JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 121.43.153.135

121.43.153.135 was found in our database!

This IP was reported 184 times. Confidence of Abuse is 56%: ?

56%

ISP	Aliyun Computing Co., LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS37963
Domain Name	alibabacloud.com
Country	🇨🇳 China
City	Hangzhou, Zhejiang

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 121.43.153.135

Whois 121.43.153.135

IP Abuse Reports for 121.43.153.135:

This IP address has been reported a total of 184 times from 51 distinct sources. 121.43.153.135 was first reported on March 12th 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 centurion	2026-06-15 18:18:01 (4 days ago)	Blocked by UFW on ns02 [6005/tcp] Source port: 47473 TTL: 238 Packet length: 40 TOS: 0x00 This repo ... show more Blocked by UFW on ns02 [6005/tcp] Source port: 47473 TTL: 238 Packet length: 40 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 knock	2026-06-14 04:39:25 (6 days ago)	Knock-Knock honeypot brute-force: proto8 (1 total hits)	Brute-Force
🇺🇸 uchat-ai.com	2026-06-12 15:58:21 (1 week ago)	IP 121.43.153.135 在过去24小时内进行了 2 次攻击。详细信息: 攻击类型: Found User-Agent associated with security scanner, 攻 ... show more IP 121.43.153.135 在过去24小时内进行了 2 次攻击。详细信息: 攻击类型: Found User-Agent associated with security scanner, 攻击信息: Matched Data: nmap scripting engine found within REQUEST_HEADERS:User-Agent: mozilla/5.0 (compatible; nmap scripting engine; https://nmap.org/book/nse.html)"] (Severity: 2); 攻击类型: Found User-Agent associated with security scanner, 攻击信息: Matched Data: nmap scripting engine found within REQUEST_HEADERS:User-Agent: mozilla/5.0 (compatible; nmap scripting engine; https://nmap.org/book/nse.html)"] (Severity: 2) show less	Port Scan
🇩🇪 excill	2026-06-10 03:04:29 (1 week ago)	Honeypot mesh observed 980 attack events in 24h — cowrie/dionaea/heralding/suricata	Port Scan Hacking Brute-Force SSH
🇸🇬 baltic-lab.com	2026-06-09 15:00:11 (1 week ago)	Firewall Detection, SG, Either a port scan or continued brute-force attack by a previously blocked o ... show more Firewall Detection, SG, Either a port scan or continued brute-force attack by a previously blocked offender ... show less	Brute-Force Port Scan
🇬🇧 PeravixGroup	2026-06-07 06:11:31 (1 week ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 ISPLtd	2026-06-06 19:55:48 (1 week ago)	Jun 6 13:55:46 121.43.153.135 TCP SPT=55745 DPT=64430 SYN Jun 6 13:55:46 121.43.153.135 TCP SPT=55 ... show more Jun 6 13:55:46 121.43.153.135 TCP SPT=55745 DPT=64430 SYN Jun 6 13:55:46 121.43.153.135 TCP SPT=55745 DPT=1954 SYN Jun 6 13:55:47 121.43.153.135 TCP SPT=55745 DPT=8184 ... show less	Port Scan
🇺🇸 ISPLtd	2026-06-03 22:52:16 (2 weeks ago)	Jun 3 16:52:12 121.43.153.135 TCP SPT=47130 DPT=54569 SYN Jun 3 16:52:14 121.43.153.135 TCP SPT=47 ... show more Jun 3 16:52:12 121.43.153.135 TCP SPT=47130 DPT=54569 SYN Jun 3 16:52:14 121.43.153.135 TCP SPT=47130 DPT=48200 SYN Jun 3 16:52:16 121.43.153.135 TCP SPT=47130 DPT=17831 ... show less	Port Scan
🇺🇸 baltic-lab.com	2026-06-01 23:42:08 (2 weeks ago)	2026-06-02T01:40:52.196703+02:00 us kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:57:66:9b:c8:08:8b: ... show more 2026-06-02T01:40:52.196703+02:00 us kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:57:66:9b:c8:08:8b:ff:ce:a1:08:00 SRC=121.43.153.135 DST=89.117.22.226 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=23376 PROTO=TCP SPT=57251 DPT=20111 WINDOW=1024 RES=0x00 SYN URGP=0 2026-06-02T01:40:52.824234+02:00 us kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:57:66:9b:c8:08:8b:ff:ce:a1:08:00 SRC=121.43.153.135 DST=89.117.22.226 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=4446 PROTO=TCP SPT=57251 DPT=4436 WINDOW=1024 RES=0x00 SYN URGP=0 2026-06-02T01:40:53.483328+02:00 us kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:57:66:9b:c8:08:8b:ff:ce:a1:08:00 SRC=121.43.153.135 DST=89.117.22.226 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=25789 PROTO=TCP SPT=57251 DPT=8121 WINDOW=1024 RES=0x00 SYN URGP=0 2026-06-02T01:40:54.557481+02:00 us kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:57:66:9b:c8:08:8b:ff:ce:a1:08:00 SRC=121.43.153.135 DST=89.117.22.226 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=552 PROTO=TCP SPT=57251 DPT=50031 WINDOW ... show less	Brute-Force Hacking
Anonymous	2026-06-01 06:28:48 (2 weeks ago)	Port Scan detected from 121.43.153.135 (CN/China/-). 16 hits in the last 101 seconds	Web App Attack
🇬🇧 PeravixGroup	2026-05-29 21:51:38 (3 weeks ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 uchat-ai.com	2026-05-29 15:58:16 (3 weeks ago)	IP 121.43.153.135 在过去24小时内进行了 2 次攻击。详细信息: 攻击类型: Found User-Agent associated with security scanner, 攻 ... show more IP 121.43.153.135 在过去24小时内进行了 2 次攻击。详细信息: 攻击类型: Found User-Agent associated with security scanner, 攻击信息: Matched Data: nmap scripting engine found within REQUEST_HEADERS:User-Agent: mozilla/5.0 (compatible; nmap scripting engine; https://nmap.org/book/nse.html)"] (Severity: 2); 攻击类型: Found User-Agent associated with security scanner, 攻击信息: Matched Data: nmap scripting engine found within REQUEST_HEADERS:User-Agent: mozilla/5.0 (compatible; nmap scripting engine; https://nmap.org/book/nse.html)"] (Severity: 2) show less	Port Scan
🇬🇧 PeravixGroup	2026-05-29 11:09:35 (3 weeks ago)	Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2376. Sever ... show more Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2376. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-05-26 20:55:19 (3 weeks ago)	Port Scan detected from 121.43.153.135 (CN/China/-). 16 hits in the last 60 seconds	Web App Attack
🇨🇦 Blinker73	2026-05-25 12:55:20 (3 weeks ago)	2026-05-25T08:55 kernel: OUT= SRC=121.43.153.135 LEN=40 TOS=0x00 PREC=0x00 TTL=228 ID=11872 PR ... show more 2026-05-25T08:55 kernel: OUT= SRC=121.43.153.135 LEN=40 TOS=0x00 PREC=0x00 TTL=228 ID=11872 PROTO=TCP SPT=53709 DPT=9327 WINDOW=1024 RES=0x00 SYN URGP=0 2026-05-25T08:55 kernel: OUT= SRC=121.43.153.135 LEN=40 TOS=0x00 PREC=0x00 TTL=228 ID=34196 PROTO=TCP SPT=53709 DPT=3238 WINDOW=1024 RES=0x00 SYN URGP=0 2026-05-25T08:55 kernel: OUT= SRC=121.43.153.135 LEN=40 TOS=0x00 PREC=0x00 TTL=229 ID=17988 PROTO=TCP SPT=53709 DPT=27957 WINDOW=1024 RES=0x00 SYN URGP= show less	Port Scan

Showing 1 to 15 of 184 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 209.222.101.194

🇨🇳 183.66.166.30

🇨🇳 144.123.76.251

🇷🇴 128.0.36.74

🇨🇳 118.122.147.195

🇨🇳 117.72.10.130

🇸🇬 114.119.141.9

🇬🇧 81.19.219.237

🇬🇧 35.203.210.172

🇺🇸 13.89.121.32

🇺🇸 2a0c:9f00:a000:98a8::1

🇮🇳 203.145.143.163

🇧🇴 200.105.172.184

🇭🇰 199.45.155.99

🇷🇴 193.46.255.86

🇨🇳 117.33.242.180

🇺🇸 52.186.182.60

🇻🇳 14.225.7.70

🇮🇳 157.15.158.238

🇨🇳 116.177.1.215