116.212.129.10

Basic Info

City: Phnom Penh

Region: Phnom Penh

Country: Cambodia

Internet Service Provider: Mekongnet PP

Hostname: unknown

Organization: ANGKOR DATA COMMUNICATION

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	SMB Server BruteForce Attack	2019-07-15 16:36:57
attack	19/7/4@18:59:24: FAIL: Alarm-Intrusion address from=116.212.129.10 ...	2019-07-05 07:15:50

Comments on same subnet:

IP	Type	Details	Datetime
116.212.129.2	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-20 15:24:48
116.212.129.82	attackspambots	Forum spam	2019-09-09 01:56:13
116.212.129.58	attackbots	Unauthorized IMAP connection attempt.	2019-07-06 16:15:13

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.212.129.10
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47605
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.212.129.10.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019060300 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jun 03 23:50:55 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 10.129.212.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 10.129.212.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.39.225.210	attackspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-08-26 14:40:54
118.121.204.109	attack	Aug 26 07:49:51 h2177944 sshd\[6167\]: Invalid user hama from 118.121.204.109 port 26328 Aug 26 07:49:51 h2177944 sshd\[6167\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.121.204.109 Aug 26 07:49:53 h2177944 sshd\[6167\]: Failed password for invalid user hama from 118.121.204.109 port 26328 ssh2 Aug 26 07:53:02 h2177944 sshd\[6246\]: Invalid user 111111 from 118.121.204.109 port 39371 Aug 26 07:53:02 h2177944 sshd\[6246\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.121.204.109 ...	2019-08-26 14:35:06
209.97.163.26	attack	Aug 26 06:32:45 hb sshd\[31674\]: Invalid user thomas from 209.97.163.26 Aug 26 06:32:45 hb sshd\[31674\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.163.26 Aug 26 06:32:47 hb sshd\[31674\]: Failed password for invalid user thomas from 209.97.163.26 port 44170 ssh2 Aug 26 06:37:39 hb sshd\[32069\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.163.26 user=root Aug 26 06:37:42 hb sshd\[32069\]: Failed password for root from 209.97.163.26 port 35624 ssh2	2019-08-26 14:40:13
92.118.37.97	attackbotsspam	08/26/2019-01:53:54.271980 92.118.37.97 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-08-26 14:18:31
211.24.103.165	attackspam	Aug 25 19:58:48 auw2 sshd\[1923\]: Invalid user zabbix from 211.24.103.165 Aug 25 19:58:48 auw2 sshd\[1923\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.24.103.165 Aug 25 19:58:50 auw2 sshd\[1923\]: Failed password for invalid user zabbix from 211.24.103.165 port 37809 ssh2 Aug 25 20:03:45 auw2 sshd\[2355\]: Invalid user stack from 211.24.103.165 Aug 25 20:03:45 auw2 sshd\[2355\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.24.103.165	2019-08-26 14:09:24
35.246.115.120	attackspambots	Aug 26 08:19:15 lnxded63 sshd[26214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.246.115.120	2019-08-26 14:44:16
14.231.248.24	bots	14.231.248.24 - - [26/Aug/2019:11:16:31 +0800] "GET /check-ip/120.178.19.12 HTTP/1.1" 200 9461 "https://ipinfo.asytech.cn" "Mozilla/5.0 (compatible; Konqueror/3.5; Linux) KHTML/3.5.5 (lik e Gecko) (Exabot-Thumbnails)" 14.231.248.24 - - [26/Aug/2019:11:16:31 +0800] "GET /check-ip/159.146.11.24 HTTP/1.1" 200 9951 "https://ipinfo.asytech.cn" "Mozilla/5.0 (compatible; Konqueror/3.5; Linux) KHTML/3.5.5 (lik e Gecko) (Exabot-Thumbnails)" 14.231.248.24 - - [26/Aug/2019:11:16:31 +0800] "GET /check-ip/33.181.231.172 HTTP/1.1" 200 9260 "https://ipinfo.asytech.cn" "Mozilla/5.0 (compatible; Konqueror/3.5; Linux) KHTML/3.5.5 (li ke Gecko) (Exabot-Thumbnails)" 14.231.248.24 - - [26/Aug/2019:11:16:31 +0800] "GET /check-ip/154.113.253.234 HTTP/1.1" 200 9635 "https://ipinfo.asytech.cn" "Mozilla/5.0 (compatible; Konqueror/3.5; Linux) KHTML/3.5.5 (l ike Gecko) (Exabot-Thumbnails)"	2019-08-26 14:13:26
200.211.250.195	attack	Aug 26 08:38:13 icinga sshd[25268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.211.250.195 Aug 26 08:38:14 icinga sshd[25268]: Failed password for invalid user iso from 200.211.250.195 port 60020 ssh2 ...	2019-08-26 14:39:06
160.20.253.6	attackbotsspam	SMB Server BruteForce Attack	2019-08-26 14:18:06
49.232.18.45	attack	Aug 26 09:32:38 server sshd\[23363\]: Invalid user centos from 49.232.18.45 port 44248 Aug 26 09:32:38 server sshd\[23363\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.18.45 Aug 26 09:32:39 server sshd\[23363\]: Failed password for invalid user centos from 49.232.18.45 port 44248 ssh2 Aug 26 09:36:41 server sshd\[12721\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.18.45 user=mail Aug 26 09:36:44 server sshd\[12721\]: Failed password for mail from 49.232.18.45 port 46156 ssh2	2019-08-26 14:47:46
202.181.205.114	attackspambots	SMB Server BruteForce Attack	2019-08-26 14:22:12
34.93.44.102	attackspambots	Automatic report - Banned IP Access	2019-08-26 14:57:55
120.52.152.17	attack	Automatic report - Port Scan Attack	2019-08-26 14:22:31
50.208.49.154	attackspam	Fail2Ban Ban Triggered	2019-08-26 14:32:39
185.244.166.147	attackspambots	Aug 26 06:07:17 hb sshd\[28980\]: Invalid user oracle from 185.244.166.147 Aug 26 06:07:17 hb sshd\[28980\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.244.166.147 Aug 26 06:07:20 hb sshd\[28980\]: Failed password for invalid user oracle from 185.244.166.147 port 51814 ssh2 Aug 26 06:11:29 hb sshd\[29328\]: Invalid user key from 185.244.166.147 Aug 26 06:11:29 hb sshd\[29328\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.244.166.147	2019-08-26 14:28:31

Recently Reported IPs

71.6.233.215	111.227.112.201	52.227.196.76	163.21.182.185
76.141.145.226	5.188.87.19	20.59.189.68	216.162.137.44
52.9.65.216	171.211.47.38	201.230.205.246	192.69.116.97
85.217.166.201	202.147.168.199	198.108.66.125	195.14.71.172
207.189.30.230	160.171.159.180	204.158.188.87	147.33.148.209