104.129.194.243

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Zscaler Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	$f2bV_matches	2020-07-19 02:32:15

相同子网IP讨论:

IP	类型	评论内容	时间
104.129.194.244	attackbots	Jul 30 00:07:24 plg sshd[4971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.244 Jul 30 00:07:26 plg sshd[4971]: Failed password for invalid user liangmm from 104.129.194.244 port 28077 ssh2 Jul 30 00:10:19 plg sshd[5158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.244 Jul 30 00:10:21 plg sshd[5158]: Failed password for invalid user luoyun from 104.129.194.244 port 10750 ssh2 Jul 30 00:13:24 plg sshd[5212]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.244 Jul 30 00:13:26 plg sshd[5212]: Failed password for invalid user linqj from 104.129.194.244 port 49342 ssh2 Jul 30 00:16:16 plg sshd[5256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.244 ...	2020-07-30 08:23:49
104.129.194.247	attackbots	Jul 27 07:52:52 meumeu sshd[246706]: Invalid user sadmin from 104.129.194.247 port 64172 Jul 27 07:52:52 meumeu sshd[246706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.247 Jul 27 07:52:52 meumeu sshd[246706]: Invalid user sadmin from 104.129.194.247 port 64172 Jul 27 07:52:54 meumeu sshd[246706]: Failed password for invalid user sadmin from 104.129.194.247 port 64172 ssh2 Jul 27 07:56:28 meumeu sshd[246882]: Invalid user postgres from 104.129.194.247 port 64695 Jul 27 07:56:28 meumeu sshd[246882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.247 Jul 27 07:56:28 meumeu sshd[246882]: Invalid user postgres from 104.129.194.247 port 64695 Jul 27 07:56:31 meumeu sshd[246882]: Failed password for invalid user postgres from 104.129.194.247 port 64695 ssh2 Jul 27 07:59:59 meumeu sshd[247050]: Invalid user cacti from 104.129.194.247 port 58618 ...	2020-07-27 19:45:22
104.129.194.250	attackspambots	Jul 25 04:49:56 gospond sshd[10013]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.250 Jul 25 04:49:56 gospond sshd[10013]: Invalid user user from 104.129.194.250 port 60668 Jul 25 04:49:58 gospond sshd[10013]: Failed password for invalid user user from 104.129.194.250 port 60668 ssh2 ...	2020-07-25 17:43:44
104.129.194.216	attack	Jun 23 18:07:37 server sshd[11774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.216 Jun 23 18:07:38 server sshd[11774]: Failed password for invalid user corona from 104.129.194.216 port 5054 ssh2 Jun 23 18:22:59 server sshd[12676]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.216 user=root Jun 23 18:23:01 server sshd[12676]: Failed password for invalid user root from 104.129.194.216 port 37247 ssh2	2020-07-22 08:51:54
104.129.194.89	attackspambots	Jul 16 13:45:22 IngegnereFirenze sshd[23444]: Failed password for invalid user jian from 104.129.194.89 port 46013 ssh2 ...	2020-07-17 03:30:54
104.129.194.242	attack	Jul 12 01:51:49 firewall sshd[16742]: Invalid user luz from 104.129.194.242 Jul 12 01:51:51 firewall sshd[16742]: Failed password for invalid user luz from 104.129.194.242 port 17718 ssh2 Jul 12 01:55:02 firewall sshd[16843]: Invalid user isonadmin from 104.129.194.242 ...	2020-07-12 18:07:20
104.129.194.248	attackbots	Jul 12 06:37:52 vps687878 sshd\[25715\]: Failed password for invalid user egor from 104.129.194.248 port 23422 ssh2 Jul 12 06:41:02 vps687878 sshd\[25968\]: Invalid user bryan from 104.129.194.248 port 37951 Jul 12 06:41:02 vps687878 sshd\[25968\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.248 Jul 12 06:41:04 vps687878 sshd\[25968\]: Failed password for invalid user bryan from 104.129.194.248 port 37951 ssh2 Jul 12 06:44:10 vps687878 sshd\[26282\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.248 user=mysql ...	2020-07-12 13:35:52
104.129.194.250	attack	Jul 10 14:30:32 odroid64 sshd\[22076\]: Invalid user hiperg from 104.129.194.250 Jul 10 14:30:32 odroid64 sshd\[22076\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.250 ...	2020-07-11 04:02:42
104.129.194.192	attackbots	Jul 8 05:42:44 vpn01 sshd[20660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.192 Jul 8 05:42:46 vpn01 sshd[20660]: Failed password for invalid user lus from 104.129.194.192 port 48756 ssh2 ...	2020-07-08 17:04:32
104.129.194.96	attackspambots	Jul 6 05:22:22 carla sshd[17193]: Invalid user oradev from 104.129.194.96 Jul 6 05:22:22 carla sshd[17193]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.96 Jul 6 05:22:24 carla sshd[17193]: Failed password for invalid user oradev from 104.129.194.96 port 2684 ssh2 Jul 6 05:22:24 carla sshd[17194]: Received disconnect from 104.129.194.96: 11: Bye Bye Jul 6 05:33:07 carla sshd[17229]: Invalid user mvx from 104.129.194.96 Jul 6 05:33:07 carla sshd[17229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.96 Jul 6 05:33:08 carla sshd[17229]: Failed password for invalid user mvx from 104.129.194.96 port 56886 ssh2 Jul 6 05:33:08 carla sshd[17230]: Received disconnect from 104.129.194.96: 11: Bye Bye Jul 6 05:36:02 carla sshd[17288]: Invalid user programacion from 104.129.194.96 Jul 6 05:36:02 carla sshd[17288]: pam_unix(sshd:auth): authentication failure; logn........ -------------------------------	2020-07-06 15:54:06
104.129.194.255	attackspambots	Jun 28 22:35:05 vps639187 sshd\[30825\]: Invalid user preston from 104.129.194.255 port 14457 Jun 28 22:35:05 vps639187 sshd\[30825\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.255 Jun 28 22:35:07 vps639187 sshd\[30825\]: Failed password for invalid user preston from 104.129.194.255 port 14457 ssh2 ...	2020-06-29 08:38:56
104.129.194.94	attack	2020-06-26T21:24:02.043185shield sshd\[25027\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.94 user=root 2020-06-26T21:24:04.636282shield sshd\[25027\]: Failed password for root from 104.129.194.94 port 16254 ssh2 2020-06-26T21:27:09.635054shield sshd\[25647\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.94 user=root 2020-06-26T21:27:11.565947shield sshd\[25647\]: Failed password for root from 104.129.194.94 port 16316 ssh2 2020-06-26T21:30:22.216551shield sshd\[26251\]: Invalid user b from 104.129.194.94 port 8764	2020-06-27 06:36:32
104.129.194.91	attack	odoo8 ...	2020-06-26 08:45:15
104.129.194.249	attack	2020-06-26T03:42:49.932524billing sshd[12614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.249 user=root 2020-06-26T03:42:51.141761billing sshd[12614]: Failed password for root from 104.129.194.249 port 34167 ssh2 2020-06-26T03:45:49.944439billing sshd[19266]: Invalid user csgo from 104.129.194.249 port 43131 ...	2020-06-26 05:55:50
104.129.194.94	attack	Jun 26 03:39:56 itv-usvr-02 sshd[6836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.94 user=root Jun 26 03:42:59 itv-usvr-02 sshd[6946]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.94 user=root Jun 26 03:46:00 itv-usvr-02 sshd[7046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.94	2020-06-26 05:12:00

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.129.194.243
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47252
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.129.194.243.		IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020071801 1800 900 604800 86400

;; Query time: 37 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jul 19 02:32:11 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 243.194.129.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 243.194.129.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
167.172.214.62	attackspam	plussize.fitness 167.172.214.62 [05/Aug/2020:16:45:13 +0200] "POST /wp-login.php HTTP/1.1" 200 5948 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" plussize.fitness 167.172.214.62 [05/Aug/2020:16:45:16 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-06 01:59:32
95.142.115.18	attackbotsspam	95.142.115.18 - - [05/Aug/2020:15:13:58 +0200] "POST /wp-login.php HTTP/1.1" 200 5369 "http://ial.univ-lyon3.fr/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 95.142.115.18 - - [05/Aug/2020:15:13:59 +0200] "POST /wp-login.php HTTP/1.1" 200 5369 "http://ial.univ-lyon3.fr/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 95.142.115.18 - - [05/Aug/2020:15:13:59 +0200] "POST /wp-login.php HTTP/1.1" 200 5369 "http://ial.univ-lyon3.fr/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 95.142.115.18 - - [05/Aug/2020:15:14:00 +0200] "POST /wp-login.php HTTP/1.1" 200 5369 "http://ial.univ-lyon3.fr/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 95.142.115.18 - - [05/Aug/2020:15:14:00 +0200] "POST /wp-log ...	2020-08-06 02:24:29
82.49.96.121	attackbotsspam	Automatic report - Port Scan Attack	2020-08-06 02:08:12
123.27.220.21	attackspambots	1596629651 - 08/05/2020 14:14:11 Host: 123.27.220.21/123.27.220.21 Port: 445 TCP Blocked ...	2020-08-06 02:05:29
89.144.47.244	attackspam	ET DROP Dshield Block Listed Source group 1 - port: 3390 proto: tcp cat: Misc Attackbytes: 60	2020-08-06 01:59:10
175.123.253.220	attackbots	Aug 5 18:40:33 master sshd[1952]: Failed password for root from 175.123.253.220 port 59648 ssh2 Aug 5 18:47:24 master sshd[2019]: Failed password for root from 175.123.253.220 port 39718 ssh2 Aug 5 18:52:07 master sshd[2112]: Failed password for root from 175.123.253.220 port 51176 ssh2 Aug 5 18:56:50 master sshd[2176]: Failed password for root from 175.123.253.220 port 34400 ssh2 Aug 5 19:01:52 master sshd[2652]: Failed password for root from 175.123.253.220 port 45860 ssh2 Aug 5 19:06:47 master sshd[2718]: Failed password for root from 175.123.253.220 port 57314 ssh2 Aug 5 19:11:40 master sshd[2853]: Failed password for root from 175.123.253.220 port 40536 ssh2 Aug 5 19:16:28 master sshd[2930]: Failed password for root from 175.123.253.220 port 51994 ssh2 Aug 5 19:21:10 master sshd[3036]: Failed password for root from 175.123.253.220 port 35218 ssh2 Aug 5 19:26:03 master sshd[3106]: Failed password for root from 175.123.253.220 port 46674 ssh2	2020-08-06 02:04:41
106.54.98.89	attackspam	Unauthorized SSH login attempts	2020-08-06 02:06:41
129.204.12.9	attackbotsspam	Aug 5 19:30:36 sso sshd[15743]: Failed password for root from 129.204.12.9 port 52876 ssh2 ...	2020-08-06 02:23:15
45.77.249.229	attack	Aug 5 03:08:48 web1 sshd\[7768\]: Invalid user 1818 from 45.77.249.229 Aug 5 03:08:48 web1 sshd\[7768\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.77.249.229 Aug 5 03:08:50 web1 sshd\[7768\]: Failed password for invalid user 1818 from 45.77.249.229 port 45381 ssh2 Aug 5 03:11:52 web1 sshd\[8041\]: Invalid user 181818 from 45.77.249.229 Aug 5 03:11:52 web1 sshd\[8041\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.77.249.229	2020-08-06 02:11:59
49.235.87.213	attackspambots	2020-08-05T11:20:43.400026morrigan.ad5gb.com sshd[3405544]: Failed password for root from 49.235.87.213 port 60122 ssh2 2020-08-05T11:20:44.692697morrigan.ad5gb.com sshd[3405544]: Disconnected from authenticating user root 49.235.87.213 port 60122 [preauth]	2020-08-06 02:19:54
222.108.213.43	attackspambots	Tried our host z.	2020-08-06 02:06:19
213.32.70.208	attack	SSH auth scanning - multiple failed logins	2020-08-06 02:25:29
165.22.104.247	attackbotsspam	Aug 5 03:13:40 web9 sshd\[30626\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.104.247 user=root Aug 5 03:13:42 web9 sshd\[30626\]: Failed password for root from 165.22.104.247 port 37946 ssh2 Aug 5 03:18:28 web9 sshd\[31289\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.104.247 user=root Aug 5 03:18:30 web9 sshd\[31289\]: Failed password for root from 165.22.104.247 port 50216 ssh2 Aug 5 03:23:09 web9 sshd\[32032\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.104.247 user=root	2020-08-06 02:18:02
209.85.167.65	normal	sending fraudulent emails: Hallo, ich bin Omar Ali, ich bin Banker hier in Dubai. Ich habe Sie bezüglich eines Kontos eines Staatsbürgers Ihres Landes kontaktiert. Dieser Mann starb vor 12 Jahren und erwähnte niemanden, der sein bei unserer Bank hinterlegtes Geld geerbt hatte. Die Bank erlaubte mir, den nächsten Verwandten mit einem verstorbenen Kunden zu finden, aber ich fand ihn nicht. Dieses Konto wird beschlagnahmt, wenn niemand erklärt, dass das Bankkonto der nächste Angehörige ist. Ich habe mich daher entschlossen, Sie zum gegenseitigen Nutzen zu kontaktieren. Ich warte auf Ihre Antwort für weitere Details. Respektvoll, Omar Ali	2020-08-06 02:29:05
65.151.160.38	attackspam	2020-08-05T10:08:55.022912hostname sshd[123427]: Failed password for root from 65.151.160.38 port 54194 ssh2 ...	2020-08-06 02:15:35

最近上报的IP列表

65.245.246.189	2.2.12.130	28.32.161.68	214.239.182.202
92.30.144.219	125.85.152.253	119.4.96.0	204.233.0.224
9.70.71.126	228.120.236.174	180.135.113.35	1.206.42.121
245.61.243.68	59.229.44.200	35.175.181.112	157.82.236.108
53.61.59.9	167.206.40.203	151.101.90.44	190.122.240.199