JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 121.43.53.237

121.43.53.237 was found in our database!

This IP was reported 157 times. Confidence of Abuse is 53%: ?

53%

ISP	Aliyun Computing Co., LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS37963
Domain Name	alibabacloud.com
Country	🇨🇳 China
City	Hangzhou, Zhejiang

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 121.43.53.237

Whois 121.43.53.237

IP Abuse Reports for 121.43.53.237:

This IP address has been reported a total of 157 times from 57 distinct sources. 121.43.53.237 was first reported on March 11th 2025, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-09 16:11:12 (5 hours ago)	Blocked by UFW (TCP on 38595) Source port: 41443 TTL: 248 Packet length: 40 TOS: 0x14 This report ( ... show more Blocked by UFW (TCP on 38595) Source port: 41443 TTL: 248 Packet length: 40 TOS: 0x14 This report (for 121.43.53.237) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-08 16:14:00 (1 day ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-06-08 08:14:34 (1 day ago)	Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5985. Seve ... show more Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5985. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇸🇬 baltic-lab.com	2026-06-05 23:00:12 (3 days ago)	Firewall Detection, SG, Either a port scan or continued brute-force attack by a previously blocked o ... show more Firewall Detection, SG, Either a port scan or continued brute-force attack by a previously blocked offender ... show less	Brute-Force Port Scan
🇫🇷 security.rdmc.fr	2026-06-05 07:14:22 (4 days ago)	VoIP Attack proto:TCP src:43151 dst:5060	Port Scan Fraud VoIP
🇬🇧 PeravixGroup	2026-05-30 07:57:51 (1 week ago)	Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2376. Sever ... show more Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2376. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 ISPLtd	2026-05-28 06:56:24 (1 week ago)	May 28 03:56:22 121.43.53.237 TCP SPT=51379 DPT=57315 SYN May 28 03:56:22 121.43.53.237 TCP SPT=5137 ... show more May 28 03:56:22 121.43.53.237 TCP SPT=51379 DPT=57315 SYN May 28 03:56:22 121.43.53.237 TCP SPT=51379 DPT=40532 SYN May 28 03:56:24 121.43.53.237 TCP SPT=51379 DPT=11177 ... show less	Port Scan
🇬🇧 PeravixGroup	2026-05-23 17:56:19 (2 weeks ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-23 12:28:38 (2 weeks ago)	Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5985. Seve ... show more Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5985. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇺🇸 sandra361	2026-05-20 21:12:01 (2 weeks ago)	Brute-force/Port scan detected: 38 attempts across 37 ports (10583,10924,16646,17422,17696,17962,198 ... show more Brute-force/Port scan detected: 38 attempts across 37 ports (10583,10924,16646,17422,17696,17962,19889,20946,21529,21627,24819,26807,27272,29013,33029,34187,3554,41795,43184,49373,49639,50931,52943,53356,53560,54110,55163,55736,56214,56303,56534,57499,58409,59473,64380,64456,7236). \| Evidence: GHOST_SCAN:IN=enp1s0 OUT= SRC=121.43.53.237 LEN=40 TOS=0x00 PREC=0x00 TTL=232 ID=43403 PROTO=TCP SPT=51498 DPT=58409 WINDOW=1024 RES=0x00 SYN URGP=0 show less	Port Scan Brute-Force
🇨🇳 ThreatBook.io	2026-05-15 23:03:01 (3 weeks ago)	ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/121.43.53.237 2026- ... show more ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/121.43.53.237 2026-05-15 11:36:21 / show less	SSH
🇩🇪 centurion	2026-05-15 01:03:26 (3 weeks ago)	Blocked by UFW on ns02 [60080/tcp] Source port: 47004 TTL: 238 Packet length: 40 TOS: 0x00 This rep ... show more Blocked by UFW on ns02 [60080/tcp] Source port: 47004 TTL: 238 Packet length: 40 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 sandra361	2026-05-14 05:36:01 (3 weeks ago)	Brute-force/Port scan detected: 56 attempts across 56 ports (14099,17115,17739,20638,21978,22675,239 ... show more Brute-force/Port scan detected: 56 attempts across 56 ports (14099,17115,17739,20638,21978,22675,23901,24474,24931,26018,26711,27950,30311,31309,31618,31971,32414,34113,34493,35208,36936,37388,37503,39656,40085,40947,41088,42327,42865,43098,45652,45900,46572,49469,50413,51215,51287,51597,51630,51957,52081,52834,53125,53881,55802,56697,56757,57019,57069,57602,60778,61753,62927,63055,64502,9758). \| Evidence: GHOST_SCAN:IN=enp1s0 OUT= SRC=121.43.53.237 LEN=40 TOS=0x00 PREC=0x00 TTL=232 ID=62494 PROTO=TCP SPT=56908 DPT=53881 WINDOW=1024 RES=0x00 SYN URGP=0 show less	Port Scan Brute-Force
🇸🇬 baltic-lab.com	2026-05-13 15:39:07 (3 weeks ago)	Firewall Detection, SG, Either a port scan or continued brute-force attack by a previously blocked o ... show more Firewall Detection, SG, Either a port scan or continued brute-force attack by a previously blocked offender ... show less	Brute-Force Port Scan
🇨🇳 ThreatBook.io	2026-05-12 23:09:31 (3 weeks ago)	ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/121.43.53.237 2026- ... show more ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/121.43.53.237 2026-05-12 10:16:34 /favicon.ico 2026-05-12 10:16:34 / show less	Web App Attack

Showing 1 to 15 of 157 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇷 2a09:bac5:58ba:d2d::150:68

🇨🇳 223.105.71.106

🇹🇼 198.235.24.38

🇬🇧 188.240.59.21

🇮🇶 169.224.7.156

🇮🇳 103.84.236.222

🇳🇱 91.92.241.35

🇩🇪 69.5.169.184

🇩🇪 69.5.169.180

🇨🇳 58.19.80.179

🇱🇹 45.227.254.170

🇨🇦 207.219.222.29

🇷🇺 178.176.250.149

🇮🇶 151.236.176.120

🇨🇳 125.36.68.227

🇨🇳 124.90.215.241

🇨🇳 116.236.43.254

🇮🇳 116.73.240.74

🇷🇴 80.94.92.70

🇳🇱 80.82.77.139