104.129.18.20 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): QuadraNet Inc

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
104.129.186.182	attackbots	$f2bV_matches	2020-10-14 04:17:40
104.129.186.182	attackspam	Oct 13 08:37:07 shivevps sshd[19527]: Failed password for invalid user spider from 104.129.186.182 port 34230 ssh2 Oct 13 08:40:54 shivevps sshd[19878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.186.182 user=root Oct 13 08:40:56 shivevps sshd[19878]: Failed password for root from 104.129.186.182 port 42496 ssh2 ...	2020-10-13 19:42:41
104.129.180.37	attack	104.129.180.37 - - \[23/Aug/2020:15:32:51 +0200\] "POST /wp-login.php HTTP/1.0" 200 6400 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 104.129.180.37 - - \[23/Aug/2020:15:32:59 +0200\] "POST /wp-login.php HTTP/1.0" 200 6412 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 104.129.180.37 - - \[23/Aug/2020:15:33:05 +0200\] "POST /wp-login.php HTTP/1.0" 200 6404 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-08-24 03:37:22
104.129.18.198	attackbots	Sent phishing email to user then stole credentials and used them to send more phishing emails as user from that IP. Probably will do it again.	2020-01-09 05:36:34

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.129.18.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42769
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.129.18.20.			IN	A

;; AUTHORITY SECTION:
.			237	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112200 1800 900 604800 86400

;; Query time: 117 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 22 23:50:57 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

20.18.129.104.in-addr.arpa domain name pointer unassigned.quadranet.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.18.129.104.in-addr.arpa	name = unassigned.quadranet.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
112.157.171.82	attackspam	$f2bV_matches	2020-05-21 04:59:42
201.10.98.229	attack	web-1 [ssh] SSH Attack	2020-05-21 05:09:01
87.56.50.203	attack	May 20 21:20:12 haigwepa sshd[18470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.56.50.203 May 20 21:20:15 haigwepa sshd[18470]: Failed password for invalid user mje from 87.56.50.203 port 53264 ssh2 ...	2020-05-21 04:48:52
86.69.2.215	attackspambots	May 20 10:03:12 pixelmemory sshd[4037551]: Invalid user cbj from 86.69.2.215 port 53928 May 20 10:03:12 pixelmemory sshd[4037551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.69.2.215 May 20 10:03:12 pixelmemory sshd[4037551]: Invalid user cbj from 86.69.2.215 port 53928 May 20 10:03:15 pixelmemory sshd[4037551]: Failed password for invalid user cbj from 86.69.2.215 port 53928 ssh2 May 20 10:06:34 pixelmemory sshd[4042319]: Invalid user ipv from 86.69.2.215 port 60294 ...	2020-05-21 05:04:45
203.195.223.104	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-05-21 05:10:47
141.98.81.83	attackbotsspam	May 17 21:23:27 sip sshd[20698]: Failed password for root from 141.98.81.83 port 44467 ssh2 May 17 21:23:50 sip sshd[20891]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.83 May 17 21:23:51 sip sshd[20891]: Failed password for invalid user guest from 141.98.81.83 port 43941 ssh2	2020-05-21 04:38:36
91.193.172.136	attackbots	Honeypot attack, port: 445, PTR: 136.172.193.91.triolan.net.	2020-05-21 04:51:19
112.137.138.4	attack	May 20 22:01:05 nextcloud sshd\[13627\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.137.138.4 user=root May 20 22:01:07 nextcloud sshd\[13627\]: Failed password for root from 112.137.138.4 port 49928 ssh2 May 20 22:49:46 nextcloud sshd\[9218\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.137.138.4 user=root	2020-05-21 05:04:31
198.143.133.156	attackbotsspam	" "	2020-05-21 04:41:58
66.131.216.79	attack	May 19 18:14:24 sip sshd[10367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.131.216.79 May 19 18:14:26 sip sshd[10367]: Failed password for invalid user olk from 66.131.216.79 port 60578 ssh2 May 19 18:24:28 sip sshd[14056]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.131.216.79	2020-05-21 04:57:26
2003:e5:971d:4ba7:f920:6daa:d45f:e3d0	attackbots	21 attempts against mh_ha-misbehave-ban on shade	2020-05-21 05:05:46
122.225.22.230	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-05-21 05:08:37
71.45.233.98	attack	May 20 20:15:22 game-panel sshd[4259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=71.45.233.98 May 20 20:15:24 game-panel sshd[4259]: Failed password for invalid user cdph from 71.45.233.98 port 49528 ssh2 May 20 20:20:06 game-panel sshd[4446]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=71.45.233.98	2020-05-21 04:58:34
51.38.51.136	attack	May 20 19:00:58 XXXXXX sshd[1523]: Invalid user user2 from 51.38.51.136 port 50022	2020-05-21 04:52:29
188.166.109.87	attack	2020-05-20T20:39:04.765829abusebot-4.cloudsearch.cf sshd[32039]: Invalid user hft from 188.166.109.87 port 43032 2020-05-20T20:39:04.773536abusebot-4.cloudsearch.cf sshd[32039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.109.87 2020-05-20T20:39:04.765829abusebot-4.cloudsearch.cf sshd[32039]: Invalid user hft from 188.166.109.87 port 43032 2020-05-20T20:39:06.680290abusebot-4.cloudsearch.cf sshd[32039]: Failed password for invalid user hft from 188.166.109.87 port 43032 ssh2 2020-05-20T20:43:26.366154abusebot-4.cloudsearch.cf sshd[32442]: Invalid user spp from 188.166.109.87 port 48620 2020-05-20T20:43:26.373241abusebot-4.cloudsearch.cf sshd[32442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.109.87 2020-05-20T20:43:26.366154abusebot-4.cloudsearch.cf sshd[32442]: Invalid user spp from 188.166.109.87 port 48620 2020-05-20T20:43:29.248381abusebot-4.cloudsearch.cf sshd[32442]: Failed pa ...	2020-05-21 04:59:13

最近上报的IP列表

122.242.57.215	181.135.208.17	77.20.52.207	36.6.148.145
119.95.244.71	180.125.17.229	113.161.44.186	110.159.178.177
165.227.4.106	119.49.146.179	62.12.83.235	114.104.235.20
221.230.15.111	51.159.18.78	14.42.196.245	113.68.83.96
109.78.184.125	107.174.217.122	169.42.207.72	14.228.149.102