116.21.1.129 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
116.21.124.109	attackspambots	Port Scan ...	2020-09-17 01:14:41
116.21.124.109	attack	Port Scan ...	2020-09-16 17:30:36
116.21.136.38	attackspambots	Fail2Ban Ban Triggered	2020-08-21 17:15:59
116.21.128.188	attackbots	Too many connections or unauthorized access detected from Arctic banned ip	2020-08-03 07:18:31
116.21.172.193	attack	Unauthorized connection attempt detected from IP address 116.21.172.193 to port 23	2020-05-30 01:23:12
116.21.146.5	attackspambots	Automatic report - Port Scan Attack	2020-05-25 01:43:49
116.21.125.72	attackspam	Unauthorized connection attempt detected from IP address 116.21.125.72 to port 8089 [T]	2020-04-01 05:20:10
116.21.1.8	attack	Unauthorized connection attempt detected from IP address 116.21.1.8 to port 23 [J]	2020-02-29 18:34:29
116.21.180.172	attackbotsspam	Feb 5 18:50:32 journals dovecot: pop3-login: Aborted login \(auth failed, 1 attempts in 5 secs\): user=\, method=PLAIN, rip=116.21.180.172, lip=212.111.212.230, session=\ Feb 5 18:50:41 journals dovecot: pop3-login: Aborted login \(auth failed, 1 attempts in 9 secs\): user=\, method=PLAIN, rip=116.21.180.172, lip=212.111.212.230, session=\<9sFt9NadeLl0FbSs\> Feb 5 18:50:56 journals dovecot: pop3-login: Aborted login \(auth failed, 1 attempts in 13 secs\): user=\, method=PLAIN, rip=116.21.180.172, lip=212.111.212.230, session=\ Feb 5 18:52:33 journals dovecot: pop3-login: Aborted login \(auth failed, 1 attempts in 5 secs\): user=\, method=PLAIN, rip=116.21.180.172, lip=212.111.212.230, session=\ Feb 5 18:52:42 journals dovecot: pop3-login: Aborted login \(auth failed, 1 attempts in 8 secs\): user=\, method=PLAIN, rip=116.21.180.17 ...	2020-02-06 03:33:31
116.21.175.240	attackspam	Sep 17 17:09:43 mxgate1 postfix/postscreen[20426]: CONNECT from [116.21.175.240]:43322 to [176.31.12.44]:25 Sep 17 17:09:43 mxgate1 postfix/dnsblog[20427]: addr 116.21.175.240 listed by domain cbl.abuseat.org as 127.0.0.2 Sep 17 17:09:43 mxgate1 postfix/dnsblog[20430]: addr 116.21.175.240 listed by domain zen.spamhaus.org as 127.0.0.11 Sep 17 17:09:43 mxgate1 postfix/dnsblog[20430]: addr 116.21.175.240 listed by domain zen.spamhaus.org as 127.0.0.4 Sep 17 17:09:43 mxgate1 postfix/dnsblog[20428]: addr 116.21.175.240 listed by domain bl.spamcop.net as 127.0.0.2 Sep 17 17:09:49 mxgate1 postfix/postscreen[20426]: DNSBL rank 4 for [116.21.175.240]:43322 Sep x@x Sep 17 17:09:50 mxgate1 postfix/postscreen[20426]: DISCONNECT [116.21.175.240]:43322 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=116.21.175.240	2019-09-17 23:25:48
116.21.127.96	attackbotsspam	port 23 attempt blocked	2019-09-14 23:07:41
116.21.132.6	attackbots	Sep 2 12:01:22 wp sshd[26875]: Invalid user gpq from 116.21.132.6 Sep 2 12:01:22 wp sshd[26875]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.21.132.6 Sep 2 12:01:25 wp sshd[26875]: Failed password for invalid user gpq from 116.21.132.6 port 11204 ssh2 Sep 2 12:01:25 wp sshd[26875]: Received disconnect from 116.21.132.6: 11: Bye Bye [preauth] Sep 2 12:03:20 wp sshd[26891]: Invalid user stas from 116.21.132.6 Sep 2 12:03:20 wp sshd[26891]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.21.132.6 Sep 2 12:03:22 wp sshd[26891]: Failed password for invalid user stas from 116.21.132.6 port 10720 ssh2 Sep 2 12:03:22 wp sshd[26891]: Received disconnect from 116.21.132.6: 11: Bye Bye [preauth] Sep 2 12:05:17 wp sshd[26914]: Invalid user admin from 116.21.132.6 Sep 2 12:05:17 wp sshd[26914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost........ -------------------------------	2019-09-03 15:30:19
116.21.133.180	attackbots	Aug 31 14:46:17 plex sshd[16050]: Invalid user nbsuser from 116.21.133.180 port 32038	2019-08-31 21:07:43
116.21.133.180	attackspambots	Aug 30 17:54:21 fv15 sshd[30006]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.21.133.180 user=r.r Aug 30 17:54:23 fv15 sshd[30006]: Failed password for r.r from 116.21.133.180 port 33154 ssh2 Aug 30 17:54:23 fv15 sshd[30006]: Received disconnect from 116.21.133.180: 11: Bye Bye [preauth] Aug 30 18:18:06 fv15 sshd[26471]: Failed password for invalid user ftpuser from 116.21.133.180 port 32916 ssh2 Aug 30 18:18:06 fv15 sshd[26471]: Received disconnect from 116.21.133.180: 11: Bye Bye [preauth] Aug 30 18:24:32 fv15 sshd[9809]: Failed password for invalid user dekahostname from 116.21.133.180 port 30796 ssh2 Aug 30 18:24:32 fv15 sshd[9809]: Received disconnect from 116.21.133.180: 11: Bye Bye [preauth] Aug 30 18:30:58 fv15 sshd[24495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.21.133.180 user=r.r Aug 30 18:31:00 fv15 sshd[24495]: Failed password for r.r from 116.21.133.180 po........ -------------------------------	2019-08-31 06:24:53
116.21.127.110	attackspam	Telnet Server BruteForce Attack	2019-07-31 22:57:00

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.21.1.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28227
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.21.1.129.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 14:06:22 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 129.1.21.116.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 129.1.21.116.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
112.85.42.230	attackspambots	2020-10-07T20:23:04.530935lavrinenko.info sshd[15878]: Failed password for root from 112.85.42.230 port 37730 ssh2 2020-10-07T20:23:08.046247lavrinenko.info sshd[15878]: Failed password for root from 112.85.42.230 port 37730 ssh2 2020-10-07T20:23:11.752947lavrinenko.info sshd[15878]: Failed password for root from 112.85.42.230 port 37730 ssh2 2020-10-07T20:23:16.399452lavrinenko.info sshd[15878]: Failed password for root from 112.85.42.230 port 37730 ssh2 2020-10-07T20:23:19.591059lavrinenko.info sshd[15878]: Failed password for root from 112.85.42.230 port 37730 ssh2 ...	2020-10-08 01:36:53
84.2.254.248	attack	Automatic report - Port Scan Attack	2020-10-08 01:07:33
81.68.129.2	attack	detected by Fail2Ban	2020-10-08 01:31:42
88.218.67.84	attack	Port Scan: TCP/443	2020-10-08 01:30:31
162.142.125.31	attackspam	UDP 162.142.125.31:32463 -> port 161, len 71	2020-10-08 01:15:05
114.219.157.97	attack	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-10-08 01:07:06
122.144.212.144	attackspambots	2020-10-07T15:29:05.679851ionos.janbro.de sshd[226601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.144.212.144 user=root 2020-10-07T15:29:07.095706ionos.janbro.de sshd[226601]: Failed password for root from 122.144.212.144 port 34718 ssh2 2020-10-07T15:34:24.675130ionos.janbro.de sshd[226610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.144.212.144 user=root 2020-10-07T15:34:26.852733ionos.janbro.de sshd[226610]: Failed password for root from 122.144.212.144 port 34765 ssh2 2020-10-07T15:39:34.262025ionos.janbro.de sshd[226636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.144.212.144 user=root 2020-10-07T15:39:36.329351ionos.janbro.de sshd[226636]: Failed password for root from 122.144.212.144 port 34809 ssh2 2020-10-07T15:44:43.881461ionos.janbro.de sshd[226662]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ru ...	2020-10-08 01:09:28
49.235.115.192	attackspam	Oct 7 18:14:32 s2 sshd[323]: Failed password for root from 49.235.115.192 port 45740 ssh2 Oct 7 18:18:02 s2 sshd[536]: Failed password for root from 49.235.115.192 port 56446 ssh2	2020-10-08 01:14:44
1.196.238.130	attack	Oct 6 22:13:11 vm1 sshd[13153]: Failed password for root from 1.196.238.130 port 40954 ssh2 Oct 7 11:55:52 vm1 sshd[22635]: Failed password for root from 1.196.238.130 port 53768 ssh2 ...	2020-10-08 01:11:40
187.170.242.61	attack	20 attempts against mh-ssh on ice	2020-10-08 01:05:50
106.12.89.173	attackbots	(sshd) Failed SSH login from 106.12.89.173 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 7 12:24:15 server sshd[4283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.89.173 user=root Oct 7 12:24:17 server sshd[4283]: Failed password for root from 106.12.89.173 port 38736 ssh2 Oct 7 12:40:26 server sshd[8583]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.89.173 user=root Oct 7 12:40:28 server sshd[8583]: Failed password for root from 106.12.89.173 port 59056 ssh2 Oct 7 12:44:31 server sshd[9562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.89.173 user=root	2020-10-08 01:23:34
178.62.60.233	attackbots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-10-08 01:22:43
49.235.28.96	attackspam	Oct 6 23:45:39 hidden sshd[4842]: Failed password for hidden from 49.235.28.96 port 50908 ssh2 Oct 6 23:49:05 hidden sshd[8240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.28.96 user=root Oct 6 23:49:07 hidden sshd[8240]: Failed password for hidden from 49.235.28.96 port 49746 ssh2	2020-10-08 01:18:41
167.172.159.177	attack	Dovecot Invalid User Login Attempt.	2020-10-08 01:08:27
88.231.197.254	attack	DATE:2020-10-06 22:37:18, IP:88.231.197.254, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-10-08 01:21:35

最近上报的IP列表

27.196.255.58	187.87.14.59	117.28.134.94	64.246.165.150
198.41.229.121	83.238.73.51	41.234.137.100	39.49.107.159
150.117.7.16	104.169.176.134	54.89.7.30	183.15.88.29
178.169.219.211	195.135.213.194	117.111.1.175	121.62.16.62
163.28.129.230	143.198.111.227	174.126.61.167	5.16.0.186

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表