116.21.228.253

Basic Info

City: Guangzhou

Region: Guangdong

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.21.228.253
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13495
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.21.228.253.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022000 1800 900 604800 86400

;; Query time: 41 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 17:24:59 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 253.228.21.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 253.228.21.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.175.215	attack	Nov 19 19:01:24 gw1 sshd[12846]: Failed password for root from 222.186.175.215 port 55610 ssh2 Nov 19 19:01:38 gw1 sshd[12846]: error: maximum authentication attempts exceeded for root from 222.186.175.215 port 55610 ssh2 [preauth] ...	2019-11-19 22:06:19
178.62.118.53	attackbotsspam	Nov 19 03:50:03 web1 sshd\[23208\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.118.53 user=lp Nov 19 03:50:04 web1 sshd\[23208\]: Failed password for lp from 178.62.118.53 port 48055 ssh2 Nov 19 03:55:07 web1 sshd\[23613\]: Invalid user guest from 178.62.118.53 Nov 19 03:55:07 web1 sshd\[23613\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.118.53 Nov 19 03:55:09 web1 sshd\[23613\]: Failed password for invalid user guest from 178.62.118.53 port 38829 ssh2	2019-11-19 22:02:35
169.197.108.6	attack	[Tue Nov 19 20:04:23.291522 2019] [:error] [pid 25867:tid 140440305059584] [client 169.197.108.6:55828] [client 169.197.108.6] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/"] [unique_id "XdPoV9on-8NrADxLZje@BAAAAFY"] ...	2019-11-19 22:24:52
51.255.48.48	attack	windhundgang.de 51.255.48.48 \[19/Nov/2019:14:04:26 +0100\] "GET /phpMyAdmin/scripts/setup.php HTTP/1.1" 404 17517 "-" "Mozilla/5.0 $Windows NT 10.0\; Win64\; x64\; rv:57.0$ Gecko/20100101 Firefox/57.0" windhundgang.de:80 51.255.48.48 - - \[19/Nov/2019:14:04:29 +0100\] "GET /phpmyadmin/scripts/setup.php HTTP/1.1" 301 477 "-" "Mozilla/5.0 $Windows NT 10.0\; Win64\; x64\; rv:57.0$ Gecko/20100101 Firefox/57.0" windhundgang.de 51.255.48.48 \[19/Nov/2019:14:04:32 +0100\] "GET /phpmyadmin/scripts/setup.php HTTP/1.1" 404 17503 "-" "Mozilla/5.0 $Windows NT 10.0\; Win64\; x64\; rv:57.0$ Gecko/20100101 Firefox/57.0"	2019-11-19 22:14:52
141.98.80.201	attackbotsspam	RDP over non-standard port attempt	2019-11-19 21:56:04
58.254.132.239	attackspam	SSH authentication failure x 6 reported by Fail2Ban ...	2019-11-19 22:34:58
222.186.175.161	attack	Nov 19 04:31:36 auw2 sshd\[7869\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.161 user=root Nov 19 04:31:38 auw2 sshd\[7869\]: Failed password for root from 222.186.175.161 port 65210 ssh2 Nov 19 04:31:42 auw2 sshd\[7869\]: Failed password for root from 222.186.175.161 port 65210 ssh2 Nov 19 04:31:45 auw2 sshd\[7869\]: Failed password for root from 222.186.175.161 port 65210 ssh2 Nov 19 04:31:56 auw2 sshd\[7900\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.161 user=root	2019-11-19 22:32:15
41.223.142.211	attackbots	Nov 19 14:42:16 lnxmysql61 sshd[26456]: Failed password for root from 41.223.142.211 port 58295 ssh2 Nov 19 14:42:16 lnxmysql61 sshd[26456]: Failed password for root from 41.223.142.211 port 58295 ssh2	2019-11-19 22:17:06
92.79.179.89	attackbotsspam	Nov 19 03:33:53 hpm sshd\[5216\]: Invalid user default from 92.79.179.89 Nov 19 03:33:53 hpm sshd\[5216\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=business-092-079-179-089.static.arcor-ip.net Nov 19 03:33:55 hpm sshd\[5216\]: Failed password for invalid user default from 92.79.179.89 port 45864 ssh2 Nov 19 03:39:27 hpm sshd\[5748\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=business-092-079-179-089.static.arcor-ip.net user=nobody Nov 19 03:39:29 hpm sshd\[5748\]: Failed password for nobody from 92.79.179.89 port 22288 ssh2	2019-11-19 22:10:39
201.150.5.14	attackspam	Triggered by Fail2Ban at Vostok web server	2019-11-19 21:59:52
35.198.246.47	attackspambots	MYH,DEF GET /index.php/rss/order/new	2019-11-19 22:08:37
178.62.236.68	attackbotsspam	Automatic report - XMLRPC Attack	2019-11-19 22:28:23
209.141.41.96	attack	Nov 19 14:06:56 localhost sshd\[78289\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.141.41.96 user=root Nov 19 14:06:59 localhost sshd\[78289\]: Failed password for root from 209.141.41.96 port 60834 ssh2 Nov 19 14:10:53 localhost sshd\[78482\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.141.41.96 user=bin Nov 19 14:10:55 localhost sshd\[78482\]: Failed password for bin from 209.141.41.96 port 41894 ssh2 Nov 19 14:14:58 localhost sshd\[78608\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.141.41.96 user=root ...	2019-11-19 22:15:36
218.76.140.201	attackbotsspam	Nov 19 14:38:16 legacy sshd[18427]: Failed password for root from 218.76.140.201 port 20881 ssh2 Nov 19 14:43:07 legacy sshd[18555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.76.140.201 Nov 19 14:43:10 legacy sshd[18555]: Failed password for invalid user merell from 218.76.140.201 port 10264 ssh2 ...	2019-11-19 21:57:28
129.211.41.162	attack	Nov 19 09:03:35 TORMINT sshd\[704\]: Invalid user home from 129.211.41.162 Nov 19 09:03:35 TORMINT sshd\[704\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.41.162 Nov 19 09:03:36 TORMINT sshd\[704\]: Failed password for invalid user home from 129.211.41.162 port 44476 ssh2 ...	2019-11-19 22:25:25

Recently Reported IPs

77.124.57.17	253.77.34.250	26.66.180.54	217.142.150.68
181.57.190.22	163.49.190.129	130.50.186.217	97.40.161.139
71.155.89.169	53.21.156.3	116.93.36.110	203.201.240.10
156.49.148.128	241.167.144.213	134.241.195.194	20.45.51.123
64.135.164.108	22.195.66.213	167.124.224.173	177.152.234.220