JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 47.121.184.138

47.121.184.138 was found in our database!

This IP was reported 74 times. Confidence of Abuse is 100%: ?

100%

ISP	Aliyun Computing Co., LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS37963
Domain Name	alibabacloud.com
Country	🇨🇳 China
City	Shenzhen, Guangdong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 47.121.184.138

Whois 47.121.184.138

IP Abuse Reports for 47.121.184.138:

This IP address has been reported a total of 74 times from 65 distinct sources. 47.121.184.138 was first reported on May 4th 2026, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 ShadowWhisperer	2026-06-18 22:22:42 (9 hours ago)	SSH credential attempt.	Brute-Force SSH
🇺🇸 MPL	2026-06-18 10:35:37 (21 hours ago)	tcp/2222 (2 or more attempts)	Port Scan
🇩🇪 mtnmedia.group	2026-06-17 22:57:25 (1 day ago)	2026-06-18T00:57:18.470906+02:00 hera sshd[1166043]: Failed password for root from 47.121.184.138 po ... show more 2026-06-18T00:57:18.470906+02:00 hera sshd[1166043]: Failed password for root from 47.121.184.138 port 48614 ssh2 2026-06-18T00:57:20.699092+02:00 hera sshd[1166043]: Disconnecting authenticating user root 47.121.184.138 port 48614: Change of username or service not allowed: (root,ssh-connection) -> (test,ssh-connection) [preauth] 2026-06-18T00:57:22.281660+02:00 hera sshd[1166111]: Invalid user test from 47.121.184.138 port 50186 2026-06-18T00:57:22.289599+02:00 hera sshd[1166111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.121.184.138 2026-06-18T00:57:24.559462+02:00 hera sshd[1166111]: Failed password for invalid user test from 47.121.184.138 port 50186 ssh2 ... show less	Brute-Force SSH
🇨🇦 sh97	2026-06-17 19:12:21 (1 day ago)	CA02-HB-TOR: SSH Brute Force from 47.121.184.138 at 2026-06-18 00:42:21 IST	Brute-Force SSH
🇺🇸 micropedro	2026-06-17 00:30:38 (2 days ago)	3 incidents: malicious activity. First: 2026-06-09 20:07, Last: 2026-06-16 20:30 UTC. Triggers: ufw- ... show more 3 incidents: malicious activity. First: 2026-06-09 20:07, Last: 2026-06-16 20:30 UTC. Triggers: ufw-repeater. show less	Port Scan
🇺🇸 micropedro	2026-06-17 00:30:38 (2 days ago)	3 incidents: malicious activity. First: 2026-05-28 05:30, Last: 2026-06-16 20:30 UTC. Triggers: ufw- ... show more 3 incidents: malicious activity. First: 2026-05-28 05:30, Last: 2026-06-16 20:30 UTC. Triggers: ufw-repeater. show less	Port Scan
🇩🇪 Admins@FBN	2026-06-16 18:36:02 (2 days ago)	FW-PortScan: Traffic Blocked srcport=26569 dstport=22	Port Scan Hacking SSH
🇹🇷 ozyurterdem	2026-06-16 04:00:44 (3 days ago)	T-Pot honeypot: 15 SSH/RDP attempts in 24h. SiberKale Threat Intel.	Brute-Force SSH
🇩🇪 NetWatch	2026-06-15 22:35:17 (3 days ago)	The IP 47.121.184.138 tried multiple SSH_BRUTE_FORCE logins	Brute-Force
🇩🇪 SELECT-IT Beratung und IT Dienstleistung GmbH	2026-06-15 06:12:20 (4 days ago)	2026-06-15T08:12:13.983347+02:00 dev sshd[1009288]: Failed password for root from 47.121.184.138 por ... show more 2026-06-15T08:12:13.983347+02:00 dev sshd[1009288]: Failed password for root from 47.121.184.138 port 47992 ssh2 2026-06-15T08:12:16.536810+02:00 dev sshd[1009288]: Failed password for root from 47.121.184.138 port 47992 ssh2 2026-06-15T08:12:19.637187+02:00 dev sshd[1009288]: Failed password for root from 47.121.184.138 port 47992 ssh2 ... show less	Brute-Force SSH
🇩🇪 Yachiyo Runami	2026-06-14 19:45:59 (4 days ago)	Port Scan on Honeypot \| Ports: 6379/Redis \| Proto: TCP(1) \| Flags: all SYN \| TTL: 103 \| Len: 44B \| W ... show more Port Scan on Honeypot \| Ports: 6379/Redis \| Proto: TCP(1) \| Flags: all SYN \| TTL: 103 \| Len: 44B \| Win: 16480(1) \| F2B/ufw-honeypot@2026-06-14T19:45:59Z show less	Port Scan Hacking
🇦🇺 LiftUp Hosting	2026-06-13 17:16:04 (5 days ago)	Honeypot hit: SSH handshake/banner (22 bytes of payload); 2222 [1] TCP	SSH
🇫🇮 6kilowatti	2026-06-13 10:30:16 (5 days ago)	2026-06-13T13:30:12.965254+03:00 oh6ah sshd[2034754]: Failed password for root from 47.121.184.138 p ... show more 2026-06-13T13:30:12.965254+03:00 oh6ah sshd[2034754]: Failed password for root from 47.121.184.138 port 49920 ssh2 2026-06-13T13:30:15.832295+03:00 oh6ah sshd[2034754]: Failed password for root from 47.121.184.138 port 49920 ssh2 ... show less	Brute-Force SSH
🇯🇵 wuyangfan	2026-06-13 08:13:46 (5 days ago)	SSH brute force attack detected by fail2ban	Brute-Force SSH
🇨🇿 lp	2026-06-11 08:24:43 (1 week ago)	anomaly: tcp_port_scan, 501 > threshold 500, repeats 1153 times	Port Scan

Showing 1 to 15 of 74 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2400:cb00:386:1000:ec96:1094:ff41:a0a

🇺🇸 170.106.105.73

🇺🇸 54.204.138.6

🇩🇪 43.228.157.17

🇬🇧 35.203.211.127

🇻🇳 14.225.46.21

🇫🇮 178.20.210.152

🇺🇸 158.247.24.184

🇺🇸 74.195.53.129

🇺🇸 64.62.156.16

🇺🇸 104.152.52.116

🇺🇸 104.152.52.105

🇮🇳 49.206.19.246

🇲🇽 187.192.86.153

🇮🇹 185.197.9.153

🇧🇪 207.175.99.187

🇻🇪 201.249.205.94

🇨🇳 114.217.10.60

🇰🇷 110.15.180.184

🇮🇳 103.122.15.198