129.211.55.6 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Jun 17 18:29:39 srv sshd[22374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6	2020-06-18 00:32:54
attack	Jun 9 13:26:35 localhost sshd[53949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 user=root Jun 9 13:26:37 localhost sshd[53949]: Failed password for root from 129.211.55.6 port 54728 ssh2 Jun 9 13:32:01 localhost sshd[54430]: Invalid user mjkang from 129.211.55.6 port 57610 Jun 9 13:32:01 localhost sshd[54430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 Jun 9 13:32:01 localhost sshd[54430]: Invalid user mjkang from 129.211.55.6 port 57610 Jun 9 13:32:03 localhost sshd[54430]: Failed password for invalid user mjkang from 129.211.55.6 port 57610 ssh2 ...	2020-06-09 21:52:49
attack	Invalid user mv from 129.211.55.6 port 39540	2020-05-30 12:23:08
attack	May 26 17:51:27 icinga sshd[28795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 May 26 17:51:30 icinga sshd[28795]: Failed password for invalid user hadoop from 129.211.55.6 port 60594 ssh2 May 26 18:04:04 icinga sshd[48560]: Failed password for root from 129.211.55.6 port 38580 ssh2 ...	2020-05-27 00:56:55
attackbots	May 25 06:14:36 web1 sshd[16964]: Invalid user neriishi from 129.211.55.6 port 60360 May 25 06:14:36 web1 sshd[16964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 May 25 06:14:36 web1 sshd[16964]: Invalid user neriishi from 129.211.55.6 port 60360 May 25 06:14:38 web1 sshd[16964]: Failed password for invalid user neriishi from 129.211.55.6 port 60360 ssh2 May 25 06:26:20 web1 sshd[20156]: Invalid user usuario from 129.211.55.6 port 55972 May 25 06:26:20 web1 sshd[20156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 May 25 06:26:20 web1 sshd[20156]: Invalid user usuario from 129.211.55.6 port 55972 May 25 06:26:22 web1 sshd[20156]: Failed password for invalid user usuario from 129.211.55.6 port 55972 ssh2 May 25 06:31:59 web1 sshd[21554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 user=root May 25 06:32:01 web1 sshd[2 ...	2020-05-25 04:54:04
attackspambots	Observed on multiple hosts.	2020-05-05 10:44:12
attack	Apr 28 15:33:30 PorscheCustomer sshd[15511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 Apr 28 15:33:32 PorscheCustomer sshd[15511]: Failed password for invalid user terry from 129.211.55.6 port 46516 ssh2 Apr 28 15:36:39 PorscheCustomer sshd[15704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 ...	2020-04-28 22:30:50
attack	$f2bV_matches	2020-04-20 13:30:01
attack	Unauthorized access or intrusion attempt detected from Thor banned IP	2020-04-13 16:26:47
attack	Apr 5 12:31:10 dev0-dcde-rnet sshd[1423]: Failed password for root from 129.211.55.6 port 59980 ssh2 Apr 5 12:35:29 dev0-dcde-rnet sshd[1447]: Failed password for root from 129.211.55.6 port 52648 ssh2	2020-04-05 20:32:01
attack	Apr 4 11:28:35 minden010 sshd[11475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 Apr 4 11:28:37 minden010 sshd[11475]: Failed password for invalid user caizekun from 129.211.55.6 port 56950 ssh2 Apr 4 11:34:54 minden010 sshd[14532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 ...	2020-04-04 19:38:21
attackbots	Mar 29 09:44:47 ws19vmsma01 sshd[106542]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 Mar 29 09:44:49 ws19vmsma01 sshd[106542]: Failed password for invalid user dgm from 129.211.55.6 port 52466 ssh2 ...	2020-03-30 02:01:53
attackbotsspam	$f2bV_matches	2020-03-29 10:03:36
attackspambots	Mar 28 17:54:18 legacy sshd[319]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 Mar 28 17:54:20 legacy sshd[319]: Failed password for invalid user ybe from 129.211.55.6 port 34018 ssh2 Mar 28 17:59:12 legacy sshd[480]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 ...	2020-03-29 01:05:35
attackspambots	(sshd) Failed SSH login from 129.211.55.6 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 25 09:56:34 amsweb01 sshd[19645]: Invalid user shanna from 129.211.55.6 port 37426 Mar 25 09:56:35 amsweb01 sshd[19645]: Failed password for invalid user shanna from 129.211.55.6 port 37426 ssh2 Mar 25 10:02:26 amsweb01 sshd[20461]: Invalid user postgres from 129.211.55.6 port 56700 Mar 25 10:02:28 amsweb01 sshd[20461]: Failed password for invalid user postgres from 129.211.55.6 port 56700 ssh2 Mar 25 10:08:05 amsweb01 sshd[21355]: Invalid user zq from 129.211.55.6 port 39832	2020-03-25 17:21:51
attackbotsspam	Triggered by Fail2Ban at Ares web server	2020-02-16 18:16:30
attackspam	Feb 8 10:54:27 plusreed sshd[9916]: Invalid user smm from 129.211.55.6 ...	2020-02-09 02:11:11

Comments on same subnet:

IP	Type	Details	Datetime
129.211.55.22	attack	Jul 22 13:28:53 dignus sshd[25452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 Jul 22 13:28:55 dignus sshd[25452]: Failed password for invalid user nelson from 129.211.55.22 port 55362 ssh2 Jul 22 13:35:36 dignus sshd[26351]: Invalid user sshvpn from 129.211.55.22 port 43584 Jul 22 13:35:36 dignus sshd[26351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 Jul 22 13:35:38 dignus sshd[26351]: Failed password for invalid user sshvpn from 129.211.55.22 port 43584 ssh2 ...	2020-07-23 04:49:58
129.211.55.22	attackspambots	Jul 20 05:50:04 h2779839 sshd[11125]: Invalid user admin from 129.211.55.22 port 45274 Jul 20 05:50:04 h2779839 sshd[11125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 Jul 20 05:50:04 h2779839 sshd[11125]: Invalid user admin from 129.211.55.22 port 45274 Jul 20 05:50:07 h2779839 sshd[11125]: Failed password for invalid user admin from 129.211.55.22 port 45274 ssh2 Jul 20 05:53:53 h2779839 sshd[12679]: Invalid user zxx from 129.211.55.22 port 56264 Jul 20 05:53:53 h2779839 sshd[12679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 Jul 20 05:53:53 h2779839 sshd[12679]: Invalid user zxx from 129.211.55.22 port 56264 Jul 20 05:53:55 h2779839 sshd[12679]: Failed password for invalid user zxx from 129.211.55.22 port 56264 ssh2 Jul 20 05:55:08 h2779839 sshd[12828]: Invalid user dekait from 129.211.55.22 port 41328 ...	2020-07-20 14:25:58
129.211.55.22	attack	SSH brute force	2020-07-08 09:37:40
129.211.55.22	attack	2020-06-24T03:25:07.571936billing sshd[7465]: Failed password for invalid user cacti from 129.211.55.22 port 59016 ssh2 2020-06-24T03:32:50.749825billing sshd[24598]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 user=root 2020-06-24T03:32:52.295782billing sshd[24598]: Failed password for root from 129.211.55.22 port 57948 ssh2 ...	2020-06-24 06:48:19
129.211.55.22	attack	Jun 13 06:24:00 dignus sshd[11402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 user=root Jun 13 06:24:02 dignus sshd[11402]: Failed password for root from 129.211.55.22 port 37314 ssh2 Jun 13 06:29:07 dignus sshd[11852]: Invalid user ts3bot1 from 129.211.55.22 port 34474 Jun 13 06:29:07 dignus sshd[11852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 Jun 13 06:29:09 dignus sshd[11852]: Failed password for invalid user ts3bot1 from 129.211.55.22 port 34474 ssh2 ...	2020-06-13 21:33:24
129.211.55.22	attackbots	Jun 9 19:10:30 itv-usvr-01 sshd[485]: Invalid user ekologia from 129.211.55.22 Jun 9 19:10:30 itv-usvr-01 sshd[485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 Jun 9 19:10:30 itv-usvr-01 sshd[485]: Invalid user ekologia from 129.211.55.22 Jun 9 19:10:32 itv-usvr-01 sshd[485]: Failed password for invalid user ekologia from 129.211.55.22 port 41942 ssh2 Jun 9 19:17:30 itv-usvr-01 sshd[813]: Invalid user cuisine from 129.211.55.22	2020-06-09 21:06:43
129.211.55.22	attackspam	$f2bV_matches	2020-06-04 02:13:43
129.211.55.22	attackspambots	May 28 14:42:13 vps sshd[1027481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 user=root May 28 14:42:16 vps sshd[1027481]: Failed password for root from 129.211.55.22 port 39276 ssh2 May 28 14:48:09 vps sshd[4279]: Invalid user qwert from 129.211.55.22 port 45696 May 28 14:48:09 vps sshd[4279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 May 28 14:48:11 vps sshd[4279]: Failed password for invalid user qwert from 129.211.55.22 port 45696 ssh2 ...	2020-05-29 00:14:17
129.211.55.22	attackbots	May 25 06:07:17 vps sshd[753365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 May 25 06:07:19 vps sshd[753365]: Failed password for invalid user webadmin from 129.211.55.22 port 60366 ssh2 May 25 06:12:52 vps sshd[781210]: Invalid user william from 129.211.55.22 port 37204 May 25 06:12:52 vps sshd[781210]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 May 25 06:12:54 vps sshd[781210]: Failed password for invalid user william from 129.211.55.22 port 37204 ssh2 ...	2020-05-25 16:13:12
129.211.55.22	attackbots	Invalid user bpp from 129.211.55.22 port 41414	2020-05-24 06:43:24
129.211.55.22	attackspambots	May 22 20:50:01 home sshd[27425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 May 22 20:50:03 home sshd[27425]: Failed password for invalid user nkb from 129.211.55.22 port 55342 ssh2 May 22 20:51:28 home sshd[27648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 ...	2020-05-23 03:16:29
129.211.55.22	attackbotsspam	$f2bV_matches	2020-05-22 07:16:40
129.211.55.22	attackspam	May 19 11:49:59 ns37 sshd[22449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 May 19 11:49:59 ns37 sshd[22449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22	2020-05-20 01:10:17
129.211.55.22	attackspam	Invalid user scarab from 129.211.55.22 port 45788	2020-05-12 06:56:58
129.211.55.124	attackbotsspam	SSH bruteforce	2020-04-21 05:16:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.211.55.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54426
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.211.55.6.			IN	A

;; AUTHORITY SECTION:
.			240	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020800 1800 900 604800 86400

;; Query time: 112 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 09 02:11:06 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 6.55.211.129.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 6.55.211.129.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
188.166.39.43	attackspam	ssh brute force	2020-08-30 14:53:05
104.244.74.169	attack	Time: Sun Aug 30 06:52:47 2020 +0000 IP: 104.244.74.169 (LU/Luxembourg/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Aug 30 06:52:36 hosting sshd[17402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.244.74.169 user=root Aug 30 06:52:39 hosting sshd[17402]: Failed password for root from 104.244.74.169 port 46048 ssh2 Aug 30 06:52:41 hosting sshd[17402]: Failed password for root from 104.244.74.169 port 46048 ssh2 Aug 30 06:52:43 hosting sshd[17402]: Failed password for root from 104.244.74.169 port 46048 ssh2 Aug 30 06:52:45 hosting sshd[17402]: Failed password for root from 104.244.74.169 port 46048 ssh2	2020-08-30 14:56:24
118.24.202.34	attack	"$f2bV_matches"	2020-08-30 14:58:53
165.22.101.100	attack	165.22.101.100 - - [30/Aug/2020:08:07:49 +0100] "POST /wp-login.php HTTP/1.1" 200 2046 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.101.100 - - [30/Aug/2020:08:07:52 +0100] "POST /wp-login.php HTTP/1.1" 200 2020 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.101.100 - - [30/Aug/2020:08:07:55 +0100] "POST /wp-login.php HTTP/1.1" 200 2019 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-30 15:12:36
189.31.60.193	attack	Aug 30 08:31:38 vps1 sshd[32305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.31.60.193 user=root Aug 30 08:31:40 vps1 sshd[32305]: Failed password for invalid user root from 189.31.60.193 port 38008 ssh2 Aug 30 08:35:08 vps1 sshd[32333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.31.60.193 Aug 30 08:35:11 vps1 sshd[32333]: Failed password for invalid user cyr from 189.31.60.193 port 54872 ssh2 Aug 30 08:36:26 vps1 sshd[32352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.31.60.193 Aug 30 08:36:29 vps1 sshd[32352]: Failed password for invalid user felix from 189.31.60.193 port 60816 ssh2 Aug 30 08:37:42 vps1 sshd[32357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.31.60.193 ...	2020-08-30 15:06:45
51.68.226.22	attackbotsspam	Unauthorized connection attempt detected from IP address 51.68.226.22 to port 5900 [T]	2020-08-30 14:45:47
222.186.175.202	attackbots	Aug 30 00:20:26 dignus sshd[25271]: Failed password for root from 222.186.175.202 port 25478 ssh2 Aug 30 00:20:29 dignus sshd[25271]: Failed password for root from 222.186.175.202 port 25478 ssh2 Aug 30 00:20:32 dignus sshd[25271]: Failed password for root from 222.186.175.202 port 25478 ssh2 Aug 30 00:20:36 dignus sshd[25271]: Failed password for root from 222.186.175.202 port 25478 ssh2 Aug 30 00:20:39 dignus sshd[25271]: Failed password for root from 222.186.175.202 port 25478 ssh2 ...	2020-08-30 15:23:13
183.166.149.239	attackspambots	Aug 30 07:59:57 srv01 postfix/smtpd\[17682\]: warning: unknown\[183.166.149.239\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 30 08:00:09 srv01 postfix/smtpd\[17682\]: warning: unknown\[183.166.149.239\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 30 08:00:26 srv01 postfix/smtpd\[17682\]: warning: unknown\[183.166.149.239\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 30 08:00:46 srv01 postfix/smtpd\[17682\]: warning: unknown\[183.166.149.239\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 30 08:00:58 srv01 postfix/smtpd\[17682\]: warning: unknown\[183.166.149.239\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-30 15:04:17
145.239.69.74	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-08-30 15:00:22
218.104.128.54	attack	Failed password for invalid user jml from 218.104.128.54 port 45752 ssh2	2020-08-30 15:21:15
27.34.104.154	attackspambots	php WP PHPmyadamin ABUSE blocked for 12h	2020-08-30 14:49:10
104.236.100.42	attackspambots	104.236.100.42 - - [30/Aug/2020:06:51:37 +0100] "POST /wp-login.php HTTP/1.1" 200 2606 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.236.100.42 - - [30/Aug/2020:06:51:38 +0100] "POST /wp-login.php HTTP/1.1" 200 2581 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.236.100.42 - - [30/Aug/2020:06:51:39 +0100] "POST /wp-login.php HTTP/1.1" 200 2581 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-30 15:10:43
178.128.242.233	attack	Invalid user nrg from 178.128.242.233 port 49782	2020-08-30 15:15:29
59.93.124.74	attackspam	Automatic report - XMLRPC Attack	2020-08-30 15:19:51
192.241.231.216	attackbotsspam	firewall-block, port(s): 9042/tcp	2020-08-30 14:40:50

Recently Reported IPs

103.215.202.177	195.154.220.67	49.235.12.159	89.208.210.11
54.37.157.88	39.22.176.10	69.26.159.176	203.114.211.199
183.62.170.245	102.132.252.65	45.95.33.153	142.4.212.119
14.47.184.146	89.248.168.157	14.243.103.190	182.48.80.68
125.124.174.127	84.92.113.168	192.241.239.30	27.129.244.26