119.29.149.214

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Mar 18 01:39:13 firewall sshd[12843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.149.214 Mar 18 01:39:13 firewall sshd[12843]: Invalid user pruebas from 119.29.149.214 Mar 18 01:39:15 firewall sshd[12843]: Failed password for invalid user pruebas from 119.29.149.214 port 42860 ssh2 ...	2020-03-18 14:51:30

Type

Details

Datetime

attack

Mar 18 01:39:13 firewall sshd[12843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.149.214
Mar 18 01:39:13 firewall sshd[12843]: Invalid user pruebas from 119.29.149.214
Mar 18 01:39:15 firewall sshd[12843]: Failed password for invalid user pruebas from 119.29.149.214 port 42860 ssh2
...

2020-03-18 14:51:30

Comments on same subnet:

IP	Type	Details	Datetime
119.29.149.51	attackbots	Unauthorized connection attempt from IP address 119.29.149.51 on Port 445(SMB)	2019-09-05 06:19:29

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.29.149.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11785
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;119.29.149.214.			IN	A

;; AUTHORITY SECTION:
.			352	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031800 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 18 14:51:25 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 214.149.29.119.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 214.149.29.119.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.42.4	attackbots	$f2bV_matches	2019-12-15 08:13:14
62.69.130.155	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-15 08:26:44
222.186.173.238	attackspam	Dec 15 00:44:21 debian64 sshd\[30658\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.238 user=root Dec 15 00:44:22 debian64 sshd\[30658\]: Failed password for root from 222.186.173.238 port 44038 ssh2 Dec 15 00:44:26 debian64 sshd\[30658\]: Failed password for root from 222.186.173.238 port 44038 ssh2 ...	2019-12-15 07:54:43
118.126.128.5	attackbotsspam	Invalid user support from 118.126.128.5 port 60462	2019-12-15 08:00:47
89.87.239.222	attack	Dec 14 22:57:49 server sshd\[697\]: Invalid user bryana from 89.87.239.222 Dec 14 22:57:49 server sshd\[697\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89-87-239-222.abo.bbox.fr Dec 14 22:57:51 server sshd\[697\]: Failed password for invalid user bryana from 89.87.239.222 port 58878 ssh2 Dec 15 02:13:44 server sshd\[25191\]: Invalid user tauni from 89.87.239.222 Dec 15 02:13:44 server sshd\[25191\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89-87-239-222.abo.bbox.fr ...	2019-12-15 07:56:12
187.115.41.149	attackspam	Honeypot attack, port: 23, PTR: 187.115.41.149.static.host.gvt.net.br.	2019-12-15 08:03:25
129.204.2.182	attackbots	Dec 14 13:40:36 hpm sshd\[10720\]: Invalid user solariet from 129.204.2.182 Dec 14 13:40:36 hpm sshd\[10720\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.2.182 Dec 14 13:40:37 hpm sshd\[10720\]: Failed password for invalid user solariet from 129.204.2.182 port 41550 ssh2 Dec 14 13:46:57 hpm sshd\[11259\]: Invalid user sherrie from 129.204.2.182 Dec 14 13:46:57 hpm sshd\[11259\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.2.182	2019-12-15 08:05:11
153.254.115.57	attack	Invalid user pasqualino from 153.254.115.57 port 17893	2019-12-15 08:27:35
164.132.38.167	attackbotsspam	Dec 15 01:06:42 ns381471 sshd[2230]: Failed password for root from 164.132.38.167 port 40332 ssh2 Dec 15 01:11:41 ns381471 sshd[2640]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.38.167	2019-12-15 08:21:06
67.21.89.70	attack	Honeypot attack, port: 445, PTR: dstjx.voeisx.com.	2019-12-15 08:06:38
185.175.93.17	attackbots	ET DROP Dshield Block Listed Source group 1 - port: 56880 proto: TCP cat: Misc Attack	2019-12-15 08:29:58
201.49.127.212	attackbotsspam	Invalid user greipsland from 201.49.127.212 port 50142	2019-12-15 07:53:58
152.136.87.219	attack	Dec 15 00:56:43 legacy sshd[598]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.87.219 Dec 15 00:56:46 legacy sshd[598]: Failed password for invalid user paul12 from 152.136.87.219 port 55412 ssh2 Dec 15 01:02:51 legacy sshd[917]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.87.219 ...	2019-12-15 08:07:52
129.211.16.236	attack	SSH bruteforce	2019-12-15 08:20:01
45.82.153.141	attackspam	failed_logins	2019-12-15 08:02:30

Recently Reported IPs

175.142.61.95	111.205.235.25	92.240.204.148	2.58.228.199
118.27.37.223	27.3.73.79	4.98.35.236	103.233.170.92
175.24.75.215	88.215.33.141	49.234.105.119	35.240.151.107
158.140.186.27	134.209.100.103	45.225.67.177	46.153.85.94
185.59.46.215	195.154.156.225	185.147.162.21	113.207.83.130