81.70.55.21 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Oct 2 15:07:34 mx sshd[6783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.70.55.21 Oct 2 15:07:36 mx sshd[6783]: Failed password for invalid user king from 81.70.55.21 port 44912 ssh2	2020-10-03 05:20:45
attack	(sshd) Failed SSH login from 81.70.55.21 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 2 03:49:29 server2 sshd[17508]: Invalid user www from 81.70.55.21 Oct 2 03:49:29 server2 sshd[17508]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.70.55.21 Oct 2 03:49:30 server2 sshd[17508]: Failed password for invalid user www from 81.70.55.21 port 35490 ssh2 Oct 2 03:52:07 server2 sshd[24450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.70.55.21 user=root Oct 2 03:52:09 server2 sshd[24450]: Failed password for root from 81.70.55.21 port 58378 ssh2	2020-10-03 00:44:40
attackbotsspam	(sshd) Failed SSH login from 81.70.55.21 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 2 03:49:29 server2 sshd[17508]: Invalid user www from 81.70.55.21 Oct 2 03:49:29 server2 sshd[17508]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.70.55.21 Oct 2 03:49:30 server2 sshd[17508]: Failed password for invalid user www from 81.70.55.21 port 35490 ssh2 Oct 2 03:52:07 server2 sshd[24450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.70.55.21 user=root Oct 2 03:52:09 server2 sshd[24450]: Failed password for root from 81.70.55.21 port 58378 ssh2	2020-10-02 21:14:30
attack	(sshd) Failed SSH login from 81.70.55.21 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 2 03:49:29 server2 sshd[17508]: Invalid user www from 81.70.55.21 Oct 2 03:49:29 server2 sshd[17508]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.70.55.21 Oct 2 03:49:30 server2 sshd[17508]: Failed password for invalid user www from 81.70.55.21 port 35490 ssh2 Oct 2 03:52:07 server2 sshd[24450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.70.55.21 user=root Oct 2 03:52:09 server2 sshd[24450]: Failed password for root from 81.70.55.21 port 58378 ssh2	2020-10-02 17:47:02
attack	SSH/22 MH Probe, BF, Hack -	2020-10-02 14:13:41

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 81.70.55.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28048
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;81.70.55.21.			IN	A

;; AUTHORITY SECTION:
.			598	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020100200 1800 900 604800 86400

;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 02 14:13:38 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 21.55.70.81.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 21.55.70.81.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
132.232.79.135	attackbots	Jul 18 23:02:22 piServer sshd[7740]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.79.135 Jul 18 23:02:25 piServer sshd[7740]: Failed password for invalid user neo from 132.232.79.135 port 40720 ssh2 Jul 18 23:07:09 piServer sshd[8188]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.79.135 ...	2020-07-19 05:24:10
103.243.252.244	attackspambots	Jul 18 23:04:52 OPSO sshd\[19349\]: Invalid user roscoe from 103.243.252.244 port 38821 Jul 18 23:04:52 OPSO sshd\[19349\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.243.252.244 Jul 18 23:04:55 OPSO sshd\[19349\]: Failed password for invalid user roscoe from 103.243.252.244 port 38821 ssh2 Jul 18 23:10:02 OPSO sshd\[20258\]: Invalid user aca from 103.243.252.244 port 44378 Jul 18 23:10:02 OPSO sshd\[20258\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.243.252.244	2020-07-19 05:22:26
45.64.126.103	attackbotsspam	Jul 18 22:22:52 jane sshd[28295]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.64.126.103 Jul 18 22:22:54 jane sshd[28295]: Failed password for invalid user atl from 45.64.126.103 port 34602 ssh2 ...	2020-07-19 05:08:42
222.186.3.249	attackspam	Jul 18 22:38:13 OPSO sshd\[14030\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.3.249 user=root Jul 18 22:38:15 OPSO sshd\[14030\]: Failed password for root from 222.186.3.249 port 56878 ssh2 Jul 18 22:38:18 OPSO sshd\[14030\]: Failed password for root from 222.186.3.249 port 56878 ssh2 Jul 18 22:38:20 OPSO sshd\[14030\]: Failed password for root from 222.186.3.249 port 56878 ssh2 Jul 18 22:39:35 OPSO sshd\[14226\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.3.249 user=root	2020-07-19 05:00:57
45.143.221.54	attackspam	frenzy	2020-07-19 04:51:20
49.235.229.211	attackspam	$f2bV_matches	2020-07-19 04:59:43
62.210.141.167	attack	"GET or HEAD Request with Body Content - 2"	2020-07-19 05:26:36
106.52.55.146	attackbots	Jul 18 21:51:11 haigwepa sshd[29012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.55.146 Jul 18 21:51:13 haigwepa sshd[29012]: Failed password for invalid user spb from 106.52.55.146 port 47566 ssh2 ...	2020-07-19 04:56:21
176.31.251.177	attack	Jul 18 21:58:48 ArkNodeAT sshd\[6809\]: Invalid user jerry from 176.31.251.177 Jul 18 21:58:48 ArkNodeAT sshd\[6809\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.251.177 Jul 18 21:58:50 ArkNodeAT sshd\[6809\]: Failed password for invalid user jerry from 176.31.251.177 port 49966 ssh2	2020-07-19 05:20:49
218.92.0.223	attackbots	Jul 18 23:11:11 nextcloud sshd\[9474\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.223 user=root Jul 18 23:11:13 nextcloud sshd\[9474\]: Failed password for root from 218.92.0.223 port 51971 ssh2 Jul 18 23:11:16 nextcloud sshd\[9474\]: Failed password for root from 218.92.0.223 port 51971 ssh2	2020-07-19 05:19:31
123.59.194.224	attackbots	Invalid user teacher from 123.59.194.224 port 43382	2020-07-19 05:08:02
222.186.30.218	attack	Failed password for invalid user from 222.186.30.218 port 55691 ssh2	2020-07-19 05:12:53
118.24.7.98	attackbotsspam	Invalid user sese from 118.24.7.98 port 53194	2020-07-19 05:13:59
189.225.171.124	attack	Automatic report - Port Scan Attack	2020-07-19 05:06:34
185.21.41.49	attack	WordPress login Brute force / Web App Attack on client site.	2020-07-19 05:20:27

Recently Reported IPs

220.204.170.56	196.201.235.170	151.226.44.60	205.168.199.207
184.90.242.80	152.80.129.134	221.245.136.226	91.40.229.40
187.62.177.81	72.80.13.82	59.15.188.184	3.137.151.217
90.211.205.151	14.35.1.162	109.12.89.157	62.180.108.184
197.56.218.248	181.195.182.9	254.151.198.251	189.111.1.227