JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 121.43.116.234

121.43.116.234 was found in our database!

This IP was reported 182 times. Confidence of Abuse is 53%: ?

53%

ISP	Aliyun Computing Co., LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS37963
Domain Name	alibabacloud.com
Country	🇨🇳 China
City	Hangzhou, Zhejiang

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 121.43.116.234

Whois 121.43.116.234

IP Abuse Reports for 121.43.116.234:

This IP address has been reported a total of 182 times from 55 distinct sources. 121.43.116.234 was first reported on March 19th 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-20 02:44:38 (4 days ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 139. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 139. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇳🇱 GabrielJST	2026-06-15 00:13:51 (1 week ago)	Port Scan detected from 121.43.116.234 (CN/China/-).	Port Scan
🇩🇪 Sparxx	2026-06-12 05:29:35 (1 week ago)	2026-06-12T07:29:28.483741+02:00 srv postfix/submission/smtpd[3250575]: lost connection after CONNEC ... show more 2026-06-12T07:29:28.483741+02:00 srv postfix/submission/smtpd[3250575]: lost connection after CONNECT from unknown[121.43.116.234] 2026-06-12T07:29:34.157796+02:00 srv postfix/submissions/smtpd[3250573]: lost connection after CONNECT from unknown[121.43.116.234] 2026-06-12T07:29:35.247236+02:00 srv postfix/submissions/smtpd[3250573]: lost connection after CONNECT from unknown[121.43.116.234] ... show less	Brute-Force
🇩🇪 acadeova	2026-06-10 04:05:55 (2 weeks ago)	🚨 Recon detected (nft drop) SRC=121.43.116.234 Observed=TCP dpt=39893 in=enp0s6 ttl=241 Time=recent( ... show more 🚨 Recon detected (nft drop) SRC=121.43.116.234 Observed=TCP dpt=39893 in=enp0s6 ttl=241 Time=recent(journalctl: 10 minutes ago) Assessment=Generic scanning / reconnaissance (PORT_SCAN) show less	Port Scan
🇨🇳 Peter Yu	2026-06-10 02:59:27 (2 weeks ago)		Bad Web Bot Web App Attack
🇫🇷 ISPLtd	2026-06-07 12:57:07 (2 weeks ago)	Jun 7 09:57:06 121.43.116.234 TCP SPT=57024 DPT=65505 SYN Jun 7 09:57:07 121.43.116.234 TCP SPT=57 ... show more Jun 7 09:57:06 121.43.116.234 TCP SPT=57024 DPT=65505 SYN Jun 7 09:57:07 121.43.116.234 TCP SPT=57024 DPT=1722 SYN Jun 7 09:57:07 121.43.116.234 TCP SPT=57024 DPT=48083 ... show less	Port Scan
🇫🇷 ISPLtd	2026-06-06 09:35:29 (2 weeks ago)	Jun 6 06:35:24 121.43.116.234 TCP SPT=58523 DPT=1300 SYN Jun 6 06:35:27 121.43.116.234 TCP SPT=585 ... show more Jun 6 06:35:24 121.43.116.234 TCP SPT=58523 DPT=1300 SYN Jun 6 06:35:27 121.43.116.234 TCP SPT=58523 DPT=9709 SYN Jun 6 06:35:29 121.43.116.234 TCP SPT=58523 DPT=45000 ... show less	Port Scan
🇺🇸 masterguru	2026-06-05 23:23:39 (2 weeks ago)	Port Scan detected from 121.43.116.234 (CN/China/-). 11 hits in the last 195 seconds (0-165)	Port Scan
🇩🇪 kingjan1999	2026-06-05 22:39:01 (2 weeks ago)	Blocked by UFW [49207/tcp] \| SPT: 59127 \| TTL: 239 \| LEN: 40 \| TOS: 0x00 • Reported by: github.com/s ... show more Blocked by UFW [49207/tcp] \| SPT: 59127 \| TTL: 239 \| LEN: 40 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-05 20:03:19 (2 weeks ago)	Jun 5 16:03:17 localhost kernel: [109035107.720301] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:9 ... show more Jun 5 16:03:17 localhost kernel: [109035107.720301] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=121.43.116.234 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x40 TTL=233 ID=22210 PROTO=TCP SPT=49795 DPT=9325 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 5 16:03:17 localhost kernel: [109035107.720320] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=121.43.116.234 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x40 TTL=233 ID=22210 PROTO=TCP SPT=49795 DPT=9325 SEQ=665785041 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 5 16:03:19 localhost kernel: [109035109.338828] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=121.43.116.234 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x40 TTL=234 ID=53865 PROTO=TCP SPT=49795 DPT=20182 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 5 16:03:19 localhost kernel: [109035109.338847] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=121.43.116.234 DST=[mungedIP2] LEN=40 T show less	Port Scan
🇫🇷 dusfor72	2026-05-30 07:30:29 (3 weeks ago)	aggressive portscan ...	Port Scan
🇬🇧 PeravixGroup	2026-05-29 10:59:42 (3 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-05-29 00:30:48 (3 weeks ago)	Port Scan detected from 121.43.116.234 (CN/China/-). 16 hits in the last 40 seconds	Web App Attack
🇬🇧 PeravixGroup	2026-05-23 18:03:57 (1 month ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-23 05:20:29 (1 month ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 182 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 160.119.71.129

🇧🇬 79.124.56.238

🇺🇸 50.62.22.47

🇵🇰 39.55.154.59

🇺🇸 34.186.116.81

🇬🇧 2a06:4880::6

🇺🇸 2604:2820:ce5e:7980:e28e:42f0:f0da:abf0

🇨🇳 223.86.148.242

🇺🇸 174.138.89.209

🇮🇳 103.109.110.163

🇺🇸 66.132.195.91

🇯🇵 20.210.130.226

🇺🇸 20.64.104.82

🇸🇾 185.225.41.192

🇨🇳 114.106.171.115

🇭🇰 101.36.121.22

🇳🇱 94.102.49.125

🇫🇷 91.231.89.14

🇵🇰 72.255.28.66

🇪🇬 62.193.91.121