129.144.6.146 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Oracle Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	srv.marc-hoffrichter.de:443 129.144.6.146 - - [22/Jun/2020:05:55:36 +0200] "GET /dana-na HTTP/1.1" 403 4836 "-" "Go-http-client/1.1"	2020-06-22 12:15:37
attackspam	May 7 16:33:37 ns3033917 sshd[32204]: Invalid user git from 129.144.6.146 port 31753 May 7 16:33:39 ns3033917 sshd[32204]: Failed password for invalid user git from 129.144.6.146 port 31753 ssh2 May 7 18:09:38 ns3033917 sshd[617]: Invalid user webdev from 129.144.6.146 port 31753 ...	2020-05-08 03:26:23
attackbots	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-05-07 18:01:07

Type

Details

Datetime

attackbots

srv.marc-hoffrichter.de:443 129.144.6.146 - - [22/Jun/2020:05:55:36 +0200] "GET /dana-na HTTP/1.1" 403 4836 "-" "Go-http-client/1.1"

2020-06-22 12:15:37

attackspam

May  7 16:33:37 ns3033917 sshd[32204]: Invalid user git from 129.144.6.146 port 31753
May  7 16:33:39 ns3033917 sshd[32204]: Failed password for invalid user git from 129.144.6.146 port 31753 ssh2
May  7 18:09:38 ns3033917 sshd[617]: Invalid user webdev from 129.144.6.146 port 31753
...

2020-05-08 03:26:23

attackbots

$f2bV_matches | Triggered by Fail2Ban at Vostok web server

2020-05-07 18:01:07

Comments on same subnet:

IP	Type	Details	Datetime
129.144.62.179	attack	Unauthorized connection attempt, Score = 100 , Ban for 1 month	2020-07-29 16:22:28
129.144.60.148	attack	IP 129.144.60.148 attacked honeypot on port: 81 at 7/11/2020 8:48:45 PM	2020-07-12 18:28:03
129.144.60.148	attackspambots	400 BAD REQUEST	2020-07-05 13:29:34
129.144.60.148	attackspambots	May 14 08:42:55 nginx sshd[15666]: Connection from 129.144.60.148 port 2057 on 10.23.102.80 port 22 May 14 08:43:06 nginx sshd[15666]: Connection closed by 129.144.60.148 port 2057 [preauth]	2020-05-14 16:18:22
129.144.62.179	attack	May 8 07:52:37 ssh2 sshd[60466]: Invalid user nxautomation from 129.144.62.179 port 16393 May 8 07:52:37 ssh2 sshd[60466]: Failed password for invalid user nxautomation from 129.144.62.179 port 16393 ssh2 May 8 07:52:37 ssh2 sshd[60466]: Connection closed by invalid user nxautomation 129.144.62.179 port 16393 [preauth] ...	2020-05-08 17:00:01
129.144.62.179	attack	May 5 13:39:39 localhost sshd[3218766]: Invalid user nxautomation from 129.144.62.179 port 14344 ...	2020-05-05 12:16:32
129.144.62.179	attackbotsspam	Invalid user dixie from 129.144.62.179 port 61961	2020-04-21 22:08:00
129.144.62.179	attack	SSH bruteforce	2020-04-20 07:02:14
129.144.60.201	attack	Feb 21 06:05:32 Tower sshd[27563]: Connection from 129.144.60.201 port 18022 on 192.168.10.220 port 22 rdomain "" Feb 21 06:05:33 Tower sshd[27563]: Invalid user webstaff from 129.144.60.201 port 18022 Feb 21 06:05:33 Tower sshd[27563]: error: Could not get shadow information for NOUSER Feb 21 06:05:33 Tower sshd[27563]: Failed password for invalid user webstaff from 129.144.60.201 port 18022 ssh2 Feb 21 06:05:33 Tower sshd[27563]: Received disconnect from 129.144.60.201 port 18022:11: Bye Bye [preauth] Feb 21 06:05:33 Tower sshd[27563]: Disconnected from invalid user webstaff 129.144.60.201 port 18022 [preauth]	2020-02-21 20:55:41
129.144.60.201	attack	Feb 11 14:44:39 ks10 sshd[3709539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.144.60.201 Feb 11 14:44:42 ks10 sshd[3709539]: Failed password for invalid user glo from 129.144.60.201 port 64727 ssh2 ...	2020-02-12 01:58:05
129.144.60.201	attackspam	2020-01-27T06:38:40.945327xentho-1 sshd[841818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.144.60.201 user=root 2020-01-27T06:38:42.403636xentho-1 sshd[841818]: Failed password for root from 129.144.60.201 port 44851 ssh2 2020-01-27T06:40:13.110951xentho-1 sshd[841846]: Invalid user steam from 129.144.60.201 port 49836 2020-01-27T06:40:13.116286xentho-1 sshd[841846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.144.60.201 2020-01-27T06:40:13.110951xentho-1 sshd[841846]: Invalid user steam from 129.144.60.201 port 49836 2020-01-27T06:40:15.342548xentho-1 sshd[841846]: Failed password for invalid user steam from 129.144.60.201 port 49836 ssh2 2020-01-27T06:41:42.469960xentho-1 sshd[841876]: Invalid user ex from 129.144.60.201 port 54820 2020-01-27T06:41:42.478268xentho-1 sshd[841876]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.144.60.201 2020- ...	2020-01-27 20:19:59
129.144.60.201	attackspam	Unauthorized connection attempt detected from IP address 129.144.60.201 to port 2220 [J]	2020-01-12 02:43:49
129.144.60.201	attackbotsspam	detected by Fail2Ban	2019-12-21 18:23:41
129.144.60.201	attack	Dec 18 16:01:26 vpn01 sshd[29042]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.144.60.201 Dec 18 16:01:28 vpn01 sshd[29042]: Failed password for invalid user Montecarlo1@3 from 129.144.60.201 port 41878 ssh2 ...	2019-12-18 23:15:53
129.144.60.201	attackspambots	Dec 16 00:29:59 minden010 sshd[3137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.144.60.201 Dec 16 00:30:01 minden010 sshd[3137]: Failed password for invalid user dowers from 129.144.60.201 port 31967 ssh2 Dec 16 00:37:03 minden010 sshd[8062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.144.60.201 ...	2019-12-16 07:41:52

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.144.6.146
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5049
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.144.6.146.			IN	A

;; AUTHORITY SECTION:
.			438	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050700 1800 900 604800 86400

;; Query time: 138 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 07 18:01:02 CST 2020
;; MSG SIZE  rcvd: 117

Host info

146.6.144.129.in-addr.arpa domain name pointer oc-129-144-6-146.compute.oraclecloud.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
146.6.144.129.in-addr.arpa	name = oc-129-144-6-146.compute.oraclecloud.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
1.56.207.130	attack	Jul 23 20:22:26 roki sshd[6478]: Invalid user demo from 1.56.207.130 Jul 23 20:22:26 roki sshd[6478]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.56.207.130 Jul 23 20:22:29 roki sshd[6478]: Failed password for invalid user demo from 1.56.207.130 port 51970 ssh2 Jul 23 20:29:51 roki sshd[6983]: Invalid user jewel from 1.56.207.130 Jul 23 20:29:51 roki sshd[6983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.56.207.130 ...	2020-07-24 02:45:27
159.65.219.210	attackspam	TCP (SYN) 159.65.219.210:55873 -> port 24716, len 44	2020-07-24 02:18:23
64.225.124.107	attackspambots	Invalid user mark from 64.225.124.107 port 53440	2020-07-24 02:10:14
111.93.200.50	attack	Jul 23 15:58:56 vlre-nyc-1 sshd\[1817\]: Invalid user ftpuser from 111.93.200.50 Jul 23 15:58:56 vlre-nyc-1 sshd\[1817\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.200.50 Jul 23 15:58:58 vlre-nyc-1 sshd\[1817\]: Failed password for invalid user ftpuser from 111.93.200.50 port 45570 ssh2 Jul 23 16:07:12 vlre-nyc-1 sshd\[2003\]: Invalid user jmb from 111.93.200.50 Jul 23 16:07:12 vlre-nyc-1 sshd\[2003\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.200.50 ...	2020-07-24 02:35:44
103.242.56.183	attack	Jul 23 19:11:50 vps639187 sshd\[5906\]: Invalid user sympa from 103.242.56.183 port 42335 Jul 23 19:11:50 vps639187 sshd\[5906\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.242.56.183 Jul 23 19:11:52 vps639187 sshd\[5906\]: Failed password for invalid user sympa from 103.242.56.183 port 42335 ssh2 ...	2020-07-24 02:37:21
191.162.224.42	attack	Invalid user webmaster from 191.162.224.42 port 53569	2020-07-24 02:30:02
36.111.145.226	attackspam	Jul 20 00:34:14 db01 sshd[30354]: Invalid user vpnuser1 from 36.111.145.226 Jul 20 00:34:14 db01 sshd[30354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.111.145.226 Jul 20 00:34:16 db01 sshd[30354]: Failed password for invalid user vpnuser1 from 36.111.145.226 port 40848 ssh2 Jul 20 00:34:16 db01 sshd[30354]: Received disconnect from 36.111.145.226: 11: Bye Bye [preauth] Jul 20 00:47:50 db01 sshd[938]: Invalid user kadmin from 36.111.145.226 Jul 20 00:47:50 db01 sshd[938]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.111.145.226 Jul 20 00:47:52 db01 sshd[938]: Failed password for invalid user kadmin from 36.111.145.226 port 26583 ssh2 Jul 20 00:47:52 db01 sshd[938]: Received disconnect from 36.111.145.226: 11: Bye Bye [preauth] Jul 20 00:53:00 db01 sshd[1787]: Invalid user hadoop from 36.111.145.226 Jul 20 00:53:00 db01 sshd[1787]: pam_unix(sshd:auth): authentication failure;........ -------------------------------	2020-07-24 02:10:52
159.89.180.30	attackspam	Jul 23 17:44:23 mout sshd[21211]: Invalid user desktop from 159.89.180.30 port 48624 Jul 23 17:44:25 mout sshd[21211]: Failed password for invalid user desktop from 159.89.180.30 port 48624 ssh2 Jul 23 17:44:26 mout sshd[21211]: Disconnected from invalid user desktop 159.89.180.30 port 48624 [preauth]	2020-07-24 02:18:06
49.234.17.252	attackspam	Jul 23 19:26:30 [host] sshd[2980]: Invalid user tj Jul 23 19:26:30 [host] sshd[2980]: pam_unix(sshd:a Jul 23 19:26:32 [host] sshd[2980]: Failed password	2020-07-24 02:25:46
151.80.173.36	attackspam	Fail2Ban - SSH Bruteforce Attempt	2020-07-24 02:33:39
112.220.238.3	attackspam	Jul 23 19:44:25 h2427292 sshd\[2281\]: Invalid user ks from 112.220.238.3 Jul 23 19:44:25 h2427292 sshd\[2281\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.220.238.3 Jul 23 19:44:27 h2427292 sshd\[2281\]: Failed password for invalid user ks from 112.220.238.3 port 39220 ssh2 ...	2020-07-24 02:08:25
60.249.82.121	attackbotsspam	Jul 23 17:44:02 rush sshd[21186]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.249.82.121 Jul 23 17:44:03 rush sshd[21186]: Failed password for invalid user leyton from 60.249.82.121 port 54052 ssh2 Jul 23 17:45:51 rush sshd[21254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.249.82.121 ...	2020-07-24 02:40:47
69.10.62.82	attack	SSH Bruteforce Attempt on Honeypot	2020-07-24 02:39:45
206.189.229.112	attackbots	[ssh] SSH attack	2020-07-24 02:28:41
163.172.61.214	attackspambots	Jul 23 18:16:23 game-panel sshd[2481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.61.214 Jul 23 18:16:25 game-panel sshd[2481]: Failed password for invalid user abc from 163.172.61.214 port 59875 ssh2 Jul 23 18:22:43 game-panel sshd[2824]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.61.214	2020-07-24 02:32:53

Recently Reported IPs

51.178.65.183	2601:150:8202:fa80:59ca:b756:3562:3007	91.204.248.42	87.246.7.105
183.106.199.53	220.134.11.77	209.212.213.76	64.213.148.44
190.0.177.80	175.5.174.122	152.136.74.147	220.142.221.164
187.202.146.45	54.39.151.44	81.39.7.155	140.103.143.9
45.55.173.117	175.157.47.64	204.11.84.65	220.130.28.248