61.142.21.30 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Guangdong Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	FTP brute force ...	2019-12-03 16:33:37

Comments on same subnet:

IP	Type	Details	Datetime
61.142.21.19	attackbotsspam	Automatic report - Banned IP Access	2020-08-03 04:26:09
61.142.21.19	attack	prod8 ...	2020-07-08 23:01:09
61.142.21.46	attackspam	Brute force blocker - service: proftpd1, proftpd2 - aantal: 155 - Thu May 31 23:50:16 2018	2020-04-30 19:50:47
61.142.21.5	attackspambots	Brute force blocker - service: proftpd1 - aantal: 119 - Fri Jul 27 16:50:16 2018	2020-02-24 22:30:35
61.142.21.19	attackbotsspam	Scanning	2020-01-09 08:53:28
61.142.21.22	attackbots	Automatic report - Banned IP Access	2019-12-18 13:58:26
61.142.21.44	attackbotsspam	Time: Tue Nov 5 01:03:17 2019 -0500 IP: 61.142.21.44 (CN/China/-) Failures: 10 (ftpd) Interval: 3600 seconds Blocked: Permanent Block	2019-11-05 15:12:01
61.142.21.11	attackspam	1433/tcp 1433/tcp 1433/tcp... [2019-10-06/11-03]4pkt,1pt.(tcp)	2019-11-03 16:01:00
61.142.21.19	attack	Automatic report - Banned IP Access	2019-10-23 20:33:00
61.142.21.34	attackspam	Oct2305:12:25server4pure-ftpd:\(\?@110.17.2.179\)[WARNING]Authenticationfailedforuser[www]Oct2305:12:45server4pure-ftpd:\(\?@110.17.2.179\)[WARNING]Authenticationfailedforuser[www]Oct2305:57:27server4pure-ftpd:\(\?@117.67.136.100\)[WARNING]Authenticationfailedforuser[www]Oct2305:11:49server4pure-ftpd:\(\?@110.17.2.179\)[WARNING]Authenticationfailedforuser[www]Oct2305:49:14server4pure-ftpd:\(\?@61.142.21.34\)[WARNING]Authenticationfailedforuser[www]Oct2305:49:04server4pure-ftpd:\(\?@61.142.21.34\)[WARNING]Authenticationfailedforuser[www]Oct2305:57:45server4pure-ftpd:\(\?@117.67.136.100\)[WARNING]Authenticationfailedforuser[www]Oct2305:12:17server4pure-ftpd:\(\?@110.17.2.179\)[WARNING]Authenticationfailedforuser[www]Oct2305:11:59server4pure-ftpd:\(\?@110.17.2.179\)[WARNING]Authenticationfailedforuser[www]Oct2305:12:38server4pure-ftpd:\(\?@110.17.2.179\)[WARNING]Authenticationfailedforuser[www]IPAddressesBlocked:110.17.2.179\(CN/China/-\)117.67.136.100\(CN/China/-\)	2019-10-23 12:46:10
61.142.21.32	attackbots	Automated reporting of FTP Brute Force	2019-10-02 01:58:47
61.142.21.44	attack	Automated reporting of FTP Brute Force	2019-09-30 22:28:07
61.142.21.44	attack	Sep2915:40:12server4pure-ftpd:\(\?@61.142.21.44\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep2914:52:37server4pure-ftpd:\(\?@123.117.11.151\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep2915:20:19server4pure-ftpd:\(\?@117.157.106.29\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep2914:52:31server4pure-ftpd:\(\?@123.117.11.151\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep2915:40:02server4pure-ftpd:\(\?@61.142.21.44\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep2915:40:04server4pure-ftpd:\(\?@61.142.21.44\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep2915:40:32server4pure-ftpd:\(\?@61.142.21.44\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep2915:10:36server4pure-ftpd:\(\?@117.157.106.29\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep2915:40:27server4pure-ftpd:\(\?@61.142.21.44\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep2915:10:43server4pure-ftpd:\(\?@117.157.106.29\)[WARNING]Authenticationfailedforuser[forum-wbp]IPAddressesBlocked:	2019-09-29 23:48:40
61.142.21.27	attackbots	Sep1912:47:07server4pure-ftpd:\(\?@61.142.21.27\)[WARNING]Authenticationfailedforuser[www]Sep1912:25:42server4pure-ftpd:\(\?@113.108.126.29\)[WARNING]Authenticationfailedforuser[www]Sep1912:47:16server4pure-ftpd:\(\?@61.142.21.27\)[WARNING]Authenticationfailedforuser[www]Sep1912:25:37server4pure-ftpd:\(\?@113.108.126.29\)[WARNING]Authenticationfailedforuser[www]Sep1912:25:53server4pure-ftpd:\(\?@113.108.126.29\)[WARNING]Authenticationfailedforuser[www]Sep1912:25:26server4pure-ftpd:\(\?@113.108.126.29\)[WARNING]Authenticationfailedforuser[www]Sep1912:47:00server4pure-ftpd:\(\?@61.142.21.27\)[WARNING]Authenticationfailedforuser[www]Sep1912:26:02server4pure-ftpd:\(\?@113.108.126.29\)[WARNING]Authenticationfailedforuser[www]Sep1912:25:21server4pure-ftpd:\(\?@113.108.126.29\)[WARNING]Authenticationfailedforuser[www]Sep1912:25:48server4pure-ftpd:\(\?@113.108.126.29\)[WARNING]Authenticationfailedforuser[www]IPAddressesBlocked:	2019-09-20 02:46:27
61.142.21.19	attackspambots	Sep906:36:26server4pure-ftpd:\(\?@61.142.21.19\)[WARNING]Authenticationfailedforuser[anonymous]Sep906:36:31server4pure-ftpd:\(\?@61.142.21.19\)[WARNING]Authenticationfailedforuser[sanghaticino]Sep906:36:37server4pure-ftpd:\(\?@61.142.21.19\)[WARNING]Authenticationfailedforuser[sanghaticino]Sep906:36:39server4pure-ftpd:\(\?@61.142.21.19\)[WARNING]Authenticationfailedforuser[sanghaticino]Sep906:36:43server4pure-ftpd:\(\?@61.142.21.19\)[WARNING]Authenticationfailedforuser[www]Sep906:36:44server4pure-ftpd:\(\?@61.142.21.19\)[WARNING]Authenticationfailedforuser[www]Sep906:36:49server4pure-ftpd:\(\?@61.142.21.19\)[WARNING]Authenticationfailedforuser[www]Sep906:36:50server4pure-ftpd:\(\?@61.142.21.19\)[WARNING]Authenticationfailedforuser[www]Sep906:36:56server4pure-ftpd:\(\?@61.142.21.19\)[WARNING]Authenticationfailedforuser[sanghaticino]Sep906:37:02server4pure-ftpd:\(\?@61.142.21.19\)[WARNING]Authenticationfailedforuser[sanghaticino]	2019-09-09 16:38:13

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 61.142.21.30
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29545
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;61.142.21.30.			IN	A

;; AUTHORITY SECTION:
.			324	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120300 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 03 16:33:33 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 30.21.142.61.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 30.21.142.61.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
223.223.188.226	attackbotsspam	Nov 27 04:28:40 master sshd[549]: Failed password for invalid user probst from 223.223.188.226 port 44834 ssh2 Nov 27 04:49:29 master sshd[887]: Failed password for root from 223.223.188.226 port 37821 ssh2 Nov 27 04:54:32 master sshd[889]: Failed password for root from 223.223.188.226 port 52539 ssh2 Nov 27 04:59:33 master sshd[891]: Failed password for invalid user marugg from 223.223.188.226 port 39025 ssh2 Nov 27 05:05:07 master sshd[1228]: Failed password for invalid user dovecot from 223.223.188.226 port 53745 ssh2 Nov 27 05:09:09 master sshd[1230]: Failed password for invalid user okuna from 223.223.188.226 port 40231 ssh2 Nov 27 05:13:14 master sshd[1232]: Failed password for root from 223.223.188.226 port 54948 ssh2 Nov 27 05:17:25 master sshd[1246]: Failed password for invalid user aj from 223.223.188.226 port 41434 ssh2 Nov 27 05:21:45 master sshd[1248]: Failed password for invalid user webadmin from 223.223.188.226 port 56152 ssh2 Nov 27 05:26:11 master sshd[1250]: Failed password for invalid user	2019-11-27 20:04:25
167.99.52.254	attackspam	Automatic report - Banned IP Access	2019-11-27 19:59:42
36.228.216.48	attackbots	19/11/27@03:51:50: FAIL: IoT-Telnet address from=36.228.216.48 ...	2019-11-27 20:03:27
209.17.97.26	attackbots	Automatic report - Banned IP Access	2019-11-27 20:27:11
78.180.151.133	attack	Honeypot attack, port: 23, PTR: 78.180.151.133.dynamic.ttnet.com.tr.	2019-11-27 20:26:09
180.168.70.190	attack	Nov 27 09:27:31 vmanager6029 sshd\[14494\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.168.70.190 user=root Nov 27 09:27:33 vmanager6029 sshd\[14494\]: Failed password for root from 180.168.70.190 port 34733 ssh2 Nov 27 09:34:35 vmanager6029 sshd\[14605\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.168.70.190 user=root	2019-11-27 20:09:28
180.76.148.87	attack	Nov 27 07:23:21 lnxmail61 sshd[16635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.148.87	2019-11-27 19:55:34
173.225.108.100	attackbotsspam	" "	2019-11-27 20:16:50
203.129.226.99	attack	Nov 27 06:54:29 ns382633 sshd\[21687\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.129.226.99 user=root Nov 27 06:54:31 ns382633 sshd\[21687\]: Failed password for root from 203.129.226.99 port 19959 ssh2 Nov 27 07:18:20 ns382633 sshd\[26053\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.129.226.99 user=root Nov 27 07:18:22 ns382633 sshd\[26053\]: Failed password for root from 203.129.226.99 port 52116 ssh2 Nov 27 07:22:30 ns382633 sshd\[26827\]: Invalid user erol from 203.129.226.99 port 9510 Nov 27 07:22:30 ns382633 sshd\[26827\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.129.226.99	2019-11-27 20:27:30
74.82.47.37	attackbots	3389BruteforceFW23	2019-11-27 20:27:46
114.67.79.2	attackspambots	Nov 27 12:34:34 host sshd[18968]: Invalid user contents from 114.67.79.2 port 46780 ...	2019-11-27 20:13:01
5.196.88.110	attackspambots	Nov 26 23:19:30 hanapaa sshd\[21591\]: Invalid user service from 5.196.88.110 Nov 26 23:19:30 hanapaa sshd\[21591\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns375206.ip-5-196-88.eu Nov 26 23:19:33 hanapaa sshd\[21591\]: Failed password for invalid user service from 5.196.88.110 port 60046 ssh2 Nov 26 23:23:27 hanapaa sshd\[21902\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns375206.ip-5-196-88.eu user=root Nov 26 23:23:30 hanapaa sshd\[21902\]: Failed password for root from 5.196.88.110 port 39218 ssh2	2019-11-27 20:30:12
202.103.37.40	attack	Invalid user lisa from 202.103.37.40 port 52882	2019-11-27 20:17:19
45.55.243.124	attack	2019-11-27T08:45:12.905018shield sshd\[12138\]: Invalid user tha from 45.55.243.124 port 49098 2019-11-27T08:45:12.909172shield sshd\[12138\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.243.124 2019-11-27T08:45:14.732484shield sshd\[12138\]: Failed password for invalid user tha from 45.55.243.124 port 49098 ssh2 2019-11-27T08:51:27.301752shield sshd\[13354\]: Invalid user mysql from 45.55.243.124 port 58814 2019-11-27T08:51:27.305958shield sshd\[13354\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.243.124	2019-11-27 20:12:08
87.236.20.13	attackspam	WordPress login Brute force / Web App Attack on client site.	2019-11-27 20:02:38

Recently Reported IPs

174.138.188.83	20.46.110.162	5.196.73.40	39.50.173.115
17.30.117.121	118.140.65.121	173.0.28.78	176.239.250.69
5.68.9.224	178.14.43.219	177.92.165.85	132.232.199.158
60.151.194.12	171.133.25.3	175.183.194.186	53.194.98.37
157.219.159.201	23.108.246.120	171.136.148.214	65.204.81.239