02-09 00:49:34
121.46.250.180	attackbotsspam	Feb 4 20:32:42 server sshd\[21610\]: Failed password for invalid user richardk from 121.46.250.180 port 19034 ssh2 Feb 5 16:26:25 server sshd\[30404\]: Invalid user ubuntu from 121.46.250.180 Feb 5 16:26:25 server sshd\[30404\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.250.180 Feb 5 16:26:28 server sshd\[30404\]: Failed password for invalid user ubuntu from 121.46.250.180 port 33074 ssh2 Feb 5 16:49:25 server sshd\[1402\]: Invalid user diane from 121.46.250.180 ...	2020-02-05 22:42:40
121.46.250.108	attackspambots	Nov 21 07:55:15 myhostname sshd[14237]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.250.108 user=r.r Nov 21 07:55:17 myhostname sshd[14237]: Failed password for r.r from 121.46.250.108 port 39540 ssh2 Nov 21 07:55:17 myhostname sshd[14237]: Received disconnect from 121.46.250.108 port 39540:11: Bye Bye [preauth] Nov 21 07:55:17 myhostname sshd[14237]: Disconnected from 121.46.250.108 port 39540 [preauth] Nov 21 08:23:37 myhostname sshd[31667]: Invalid user andreea from 121.46.250.108 Nov 21 08:23:37 myhostname sshd[31667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.250.108 Nov 21 08:23:39 myhostname sshd[31667]: Failed password for invalid user andreea from 121.46.250.108 port 50076 ssh2 Nov 21 08:23:39 myhostname sshd[31667]: Received disconnect from 121.46.250.108 port 50076:11: Bye Bye [preauth] Nov 21 08:23:39 myhostname sshd[31667]: Disconnected from 121.46.250.1........ -------------------------------	2019-11-23 23:27:25

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.46.250.113
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29675
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.46.250.113.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052401 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat May 25 10:36:56 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 113.250.46.121.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 113.250.46.121.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
139.59.80.65	attackspambots	(sshd) Failed SSH login from 139.59.80.65 (-): 5 in the last 3600 secs	2019-08-29 07:41:39
124.94.180.11	attackspambots	firewall-block, port(s): 23/tcp	2019-08-29 07:24:23
159.89.194.160	attackspam	Aug 28 09:52:14 aiointranet sshd\[13463\]: Invalid user yar from 159.89.194.160 Aug 28 09:52:14 aiointranet sshd\[13463\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.194.160 Aug 28 09:52:16 aiointranet sshd\[13463\]: Failed password for invalid user yar from 159.89.194.160 port 39892 ssh2 Aug 28 09:56:45 aiointranet sshd\[13812\]: Invalid user usuario from 159.89.194.160 Aug 28 09:56:45 aiointranet sshd\[13812\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.194.160	2019-08-29 07:48:09
190.117.146.212	attack	SSH invalid-user multiple login try	2019-08-29 07:45:01
106.51.73.204	attackspam	Aug 29 06:11:52 webhost01 sshd[20399]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.73.204 Aug 29 06:11:53 webhost01 sshd[20399]: Failed password for invalid user unitek from 106.51.73.204 port 5519 ssh2 ...	2019-08-29 07:18:02
104.238.97.230	attack	Aug 28 17:22:46 flomail postfix/smtps/smtpd[1237]: warning: ip-104-238-97-230.ip.secureserver.net[104.238.97.230]: SASL PLAIN authentication failed: Aug 28 17:22:52 flomail postfix/smtps/smtpd[1237]: warning: ip-104-238-97-230.ip.secureserver.net[104.238.97.230]: SASL PLAIN authentication failed: Aug 28 17:28:00 flomail postfix/smtps/smtpd[1660]: warning: ip-104-238-97-230.ip.secureserver.net[104.238.97.230]: SASL PLAIN authentication failed:	2019-08-29 07:28:21
51.77.231.213	attackspam	Invalid user marcio from 51.77.231.213 port 35522	2019-08-29 07:54:21
123.142.192.18	attackbots	Aug 28 13:35:50 wbs sshd\[4896\]: Invalid user clark from 123.142.192.18 Aug 28 13:35:50 wbs sshd\[4896\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.142.192.18 Aug 28 13:35:52 wbs sshd\[4896\]: Failed password for invalid user clark from 123.142.192.18 port 38382 ssh2 Aug 28 13:40:54 wbs sshd\[5413\]: Invalid user applmgr from 123.142.192.18 Aug 28 13:40:54 wbs sshd\[5413\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.142.192.18	2019-08-29 07:50:05
131.221.80.211	attack	Aug 29 04:08:33 itv-usvr-02 sshd[1585]: Invalid user cod from 131.221.80.211 port 6978 Aug 29 04:08:33 itv-usvr-02 sshd[1585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.221.80.211 Aug 29 04:08:33 itv-usvr-02 sshd[1585]: Invalid user cod from 131.221.80.211 port 6978 Aug 29 04:08:36 itv-usvr-02 sshd[1585]: Failed password for invalid user cod from 131.221.80.211 port 6978 ssh2 Aug 29 04:15:23 itv-usvr-02 sshd[1863]: Invalid user vanessa from 131.221.80.211 port 8673	2019-08-29 07:16:39
122.154.46.4	attack	Aug 28 11:15:03 lcdev sshd\[15530\]: Invalid user cod4 from 122.154.46.4 Aug 28 11:15:03 lcdev sshd\[15530\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.154.46.4 Aug 28 11:15:05 lcdev sshd\[15530\]: Failed password for invalid user cod4 from 122.154.46.4 port 56144 ssh2 Aug 28 11:20:16 lcdev sshd\[16020\]: Invalid user brood from 122.154.46.4 Aug 28 11:20:16 lcdev sshd\[16020\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.154.46.4	2019-08-29 07:24:45
206.81.24.126	attackbotsspam	2019-08-28T22:55:04.612622abusebot-2.cloudsearch.cf sshd\[29474\]: Invalid user operador from 206.81.24.126 port 57008 2019-08-28T22:55:04.617204abusebot-2.cloudsearch.cf sshd\[29474\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.24.126	2019-08-29 07:25:48
106.87.44.65	attackspam	Aug 28 18:23:51 hb sshd\[13178\]: Invalid user support from 106.87.44.65 Aug 28 18:23:51 hb sshd\[13178\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.87.44.65 Aug 28 18:23:53 hb sshd\[13178\]: Failed password for invalid user support from 106.87.44.65 port 59965 ssh2 Aug 28 18:23:56 hb sshd\[13178\]: Failed password for invalid user support from 106.87.44.65 port 59965 ssh2 Aug 28 18:23:58 hb sshd\[13178\]: Failed password for invalid user support from 106.87.44.65 port 59965 ssh2	2019-08-29 07:30:29
52.171.130.108	attack	/var/log/messages:Aug 28 13:57:15 sanyalnet-cloud-vps audispd: node=sanyalnet-cloud-vps.freeddns.org type=CRYPTO_SESSION msg=audhostname(1567000635.330:56311): pid=29098 uid=0 auid=4294967295 ses=4294967295 msg='op=start direction=from-server cipher=aes256-ctr ksize=256 mac=hmac-sha1 pfs=ecdh-sha2-nistp256 spid=29099 suid=74 rport=1472 laddr=104.167.106.93 lport=23 exe="/usr/sbin/sshd" hostname=? addr=52.171.130.108 terminal=? res=success' /var/log/messages:Aug 28 13:57:15 sanyalnet-cloud-vps audispd: node=sanyalnet-cloud-vps.freeddns.org type=CRYPTO_SESSION msg=audhostname(1567000635.333:56312): pid=29098 uid=0 auid=4294967295 ses=4294967295 msg='op=start direction=from-client cipher=aes256-ctr ksize=256 mac=hmac-sha1 pfs=ecdh-sha2-nistp256 spid=29099 suid=74 rport=1472 laddr=104.167.106.93 lport=23 exe="/usr/sbin/sshd" hostname=? addr=52.171.130.108 terminal=? res=success' /var/log/messages:Aug 28 13:57:15 sanyalnet-cloud-vps fail2ban.filter[1478]: INFO [sshd] Found........ -------------------------------	2019-08-29 07:28:54
73.229.232.218	attack	Aug 28 09:35:57 tdfoods sshd\[29916\]: Invalid user postgres from 73.229.232.218 Aug 28 09:35:57 tdfoods sshd\[29916\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-73-229-232-218.hsd1.co.comcast.net Aug 28 09:35:59 tdfoods sshd\[29916\]: Failed password for invalid user postgres from 73.229.232.218 port 46730 ssh2 Aug 28 09:42:15 tdfoods sshd\[30543\]: Invalid user user from 73.229.232.218 Aug 28 09:42:15 tdfoods sshd\[30543\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-73-229-232-218.hsd1.co.comcast.net	2019-08-29 07:20:05
139.162.115.221	attackspam	firewall-block, port(s): 9000/tcp	2019-08-29 07:23:11

Recently Reported IPs

219.146.198.138	119.146.115.150	117.235.129.63	167.179.111.139
80.253.78.92	177.235.161.64	97.89.253.247	29.83.169.98
168.228.92.211	98.247.25.181	106.236.34.192	77.247.110.93
240.125.31.152	38.121.144.105	116.144.16.235	93.2.101.143
92.127.203.93	213.42.137.83	21.146.251.127	200.71.187.149