104.237.129.144

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Linode LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	02/04/2020-11:48:55.054727 104.237.129.144 Protocol: 17 GPL SQL ping attempt	2020-02-05 02:01:05

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.237.129.144
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12047
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.237.129.144.		IN	A

;; AUTHORITY SECTION:
.			527	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020301 1800 900 604800 86400

;; Query time: 112 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 13:04:12 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

144.129.237.104.in-addr.arpa domain name pointer li805-144.members.linode.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
144.129.237.104.in-addr.arpa	name = li805-144.members.linode.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
49.234.99.246	attack	2020-07-07T05:44:50.029938vps751288.ovh.net sshd\[22816\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.99.246 user=root 2020-07-07T05:44:52.073189vps751288.ovh.net sshd\[22816\]: Failed password for root from 49.234.99.246 port 43020 ssh2 2020-07-07T05:48:00.656250vps751288.ovh.net sshd\[22832\]: Invalid user denis from 49.234.99.246 port 58406 2020-07-07T05:48:00.665515vps751288.ovh.net sshd\[22832\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.99.246 2020-07-07T05:48:02.793777vps751288.ovh.net sshd\[22832\]: Failed password for invalid user denis from 49.234.99.246 port 58406 ssh2	2020-07-07 18:59:13
182.42.36.212	attackbotsspam	failed_logins	2020-07-07 18:44:20
39.59.67.26	attackbotsspam	IP 39.59.67.26 attacked honeypot on port: 8080 at 7/6/2020 8:48:40 PM	2020-07-07 18:23:06
43.227.56.11	attackbotsspam	Bruteforce detected by fail2ban	2020-07-07 18:34:19
49.235.76.203	attack	$f2bV_matches	2020-07-07 18:57:01
114.67.74.50	attack	nginx/honey/a4a6f	2020-07-07 18:44:58
13.75.67.174	attack	2020-07-06 UTC: (47x) - amadeus,anish,ashish,bfq,couchdb,csr,daxia,db2fenc1,dev,djh,docker,ftpuser,fucker,gs,hduser,inma,jiale,mary,minecraft,monitor,oscommerce,root(10x),sampath,santiago,server,sunshine,tomcat,trackmania,tsserver,ubuntu,user,viktor,vpopmail,win,xy,zabbix,zeng,zzb	2020-07-07 18:49:41
118.25.153.63	attack	Jul 7 07:00:46 h1745522 sshd[18514]: Invalid user ftb from 118.25.153.63 port 50958 Jul 7 07:00:46 h1745522 sshd[18514]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.153.63 Jul 7 07:00:46 h1745522 sshd[18514]: Invalid user ftb from 118.25.153.63 port 50958 Jul 7 07:00:49 h1745522 sshd[18514]: Failed password for invalid user ftb from 118.25.153.63 port 50958 ssh2 Jul 7 07:04:12 h1745522 sshd[18818]: Invalid user felix from 118.25.153.63 port 60320 Jul 7 07:04:12 h1745522 sshd[18818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.153.63 Jul 7 07:04:12 h1745522 sshd[18818]: Invalid user felix from 118.25.153.63 port 60320 Jul 7 07:04:14 h1745522 sshd[18818]: Failed password for invalid user felix from 118.25.153.63 port 60320 ssh2 Jul 7 07:07:40 h1745522 sshd[18960]: Invalid user zck from 118.25.153.63 port 41446 ...	2020-07-07 18:59:35
182.208.252.91	attackbots	Jul 7 07:41:12 eventyay sshd[29131]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.208.252.91 Jul 7 07:41:14 eventyay sshd[29131]: Failed password for invalid user hacked from 182.208.252.91 port 34676 ssh2 Jul 7 07:44:42 eventyay sshd[29206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.208.252.91 ...	2020-07-07 18:43:18
111.72.197.224	attackspam	Jul 7 05:15:38 nirvana postfix/smtpd[6686]: connect from unknown[111.72.197.224] Jul 7 05:15:40 nirvana postfix/smtpd[6686]: lost connection after CONNECT from unknown[111.72.197.224] Jul 7 05:15:40 nirvana postfix/smtpd[6686]: disconnect from unknown[111.72.197.224] Jul 7 05:19:40 nirvana postfix/smtpd[7105]: connect from unknown[111.72.197.224] Jul 7 05:19:41 nirvana postfix/smtpd[7105]: warning: unknown[111.72.197.224]: SASL LOGIN authentication failed: authentication failure Jul 7 05:19:41 nirvana postfix/smtpd[7105]: lost connection after EHLO from unknown[111.72.197.224] Jul 7 05:19:41 nirvana postfix/smtpd[7105]: disconnect from unknown[111.72.197.224] Jul 7 05:23:41 nirvana postfix/smtpd[7644]: connect from unknown[111.72.197.224] Jul 7 05:23:43 nirvana postfix/smtpd[7644]: warning: unknown[111.72.197.224]: SASL LOGIN authentication failed: authentication failure Jul 7 05:23:43 nirvana postfix/smtpd[7644]: lost connection after AUTH from unknown[111.72........ -------------------------------	2020-07-07 18:57:21
125.35.92.130	attackbotsspam	Jul 7 00:22:55 web1 sshd\[26654\]: Invalid user carla from 125.35.92.130 Jul 7 00:22:55 web1 sshd\[26654\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.35.92.130 Jul 7 00:22:57 web1 sshd\[26654\]: Failed password for invalid user carla from 125.35.92.130 port 14070 ssh2 Jul 7 00:24:07 web1 sshd\[26802\]: Invalid user pd from 125.35.92.130 Jul 7 00:24:07 web1 sshd\[26802\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.35.92.130	2020-07-07 18:42:08
180.76.147.221	attackspambots	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-07-07 18:44:46
192.241.224.219	attackbots	192.241.224.219 - - [06/Jul/2020:22:41:32 -0700] "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 400 3426 "-" "Mozilla/5.0 zgrab/0.x" ...	2020-07-07 18:26:25
54.71.115.235	attack	54.71.115.235 - - [07/Jul/2020:11:11:17 +0100] "POST /wp-login.php HTTP/1.1" 200 1968 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 54.71.115.235 - - [07/Jul/2020:11:11:19 +0100] "POST /wp-login.php HTTP/1.1" 200 1952 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 54.71.115.235 - - [07/Jul/2020:11:11:20 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-07 18:45:15
193.31.118.231	attack	3389BruteforceStormFW23	2020-07-07 18:48:20

最近上报的IP列表

59.31.255.134	36.70.43.191	223.17.83.157	203.205.51.86
200.185.215.253	190.208.170.141	188.27.235.76	184.163.207.75
182.46.198.235	161.207.243.151	178.46.212.150	8.86.248.252
147.241.43.216	164.229.119.48	178.44.235.87	5.145.200.245
162.243.131.42	16.57.32.102	66.63.53.236	191.87.51.58