City: unknown
Region: unknown
Country: China
Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attackspambots | Jun 17 18:29:39 srv sshd[22374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 |
2020-06-18 00:32:54 |
| attack | Jun 9 13:26:35 localhost sshd[53949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 user=root Jun 9 13:26:37 localhost sshd[53949]: Failed password for root from 129.211.55.6 port 54728 ssh2 Jun 9 13:32:01 localhost sshd[54430]: Invalid user mjkang from 129.211.55.6 port 57610 Jun 9 13:32:01 localhost sshd[54430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 Jun 9 13:32:01 localhost sshd[54430]: Invalid user mjkang from 129.211.55.6 port 57610 Jun 9 13:32:03 localhost sshd[54430]: Failed password for invalid user mjkang from 129.211.55.6 port 57610 ssh2 ... |
2020-06-09 21:52:49 |
| attack | Invalid user mv from 129.211.55.6 port 39540 |
2020-05-30 12:23:08 |
| attack | May 26 17:51:27 icinga sshd[28795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 May 26 17:51:30 icinga sshd[28795]: Failed password for invalid user hadoop from 129.211.55.6 port 60594 ssh2 May 26 18:04:04 icinga sshd[48560]: Failed password for root from 129.211.55.6 port 38580 ssh2 ... |
2020-05-27 00:56:55 |
| attackbots | May 25 06:14:36 web1 sshd[16964]: Invalid user neriishi from 129.211.55.6 port 60360 May 25 06:14:36 web1 sshd[16964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 May 25 06:14:36 web1 sshd[16964]: Invalid user neriishi from 129.211.55.6 port 60360 May 25 06:14:38 web1 sshd[16964]: Failed password for invalid user neriishi from 129.211.55.6 port 60360 ssh2 May 25 06:26:20 web1 sshd[20156]: Invalid user usuario from 129.211.55.6 port 55972 May 25 06:26:20 web1 sshd[20156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 May 25 06:26:20 web1 sshd[20156]: Invalid user usuario from 129.211.55.6 port 55972 May 25 06:26:22 web1 sshd[20156]: Failed password for invalid user usuario from 129.211.55.6 port 55972 ssh2 May 25 06:31:59 web1 sshd[21554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 user=root May 25 06:32:01 web1 sshd[2 ... |
2020-05-25 04:54:04 |
| attackspambots | Observed on multiple hosts. |
2020-05-05 10:44:12 |
| attack | Apr 28 15:33:30 PorscheCustomer sshd[15511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 Apr 28 15:33:32 PorscheCustomer sshd[15511]: Failed password for invalid user terry from 129.211.55.6 port 46516 ssh2 Apr 28 15:36:39 PorscheCustomer sshd[15704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 ... |
2020-04-28 22:30:50 |
| attack | $f2bV_matches |
2020-04-20 13:30:01 |
| attack | Unauthorized access or intrusion attempt detected from Thor banned IP |
2020-04-13 16:26:47 |
| attack | Apr 5 12:31:10 dev0-dcde-rnet sshd[1423]: Failed password for root from 129.211.55.6 port 59980 ssh2 Apr 5 12:35:29 dev0-dcde-rnet sshd[1447]: Failed password for root from 129.211.55.6 port 52648 ssh2 |
2020-04-05 20:32:01 |
| attack | Apr 4 11:28:35 minden010 sshd[11475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 Apr 4 11:28:37 minden010 sshd[11475]: Failed password for invalid user caizekun from 129.211.55.6 port 56950 ssh2 Apr 4 11:34:54 minden010 sshd[14532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 ... |
2020-04-04 19:38:21 |
| attackbots | Mar 29 09:44:47 ws19vmsma01 sshd[106542]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 Mar 29 09:44:49 ws19vmsma01 sshd[106542]: Failed password for invalid user dgm from 129.211.55.6 port 52466 ssh2 ... |
2020-03-30 02:01:53 |
| attackbotsspam | $f2bV_matches |
2020-03-29 10:03:36 |
| attackspambots | Mar 28 17:54:18 legacy sshd[319]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 Mar 28 17:54:20 legacy sshd[319]: Failed password for invalid user ybe from 129.211.55.6 port 34018 ssh2 Mar 28 17:59:12 legacy sshd[480]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 ... |
2020-03-29 01:05:35 |
| attackspambots | (sshd) Failed SSH login from 129.211.55.6 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 25 09:56:34 amsweb01 sshd[19645]: Invalid user shanna from 129.211.55.6 port 37426 Mar 25 09:56:35 amsweb01 sshd[19645]: Failed password for invalid user shanna from 129.211.55.6 port 37426 ssh2 Mar 25 10:02:26 amsweb01 sshd[20461]: Invalid user postgres from 129.211.55.6 port 56700 Mar 25 10:02:28 amsweb01 sshd[20461]: Failed password for invalid user postgres from 129.211.55.6 port 56700 ssh2 Mar 25 10:08:05 amsweb01 sshd[21355]: Invalid user zq from 129.211.55.6 port 39832 |
2020-03-25 17:21:51 |
| attackbotsspam | Triggered by Fail2Ban at Ares web server |
2020-02-16 18:16:30 |
| attackspam | Feb 8 10:54:27 plusreed sshd[9916]: Invalid user smm from 129.211.55.6 ... |
2020-02-09 02:11:11 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 129.211.55.22 | attack | Jul 22 13:28:53 dignus sshd[25452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 Jul 22 13:28:55 dignus sshd[25452]: Failed password for invalid user nelson from 129.211.55.22 port 55362 ssh2 Jul 22 13:35:36 dignus sshd[26351]: Invalid user sshvpn from 129.211.55.22 port 43584 Jul 22 13:35:36 dignus sshd[26351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 Jul 22 13:35:38 dignus sshd[26351]: Failed password for invalid user sshvpn from 129.211.55.22 port 43584 ssh2 ... |
2020-07-23 04:49:58 |
| 129.211.55.22 | attackspambots | Jul 20 05:50:04 h2779839 sshd[11125]: Invalid user admin from 129.211.55.22 port 45274 Jul 20 05:50:04 h2779839 sshd[11125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 Jul 20 05:50:04 h2779839 sshd[11125]: Invalid user admin from 129.211.55.22 port 45274 Jul 20 05:50:07 h2779839 sshd[11125]: Failed password for invalid user admin from 129.211.55.22 port 45274 ssh2 Jul 20 05:53:53 h2779839 sshd[12679]: Invalid user zxx from 129.211.55.22 port 56264 Jul 20 05:53:53 h2779839 sshd[12679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 Jul 20 05:53:53 h2779839 sshd[12679]: Invalid user zxx from 129.211.55.22 port 56264 Jul 20 05:53:55 h2779839 sshd[12679]: Failed password for invalid user zxx from 129.211.55.22 port 56264 ssh2 Jul 20 05:55:08 h2779839 sshd[12828]: Invalid user dekait from 129.211.55.22 port 41328 ... |
2020-07-20 14:25:58 |
| 129.211.55.22 | attack | SSH brute force |
2020-07-08 09:37:40 |
| 129.211.55.22 | attack | 2020-06-24T03:25:07.571936billing sshd[7465]: Failed password for invalid user cacti from 129.211.55.22 port 59016 ssh2 2020-06-24T03:32:50.749825billing sshd[24598]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 user=root 2020-06-24T03:32:52.295782billing sshd[24598]: Failed password for root from 129.211.55.22 port 57948 ssh2 ... |
2020-06-24 06:48:19 |
| 129.211.55.22 | attack | Jun 13 06:24:00 dignus sshd[11402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 user=root Jun 13 06:24:02 dignus sshd[11402]: Failed password for root from 129.211.55.22 port 37314 ssh2 Jun 13 06:29:07 dignus sshd[11852]: Invalid user ts3bot1 from 129.211.55.22 port 34474 Jun 13 06:29:07 dignus sshd[11852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 Jun 13 06:29:09 dignus sshd[11852]: Failed password for invalid user ts3bot1 from 129.211.55.22 port 34474 ssh2 ... |
2020-06-13 21:33:24 |
| 129.211.55.22 | attackbots | Jun 9 19:10:30 itv-usvr-01 sshd[485]: Invalid user ekologia from 129.211.55.22 Jun 9 19:10:30 itv-usvr-01 sshd[485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 Jun 9 19:10:30 itv-usvr-01 sshd[485]: Invalid user ekologia from 129.211.55.22 Jun 9 19:10:32 itv-usvr-01 sshd[485]: Failed password for invalid user ekologia from 129.211.55.22 port 41942 ssh2 Jun 9 19:17:30 itv-usvr-01 sshd[813]: Invalid user cuisine from 129.211.55.22 |
2020-06-09 21:06:43 |
| 129.211.55.22 | attackspam | $f2bV_matches |
2020-06-04 02:13:43 |
| 129.211.55.22 | attackspambots | May 28 14:42:13 vps sshd[1027481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 user=root May 28 14:42:16 vps sshd[1027481]: Failed password for root from 129.211.55.22 port 39276 ssh2 May 28 14:48:09 vps sshd[4279]: Invalid user qwert from 129.211.55.22 port 45696 May 28 14:48:09 vps sshd[4279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 May 28 14:48:11 vps sshd[4279]: Failed password for invalid user qwert from 129.211.55.22 port 45696 ssh2 ... |
2020-05-29 00:14:17 |
| 129.211.55.22 | attackbots | May 25 06:07:17 vps sshd[753365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 May 25 06:07:19 vps sshd[753365]: Failed password for invalid user webadmin from 129.211.55.22 port 60366 ssh2 May 25 06:12:52 vps sshd[781210]: Invalid user william from 129.211.55.22 port 37204 May 25 06:12:52 vps sshd[781210]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 May 25 06:12:54 vps sshd[781210]: Failed password for invalid user william from 129.211.55.22 port 37204 ssh2 ... |
2020-05-25 16:13:12 |
| 129.211.55.22 | attackbots | Invalid user bpp from 129.211.55.22 port 41414 |
2020-05-24 06:43:24 |
| 129.211.55.22 | attackspambots | May 22 20:50:01 home sshd[27425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 May 22 20:50:03 home sshd[27425]: Failed password for invalid user nkb from 129.211.55.22 port 55342 ssh2 May 22 20:51:28 home sshd[27648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 ... |
2020-05-23 03:16:29 |
| 129.211.55.22 | attackbotsspam | $f2bV_matches |
2020-05-22 07:16:40 |
| 129.211.55.22 | attackspam | May 19 11:49:59 ns37 sshd[22449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 May 19 11:49:59 ns37 sshd[22449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 |
2020-05-20 01:10:17 |
| 129.211.55.22 | attackspam | Invalid user scarab from 129.211.55.22 port 45788 |
2020-05-12 06:56:58 |
| 129.211.55.124 | attackbotsspam | SSH bruteforce |
2020-04-21 05:16:31 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.211.55.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54426
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.211.55.6. IN A
;; AUTHORITY SECTION:
. 240 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020020800 1800 900 604800 86400
;; Query time: 112 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 09 02:11:06 CST 2020
;; MSG SIZE rcvd: 116Host 6.55.211.129.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 6.55.211.129.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 84.55.65.13 | attackspambots | Jul 24 08:38:51 OPSO sshd\[13096\]: Invalid user student from 84.55.65.13 port 56264 Jul 24 08:38:51 OPSO sshd\[13096\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.55.65.13 Jul 24 08:38:53 OPSO sshd\[13096\]: Failed password for invalid user student from 84.55.65.13 port 56264 ssh2 Jul 24 08:43:35 OPSO sshd\[13893\]: Invalid user plano from 84.55.65.13 port 52108 Jul 24 08:43:35 OPSO sshd\[13893\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.55.65.13 |
2019-07-24 14:48:32 |
| 106.75.237.209 | attackbotsspam | Splunk® : port scan detected: Jul 24 01:29:48 testbed kernel: Firewall: *TCP_IN Blocked* IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:64:c3:d6:0b:ef:f0:08:00 SRC=106.75.237.209 DST=104.248.11.191 LEN=52 TOS=0x02 PREC=0x00 TTL=105 ID=14215 DF PROTO=TCP SPT=63558 DPT=3306 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0 |
2019-07-24 14:37:29 |
| 167.99.75.174 | attackspam | Invalid user applmgr from 167.99.75.174 port 43076 |
2019-07-24 15:20:43 |
| 222.186.15.28 | attackspam | 2019-07-24T06:37:52.058690abusebot-7.cloudsearch.cf sshd\[18694\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.28 user=root |
2019-07-24 14:51:43 |
| 14.2.200.143 | attackbots | DATE:2019-07-24_07:30:05, IP:14.2.200.143, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc) |
2019-07-24 14:23:17 |
| 218.92.0.160 | attackbots | k+ssh-bruteforce |
2019-07-24 14:47:38 |
| 107.175.36.133 | attackspambots | SpamReport |
2019-07-24 14:25:00 |
| 39.85.6.248 | attackbots | firewall-block, port(s): 23/tcp |
2019-07-24 14:22:26 |
| 218.92.0.180 | attackspambots | Jul 24 08:29:59 piServer sshd\[32563\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.180 user=root Jul 24 08:30:01 piServer sshd\[32563\]: Failed password for root from 218.92.0.180 port 42558 ssh2 Jul 24 08:30:04 piServer sshd\[32563\]: Failed password for root from 218.92.0.180 port 42558 ssh2 Jul 24 08:30:07 piServer sshd\[32563\]: Failed password for root from 218.92.0.180 port 42558 ssh2 Jul 24 08:30:09 piServer sshd\[32563\]: Failed password for root from 218.92.0.180 port 42558 ssh2 ... |
2019-07-24 14:40:20 |
| 173.193.179.253 | attackbots | Jul 24 02:29:09 vps200512 sshd\[18463\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.193.179.253 user=root Jul 24 02:29:11 vps200512 sshd\[18463\]: Failed password for root from 173.193.179.253 port 52982 ssh2 Jul 24 02:33:52 vps200512 sshd\[18538\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.193.179.253 user=root Jul 24 02:33:54 vps200512 sshd\[18538\]: Failed password for root from 173.193.179.253 port 49668 ssh2 Jul 24 02:38:35 vps200512 sshd\[18574\]: Invalid user stefan from 173.193.179.253 |
2019-07-24 14:58:56 |
| 51.77.221.191 | attackspam | Jul 24 11:56:32 areeb-Workstation sshd\[15155\]: Invalid user william from 51.77.221.191 Jul 24 11:56:32 areeb-Workstation sshd\[15155\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.221.191 Jul 24 11:56:34 areeb-Workstation sshd\[15155\]: Failed password for invalid user william from 51.77.221.191 port 43740 ssh2 ... |
2019-07-24 14:28:49 |
| 78.128.113.68 | attackbotsspam | Time: Wed Jul 24 02:28:38 2019 -0300 IP: 78.128.113.68 (BG/Bulgaria/ip-113-68.4vendeta.com) Failures: 5 (smtpauth) Interval: 3600 seconds Blocked: Permanent Block |
2019-07-24 14:19:48 |
| 42.236.75.144 | attack | Bruteforce on SSH Honeypot |
2019-07-24 15:06:37 |
| 187.109.169.228 | attackspambots | Jul 24 01:28:35 web1 postfix/smtpd[30356]: warning: unknown[187.109.169.228]: SASL PLAIN authentication failed: authentication failure ... |
2019-07-24 15:09:29 |
| 109.251.68.112 | attackspam | 2019-07-24T12:28:48.276215enmeeting.mahidol.ac.th sshd\[24976\]: Invalid user clue from 109.251.68.112 port 48928 2019-07-24T12:28:48.291294enmeeting.mahidol.ac.th sshd\[24976\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.251.68.112 2019-07-24T12:28:50.932379enmeeting.mahidol.ac.th sshd\[24976\]: Failed password for invalid user clue from 109.251.68.112 port 48928 ssh2 ... |
2019-07-24 15:03:24 |