129.211.80.201

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Dec 23 16:56:18 XXX sshd[62334]: Invalid user vagrant from 129.211.80.201 port 38830	2019-12-24 01:43:15
attackspambots	Dec 14 13:57:13 ArkNodeAT sshd\[11623\]: Invalid user schryburt from 129.211.80.201 Dec 14 13:57:13 ArkNodeAT sshd\[11623\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.80.201 Dec 14 13:57:15 ArkNodeAT sshd\[11623\]: Failed password for invalid user schryburt from 129.211.80.201 port 32077 ssh2	2019-12-14 21:36:10
attack	$f2bV_matches	2019-12-10 03:02:50
attack	Automatic report - Banned IP Access	2019-11-17 21:42:48
attackbotsspam	2019-11-08T09:39:46.288269shield sshd\[22414\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.80.201 user=root 2019-11-08T09:39:48.823681shield sshd\[22414\]: Failed password for root from 129.211.80.201 port 43036 ssh2 2019-11-08T09:44:25.255107shield sshd\[23078\]: Invalid user sys from 129.211.80.201 port 23981 2019-11-08T09:44:25.259680shield sshd\[23078\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.80.201 2019-11-08T09:44:26.761509shield sshd\[23078\]: Failed password for invalid user sys from 129.211.80.201 port 23981 ssh2	2019-11-08 21:24:08
attackspambots	detected by Fail2Ban	2019-10-25 06:42:16
attack	Invalid user pimp from 129.211.80.201 port 64205	2019-10-24 22:10:51
attack	Automatic report - Banned IP Access	2019-10-22 18:19:08
attackspam	Oct 13 03:26:40 wbs sshd\[17426\]: Invalid user q1w2e3r4 from 129.211.80.201 Oct 13 03:26:40 wbs sshd\[17426\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.80.201 Oct 13 03:26:42 wbs sshd\[17426\]: Failed password for invalid user q1w2e3r4 from 129.211.80.201 port 25502 ssh2 Oct 13 03:32:19 wbs sshd\[17907\]: Invalid user Backup@2017 from 129.211.80.201 Oct 13 03:32:19 wbs sshd\[17907\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.80.201	2019-10-13 21:41:41
attackbots	Oct 2 09:31:36 heissa sshd\[10385\]: Invalid user nina from 129.211.80.201 port 12285 Oct 2 09:31:36 heissa sshd\[10385\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.80.201 Oct 2 09:31:38 heissa sshd\[10385\]: Failed password for invalid user nina from 129.211.80.201 port 12285 ssh2 Oct 2 09:37:39 heissa sshd\[11263\]: Invalid user charles from 129.211.80.201 port 57191 Oct 2 09:37:39 heissa sshd\[11263\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.80.201	2019-10-02 19:26:39
attackspambots	Sep 23 19:24:49 hiderm sshd\[31015\]: Invalid user alpha from 129.211.80.201 Sep 23 19:24:49 hiderm sshd\[31015\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.80.201 Sep 23 19:24:51 hiderm sshd\[31015\]: Failed password for invalid user alpha from 129.211.80.201 port 24425 ssh2 Sep 23 19:30:06 hiderm sshd\[31489\]: Invalid user terisocks from 129.211.80.201 Sep 23 19:30:06 hiderm sshd\[31489\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.80.201	2019-09-24 19:55:00
attack	Sep 22 07:03:13 h2177944 sshd\[3047\]: Invalid user attack from 129.211.80.201 port 29561 Sep 22 07:03:13 h2177944 sshd\[3047\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.80.201 Sep 22 07:03:15 h2177944 sshd\[3047\]: Failed password for invalid user attack from 129.211.80.201 port 29561 ssh2 Sep 22 07:08:53 h2177944 sshd\[3197\]: Invalid user salaun from 129.211.80.201 port 14596 ...	2019-09-22 20:01:37
attackbotsspam	Sep 7 03:47:38 localhost sshd\[2459\]: Invalid user 123456789 from 129.211.80.201 port 52991 Sep 7 03:47:38 localhost sshd\[2459\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.80.201 Sep 7 03:47:39 localhost sshd\[2459\]: Failed password for invalid user 123456789 from 129.211.80.201 port 52991 ssh2	2019-09-07 14:33:28
attack	Sep 5 22:56:16 dedicated sshd[22589]: Invalid user ftpuser from 129.211.80.201 port 10838	2019-09-06 05:16:14

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.211.80.201
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7607
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.211.80.201.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090501 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Sep 06 05:16:09 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 201.80.211.129.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 201.80.211.129.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
117.21.77.34	attackspambots	Port scan: Attack repeated for 24 hours	2020-08-12 18:51:20
14.253.122.42	attack	1597204125 - 08/12/2020 05:48:45 Host: 14.253.122.42/14.253.122.42 Port: 445 TCP Blocked	2020-08-12 17:38:00
61.177.172.61	attackbotsspam	Aug 12 12:33:00 ip40 sshd[18613]: Failed password for root from 61.177.172.61 port 54221 ssh2 Aug 12 12:33:04 ip40 sshd[18613]: Failed password for root from 61.177.172.61 port 54221 ssh2 ...	2020-08-12 18:33:59
178.62.0.215	attack	Aug 12 07:21:31 django-0 sshd[31700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.0.215 user=root Aug 12 07:21:33 django-0 sshd[31700]: Failed password for root from 178.62.0.215 port 38476 ssh2 ...	2020-08-12 17:11:32
148.235.57.183	attack	(sshd) Failed SSH login from 148.235.57.183 (MX/Mexico/customer-148-235-57-183.uninet-ide.com.mx): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 12 10:07:31 srv sshd[5435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.235.57.183 user=root Aug 12 10:07:32 srv sshd[5435]: Failed password for root from 148.235.57.183 port 36362 ssh2 Aug 12 10:15:49 srv sshd[5575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.235.57.183 user=root Aug 12 10:15:51 srv sshd[5575]: Failed password for root from 148.235.57.183 port 57515 ssh2 Aug 12 10:20:48 srv sshd[5661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.235.57.183 user=root	2020-08-12 18:01:40
198.251.84.168	normal	a0907	2020-08-12 17:27:43
66.249.64.197	attackspam	Automatic report - Banned IP Access	2020-08-12 18:32:16
159.65.91.105	attackspam	Aug 12 02:22:26 firewall sshd[31763]: Failed password for root from 159.65.91.105 port 41824 ssh2 Aug 12 02:26:34 firewall sshd[31887]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.91.105 user=root Aug 12 02:26:36 firewall sshd[31887]: Failed password for root from 159.65.91.105 port 52946 ssh2 ...	2020-08-12 18:48:39
103.17.39.28	attackspam	2020-08-12T06:03:10.607097cyberdyne sshd[575166]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.17.39.28 user=root 2020-08-12T06:03:12.740550cyberdyne sshd[575166]: Failed password for root from 103.17.39.28 port 59134 ssh2 2020-08-12T06:04:52.865490cyberdyne sshd[575213]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.17.39.28 user=root 2020-08-12T06:04:54.999322cyberdyne sshd[575213]: Failed password for root from 103.17.39.28 port 55050 ssh2 ...	2020-08-12 17:12:02
2.226.157.66	attackbots	Aug 12 06:10:25 roki-contabo sshd\[24218\]: Invalid user pi from 2.226.157.66 Aug 12 06:10:25 roki-contabo sshd\[24218\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.226.157.66 Aug 12 06:10:25 roki-contabo sshd\[24221\]: Invalid user pi from 2.226.157.66 Aug 12 06:10:25 roki-contabo sshd\[24221\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.226.157.66 Aug 12 06:10:27 roki-contabo sshd\[24218\]: Failed password for invalid user pi from 2.226.157.66 port 55030 ssh2 ...	2020-08-12 18:46:09
66.249.64.194	attackbotsspam	Automatic report - Banned IP Access	2020-08-12 18:34:26
222.92.116.40	attackbotsspam	Aug 12 11:33:44 serwer sshd\[21821\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.92.116.40 user=root Aug 12 11:33:46 serwer sshd\[21821\]: Failed password for root from 222.92.116.40 port 29896 ssh2 Aug 12 11:37:25 serwer sshd\[22386\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.92.116.40 user=root ...	2020-08-12 18:50:42
119.2.17.138	attackspambots	Aug 12 08:48:30 h2829583 sshd[26233]: Failed password for root from 119.2.17.138 port 44060 ssh2	2020-08-12 17:36:52
113.31.102.201	attackspam	Aug 12 13:34:20 hosting sshd[19083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.31.102.201 user=root Aug 12 13:34:21 hosting sshd[19083]: Failed password for root from 113.31.102.201 port 58532 ssh2 Aug 12 13:35:15 hosting sshd[19335]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.31.102.201 user=root Aug 12 13:35:16 hosting sshd[19335]: Failed password for root from 113.31.102.201 port 36472 ssh2 Aug 12 13:35:55 hosting sshd[19371]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.31.102.201 user=root Aug 12 13:35:57 hosting sshd[19371]: Failed password for root from 113.31.102.201 port 41702 ssh2 ...	2020-08-12 18:51:50
200.88.48.99	attackspambots	Aug 12 08:39:44 ns382633 sshd\[22244\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.88.48.99 user=root Aug 12 08:39:46 ns382633 sshd\[22244\]: Failed password for root from 200.88.48.99 port 49702 ssh2 Aug 12 08:45:30 ns382633 sshd\[23581\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.88.48.99 user=root Aug 12 08:45:32 ns382633 sshd\[23581\]: Failed password for root from 200.88.48.99 port 47788 ssh2 Aug 12 08:49:34 ns382633 sshd\[23845\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.88.48.99 user=root	2020-08-12 17:16:00

Recently Reported IPs

46.15.228.80	147.16.34.250	193.95.102.6	192.214.23.2
214.140.109.77	185.244.151.136	106.52.187.75	2607:5300:60:6d87::
27.192.103.151	107.155.48.14	83.97.20.174	179.184.134.18
24.207.207.249	123.213.74.132	71.95.68.23	63.143.98.72
178.62.98.196	185.145.127.66	176.10.232.53	54.38.22.27