129.211.104.31

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
129.211.104.34	attack	Jun 16 19:14:03 itv-usvr-02 sshd[902]: Invalid user jordan from 129.211.104.34 port 43530 Jun 16 19:14:03 itv-usvr-02 sshd[902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.104.34 Jun 16 19:14:03 itv-usvr-02 sshd[902]: Invalid user jordan from 129.211.104.34 port 43530 Jun 16 19:14:05 itv-usvr-02 sshd[902]: Failed password for invalid user jordan from 129.211.104.34 port 43530 ssh2 Jun 16 19:19:32 itv-usvr-02 sshd[1092]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.104.34 user=root Jun 16 19:19:35 itv-usvr-02 sshd[1092]: Failed password for root from 129.211.104.34 port 41550 ssh2	2020-06-17 01:13:17
129.211.104.34	attackspambots	Jun 13 19:26:03 ArkNodeAT sshd\[6284\]: Invalid user liurunming from 129.211.104.34 Jun 13 19:26:03 ArkNodeAT sshd\[6284\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.104.34 Jun 13 19:26:05 ArkNodeAT sshd\[6284\]: Failed password for invalid user liurunming from 129.211.104.34 port 51700 ssh2	2020-06-14 05:00:24
129.211.104.34	attackbotsspam	May 30 11:52:32 webhost01 sshd[20979]: Failed password for root from 129.211.104.34 port 57680 ssh2 ...	2020-05-30 16:36:24
129.211.104.34	attackbots	web-1 [ssh] SSH Attack	2020-05-10 16:39:08
129.211.104.34	attack	Apr 21 19:40:55 ns392434 sshd[22112]: Invalid user ui from 129.211.104.34 port 50932 Apr 21 19:40:55 ns392434 sshd[22112]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.104.34 Apr 21 19:40:55 ns392434 sshd[22112]: Invalid user ui from 129.211.104.34 port 50932 Apr 21 19:40:57 ns392434 sshd[22112]: Failed password for invalid user ui from 129.211.104.34 port 50932 ssh2 Apr 21 19:54:37 ns392434 sshd[22660]: Invalid user admin from 129.211.104.34 port 35662 Apr 21 19:54:37 ns392434 sshd[22660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.104.34 Apr 21 19:54:37 ns392434 sshd[22660]: Invalid user admin from 129.211.104.34 port 35662 Apr 21 19:54:40 ns392434 sshd[22660]: Failed password for invalid user admin from 129.211.104.34 port 35662 ssh2 Apr 21 19:59:17 ns392434 sshd[22694]: Invalid user admin4 from 129.211.104.34 port 49918	2020-04-26 19:40:02
129.211.104.34	attackspambots	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-04-15 14:48:19
129.211.104.34	attackbotsspam	Apr 10 00:50:55 icinga sshd[34692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.104.34 Apr 10 00:50:57 icinga sshd[34692]: Failed password for invalid user discover from 129.211.104.34 port 59966 ssh2 Apr 10 00:58:07 icinga sshd[45796]: Failed password for root from 129.211.104.34 port 42006 ssh2 ...	2020-04-10 09:22:29
129.211.104.34	attackbotsspam	Tried sshing with brute force.	2020-03-27 21:07:11
129.211.104.34	attackbots	Mar 26 09:25:38 firewall sshd[27620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.104.34 Mar 26 09:25:38 firewall sshd[27620]: Invalid user sdco from 129.211.104.34 Mar 26 09:25:40 firewall sshd[27620]: Failed password for invalid user sdco from 129.211.104.34 port 52836 ssh2 ...	2020-03-26 21:10:56
129.211.104.34	attackbotsspam	Failed password for invalid user spam from 129.211.104.34 port 58458 ssh2 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.104.34 user=man Failed password for man from 129.211.104.34 port 56112 ssh2 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.104.34 user=nagios Failed password for nagios from 129.211.104.34 port 53766 ssh2	2020-03-07 02:39:53
129.211.104.34	attackspambots	" "	2020-02-20 02:16:33
129.211.104.34	attackbotsspam	Feb 17 10:43:14 areeb-Workstation sshd[3421]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.104.34 Feb 17 10:43:16 areeb-Workstation sshd[3421]: Failed password for invalid user user from 129.211.104.34 port 54540 ssh2 ...	2020-02-17 19:12:50
129.211.104.34	attackbots	2020-01-11T20:58:27.311720abusebot-5.cloudsearch.cf sshd[13160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.104.34 user=root 2020-01-11T20:58:29.235282abusebot-5.cloudsearch.cf sshd[13160]: Failed password for root from 129.211.104.34 port 56998 ssh2 2020-01-11T21:01:50.434556abusebot-5.cloudsearch.cf sshd[13181]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.104.34 user=root 2020-01-11T21:01:52.227293abusebot-5.cloudsearch.cf sshd[13181]: Failed password for root from 129.211.104.34 port 60112 ssh2 2020-01-11T21:05:04.214856abusebot-5.cloudsearch.cf sshd[13227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.104.34 user=root 2020-01-11T21:05:06.639974abusebot-5.cloudsearch.cf sshd[13227]: Failed password for root from 129.211.104.34 port 34982 ssh2 2020-01-11T21:08:21.921708abusebot-5.cloudsearch.cf sshd[13233]: pam_unix(sshd:auth): ...	2020-01-12 05:22:17
129.211.104.34	attack	Jan 10 05:53:15 hanapaa sshd\[29233\]: Invalid user db from 129.211.104.34 Jan 10 05:53:15 hanapaa sshd\[29233\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.104.34 Jan 10 05:53:17 hanapaa sshd\[29233\]: Failed password for invalid user db from 129.211.104.34 port 54482 ssh2 Jan 10 05:57:46 hanapaa sshd\[30185\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.104.34 user=root Jan 10 05:57:47 hanapaa sshd\[30185\]: Failed password for root from 129.211.104.34 port 57328 ssh2	2020-01-11 03:08:47
129.211.104.34	attackspam	Jan 3 17:23:39 firewall sshd[30350]: Invalid user app from 129.211.104.34 Jan 3 17:23:41 firewall sshd[30350]: Failed password for invalid user app from 129.211.104.34 port 54628 ssh2 Jan 3 17:25:06 firewall sshd[30392]: Invalid user appuser from 129.211.104.34 ...	2020-01-04 04:36:06

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.211.104.31
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37715
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;129.211.104.31.			IN	A

;; AUTHORITY SECTION:
.			444	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022100700 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 07 14:05:46 CST 2022
;; MSG SIZE  rcvd: 107

Host info

31.104.211.129.in-addr.arpa has no PTR record

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 31.104.211.129.in-addr.arpa.: No answer

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
91.61.37.190	attackbotsspam	20 attempts against mh-ssh on hill.magehost.pro	2019-06-24 11:15:46
83.171.253.91	attackbotsspam	Ein möglicherweise gefährlicher Request.Form-Wert wurde vom Client (mp$ContentZone$TxtMessage="	2019-06-24 11:33:07
49.50.249.40	attack	Automatic report - Web App Attack	2019-06-24 11:22:54
14.141.174.123	attackbotsspam	Jun 17 20:54:34 eola sshd[11149]: Invalid user varkentje from 14.141.174.123 port 55656 Jun 17 20:54:34 eola sshd[11149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.141.174.123 Jun 17 20:54:36 eola sshd[11149]: Failed password for invalid user varkentje from 14.141.174.123 port 55656 ssh2 Jun 17 20:54:36 eola sshd[11149]: Received disconnect from 14.141.174.123 port 55656:11: Bye Bye [preauth] Jun 17 20:54:36 eola sshd[11149]: Disconnected from 14.141.174.123 port 55656 [preauth] Jun 17 21:05:20 eola sshd[11642]: Connection closed by 14.141.174.123 port 46214 [preauth] Jun 17 21:09:38 eola sshd[11956]: Invalid user service from 14.141.174.123 port 53190 Jun 17 21:09:38 eola sshd[11956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.141.174.123 Jun 17 21:09:39 eola sshd[11956]: Failed password for invalid user service from 14.141.174.123 port 53190 ssh2 Jun 17 21:09:40 eola ssh........ -------------------------------	2019-06-24 11:32:47
115.144.166.161	attackbots	firewall-block, port(s): 445/tcp	2019-06-24 11:27:45
114.97.133.116	attackbots	2019-06-23T22:12:32.137148mail01 postfix/smtpd[24604]: warning: unknown[114.97.133.116]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-23T22:12:40.371479mail01 postfix/smtpd[26594]: warning: unknown[114.97.133.116]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-23T22:12:51.289407mail01 postfix/smtpd[24604]: warning: unknown[114.97.133.116]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-06-24 10:47:21
193.201.224.221	attackspambots	WordPress login Brute force / Web App Attack on client site.	2019-06-24 11:26:53
103.224.186.133	attackspam	firewall-block, port(s): 23/tcp	2019-06-24 11:29:31
177.66.237.242	attack	failed_logins	2019-06-24 10:52:13
89.33.8.34	attack	23.06.2019 19:51:38 Recursive DNS scan	2019-06-24 10:53:43
200.76.226.243	attackspambots	Jun 24 02:30:13 mail sshd\[5138\]: Invalid user ilog from 200.76.226.243 Jun 24 02:30:13 mail sshd\[5138\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.76.226.243 Jun 24 02:30:15 mail sshd\[5138\]: Failed password for invalid user ilog from 200.76.226.243 port 48214 ssh2 Jun 24 02:32:27 mail sshd\[5231\]: Invalid user divya from 200.76.226.243 Jun 24 02:32:27 mail sshd\[5231\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.76.226.243	2019-06-24 11:09:22
186.31.37.202	attackspambots	Jun 24 04:02:42 [munged] sshd[2846]: Invalid user steam from 186.31.37.202 port 45011 Jun 24 04:02:42 [munged] sshd[2846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.31.37.202	2019-06-24 11:10:55
36.228.213.230	attack	DATE:2019-06-23_21:50:54, IP:36.228.213.230, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-06-24 11:07:29
103.138.109.197	attackbotsspam	Jun 24 04:16:38 mail postfix/smtpd\[10035\]: warning: unknown\[103.138.109.197\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 24 04:16:45 mail postfix/smtpd\[10035\]: warning: unknown\[103.138.109.197\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 24 04:16:55 mail postfix/smtpd\[10035\]: warning: unknown\[103.138.109.197\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-06-24 11:09:57
86.238.99.115	attackspam	Jun 24 01:52:30 thevastnessof sshd[5046]: Failed password for root from 86.238.99.115 port 36792 ssh2 ...	2019-06-24 11:32:21

Recently Reported IPs

36.57.250.40	203.13.32.199	203.24.102.90	118.173.214.30
175.101.6.66	121.190.16.216	45.136.231.91	5.202.31.221
124.218.150.114	198.61.225.226	175.31.191.136	112.194.22.49
47.97.3.136	60.21.100.149	27.222.237.49	109.132.18.234
47.96.107.65	121.228.87.40	191.16.26.221	47.95.2.69