Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:
Type Details Datetime
attackspambots
16100/tcp 27370/tcp 9148/tcp...
[2020-06-23/08-13]7pkt,7pt.(tcp)
2020-08-13 16:08:42
attack
$f2bV_matches
2020-08-08 16:34:54
attackspambots
Invalid user yixin from 129.211.72.48 port 35328
2020-08-02 15:45:23
attackspam
Invalid user git from 129.211.72.48 port 50576
2020-06-20 16:33:52
attack
2020-06-17T05:41:26.543252shield sshd\[15701\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.72.48  user=root
2020-06-17T05:41:28.711769shield sshd\[15701\]: Failed password for root from 129.211.72.48 port 33008 ssh2
2020-06-17T05:45:12.771978shield sshd\[16397\]: Invalid user liyuan from 129.211.72.48 port 47972
2020-06-17T05:45:12.775720shield sshd\[16397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.72.48
2020-06-17T05:45:14.969371shield sshd\[16397\]: Failed password for invalid user liyuan from 129.211.72.48 port 47972 ssh2
2020-06-17 15:46:40
attackbotsspam
Jun  4 09:06:40 hosting sshd[6836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.72.48  user=root
Jun  4 09:06:42 hosting sshd[6836]: Failed password for root from 129.211.72.48 port 55578 ssh2
...
2020-06-04 18:17:58
attackbotsspam
Jun  1 08:17:22 odroid64 sshd\[26272\]: User root from 129.211.72.48 not allowed because not listed in AllowUsers
Jun  1 08:17:22 odroid64 sshd\[26272\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.72.48  user=root
...
2020-06-01 18:09:09
attackspam
SSH login attempts.
2020-05-05 21:23:36
attackbots
May  4 08:18:22 ns382633 sshd\[1003\]: Invalid user user1 from 129.211.72.48 port 43258
May  4 08:18:22 ns382633 sshd\[1003\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.72.48
May  4 08:18:24 ns382633 sshd\[1003\]: Failed password for invalid user user1 from 129.211.72.48 port 43258 ssh2
May  4 08:27:21 ns382633 sshd\[2935\]: Invalid user uftp from 129.211.72.48 port 41740
May  4 08:27:21 ns382633 sshd\[2935\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.72.48
2020-05-04 15:32:46
attackbots
Apr 25 08:35:34 srv01 sshd[18061]: Invalid user azureuser from 129.211.72.48 port 45424
Apr 25 08:35:34 srv01 sshd[18061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.72.48
Apr 25 08:35:34 srv01 sshd[18061]: Invalid user azureuser from 129.211.72.48 port 45424
Apr 25 08:35:36 srv01 sshd[18061]: Failed password for invalid user azureuser from 129.211.72.48 port 45424 ssh2
Apr 25 08:39:21 srv01 sshd[18462]: Invalid user mana from 129.211.72.48 port 58244
...
2020-04-25 14:42:46
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.211.72.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26711
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.211.72.48.			IN	A

;; AUTHORITY SECTION:
.			478	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042500 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 25 14:42:41 CST 2020
;; MSG SIZE  rcvd: 117
Host info
Host 48.72.211.129.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 48.72.211.129.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
79.136.47.186 attack
Honeypot attack, port: 5555, PTR: h-47-186.A328.priv.bahnhof.se.
2020-01-13 22:04:01
117.69.30.65 attackbots
Email spam message
2020-01-13 22:05:58
166.62.100.99 attackbots
Automatic report - XMLRPC Attack
2020-01-13 22:02:12
111.231.54.248 attack
Jan 13 15:09:14 vmanager6029 sshd\[32148\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.54.248  user=root
Jan 13 15:09:17 vmanager6029 sshd\[32148\]: Failed password for root from 111.231.54.248 port 55896 ssh2
Jan 13 15:11:34 vmanager6029 sshd\[32270\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.54.248  user=root
2020-01-13 22:17:21
129.211.110.18 attackbotsspam
Jan 13 13:08:51 *** sshd[28620]: Invalid user fava from 129.211.110.18
2020-01-13 22:13:06
5.121.169.78 attack
20/1/13@08:09:35: FAIL: Alarm-Network address from=5.121.169.78
20/1/13@08:09:35: FAIL: Alarm-Network address from=5.121.169.78
...
2020-01-13 21:37:47
181.57.2.98 attackbotsspam
Unauthorized connection attempt detected from IP address 181.57.2.98 to port 2220 [J]
2020-01-13 21:57:23
182.73.222.82 attackspam
Honeypot attack, port: 445, PTR: PTR record not found
2020-01-13 21:53:05
89.250.209.228 attack
Honeypot attack, port: 445, PTR: PTR record not found
2020-01-13 22:05:28
82.202.248.52 attackspam
Unauthorized connection attempt detected from IP address 82.202.248.52 to port 2220 [J]
2020-01-13 21:59:48
222.186.175.217 attackspam
2020-01-13T14:44:15.012723ns386461 sshd\[28640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217  user=root
2020-01-13T14:44:17.881395ns386461 sshd\[28640\]: Failed password for root from 222.186.175.217 port 22896 ssh2
2020-01-13T14:44:21.560832ns386461 sshd\[28640\]: Failed password for root from 222.186.175.217 port 22896 ssh2
2020-01-13T14:44:25.334565ns386461 sshd\[28640\]: Failed password for root from 222.186.175.217 port 22896 ssh2
2020-01-13T14:44:29.665088ns386461 sshd\[28640\]: Failed password for root from 222.186.175.217 port 22896 ssh2
...
2020-01-13 21:49:34
169.197.108.164 attack
Honeypot attack, port: 81, PTR: survey.internet-census.org.
2020-01-13 21:48:28
184.65.90.67 attackspambots
Unauthorized connection attempt detected from IP address 184.65.90.67 to port 83 [J]
2020-01-13 21:55:24
36.89.248.125 attackbotsspam
Jan 13 13:53:33 Ubuntu-1404-trusty-64-minimal sshd\[26197\]: Invalid user exploit from 36.89.248.125
Jan 13 13:53:33 Ubuntu-1404-trusty-64-minimal sshd\[26197\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.89.248.125
Jan 13 13:53:36 Ubuntu-1404-trusty-64-minimal sshd\[26197\]: Failed password for invalid user exploit from 36.89.248.125 port 44980 ssh2
Jan 13 14:08:48 Ubuntu-1404-trusty-64-minimal sshd\[3639\]: Invalid user p from 36.89.248.125
Jan 13 14:08:48 Ubuntu-1404-trusty-64-minimal sshd\[3639\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.89.248.125
2020-01-13 22:15:51
222.186.30.114 attackspam
Jan 13 10:23:17 server sshd\[5311\]: Failed password for root from 222.186.30.114 port 26117 ssh2
Jan 13 16:34:11 server sshd\[1883\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.114  user=root
Jan 13 16:34:13 server sshd\[1883\]: Failed password for root from 222.186.30.114 port 63288 ssh2
Jan 13 16:34:15 server sshd\[1883\]: Failed password for root from 222.186.30.114 port 63288 ssh2
Jan 13 16:34:17 server sshd\[1883\]: Failed password for root from 222.186.30.114 port 63288 ssh2
...
2020-01-13 21:43:12

Recently Reported IPs

194.31.244.14 27.50.131.212 46.20.69.17 176.103.56.220
45.248.70.109 173.249.17.19 122.114.170.130 167.172.184.1
124.13.252.63 167.172.126.45 209.141.50.185 209.97.134.47
121.141.75.184 36.91.151.2 156.90.171.24 174.231.195.102
129.204.5.153 88.230.30.113 162.213.251.201 125.132.224.207