129.211.72.48 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	16100/tcp 27370/tcp 9148/tcp... [2020-06-23/08-13]7pkt,7pt.(tcp)	2020-08-13 16:08:42
attack	$f2bV_matches	2020-08-08 16:34:54
attackspambots	Invalid user yixin from 129.211.72.48 port 35328	2020-08-02 15:45:23
attackspam	Invalid user git from 129.211.72.48 port 50576	2020-06-20 16:33:52
attack	2020-06-17T05:41:26.543252shield sshd\[15701\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.72.48 user=root 2020-06-17T05:41:28.711769shield sshd\[15701\]: Failed password for root from 129.211.72.48 port 33008 ssh2 2020-06-17T05:45:12.771978shield sshd\[16397\]: Invalid user liyuan from 129.211.72.48 port 47972 2020-06-17T05:45:12.775720shield sshd\[16397\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.72.48 2020-06-17T05:45:14.969371shield sshd\[16397\]: Failed password for invalid user liyuan from 129.211.72.48 port 47972 ssh2	2020-06-17 15:46:40
attackbotsspam	Jun 4 09:06:40 hosting sshd[6836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.72.48 user=root Jun 4 09:06:42 hosting sshd[6836]: Failed password for root from 129.211.72.48 port 55578 ssh2 ...	2020-06-04 18:17:58
attackbotsspam	Jun 1 08:17:22 odroid64 sshd\[26272\]: User root from 129.211.72.48 not allowed because not listed in AllowUsers Jun 1 08:17:22 odroid64 sshd\[26272\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.72.48 user=root ...	2020-06-01 18:09:09
attackspam	SSH login attempts.	2020-05-05 21:23:36
attackbots	May 4 08:18:22 ns382633 sshd\[1003\]: Invalid user user1 from 129.211.72.48 port 43258 May 4 08:18:22 ns382633 sshd\[1003\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.72.48 May 4 08:18:24 ns382633 sshd\[1003\]: Failed password for invalid user user1 from 129.211.72.48 port 43258 ssh2 May 4 08:27:21 ns382633 sshd\[2935\]: Invalid user uftp from 129.211.72.48 port 41740 May 4 08:27:21 ns382633 sshd\[2935\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.72.48	2020-05-04 15:32:46
attackbots	Apr 25 08:35:34 srv01 sshd[18061]: Invalid user azureuser from 129.211.72.48 port 45424 Apr 25 08:35:34 srv01 sshd[18061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.72.48 Apr 25 08:35:34 srv01 sshd[18061]: Invalid user azureuser from 129.211.72.48 port 45424 Apr 25 08:35:36 srv01 sshd[18061]: Failed password for invalid user azureuser from 129.211.72.48 port 45424 ssh2 Apr 25 08:39:21 srv01 sshd[18462]: Invalid user mana from 129.211.72.48 port 58244 ...	2020-04-25 14:42:46

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.211.72.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26711
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.211.72.48.			IN	A

;; AUTHORITY SECTION:
.			478	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042500 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 25 14:42:41 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 48.72.211.129.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 48.72.211.129.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
79.136.47.186	attack	Honeypot attack, port: 5555, PTR: h-47-186.A328.priv.bahnhof.se.	2020-01-13 22:04:01
117.69.30.65	attackbots	Email spam message	2020-01-13 22:05:58
166.62.100.99	attackbots	Automatic report - XMLRPC Attack	2020-01-13 22:02:12
111.231.54.248	attack	Jan 13 15:09:14 vmanager6029 sshd\[32148\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.54.248 user=root Jan 13 15:09:17 vmanager6029 sshd\[32148\]: Failed password for root from 111.231.54.248 port 55896 ssh2 Jan 13 15:11:34 vmanager6029 sshd\[32270\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.54.248 user=root	2020-01-13 22:17:21
129.211.110.18	attackbotsspam	Jan 13 13:08:51 *** sshd[28620]: Invalid user fava from 129.211.110.18	2020-01-13 22:13:06
5.121.169.78	attack	20/1/13@08:09:35: FAIL: Alarm-Network address from=5.121.169.78 20/1/13@08:09:35: FAIL: Alarm-Network address from=5.121.169.78 ...	2020-01-13 21:37:47
181.57.2.98	attackbotsspam	Unauthorized connection attempt detected from IP address 181.57.2.98 to port 2220 [J]	2020-01-13 21:57:23
182.73.222.82	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-13 21:53:05
89.250.209.228	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-13 22:05:28
82.202.248.52	attackspam	Unauthorized connection attempt detected from IP address 82.202.248.52 to port 2220 [J]	2020-01-13 21:59:48
222.186.175.217	attackspam	2020-01-13T14:44:15.012723ns386461 sshd\[28640\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root 2020-01-13T14:44:17.881395ns386461 sshd\[28640\]: Failed password for root from 222.186.175.217 port 22896 ssh2 2020-01-13T14:44:21.560832ns386461 sshd\[28640\]: Failed password for root from 222.186.175.217 port 22896 ssh2 2020-01-13T14:44:25.334565ns386461 sshd\[28640\]: Failed password for root from 222.186.175.217 port 22896 ssh2 2020-01-13T14:44:29.665088ns386461 sshd\[28640\]: Failed password for root from 222.186.175.217 port 22896 ssh2 ...	2020-01-13 21:49:34
169.197.108.164	attack	Honeypot attack, port: 81, PTR: survey.internet-census.org.	2020-01-13 21:48:28
184.65.90.67	attackspambots	Unauthorized connection attempt detected from IP address 184.65.90.67 to port 83 [J]	2020-01-13 21:55:24
36.89.248.125	attackbotsspam	Jan 13 13:53:33 Ubuntu-1404-trusty-64-minimal sshd\[26197\]: Invalid user exploit from 36.89.248.125 Jan 13 13:53:33 Ubuntu-1404-trusty-64-minimal sshd\[26197\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.89.248.125 Jan 13 13:53:36 Ubuntu-1404-trusty-64-minimal sshd\[26197\]: Failed password for invalid user exploit from 36.89.248.125 port 44980 ssh2 Jan 13 14:08:48 Ubuntu-1404-trusty-64-minimal sshd\[3639\]: Invalid user p from 36.89.248.125 Jan 13 14:08:48 Ubuntu-1404-trusty-64-minimal sshd\[3639\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.89.248.125	2020-01-13 22:15:51
222.186.30.114	attackspam	Jan 13 10:23:17 server sshd\[5311\]: Failed password for root from 222.186.30.114 port 26117 ssh2 Jan 13 16:34:11 server sshd\[1883\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.114 user=root Jan 13 16:34:13 server sshd\[1883\]: Failed password for root from 222.186.30.114 port 63288 ssh2 Jan 13 16:34:15 server sshd\[1883\]: Failed password for root from 222.186.30.114 port 63288 ssh2 Jan 13 16:34:17 server sshd\[1883\]: Failed password for root from 222.186.30.114 port 63288 ssh2 ...	2020-01-13 21:43:12

Recently Reported IPs

194.31.244.14	27.50.131.212	46.20.69.17	176.103.56.220
45.248.70.109	173.249.17.19	122.114.170.130	167.172.184.1
124.13.252.63	167.172.126.45	209.141.50.185	209.97.134.47
121.141.75.184	36.91.151.2	156.90.171.24	174.231.195.102
129.204.5.153	88.230.30.113	162.213.251.201	125.132.224.207