119.29.136.114

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Jul 31 13:45:31 sip sshd[14666]: Failed password for root from 119.29.136.114 port 46404 ssh2 Jul 31 13:59:24 sip sshd[19836]: Failed password for root from 119.29.136.114 port 41970 ssh2	2020-08-01 01:35:28
attack	prod11 ...	2020-07-28 13:37:30
attackspam	2020-06-20T06:05:25.424537shield sshd\[32370\]: Invalid user prueba2 from 119.29.136.114 port 34832 2020-06-20T06:05:25.428572shield sshd\[32370\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.136.114 2020-06-20T06:05:28.127084shield sshd\[32370\]: Failed password for invalid user prueba2 from 119.29.136.114 port 34832 ssh2 2020-06-20T06:09:43.998267shield sshd\[32726\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.136.114 user=root 2020-06-20T06:09:45.778936shield sshd\[32726\]: Failed password for root from 119.29.136.114 port 53792 ssh2	2020-06-20 17:45:28
attackbots	Unauthorised connection attempt detected at AUO FR1 NODE2. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-06-12 17:30:17
attack	Dec 23 10:28:22 admin sshd[32366]: Invalid user gdm from 119.29.136.114 port 38900 Dec 23 10:28:22 admin sshd[32366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.136.114 Dec 23 10:28:23 admin sshd[32366]: Failed password for invalid user gdm from 119.29.136.114 port 38900 ssh2 Dec 23 10:28:23 admin sshd[32366]: Received disconnect from 119.29.136.114 port 38900:11: Bye Bye [preauth] Dec 23 10:28:23 admin sshd[32366]: Disconnected from 119.29.136.114 port 38900 [preauth] Dec 23 11:01:20 admin sshd[1647]: Invalid user rpc from 119.29.136.114 port 50742 Dec 23 11:01:20 admin sshd[1647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.136.114 Dec 23 11:01:22 admin sshd[1647]: Failed password for invalid user rpc from 119.29.136.114 port 50742 ssh2 Dec 23 11:01:22 admin sshd[1647]: Received disconnect from 119.29.136.114 port 50742:11: Bye Bye [preauth] Dec 23 11:01:22 admin ssh........ -------------------------------	2019-12-23 23:12:38
attackspam	[ssh] SSH attack	2019-12-23 02:31:13
attackspam	Dec 7 00:40:17 game-panel sshd[15443]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.136.114 Dec 7 00:40:20 game-panel sshd[15443]: Failed password for invalid user Sirpa from 119.29.136.114 port 45016 ssh2 Dec 7 00:47:03 game-panel sshd[15720]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.136.114	2019-12-07 08:47:43
attack	Dec 3 18:15:30 eventyay sshd[2519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.136.114 Dec 3 18:15:32 eventyay sshd[2519]: Failed password for invalid user host from 119.29.136.114 port 57818 ssh2 Dec 3 18:22:54 eventyay sshd[2814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.136.114 ...	2019-12-04 01:33:50
attackbotsspam	Nov 29 06:14:07 www sshd\[1096\]: Invalid user fasbender from 119.29.136.114 port 55522 ...	2019-11-30 20:41:57
attackbotsspam	Nov 25 15:48:39 v22018076622670303 sshd\[25802\]: Invalid user lukas from 119.29.136.114 port 43266 Nov 25 15:48:39 v22018076622670303 sshd\[25802\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.136.114 Nov 25 15:48:41 v22018076622670303 sshd\[25802\]: Failed password for invalid user lukas from 119.29.136.114 port 43266 ssh2 ...	2019-11-25 22:55:12

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.29.136.114
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49253
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;119.29.136.114.			IN	A

;; AUTHORITY SECTION:
.			359	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112500 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 25 22:55:04 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 114.136.29.119.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 114.136.29.119.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.13.71.133	attack	SSH brutforce	2019-11-06 05:18:10
125.33.91.129	attack	SSH/22 MH Probe, BF, Hack -	2019-11-06 05:00:04
45.136.110.27	attack	Nov 5 22:02:02 mc1 kernel: \[4274023.965698\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.27 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=43363 PROTO=TCP SPT=48297 DPT=16033 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 5 22:02:18 mc1 kernel: \[4274039.764618\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.27 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=24166 PROTO=TCP SPT=48297 DPT=17033 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 5 22:02:54 mc1 kernel: \[4274076.066666\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.27 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=24576 PROTO=TCP SPT=48297 DPT=26133 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-06 05:26:24
182.191.79.107	attack	Unauthorized connection attempt from IP address 182.191.79.107 on Port 445(SMB)	2019-11-06 05:13:22
125.7.85.10	attack	Unauthorized connection attempt from IP address 125.7.85.10 on Port 445(SMB)	2019-11-06 05:03:15
45.80.65.76	attackspam	Nov 5 22:26:13 vps647732 sshd[25335]: Failed password for root from 45.80.65.76 port 59352 ssh2 ...	2019-11-06 05:35:21
45.71.75.69	attack	Unauthorized connection attempt from IP address 45.71.75.69 on Port 445(SMB)	2019-11-06 05:30:16
94.97.13.47	attackspambots	Unauthorized connection attempt from IP address 94.97.13.47 on Port 445(SMB)	2019-11-06 05:11:37
119.235.51.152	attack	Unauthorized connection attempt from IP address 119.235.51.152 on Port 445(SMB)	2019-11-06 05:17:54
46.105.132.32	attack	Unauthorized connection attempt from IP address 46.105.132.32 on Port 139(NETBIOS)	2019-11-06 05:09:26
132.232.66.121	attackspam	Nov 5 11:55:53 TORMINT sshd\[12547\]: Invalid user postgres from 132.232.66.121 Nov 5 11:55:53 TORMINT sshd\[12547\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.66.121 Nov 5 11:55:54 TORMINT sshd\[12547\]: Failed password for invalid user postgres from 132.232.66.121 port 60356 ssh2 ...	2019-11-06 05:05:53
179.56.206.204	attack	Unauthorized connection attempt from IP address 179.56.206.204 on Port 445(SMB)	2019-11-06 05:07:07
222.64.90.69	attack	Nov 5 12:29:10 2 sshd[21159]: reverse mapping checking getaddrinfo for 69.90.64.222.broad.xw.sh.dynamic.163data.com.cn [222.64.90.69] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 5 12:33:20 2 sshd[21475]: reverse mapping checking getaddrinfo for 69.90.64.222.broad.xw.sh.dynamic.163data.com.cn [222.64.90.69] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 5 12:37:23 2 sshd[21763]: reverse mapping checking getaddrinfo for 69.90.64.222.broad.xw.sh.dynamic.163data.com.cn [222.64.90.69] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 5 12:41:29 2 sshd[22080]: reverse mapping checking getaddrinfo for 69.90.64.222.broad.xw.sh.dynamic.163data.com.cn [222.64.90.69] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 5 12:54:00 2 sshd[23018]: reverse mapping checking getaddrinfo for 69.90.64.222.broad.xw.sh.dynamic.163data.com.cn [222.64.90.69] failed - POSSIBLE BREAK-IN A	2019-11-06 05:32:42
159.203.81.129	attackbots	159.203.81.129 was recorded 63 times by 2 hosts attempting to connect to the following ports: 8088. Incident counter (4h, 24h, all-time): 63, 264, 264	2019-11-06 05:39:37
129.204.58.180	attack	Nov 5 16:07:04 mout sshd[19437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.58.180 user=root Nov 5 16:07:05 mout sshd[19437]: Failed password for root from 129.204.58.180 port 41154 ssh2	2019-11-06 05:06:05

Recently Reported IPs

192.185.6.41	34.93.27.3	178.128.18.98	206.172.247.240
159.138.153.141	185.193.125.23	94.41.0.126	47.94.223.84
250.246.136.114	78.37.119.235	176.178.138.229	92.117.168.149
31.133.0.44	3.95.7.84	178.151.17.15	185.217.71.53
139.162.23.244	61.31.145.151	84.17.52.81	174.36.13.20