219.143.21.166

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
219.143.218.163	attackbots	SSH login attempts.	2020-07-03 23:20:14
219.143.218.163	attackbots	Jun 22 01:50:59 NPSTNNYC01T sshd[23430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.143.218.163 Jun 22 01:51:01 NPSTNNYC01T sshd[23430]: Failed password for invalid user artik from 219.143.218.163 port 23917 ssh2 Jun 22 01:52:06 NPSTNNYC01T sshd[23479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.143.218.163 ...	2020-06-22 14:03:42
219.143.218.163	attack	SSH Brute-Force reported by Fail2Ban	2020-06-17 04:58:11
219.143.218.163	attackspambots	sshd: Failed password for .... from 219.143.218.163 port 27970 ssh2 (3 attempts)	2020-06-10 17:05:23
219.143.215.194	attackbotsspam	05/02/2020-23:46:22.510892 219.143.215.194 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-05-03 20:10:17
219.143.218.163	attack	Apr 1 01:17:27 pve sshd[5323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.143.218.163 Apr 1 01:17:29 pve sshd[5323]: Failed password for invalid user haihua from 219.143.218.163 port 23794 ssh2 Apr 1 01:21:29 pve sshd[5974]: Failed password for root from 219.143.218.163 port 51885 ssh2	2020-04-01 07:41:32
219.143.218.162	attack	$f2bV_matches	2020-03-05 03:37:33
219.143.218.163	attackbotsspam	Invalid user gwen from 219.143.218.163 port 24707	2020-02-21 16:09:15
219.143.218.163	attackspam	Jan 21 22:02:28 DAAP sshd[3146]: Invalid user paci from 219.143.218.163 port 16863 Jan 21 22:02:28 DAAP sshd[3146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.143.218.163 Jan 21 22:02:28 DAAP sshd[3146]: Invalid user paci from 219.143.218.163 port 16863 Jan 21 22:02:30 DAAP sshd[3146]: Failed password for invalid user paci from 219.143.218.163 port 16863 ssh2 ...	2020-01-22 05:54:18
219.143.218.163	attackbots	Unauthorized connection attempt detected from IP address 219.143.218.163 to port 2220 [J]	2020-01-20 06:18:01
219.143.218.163	attackspam	Jan 13 13:35:48 ns382633 sshd\[804\]: Invalid user hadoop from 219.143.218.163 port 38623 Jan 13 13:35:48 ns382633 sshd\[804\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.143.218.163 Jan 13 13:35:50 ns382633 sshd\[804\]: Failed password for invalid user hadoop from 219.143.218.163 port 38623 ssh2 Jan 13 14:03:18 ns382633 sshd\[5614\]: Invalid user regia from 219.143.218.163 port 39799 Jan 13 14:03:18 ns382633 sshd\[5614\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.143.218.163	2020-01-14 03:57:28
219.143.210.202	attack	firewall-block, port(s): 1433/tcp	2019-12-31 21:30:58
219.143.218.163	attack	$f2bV_matches	2019-11-24 22:15:32
219.143.218.163	attack	Nov 20 12:49:31 firewall sshd[4395]: Invalid user tour from 219.143.218.163 Nov 20 12:49:33 firewall sshd[4395]: Failed password for invalid user tour from 219.143.218.163 port 16130 ssh2 Nov 20 12:54:24 firewall sshd[4479]: Invalid user jack from 219.143.218.163 ...	2019-11-20 23:58:44
219.143.218.163	attackbots	fraudulent SSH attempt	2019-11-20 02:55:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 219.143.21.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30879
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;219.143.21.166.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024121000 1800 900 604800 86400

;; Query time: 77 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 10 23:04:13 CST 2024
;; MSG SIZE  rcvd: 107

Host info

166.21.143.219.in-addr.arpa domain name pointer 166.21.143.219.broad.bj.bj.dynamic.163data.com.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
166.21.143.219.in-addr.arpa	name = 166.21.143.219.broad.bj.bj.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.195.180.227	attackspambots	Port Scan: UDP/4000	2020-10-09 03:31:40
2.88.64.51	attackspambots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-09 03:23:12
174.138.20.105	attackspam	2020-10-08T17:58:11.015372hostname sshd[70237]: Failed password for root from 174.138.20.105 port 36342 ssh2 ...	2020-10-09 03:18:42
198.98.59.100	attackspam	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-10-09 03:30:54
1.192.195.11	attackbotsspam	88/tcp 2378/tcp 8443/tcp... [2020-08-16/10-07]7pkt,7pt.(tcp)	2020-10-09 03:15:15
190.217.3.122	attackspam	445/tcp 445/tcp 445/tcp [2020-10-05/07]3pkt	2020-10-09 03:29:56
115.72.130.195	attackbotsspam	Automatic report - Banned IP Access	2020-10-09 03:26:08
43.243.75.34	attackbotsspam	Icarus honeypot on github	2020-10-09 03:05:51
113.200.105.23	attackbotsspam	Oct 8 20:16:13 rocket sshd[3866]: Failed password for root from 113.200.105.23 port 40492 ssh2 Oct 8 20:18:48 rocket sshd[4123]: Failed password for root from 113.200.105.23 port 49778 ssh2 ...	2020-10-09 03:34:37
106.13.238.73	attackspam	bruteforce, ssh, scan port	2020-10-09 03:28:45
103.40.187.34	attackspambots	445/tcp 1433/tcp [2020-09-25/10-07]2pkt	2020-10-09 03:04:58
2a03:b0c0:2:f0::29f:4001	attackspambots	3388/tcp 19/tcp 50100/tcp... [2020-08-07/10-07]39pkt,33pt.(tcp),1pt.(udp)	2020-10-09 03:25:10
119.18.194.168	attackbotsspam	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-10-09 03:01:18
63.240.240.74	attackspam	Cluster member 178.17.174.160 (MD/Republic of Moldova/ChiÈinÄu Municipality/Chisinau/kiv.hlex.pw/[AS43289 I.C.S. Trabia-Network S.R.L.]) said, TEMPDENY 63.240.240.74, Reason:[(sshd) Failed SSH login from 63.240.240.74 (US/United States/Florida/Miami/-/[AS16959 SBIS-AMRLTX]): 1 in the last 3600 secs]; Ports: *; Direction: inout; Trigger: LF_CLUSTER; Logs:	2020-10-09 03:32:38
162.243.237.90	attack	Oct 8 21:33:28 itv-usvr-01 sshd[4306]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.237.90 user=root Oct 8 21:33:30 itv-usvr-01 sshd[4306]: Failed password for root from 162.243.237.90 port 43527 ssh2	2020-10-09 03:27:55

Recently Reported IPs

238.7.174.145	73.164.105.208	25.189.16.143	223.107.205.168
86.5.4.224	198.108.83.151	96.177.197.253	144.15.17.64
64.24.127.192	214.31.134.236	211.115.67.34	20.210.60.236
51.71.202.145	197.115.171.243	250.131.33.37	58.77.176.213
34.217.243.8	35.148.157.128	120.108.250.96	86.102.205.11