Go
119.29.11.214
is a
Hacker
100 %
China
Report Abuse
1014attacks reported
812Brute-ForceSSH
82Brute-Force
41SSH
19HackingBrute-ForceSSH
18Port ScanBrute-ForceSSH
11Port ScanHackingBrute-ForceWeb App AttackSSH
7DDoS Attack
5uncategorized
4Hacking
4FTP Brute-ForceHacking
...
from 161 distinct reporters
and 8 distinct sources : BadIPs.com, Blocklist.de, FireHOL, Charles Haley, NormShield.com, NoThink.org, GreenSnow.co, AbuseIPDB
119.29.11.214 was first signaled at 2018-10-18 10:43 and last record was at 2019-06-23 03:04.
IP

119.29.11.214

Organization
Shenzhen Tencent Computer Systems Company Limited
Localisation
China
Beijing, Beijing
NetRange : First & Last IP
119.28.0.0 - 119.29.255.255
Network CIDR
119.28.0.0/15

Cybercrime IP Feeds

Date UTC Category Sub Categories Source List Source Logs
2019-04-07 14:35 attacks Brute-ForceSSH AbuseIPDB Triggered by Fail2Ban at Vostok web server
2019-04-07 14:26 attacks Brute-ForceSSH AbuseIPDB Apr 8 02:19:07 yabzik sshd[25626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.11.214 Apr 8 02:19:0
2019-04-07 13:19 attacks Brute-ForceSSH AbuseIPDB Apr 8 00:11:16 tux-35-217 sshd\[6507\]: Invalid user c from 119.29.11.214 port 33078 Apr 8 00:11:16 tux-35-217 sshd\[6507\]: pam_unix\(sshd:auth\): au
2019-04-07 09:34 attacks Brute-ForceSSH AbuseIPDB 2019-04-07T20:34:15.400299centos sshd\[13195\]: Invalid user webadmin from 119.29.11.214 port 51539 2019-04-07T20:34:15.404729centos sshd\[13195\]: pa
2019-04-07 08:49 attacks Brute-ForceSSH AbuseIPDB Apr 7 19:40:18 s64-1 sshd[18387]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.11.214 Apr 7 19:40:20
2019-04-07 08:42 attacks Brute-ForceSSH AbuseIPDB Apr 7 10:42:17 cac1d2 sshd\[15229\]: Invalid user agarwal from 119.29.11.214 port 38657 Apr 7 10:42:17 cac1d2 sshd\[15229\]: pam_unix\(sshd:auth\): au
2019-04-07 08:41 attacks Brute-ForceSSH AbuseIPDB  
2019-04-07 08:26 attacks Brute-ForceSSH AbuseIPDB Apr 7 19:18:24 vserver sshd\[21980\]: Invalid user biblioteca from 119.29.11.214Apr 7 19:18:26 vserver sshd\[21980\]: Failed password for invalid user
2019-04-07 04:44 attacks DDoS Attack AbuseIPDB $f2bV_matches
2019-04-07 02:58 attacks Brute-ForceSSH AbuseIPDB Apr 7 07:49:41 vps200512 sshd\[20030\]: Invalid user scp from 119.29.11.214 Apr 7 07:49:41 vps200512 sshd\[20030\]: pam_unix\(sshd:auth\): authenticat
2019-04-07 02:00 attacks Brute-ForceSSH AbuseIPDB SSH bruteforce (Triggered fail2ban)
2019-04-07 01:43 attacks Brute-ForceSSH AbuseIPDB Apr 7 12:36:00 ns37 sshd[20848]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.11.214 Apr 7 12:36:02
2019-04-06 21:50 attacks SSH AbuseIPDB ssh-bruteforce
2019-04-06 16:51 attacks Brute-ForceSSH AbuseIPDB Apr 7 03:43:37 pornomens sshd\[30444\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.11.214 user=
2019-04-06 13:55 attacks Brute-Force AbuseIPDB Apr 6 18:49:54 bilbo sshd\[7601\]: Invalid user officeinn from 119.29.11.214\ Apr 6 18:49:56 bilbo sshd\[7601\]: Failed password for invalid user offi
2019-04-06 13:34 attacks Brute-ForceSSH AbuseIPDB Invalid user wuhao from 119.29.11.214 port 53607 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.11.
2019-04-06 13:31 attacks Brute-ForceSSH AbuseIPDB SSH-BruteForce
2019-04-06 02:04 attacks Brute-Force AbuseIPDB Apr 6 11:04:44 unicornsoft sshd\[24486\]: Invalid user xbian from 119.29.11.214 Apr 6 11:04:44 unicornsoft sshd\[24486\]: pam_unix\(sshd:auth\): authe
2019-04-05 23:19 attacks Port ScanHacking AbuseIPDB SSH/RDP/Plesk/Webmin sniffing
2019-04-05 22:24 attacks Brute-ForceSSH AbuseIPDB Apr 6 09:24:02 host sshd\[49753\]: Invalid user svsg from 119.29.11.214 port 58553 Apr 6 09:24:02 host sshd\[49753\]: pam_unix\(sshd:auth\): authentic
2019-04-05 21:17 attacks Brute-ForceSSH AbuseIPDB Apr 6 07:17:07 mail sshd\[16085\]: Invalid user tickets from 119.29.11.214 port 33697 Apr 6 07:17:07 mail sshd\[16085\]: pam_unix\(sshd:auth\): authen
2019-04-05 15:01 attacks Brute-ForceSSH AbuseIPDB Apr 6 01:59:59 mail sshd\[4344\]: Invalid user linux from 119.29.11.214 port 56031 Apr 6 01:59:59 mail sshd\[4344\]: Disconnected from 119.29.11.214 p
2019-04-05 11:51 attacks Brute-ForceSSH AbuseIPDB  
2019-04-05 11:30 attacks SSH AbuseIPDB Apr 5 20:29:39 sshgateway sshd\[15126\]: Invalid user ari from 119.29.11.214 Apr 5 20:29:39 sshgateway sshd\[15126\]: pam_unix\(sshd:auth\): authentic
2019-04-05 08:51 attacks Brute-ForceSSH AbuseIPDB Apr 5 19:50:39 ubuntu-2gb-nbg1-dc3-1 sshd[8784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.11.214
2019-04-05 02:44 attacks Brute-ForceSSH AbuseIPDB Apr 5 13:44:13 * sshd[32324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.11.214 Apr 5 13:44:15 * s
2019-04-05 01:41 attacks Brute-ForceSSH AbuseIPDB Apr 5 10:41:48 MK-Soft-VM4 sshd\[7094\]: Invalid user postgres from 119.29.11.214 port 54790 Apr 5 10:41:48 MK-Soft-VM4 sshd\[7094\]: pam_unix\(sshd:a
2019-04-05 00:24 attacks Brute-Force AbuseIPDB Apr 5 09:24:21 localhost sshd\[3271\]: Invalid user zabbix from 119.29.11.214 port 50313 Apr 5 09:24:21 localhost sshd\[3271\]: pam_unix\(sshd:auth\):
2019-04-04 20:07 attacks Brute-ForceSSH AbuseIPDB Apr 5 07:07:18 MK-Soft-Root1 sshd\[32642\]: Invalid user magnos from 119.29.11.214 port 47930 Apr 5 07:07:18 MK-Soft-Root1 sshd\[32642\]: pam_unix\(ss
2019-04-04 18:04 attacks Brute-ForceSSH AbuseIPDB Apr 5 05:04:32 * sshd[814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.11.214 Apr 5 05:04:34 * ssh
2019-04-04 17:07 attacks Brute-ForceSSH AbuseIPDB Apr 5 04:07:43 MK-Soft-Root1 sshd\[5746\]: Invalid user riddi from 119.29.11.214 port 60977 Apr 5 04:07:43 MK-Soft-Root1 sshd\[5746\]: pam_unix\(sshd:
2019-04-04 17:06 attacks Port Scan AbuseIPDB Scanning for vulnerable services
2019-04-04 16:19 attacks Brute-ForceSSH AbuseIPDB Apr 5 02:19:51 mail sshd\[29781\]: Invalid user fax from 119.29.11.214 port 51411 Apr 5 02:19:51 mail sshd\[29781\]: pam_unix\(sshd:auth\): authentica
2019-04-04 12:08 attacks Brute-ForceSSH AbuseIPDB Apr 4 21:08:39 MK-Soft-VM5 sshd\[22621\]: Invalid user amy from 119.29.11.214 port 34636 Apr 4 21:08:39 MK-Soft-VM5 sshd\[22621\]: pam_unix\(sshd:auth
2019-04-04 11:58 attacks Brute-ForceSSH AbuseIPDB Apr 4 23:57:45 srv-4 sshd\[6299\]: Invalid user gnax from 119.29.11.214 Apr 4 23:57:45 srv-4 sshd\[6299\]: pam_unix\(sshd:auth\): authentication failu
2019-04-04 11:33 attacks Brute-ForceSSH AbuseIPDB 2019-04-04T22:33:51.706879stark.klein-stark.info sshd\[17168\]: Invalid user nagios from 119.29.11.214 port 39730 2019-04-04T22:33:51.713494stark.klei
2019-04-04 06:53 attacks Brute-ForceSSH AbuseIPDB Apr 4 17:53:27 mail sshd[30906]: Invalid user ftp1 from 119.29.11.214
2019-04-03 19:47 attacks Brute-ForceSSH AbuseIPDB  
2019-04-03 19:16 attacks Brute-ForceSSH AbuseIPDB Apr 4 06:16:24 ncomp sshd[29122]: Invalid user matt from 119.29.11.214 Apr 4 06:16:24 ncomp sshd[29122]: pam_unix(sshd:auth): authentication failure;
2019-04-03 18:16 attacks Brute-ForceSSH AbuseIPDB  
2019-04-03 17:06 attacks Brute-ForceSSH AbuseIPDB Apr 4 02:06:28 *** sshd[18135]: Invalid user cyrusimap from 119.29.11.214
2019-04-03 11:05 attacks Brute-ForceSSH AbuseIPDB Apr 3 05:33:10 *** sshd[13539]: Failed password for invalid user teste from 119.29.11.214 port 36141 ssh2 Apr 3 05:37:28 *** sshd[13630]: Failed passw
2019-04-03 10:40 attacks Brute-ForceSSH AbuseIPDB Apr 3 21:40:03 vpn01 sshd\[31317\]: Invalid user ts3srv from 119.29.11.214 Apr 3 21:40:03 vpn01 sshd\[31317\]: pam_unix\(sshd:auth\): authentication f
2019-04-03 05:56 attacks Brute-ForceSSH AbuseIPDB  
2019-04-03 04:14 attacks Brute-ForceSSH AbuseIPDB Apr 3 15:14:33 cvbmail sshd\[16074\]: Invalid user shclient from 119.29.11.214 Apr 3 15:14:33 cvbmail sshd\[16074\]: pam_unix\(sshd:auth\): authentica
2019-04-02 22:21 attacks Brute-ForceSSH AbuseIPDB Apr 3 09:20:59 mail sshd\[8484\]: Invalid user test from 119.29.11.214 port 53171 Apr 3 09:21:00 mail sshd\[8484\]: Disconnected from 119.29.11.214 po
2019-04-02 22:02 attacks Brute-Force AbuseIPDB Jan 27 09:55:42 vtv3 sshd\[11444\]: Invalid user wwwrun from 119.29.11.214 port 60814 Jan 27 09:55:42 vtv3 sshd\[11444\]: pam_unix\(sshd:auth\): authe
2019-04-02 21:56 attacks HackingBrute-ForceSSH AbuseIPDB SSH authentication failure x 7 reported by Fail2Ban
2019-04-02 21:39 attacks Brute-ForceSSH AbuseIPDB Brute-Force attack detected (94) and blocked by Fail2Ban.
2019-04-02 20:44 attacks SSH AbuseIPDB 2019-04-03T12:44:30.118825enmeeting.mahidol.ac.th sshd\[9985\]: Invalid user nc from 119.29.11.214 port 60041 2019-04-03T12:44:30.133552enmeeting.mahi
2018-10-18 10:43 attacks FTP Brute-ForceHacking AbuseIPDB Received: by reporting4.blocklist.de (Postfix, from ID 1003) id 0170B3502BAE9; Thu, 18 Oct 2018 21:41:19 +0200 (CEST) Received: from smtp-mx.blocklist
2018-10-18 11:08 attacks FTP Brute-ForceHacking AbuseIPDB Received: by reporting4.blocklist.de (Postfix, from ID 1003) id 0170B3502BAE9; Thu, 18 Oct 2018 21:41:19 +0200 (CEST) Received: from smtp-mx.blocklist
2018-10-18 12:26 attacks FTP Brute-ForceHacking AbuseIPDB Received: by reporting4.blocklist.de (Postfix, from ID 1003) id 0170B3502BAE9; Thu, 18 Oct 2018 21:41:19 +0200 (CEST) Received: from smtp-mx.blocklist
2018-10-18 13:47 attacks FTP Brute-ForceHacking AbuseIPDB Received: by reporting4.blocklist.de (Postfix, from ID 1003) id 0170B3502BAE9; Thu, 18 Oct 2018 21:41:19 +0200 (CEST) Received: from smtp-mx.blocklist
2018-11-10 22:18 attacks Brute-ForceSSH AbuseIPDB Nov 11 09:18:51 sv1 sshd\[5321\]: Invalid user jenkins from 119.29.11.214 port 58878 Nov 11 09:18:51 sv1 sshd\[5321\]: pam_unix\(sshd:auth\): authenti
2018-11-10 23:52 attacks Brute-ForceSSH AbuseIPDB Nov 11 10:52:46 sv1 sshd\[6780\]: Invalid user nagios from 119.29.11.214 port 47454 Nov 11 10:52:46 sv1 sshd\[6780\]: pam_unix\(sshd:auth\): authentic
2018-11-11 01:28 attacks Brute-ForceSSH AbuseIPDB Nov 11 12:28:21 sv1 sshd\[8285\]: Invalid user server from 119.29.11.214 port 41316 Nov 11 12:28:21 sv1 sshd\[8285\]: pam_unix\(sshd:auth\): authentic
2019-01-01 04:33 attacks Brute-ForceSSH AbuseIPDB Jan 1 15:24:19 ns341937 sshd\[15997\]: Invalid user image from 119.29.11.214 port 57856 Jan 1 15:24:19 ns341937 sshd\[15997\]: pam_unix\(sshd:auth\):
2019-01-01 10:40 attacks Brute-ForceSSH AbuseIPDB Jan 1 21:32:50 ns37 sshd[12311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.11.214 Jan 1 21:32:51
2019-01-01 13:14 attacks Brute-ForceSSH AbuseIPDB Jan 1 23:14:10 *** sshd[7273]: Invalid user cisco from 119.29.11.214
2019-03-29 18:18 attacks bi_any_0_1d BadIPs.com  
2019-03-29 18:20 attacks SSH bi_sshd_0_1d BadIPs.com  
2019-03-29 18:20 attacks SSH bi_ssh_0_1d BadIPs.com  
2019-03-29 18:21 attacks blocklist_de Blocklist.de  
2019-03-29 18:21 attacks SSH blocklist_de_ssh Blocklist.de  
2019-03-29 18:27 attacks firehol_level2 FireHOL  
2019-03-29 18:27 attacks firehol_level4 FireHOL  
2019-03-29 18:34 attacks SSH haley_ssh Charles Haley  
2019-03-29 18:41 attacks Brute-Force normshield_all_bruteforce NormShield.com  
2019-03-29 18:41 attacks Brute-Force normshield_high_bruteforce NormShield.com  
2019-05-28 23:38 attacks SSH nt_ssh_7d NoThink.org  
2019-06-12 12:54 attacks Bad Web Bot bi_badbots_0_1d BadIPs.com  
2019-06-12 12:54 attacks Brute-Force bi_bruteforce_0_1d BadIPs.com  
2019-06-23 03:04 attacks greensnow GreenSnow.co  
only last 50 and first 10 AbuseIPDB logs are shown

Threats Categories :

abuse
IPs used to spam forum, boards, blogs or smtp servers, automated web scripts or scrappers (bad bots)
anonymizer
Onion Router IP addresses. TOR network IPs, TOR exit points, socks or ssl proxy.
attacks
bruteforce ssh/ftp/system account, IPs that have been detected by fail2ban, ports scan, vulnerabilities scan, DDoS.
malware
Addresses that have been identified distributing malware, form-grabber and stealer, Viruses, Worms, Trojans, Ransomware, Adware, Spyware

Whois

inetnum: 119.28.0.0 - 119.29.255.255
netname: TencentCloud
descr: Tencent cloud computing (Beijing) Co., Ltd.
descr: Floor 6, Yinke Building,38 Haidian St,
descr: Haidian District Beijing
country: CN
admin-c: JT1125-AP
tech-c: JX1747-AP
mnt-by: MAINT-CNNIC-AP
mnt-irt: IRT-CNNIC-CN
mnt-routes: MAINT-TENCENT-NET-AP-CN
status: ALLOCATED PORTABLE
last-modified: 2017-05-16T07:44:01Z
source: APNIC

irt: IRT-CNNIC-CN
address: Beijing, China
e-mail: ipas@cnnic.cn
abuse-mailbox: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
auth: # Filtered
remarks: Please note that CNNIC is not an ISP and is not
remarks: empowered to investigate complaints of network abuse.
remarks: Please contact the tech-c or admin-c of the network.
mnt-by: MAINT-CNNIC-AP
last-modified: 2017-11-01T08:57:39Z
source: APNIC

person: James Tian
address: 9F, FIYTA Building, Gaoxinnanyi Road,Southern
address: District of Hi-tech Park, Shenzhen
country: CN
phone: +86-755-86013388-84952
e-mail: harveyduan@tencent.com
nic-hdl: JT1125-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2016-10-31T07:10:47Z
source: APNIC

person: Jimmy Xiao
address: 9F, FIYTA Building, Gaoxinnanyi Road,Southern
address: District of Hi-tech Park, Shenzhen
country: CN
phone: +86-755-86013388-80224
e-mail: harveyduan@tencent.com
nic-hdl: JX1747-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2016-11-04T05:51:38Z
source: APNIC

route: 119.29.0.0/16
descr: Shenzhen Tencent Computer Systems Company Limited
country: CN
origin: AS45090
notify: jimmyxiao@tencent.com
mnt-by: MAINT-CNNIC-AP
last-modified: 2014-07-31T05:24:01Z
source: APNIC
most specific ip range is highlighted
Updated : 2019-06-01