211.21.159.192

Basic Info

City: unknown

Region: unknown

Country: Taiwan (Province of China)

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Port probing on unauthorized port 139	2020-02-12 07:20:36

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 211.21.159.192
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8373
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;211.21.159.192.			IN	A

;; AUTHORITY SECTION:
.			220	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021103 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 12 07:20:31 CST 2020
;; MSG SIZE  rcvd: 118

Host info

192.159.21.211.in-addr.arpa domain name pointer 211-21-159-192.HINET-IP.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
192.159.21.211.in-addr.arpa	name = 211-21-159-192.HINET-IP.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.254.37.156	attackspam	Mar 31 20:46:07 php1 sshd\[14596\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.37.156 user=root Mar 31 20:46:10 php1 sshd\[14596\]: Failed password for root from 51.254.37.156 port 59326 ssh2 Mar 31 20:49:47 php1 sshd\[14923\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.37.156 user=root Mar 31 20:49:48 php1 sshd\[14923\]: Failed password for root from 51.254.37.156 port 39206 ssh2 Mar 31 20:53:23 php1 sshd\[15292\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.37.156 user=root	2020-04-01 15:18:36
82.118.236.186	attackbotsspam	Mar 31 16:34:26 server sshd\[23521\]: Failed password for invalid user RCadmin from 82.118.236.186 port 47910 ssh2 Apr 1 09:09:47 server sshd\[9702\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.118.236.186 user=root Apr 1 09:09:49 server sshd\[9702\]: Failed password for root from 82.118.236.186 port 54396 ssh2 Apr 1 09:15:05 server sshd\[11240\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.118.236.186 user=root Apr 1 09:15:07 server sshd\[11240\]: Failed password for root from 82.118.236.186 port 35712 ssh2 ...	2020-04-01 15:09:16
180.76.177.237	attack	$f2bV_matches	2020-04-01 15:08:05
75.130.124.90	attack	Automatic report - SSH Brute-Force Attack	2020-04-01 15:07:06
180.76.245.228	attackbots	2020-04-01T05:41:33.497920struts4.enskede.local sshd\[22705\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.245.228 user=root 2020-04-01T05:41:36.680837struts4.enskede.local sshd\[22705\]: Failed password for root from 180.76.245.228 port 49206 ssh2 2020-04-01T05:45:53.372531struts4.enskede.local sshd\[22763\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.245.228 user=root 2020-04-01T05:45:56.599962struts4.enskede.local sshd\[22763\]: Failed password for root from 180.76.245.228 port 48132 ssh2 2020-04-01T05:49:53.729180struts4.enskede.local sshd\[22822\]: Invalid user il from 180.76.245.228 port 47068 ...	2020-04-01 15:52:07
203.162.13.68	attack	Apr 1 08:32:49 rotator sshd\[21227\]: Address 203.162.13.68 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Apr 1 08:32:51 rotator sshd\[21227\]: Failed password for root from 203.162.13.68 port 60278 ssh2Apr 1 08:38:06 rotator sshd\[22048\]: Address 203.162.13.68 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Apr 1 08:38:08 rotator sshd\[22048\]: Failed password for root from 203.162.13.68 port 41996 ssh2Apr 1 08:40:23 rotator sshd\[22843\]: Address 203.162.13.68 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Apr 1 08:40:25 rotator sshd\[22843\]: Failed password for root from 203.162.13.68 port 45124 ssh2 ...	2020-04-01 15:12:34
185.175.93.105	attackbots	ET DROP Dshield Block Listed Source group 1 - port: 6312 proto: TCP cat: Misc Attack	2020-04-01 15:05:07
182.61.184.155	attackbotsspam	Invalid user uploader from 182.61.184.155 port 59522	2020-04-01 15:16:32
123.206.45.16	attack	Invalid user gek from 123.206.45.16 port 51524	2020-04-01 15:35:04
123.31.43.173	attack	C1,WP GET /suche/wp-login.php	2020-04-01 15:26:12
149.56.26.16	attackspam	Invalid user lcw from 149.56.26.16 port 48638	2020-04-01 15:24:55
175.24.72.144	attack	Apr 1 08:30:02 dev0-dcde-rnet sshd[24476]: Failed password for root from 175.24.72.144 port 52794 ssh2 Apr 1 08:41:52 dev0-dcde-rnet sshd[24584]: Failed password for root from 175.24.72.144 port 46462 ssh2	2020-04-01 15:17:15
94.19.29.200	attackspambots	DATE:2020-04-01 05:53:00, IP:94.19.29.200, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-04-01 15:02:30
187.12.167.85	attackspambots	SSH brute-force attempt	2020-04-01 15:30:46
106.12.178.246	attackbots	SSH Brute-Force reported by Fail2Ban	2020-04-01 15:30:23

Recently Reported IPs

121.46.250.156	35.220.85.167	62.130.124.111	96.118.82.244
113.205.249.134	178.220.59.46	86.153.163.86	77.84.58.84
222.117.19.30	99.169.140.50	173.254.135.1	89.204.87.20
91.8.197.39	208.88.17.3	201.190.184.207	37.46.114.115
178.62.6.74	171.97.91.62	159.69.125.71	171.221.244.26