129.204.194.146

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Oct 31 15:08:59 yesfletchmain sshd\[6430\]: Invalid user suherman from 129.204.194.146 port 59374 Oct 31 15:09:00 yesfletchmain sshd\[6430\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.146 Oct 31 15:09:01 yesfletchmain sshd\[6430\]: Failed password for invalid user suherman from 129.204.194.146 port 59374 ssh2 Oct 31 15:15:01 yesfletchmain sshd\[6816\]: Invalid user attack from 129.204.194.146 port 41816 Oct 31 15:15:01 yesfletchmain sshd\[6816\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.146 ...	2019-12-24 04:23:18
attack	Oct 30 07:19:13 vzhost sshd[6307]: Invalid user odoo from 129.204.194.146 Oct 30 07:19:13 vzhost sshd[6307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.146 Oct 30 07:19:15 vzhost sshd[6307]: Failed password for invalid user odoo from 129.204.194.146 port 48198 ssh2 Oct 30 07:53:52 vzhost sshd[15301]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.146 user=r.r Oct 30 07:53:53 vzhost sshd[15301]: Failed password for r.r from 129.204.194.146 port 56160 ssh2 Oct 30 07:58:47 vzhost sshd[18032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.146 user=r.r Oct 30 07:58:49 vzhost sshd[18032]: Failed password for r.r from 129.204.194.146 port 38354 ssh2 Oct 30 08:04:47 vzhost sshd[21199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.146 user=r.r Oct 30 08:04:50 ........ -------------------------------	2019-11-01 06:52:13

Type

Details

Datetime

attackspambots

Oct 31 15:08:59 yesfletchmain sshd\[6430\]: Invalid user suherman from 129.204.194.146 port 59374
Oct 31 15:09:00 yesfletchmain sshd\[6430\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.146
Oct 31 15:09:01 yesfletchmain sshd\[6430\]: Failed password for invalid user suherman from 129.204.194.146 port 59374 ssh2
Oct 31 15:15:01 yesfletchmain sshd\[6816\]: Invalid user attack from 129.204.194.146 port 41816
Oct 31 15:15:01 yesfletchmain sshd\[6816\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.146
...

2019-12-24 04:23:18

attack

Oct 30 07:19:13 vzhost sshd[6307]: Invalid user odoo from 129.204.194.146
Oct 30 07:19:13 vzhost sshd[6307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.146 
Oct 30 07:19:15 vzhost sshd[6307]: Failed password for invalid user odoo from 129.204.194.146 port 48198 ssh2
Oct 30 07:53:52 vzhost sshd[15301]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.146  user=r.r
Oct 30 07:53:53 vzhost sshd[15301]: Failed password for r.r from 129.204.194.146 port 56160 ssh2
Oct 30 07:58:47 vzhost sshd[18032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.146  user=r.r
Oct 30 07:58:49 vzhost sshd[18032]: Failed password for r.r from 129.204.194.146 port 38354 ssh2
Oct 30 08:04:47 vzhost sshd[21199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.146  user=r.r
Oct 30 08:04:50 ........
-------------------------------

2019-11-01 06:52:13

Comments on same subnet:

IP	Type	Details	Datetime
129.204.194.249	attack	Sep 19 02:27:16 yesfletchmain sshd\[19242\]: User root from 129.204.194.249 not allowed because not listed in AllowUsers Sep 19 02:27:16 yesfletchmain sshd\[19242\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.249 user=root Sep 19 02:27:18 yesfletchmain sshd\[19242\]: Failed password for invalid user root from 129.204.194.249 port 49440 ssh2 Sep 19 02:32:49 yesfletchmain sshd\[19553\]: Invalid user lie from 129.204.194.249 port 35894 Sep 19 02:32:49 yesfletchmain sshd\[19553\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.249 ...	2019-12-24 04:20:23
129.204.194.249	attackbotsspam	2019-09-06T04:31:07.501386abusebot-8.cloudsearch.cf sshd\[28158\]: Invalid user newuser from 129.204.194.249 port 43180	2019-09-06 13:04:47
129.204.194.249	attackbotsspam	Aug 31 04:59:11 friendsofhawaii sshd\[3967\]: Invalid user leslie from 129.204.194.249 Aug 31 04:59:11 friendsofhawaii sshd\[3967\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.249 Aug 31 04:59:13 friendsofhawaii sshd\[3967\]: Failed password for invalid user leslie from 129.204.194.249 port 42722 ssh2 Aug 31 05:05:23 friendsofhawaii sshd\[4554\]: Invalid user friends from 129.204.194.249 Aug 31 05:05:23 friendsofhawaii sshd\[4554\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.249	2019-08-31 23:46:31
129.204.194.119	attackspambots	Aug 31 12:59:59 hb sshd\[21487\]: Invalid user blaze from 129.204.194.119 Aug 31 12:59:59 hb sshd\[21487\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.119 Aug 31 13:00:01 hb sshd\[21487\]: Failed password for invalid user blaze from 129.204.194.119 port 59087 ssh2 Aug 31 13:06:16 hb sshd\[22061\]: Invalid user mg from 129.204.194.119 Aug 31 13:06:16 hb sshd\[22061\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.119	2019-08-31 21:18:28
129.204.194.249	attackspam	Aug 29 13:35:03 eddieflores sshd\[11244\]: Invalid user oleg from 129.204.194.249 Aug 29 13:35:03 eddieflores sshd\[11244\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.249 Aug 29 13:35:05 eddieflores sshd\[11244\]: Failed password for invalid user oleg from 129.204.194.249 port 36822 ssh2 Aug 29 13:39:23 eddieflores sshd\[11730\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.249 user=root Aug 29 13:39:25 eddieflores sshd\[11730\]: Failed password for root from 129.204.194.249 port 49252 ssh2	2019-08-30 10:18:58
129.204.194.249	attack	Aug 25 12:06:16 plex sshd[7532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.249 user=root Aug 25 12:06:18 plex sshd[7532]: Failed password for root from 129.204.194.249 port 45878 ssh2	2019-08-26 01:30:55
129.204.194.249	attack	Aug 24 17:49:08 yabzik sshd[30256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.249 Aug 24 17:49:10 yabzik sshd[30256]: Failed password for invalid user camels1 from 129.204.194.249 port 57346 ssh2 Aug 24 17:55:58 yabzik sshd[313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.249	2019-08-24 23:07:12
129.204.194.249	attackspambots	Aug 18 17:46:40 localhost sshd\[28096\]: Invalid user diane from 129.204.194.249 port 37806 Aug 18 17:46:40 localhost sshd\[28096\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.249 Aug 18 17:46:42 localhost sshd\[28096\]: Failed password for invalid user diane from 129.204.194.249 port 37806 ssh2	2019-08-19 03:32:07
129.204.194.249	attackbots	Aug 15 17:42:30 areeb-Workstation sshd\[7469\]: Invalid user dev2 from 129.204.194.249 Aug 15 17:42:30 areeb-Workstation sshd\[7469\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.249 Aug 15 17:42:31 areeb-Workstation sshd\[7469\]: Failed password for invalid user dev2 from 129.204.194.249 port 44610 ssh2 ...	2019-08-15 20:34:23
129.204.194.249	attack	Aug 6 08:33:31 mail sshd\[29655\]: Failed password for root from 129.204.194.249 port 38316 ssh2 Aug 6 08:52:18 mail sshd\[29867\]: Invalid user td from 129.204.194.249 port 50074 Aug 6 08:52:18 mail sshd\[29867\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.249 ...	2019-08-06 15:55:55
129.204.194.249	attackspambots	Aug 3 23:57:36 [host] sshd[18866]: Invalid user beny from 129.204.194.249 Aug 3 23:57:36 [host] sshd[18866]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.249 Aug 3 23:57:38 [host] sshd[18866]: Failed password for invalid user beny from 129.204.194.249 port 47840 ssh2	2019-08-04 06:05:29
129.204.194.119	attack	2019-06-23T20:05:35.972487Z \[cowrie.ssh.factory.CowrieSSHFactory\] New connection: 129.204.194.119:60282 $107.175.91.48:22$ \[session: 20410d903dc6\] 2019-06-23T20:07:46.531973Z \[cowrie.ssh.factory.CowrieSSHFactory\] New connection: 129.204.194.119:38926 $107.175.91.48:22$ \[session: 87dcf45630ad\] ...	2019-06-24 06:05:38

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.204.194.146
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64346
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.204.194.146.		IN	A

;; AUTHORITY SECTION:
.			440	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019103101 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 01 06:52:01 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 146.194.204.129.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 146.194.204.129.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.15.125.181	attackbots	20 attempts against mh-misbehave-ban on ice.magehost.pro	2019-08-02 09:21:10
128.134.187.167	attackbotsspam	Aug 2 03:03:45 microserver sshd[3193]: Invalid user git from 128.134.187.167 port 45764 Aug 2 03:03:45 microserver sshd[3193]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.134.187.167 Aug 2 03:03:47 microserver sshd[3193]: Failed password for invalid user git from 128.134.187.167 port 45764 ssh2 Aug 2 03:08:53 microserver sshd[4188]: Invalid user win from 128.134.187.167 port 40440 Aug 2 03:08:53 microserver sshd[4188]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.134.187.167 Aug 2 03:19:11 microserver sshd[6031]: Invalid user fluffy from 128.134.187.167 port 58024 Aug 2 03:19:11 microserver sshd[6031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.134.187.167 Aug 2 03:19:13 microserver sshd[6031]: Failed password for invalid user fluffy from 128.134.187.167 port 58024 ssh2 Aug 2 03:24:22 microserver sshd[6861]: Invalid user qwert from 128.134.187.167 port 52696	2019-08-02 09:33:59
182.61.49.179	attack	Aug 2 03:14:53 microserver sshd[5274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.49.179 user=root Aug 2 03:14:55 microserver sshd[5274]: Failed password for root from 182.61.49.179 port 37898 ssh2 Aug 2 03:19:22 microserver sshd[6042]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.49.179 user=root Aug 2 03:19:24 microserver sshd[6042]: Failed password for root from 182.61.49.179 port 54710 ssh2 Aug 2 03:23:54 microserver sshd[6777]: Invalid user emily from 182.61.49.179 port 43274 Aug 2 03:23:54 microserver sshd[6777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.49.179 Aug 2 03:37:12 microserver sshd[9367]: Invalid user eclasi from 182.61.49.179 port 37264 Aug 2 03:37:12 microserver sshd[9367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.49.179 Aug 2 03:37:14 microserver sshd[9367]: Failed password	2019-08-02 09:44:24
95.82.72.188	attack	IP: 95.82.72.188 ASN: AS21299 Kar-Tel LLC Port: Simple Mail Transfer 25 Found in one or more Blacklists Date: 1/08/2019 11:23:38 PM UTC	2019-08-02 09:53:14
1.39.208.44	attackspambots	IP: 1.39.208.44 ASN: AS38266 Vodafone India Ltd. Port: Simple Mail Transfer 25 Found in one or more Blacklists Date: 1/08/2019 11:23:39 PM UTC	2019-08-02 09:52:40
218.92.0.190	attackbots	Aug 2 07:57:40 webhost01 sshd[22510]: Failed password for root from 218.92.0.190 port 47057 ssh2 ...	2019-08-02 09:13:50
51.38.90.195	attackbotsspam	$f2bV_matches	2019-08-02 09:14:45
185.53.88.35	attack	08/01/2019-19:35:11.636182 185.53.88.35 Protocol: 17 ET SCAN Sipvicious User-Agent Detected (friendly-scanner)	2019-08-02 09:11:36
121.204.185.106	attack	Aug 2 03:48:30 server sshd\[17668\]: Invalid user butter from 121.204.185.106 port 44592 Aug 2 03:48:30 server sshd\[17668\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.204.185.106 Aug 2 03:48:32 server sshd\[17668\]: Failed password for invalid user butter from 121.204.185.106 port 44592 ssh2 Aug 2 03:53:44 server sshd\[5151\]: Invalid user diana from 121.204.185.106 port 37868 Aug 2 03:53:44 server sshd\[5151\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.204.185.106	2019-08-02 09:17:08
107.170.240.9	attack	Port Scan detected from 107.170.240.9 (US/United States/zg-0403-43.stretchoid.com). 4 hits in the last 261 seconds	2019-08-02 09:13:35
116.120.58.205	attackbotsspam	2019-08-02T06:24:53.819259enmeeting.mahidol.ac.th sshd\[31548\]: User root from 116.120.58.205 not allowed because not listed in AllowUsers 2019-08-02T06:24:53.829843enmeeting.mahidol.ac.th sshd\[31544\]: User root from 116.120.58.205 not allowed because not listed in AllowUsers 2019-08-02T06:24:53.877964enmeeting.mahidol.ac.th sshd\[31552\]: Invalid user rootadmin from 116.120.58.205 port 51694 ...	2019-08-02 09:17:40
198.108.67.55	attackbots	Portscan or hack attempt detected by psad/fwsnort	2019-08-02 09:17:55
157.230.88.60	attackspambots	Aug 2 01:56:28 debian sshd\[17506\]: Invalid user ss from 157.230.88.60 port 34392 Aug 2 01:56:28 debian sshd\[17506\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.88.60 ...	2019-08-02 09:14:22
94.191.39.20	attackbotsspam	Aug 2 01:25:47 MK-Soft-VM7 sshd\[7377\]: Invalid user cmsftp from 94.191.39.20 port 51986 Aug 2 01:25:47 MK-Soft-VM7 sshd\[7377\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.39.20 Aug 2 01:25:49 MK-Soft-VM7 sshd\[7377\]: Failed password for invalid user cmsftp from 94.191.39.20 port 51986 ssh2 ...	2019-08-02 09:45:24
187.73.162.109	attack	Aug 2 02:09:30 ns41 sshd[2687]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.73.162.109	2019-08-02 09:12:39

Recently Reported IPs

93.12.110.228	204.168.181.163	89.171.187.129	106.122.17.200
15.102.192.107	132.248.223.92	104.238.109.76	204.21.135.109
71.174.210.51	179.215.204.49	206.57.99.85	140.8.44.139
7.14.238.122	177.158.238.155	104.48.113.241	118.156.8.131
152.33.175.39	106.108.231.229	159.71.133.102	205.27.18.86