212.129.245.105

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	SSH login attempts.	2020-06-09 14:21:57
attackspambots	May 11 07:28:05 server1 sshd\[21606\]: Failed password for invalid user webmaster from 212.129.245.105 port 55412 ssh2 May 11 07:31:22 server1 sshd\[22642\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.245.105 user=root May 11 07:31:24 server1 sshd\[22642\]: Failed password for root from 212.129.245.105 port 33198 ssh2 May 11 07:34:38 server1 sshd\[23659\]: Invalid user werkstatt from 212.129.245.105 May 11 07:34:38 server1 sshd\[23659\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.245.105 ...	2020-05-11 21:55:09
attackbotsspam	Invalid user hk from 212.129.245.105 port 54062	2020-05-03 08:14:46
attackbotsspam	2020-05-02T07:59:29.726363vps773228.ovh.net sshd[9219]: Failed password for root from 212.129.245.105 port 58966 ssh2 2020-05-02T08:04:19.165363vps773228.ovh.net sshd[9293]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.245.105 user=root 2020-05-02T08:04:21.590132vps773228.ovh.net sshd[9293]: Failed password for root from 212.129.245.105 port 57476 ssh2 2020-05-02T08:09:12.030973vps773228.ovh.net sshd[9399]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.245.105 user=root 2020-05-02T08:09:13.678182vps773228.ovh.net sshd[9399]: Failed password for root from 212.129.245.105 port 55984 ssh2 ...	2020-05-02 15:47:07

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.129.245.105
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20063
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;212.129.245.105.		IN	A

;; AUTHORITY SECTION:
.			585	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050200 1800 900 604800 86400

;; Query time: 86 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat May 02 15:47:03 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 105.245.129.212.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 105.245.129.212.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
112.85.42.122	attackspambots	2020-10-13 09:00:50.782469-0500 localhost sshd[66720]: Failed password for root from 112.85.42.122 port 26584 ssh2	2020-10-13 22:21:34
77.130.135.14	attackspam	$f2bV_matches	2020-10-13 22:18:31
61.132.52.35	attackspambots	Oct 13 14:52:48 host1 sshd[105048]: Invalid user cornelia from 61.132.52.35 port 36638 Oct 13 14:52:50 host1 sshd[105048]: Failed password for invalid user cornelia from 61.132.52.35 port 36638 ssh2 Oct 13 14:52:48 host1 sshd[105048]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.132.52.35 Oct 13 14:52:48 host1 sshd[105048]: Invalid user cornelia from 61.132.52.35 port 36638 Oct 13 14:52:50 host1 sshd[105048]: Failed password for invalid user cornelia from 61.132.52.35 port 36638 ssh2 ...	2020-10-13 22:13:11
115.48.149.238	attackspam	Icarus honeypot on github	2020-10-13 22:33:50
123.206.216.65	attack	SSH login attempts.	2020-10-13 21:52:43
164.68.112.178	attackspambots	TCP (SYN) 164.68.112.178:50227 -> port 1883, len 44	2020-10-13 22:18:48
218.92.0.208	attackbotsspam	2020-10-13T12:43:37.328200rem.lavrinenko.info sshd[12152]: refused connect from 218.92.0.208 (218.92.0.208) 2020-10-13T12:45:07.236768rem.lavrinenko.info sshd[12153]: refused connect from 218.92.0.208 (218.92.0.208) 2020-10-13T12:46:31.814628rem.lavrinenko.info sshd[12155]: refused connect from 218.92.0.208 (218.92.0.208) 2020-10-13T12:47:55.249406rem.lavrinenko.info sshd[12157]: refused connect from 218.92.0.208 (218.92.0.208) 2020-10-13T12:49:15.663638rem.lavrinenko.info sshd[12159]: refused connect from 218.92.0.208 (218.92.0.208) ...	2020-10-13 21:46:23
212.47.251.127	attackbotsspam	212.47.251.127 - - [13/Oct/2020:14:22:56 +0100] "POST /wp-login.php HTTP/1.1" 200 2284 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.47.251.127 - - [13/Oct/2020:14:23:01 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.47.251.127 - - [13/Oct/2020:14:30:12 +0100] "POST /wp-login.php HTTP/1.1" 200 2340 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-13 22:02:45
112.35.92.119	attackspambots	Oct 12 23:34:58 abendstille sshd\[29933\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.35.92.119 user=root Oct 12 23:35:00 abendstille sshd\[29933\]: Failed password for root from 112.35.92.119 port 16022 ssh2 Oct 12 23:38:24 abendstille sshd\[1407\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.35.92.119 user=root Oct 12 23:38:26 abendstille sshd\[1407\]: Failed password for root from 112.35.92.119 port 57264 ssh2 Oct 12 23:41:47 abendstille sshd\[6148\]: Invalid user anamaria from 112.35.92.119 Oct 12 23:41:47 abendstille sshd\[6148\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.35.92.119 ...	2020-10-13 22:06:33
68.183.154.109	attack	Invalid user tp from 68.183.154.109 port 58034	2020-10-13 21:51:40
176.123.8.128	attackspambots	SSH Brute-Forcing (server2)	2020-10-13 21:59:39
118.189.139.212	attackspambots	ang 118.189.139.212 [13/Oct/2020:20:08:17 "-" "POST /wp-login.php 200 1930 118.189.139.212 [13/Oct/2020:20:21:50 "-" "GET /wp-login.php 200 1544 118.189.139.212 [13/Oct/2020:20:21:50 "-" "POST /wp-login.php 200 1930	2020-10-13 22:22:52
107.172.206.82	attackbotsspam	$f2bV_matches	2020-10-13 21:45:24
14.29.162.139	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-13 22:24:34
64.225.126.22	attack	Invalid user lcy from 64.225.126.22 port 55988	2020-10-13 22:05:06

Recently Reported IPs

1.88.125.147	227.232.201.8	113.22.61.157	52.173.166.70
35.75.187.183	104.1.63.221	55.189.53.15	38.48.133.61
87.192.94.161	56.222.231.127	128.4.201.60	223.17.207.17
196.25.122.81	11.70.144.100	110.61.53.219	167.122.43.60
141.245.241.183	104.37.188.101	177.10.19.200	34.210.82.86