212.129.21.53 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
212.129.21.129	attack	May 6 14:05:50 pornomens sshd\[22866\]: Invalid user admin from 212.129.21.129 port 51224 May 6 14:05:50 pornomens sshd\[22866\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.21.129 May 6 14:05:52 pornomens sshd\[22866\]: Failed password for invalid user admin from 212.129.21.129 port 51224 ssh2 ...	2020-05-06 20:13:03

Type

Details

Datetime

212.129.21.129

attack

May  6 14:05:50 pornomens sshd\[22866\]: Invalid user admin from 212.129.21.129 port 51224
May  6 14:05:50 pornomens sshd\[22866\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.21.129
May  6 14:05:52 pornomens sshd\[22866\]: Failed password for invalid user admin from 212.129.21.129 port 51224 ssh2
...

2020-05-06 20:13:03

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.129.21.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41874
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;212.129.21.53.			IN	A

;; AUTHORITY SECTION:
.			347	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 19 01:30:00 CST 2022
;; MSG SIZE  rcvd: 106

Host info

53.21.129.212.in-addr.arpa domain name pointer laregledujeu.org.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
53.21.129.212.in-addr.arpa	name = laregledujeu.org.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.89.231.121	attackbots	Sep 7 07:00:41 sip sshd[22634]: Failed password for root from 118.89.231.121 port 51084 ssh2 Sep 7 07:05:39 sip sshd[23876]: Failed password for root from 118.89.231.121 port 40434 ssh2	2020-09-07 17:26:17
222.186.175.150	attackspambots	Sep 7 10:14:09 ajax sshd[12476]: Failed password for root from 222.186.175.150 port 17280 ssh2 Sep 7 10:14:13 ajax sshd[12476]: Failed password for root from 222.186.175.150 port 17280 ssh2	2020-09-07 17:14:49
93.114.86.226	attack	WordPress wp-login brute force :: 93.114.86.226 0.556 - [07/Sep/2020:08:27:07 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 2415 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2020-09-07 17:25:49
85.247.242.96	attackbotsspam	Wordpress File Manager Plugin Remote Code Execution Vulnerability, PTR: bl14-242-96.dsl.telepac.pt.	2020-09-07 17:28:55
61.157.91.159	attack	2020-09-06T20:29:54.216642vps1033 sshd[6888]: Failed password for invalid user localhost from 61.157.91.159 port 60918 ssh2 2020-09-06T20:31:34.264439vps1033 sshd[10460]: Invalid user wiki from 61.157.91.159 port 44838 2020-09-06T20:31:34.270930vps1033 sshd[10460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.157.91.159 2020-09-06T20:31:34.264439vps1033 sshd[10460]: Invalid user wiki from 61.157.91.159 port 44838 2020-09-06T20:31:36.523169vps1033 sshd[10460]: Failed password for invalid user wiki from 61.157.91.159 port 44838 ssh2 ...	2020-09-07 17:16:45
86.248.198.40	attackspam	Lines containing failures of 86.248.198.40 Aug 31 05:17:34 newdogma sshd[21663]: Invalid user www from 86.248.198.40 port 56866 Aug 31 05:17:34 newdogma sshd[21663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.248.198.40 Aug 31 05:17:36 newdogma sshd[21663]: Failed password for invalid user www from 86.248.198.40 port 56866 ssh2 Aug 31 05:17:38 newdogma sshd[21663]: Received disconnect from 86.248.198.40 port 56866:11: Bye Bye [preauth] Aug 31 05:17:38 newdogma sshd[21663]: Disconnected from invalid user www 86.248.198.40 port 56866 [preauth] Aug 31 05:17:58 newdogma sshd[21770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.248.198.40 user=r.r Aug 31 05:18:00 newdogma sshd[21770]: Failed password for r.r from 86.248.198.40 port 57786 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=86.248.198.40	2020-09-07 17:13:55
103.251.213.122	attackbotsspam	Unauthorised login to NAS	2020-09-07 17:40:31
82.221.131.71	attack	Bruteforce detected by fail2ban	2020-09-07 17:22:14
201.163.1.66	attackbotsspam	2020-09-07T10:45:02+0200 Failed SSH Authentication/Brute Force Attack. (Server 5)	2020-09-07 17:03:44
51.91.45.12	attack	This client attempted to login to an administrator account on a Website, or abused from another resource.	2020-09-07 17:13:35
209.85.217.66	attackbots	Received: from 10.197.32.140 by atlas116.free.mail.bf1.yahoo.com with HTTP; Sat, 5 Sep 2020 18:48:07 +0000 Return-Path: Received: from 209.85.217.66 (EHLO mail-vs1-f66.google.com) by 10.197.32.140 with SMTPs; Sat, 5 Sep 2020 18:48:07 +0000 X-Originating-Ip: [209.85.217.66] Received-SPF: pass (domain of gmail.com designates 209.85.217.66 as permitted sender) Authentication-Results: atlas116.free.mail.bf1.yahoo.com; dkim=pass header.i=@gmail.com header.s=20161025; spf=pass smtp.mailfrom=gmail.com; dmarc=success(p=NONE,sp=QUARANTINE) header.from=gmail.com; X-Apparently-To: ledlib@yahoo.com; Sat, 5 Sep 2020 18:48:07	2020-09-07 17:40:55
193.194.74.19	attack	20/9/6@18:34:15: FAIL: Alarm-Network address from=193.194.74.19 ...	2020-09-07 17:13:03
51.158.171.117	attackbotsspam	...	2020-09-07 17:31:07
61.84.196.50	attackbots	Sep 7 10:56:37 ns41 sshd[20943]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.84.196.50 Sep 7 10:56:37 ns41 sshd[20943]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.84.196.50	2020-09-07 17:28:20
111.229.78.212	attackbots	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-09-07 17:07:56

Recently Reported IPs

212.129.232.78	212.129.24.47	212.129.25.132	212.129.25.179
212.129.26.143	212.129.25.206	212.129.26.140	212.129.26.139
212.129.26.70	212.129.26.71	212.129.29.45	212.129.28.138
212.129.28.16	212.129.27.196	212.129.29.46	212.129.3.200
212.129.3.113	212.129.3.29	212.129.30.122	212.129.3.112