JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 121.36.198.138

121.36.198.138 was found in our database!

This IP was reported 35 times. Confidence of Abuse is 100%: ?

100%

ISP	Huawei Public Cloud Service (Huawei Software Technologies Ltd.Co)
Usage Type	Data Center/Web Hosting/Transit
ASN	AS55990
Hostname(s)	ecs-121-36-198-138.compute.hwclouds-dns.com
Domain Name	huawei.com
Country	🇨🇳 China
City	Shanghai, Shanghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 121.36.198.138

Whois 121.36.198.138

IP Abuse Reports for 121.36.198.138:

This IP address has been reported a total of 35 times from 31 distinct sources. 121.36.198.138 was first reported on June 2nd 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Muhammed Said	2026-06-05 12:49:17 (1 week ago)	Brute-force SSH attack detected on custom honeypot/server. Connection blocked.	Brute-Force
Anonymous	2026-06-05 00:21:02 (1 week ago)	Fail2ban (sshd jail): 2 failed SSH attempts from 121.36.198.138.	Brute-Force SSH
🇮🇹 alph44	2026-06-04 07:34:25 (1 week ago)	SSH brute force attack detected: 6 failed attempts	Brute-Force
🇭🇺 Silu	2026-06-04 07:25:45 (1 week ago)	ssh attack	Brute-Force SSH
🇺🇸 Hydrated8853	2026-06-04 06:49:23 (1 week ago)	2026-06-04T14:42:27.046038+08:00 qq sshd[1413939]: Failed password for invalid user myuser from 121. ... show more 2026-06-04T14:42:27.046038+08:00 qq sshd[1413939]: Failed password for invalid user myuser from 121.36.198.138 port 44310 ssh2 2026-06-04T14:46:03.394421+08:00 qq sshd[1413981]: Invalid user odoo from 121.36.198.138 port 38244 2026-06-04T14:46:03.590229+08:00 qq sshd[1413981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.36.198.138 2026-06-04T14:46:04.976054+08:00 qq sshd[1413981]: Failed password for invalid user odoo from 121.36.198.138 port 38244 ssh2 2026-06-04T14:48:55.711134+08:00 qq sshd[1414019]: Invalid user guest from 121.36.198.138 port 45952 ... show less	Brute-Force SSH
🇨🇳 GoForceX	2026-06-04 06:44:35 (1 week ago)	2026-06-04T14:36:57.074238+08:00 C20241211186402 sshd[1224563]: Failed password for invalid user myu ... show more 2026-06-04T14:36:57.074238+08:00 C20241211186402 sshd[1224563]: Failed password for invalid user myuser from 121.36.198.138 port 47674 ssh2 2026-06-04T14:43:40.408992+08:00 C20241211186402 sshd[1226285]: Invalid user ftpuser1 from 121.36.198.138 port 44874 2026-06-04T14:43:40.413100+08:00 C20241211186402 sshd[1226285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.36.198.138 2026-06-04T14:43:42.562042+08:00 C20241211186402 sshd[1226285]: Failed password for invalid user ftpuser1 from 121.36.198.138 port 44874 ssh2 2026-06-04T14:44:33.638163+08:00 C20241211186402 sshd[1226536]: Invalid user ftpuser from 121.36.198.138 port 60374 ... show less	Brute-Force SSH
🇵🇱 skillhost.pl	2026-06-04 03:29:18 (1 week ago)	Automated SSH brute-force attack detected. The IP repeatedly attempted to authenticate to port 22 us ... show more Automated SSH brute-force attack detected. The IP repeatedly attempted to authenticate to port 22 using multiple usernames and password guesses within a short timeframe. show less	Brute-Force SSH
🇮🇳 yaj	2026-06-03 19:53:53 (1 week ago)	2026-06-04T01:20:39.757168+05:30 yaj sshd[1162448]: Invalid user frappeuser from 121.36.198.138 port ... show more 2026-06-04T01:20:39.757168+05:30 yaj sshd[1162448]: Invalid user frappeuser from 121.36.198.138 port 54818 2026-06-04T01:23:04.889230+05:30 yaj sshd[1164126]: Invalid user web from 121.36.198.138 port 44472 2026-06-04T01:23:52.504360+05:30 yaj sshd[1164614]: Invalid user modem from 121.36.198.138 port 38262 ... show less	Brute-Force SSH
🇫🇮 updown.io	2026-06-03 17:39:26 (1 week ago)	2026-06-03T17:27:01.241479+00:00 hel.updn.io sshd[3900229]: Failed password for invalid user contact ... show more 2026-06-03T17:27:01.241479+00:00 hel.updn.io sshd[3900229]: Failed password for invalid user contacts from 121.36.198.138 port 39856 ssh2 2026-06-03T17:38:24.386516+00:00 hel.updn.io sshd[3952922]: Invalid user rector from 121.36.198.138 port 45890 2026-06-03T17:38:24.391524+00:00 hel.updn.io sshd[3952922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.36.198.138 2026-06-03T17:38:26.335008+00:00 hel.updn.io sshd[3952922]: Failed password for invalid user rector from 121.36.198.138 port 45890 ssh2 2026-06-03T17:39:24.988835+00:00 hel.updn.io sshd[3957645]: Invalid user scarab from 121.36.198.138 port 38018 ... show less	Brute-Force SSH
Anonymous	2026-06-03 14:28:28 (1 week ago)	Fail2ban (sshd jail): 2 failed SSH attempts from 121.36.198.138.	Brute-Force SSH
🇩🇪 formality	2026-06-03 13:44:36 (1 week ago)	Invalid user developer from 121.36.198.138 port 48398	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-03 13:33:53 (1 week ago)	(sshd) Failed SSH login from 121.36.198.138 (CN/China/ecs-121-36-198-138.compute.hwclouds-dns.com): ... show more (sshd) Failed SSH login from 121.36.198.138 (CN/China/ecs-121-36-198-138.compute.hwclouds-dns.com): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Jun 3 07:56:00 14240 sshd[19013]: Invalid user cad from 121.36.198.138 port 46156 Jun 3 07:56:02 14240 sshd[19013]: Failed password for invalid user cad from 121.36.198.138 port 46156 ssh2 Jun 3 08:16:26 14240 sshd[29626]: Invalid user hzy from 121.36.198.138 port 58760 Jun 3 08:16:28 14240 sshd[29626]: Failed password for invalid user hzy from 121.36.198.138 port 58760 ssh2 Jun 3 08:33:51 14240 sshd[5900]: Invalid user ftpuser from 121.36.198.138 port 35260 show less	Brute-Force SSH
🇩🇪 ghostwarriors	2026-06-03 13:20:09 (1 week ago)	Unauthorized connection attempt detected, SSH Brute-Force	Brute-Force Port Scan SSH
🇵🇱 alianet	2026-06-03 13:12:30 (1 week ago)	Jun 3 12:55:04 vps-eb8e942e sshd-session[499894]: Disconnected from invalid user cad 121.36.198.138 ... show more Jun 3 12:55:04 vps-eb8e942e sshd-session[499894]: Disconnected from invalid user cad 121.36.198.138 port 45314 [preauth] Jun 3 13:12:26 vps-eb8e942e sshd-session[500810]: Connection from 121.36.198.138 port 49940 on 57.128.195.69 port 2222 rdomain "" Jun 3 13:12:28 vps-eb8e942e sshd-session[500810]: User root from 121.36.198.138 not allowed because not listed in AllowUsers ... show less	Brute-Force SSH
🇺🇸 SANYALnet Labs	2026-06-03 12:54:14 (1 week ago)	Jun 3 12:54:10 hecnet-us-east-gw sshd[762836]: Invalid user cad from 121.36.198.138 port 34418 Jun ... show more Jun 3 12:54:10 hecnet-us-east-gw sshd[762836]: Invalid user cad from 121.36.198.138 port 34418 Jun 3 12:54:12 hecnet-us-east-gw sshd[762836]: Failed password for invalid user cad from 121.36.198.138 port 34418 ssh2 Jun 3 12:54:14 hecnet-us-east-gw sshd[762836]: Disconnected from invalid user cad 121.36.198.138 port 34418 [preauth] ... show less	Brute-Force

Showing 1 to 15 of 35 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇴 190.110.34.55

🇿🇦 165.73.182.150

🇺🇸 147.185.132.202

🇩🇪 69.5.169.233

🇻🇪 45.187.5.241

🇺🇸 45.79.181.104

🇺🇸 45.33.80.243

🇨🇴 186.154.75.233

🇩🇪 167.94.145.27

🇩🇪 130.12.180.65

🇨🇳 117.62.22.127

🇫🇮 37.27.234.213

🇳🇱 5.129.229.136

🇺🇬 196.0.40.130

🇧🇩 163.227.239.123

🇩🇪 163.171.156.225

🇫🇮 147.185.133.18

🇺🇸 129.121.78.24

🇰🇿 95.58.238.239

🇪🇸 85.152.105.144