117.20.29.126 - IPInfo

基本信息:

城市(city): Lahore

省份(region): Punjab

国家(country): Pakistan

运营商(isp): Transworld Associates (Pvt.) Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	port scan and connect, tcp 23 (telnet)	2019-12-05 04:10:23

相同子网IP讨论:

IP	类型	评论内容	时间
117.20.29.205	attackspam	Honeypot attack, port: 5555, PTR: tw29-static205.tw1.com.	2020-03-22 23:39:02

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.20.29.126
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59345
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.20.29.126.			IN	A

;; AUTHORITY SECTION:
.			391	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120402 1800 900 604800 86400

;; Query time: 122 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 05 04:10:20 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

126.29.20.117.in-addr.arpa domain name pointer tw29-static126.tw1.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
126.29.20.117.in-addr.arpa	name = tw29-static126.tw1.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
58.87.75.178	attackspam	Nov 27 16:42:22 server sshd\[12896\]: Invalid user seller from 58.87.75.178 Nov 27 16:42:22 server sshd\[12896\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.75.178 Nov 27 16:42:24 server sshd\[12896\]: Failed password for invalid user seller from 58.87.75.178 port 33342 ssh2 Nov 27 17:46:59 server sshd\[28961\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.75.178 user=root Nov 27 17:47:02 server sshd\[28961\]: Failed password for root from 58.87.75.178 port 55566 ssh2 ...	2019-11-28 05:34:14
103.18.93.242	attackbotsspam	445/tcp [2019-11-27]1pkt	2019-11-28 05:35:27
61.178.110.187	attack	Unauthorized connection attempt from IP address 61.178.110.187 on Port 445(SMB)	2019-11-28 05:37:24
181.41.216.141	attackspambots	Nov 27 22:25:59 webserver postfix/smtpd\[12915\]: NOQUEUE: reject: RCPT from unknown\[181.41.216.141\]: 454 4.7.1 \: Relay access denied\; from=\<2gtljbnh1h4s5@ony.ru\> to=\ proto=ESMTP helo=\<\[181.41.216.131\]\> Nov 27 22:25:59 webserver postfix/smtpd\[12915\]: NOQUEUE: reject: RCPT from unknown\[181.41.216.141\]: 454 4.7.1 \: Relay access denied\; from=\<2gtljbnh1h4s5@ony.ru\> to=\ proto=ESMTP helo=\<\[181.41.216.131\]\> Nov 27 22:25:59 webserver postfix/smtpd\[12915\]: NOQUEUE: reject: RCPT from unknown\[181.41.216.141\]: 454 4.7.1 \: Relay access denied\; from=\<2gtljbnh1h4s5@ony.ru\> to=\ proto=ESMTP helo=\<\[181.41.216.131\]\> Nov 27 22:25:59 webserver postfix/smtpd\[12915\]: NOQUEUE: reject: RCPT from unknown\[181.41.216.141\]: 454 4.7.1 \: Relay access denied\; from=\<2gtljbnh1h4s5@ony.ru\> to=\ proto=ESMTP he ...	2019-11-28 05:27:35
176.192.70.146	attack	Scanning random ports - tries to find possible vulnerable services	2019-11-28 05:31:56
88.84.219.114	attackspam	UTC: 2019-11-26 port: 26/tcp	2019-11-28 05:31:10
158.140.172.84	attack	Unauthorized connection attempt from IP address 158.140.172.84 on Port 445(SMB)	2019-11-28 05:39:44
110.49.70.240	attackbotsspam	Nov 27 11:47:08 vps46666688 sshd[28898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.49.70.240 Nov 27 11:47:09 vps46666688 sshd[28898]: Failed password for invalid user test123 from 110.49.70.240 port 21755 ssh2 ...	2019-11-28 05:28:53
85.93.20.2	attackspam	3389BruteforceFW21	2019-11-28 05:14:06
60.250.60.209	attackspambots	Unauthorized connection attempt from IP address 60.250.60.209 on Port 445(SMB)	2019-11-28 05:40:21
94.255.189.124	attackbots	Unauthorised access (Nov 27) SRC=94.255.189.124 LEN=52 TTL=244 ID=7213 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-28 05:30:37
198.108.67.100	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-28 05:25:41
152.246.190.49	attack	SSH/22 MH Probe, BF, Hack -	2019-11-28 05:36:12
205.185.117.149	attackspambots	$f2bV_matches	2019-11-28 05:31:41
37.59.38.216	attackbotsspam	Nov 27 08:14:03 php1 sshd\[29314\]: Invalid user product from 37.59.38.216 Nov 27 08:14:03 php1 sshd\[29314\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns331058.ip-37-59-38.eu Nov 27 08:14:05 php1 sshd\[29314\]: Failed password for invalid user product from 37.59.38.216 port 58582 ssh2 Nov 27 08:18:11 php1 sshd\[29777\]: Invalid user ftpuser from 37.59.38.216 Nov 27 08:18:11 php1 sshd\[29777\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns331058.ip-37-59-38.eu	2019-11-28 05:07:34

最近上报的IP列表

54.222.49.214	170.199.184.10	177.10.180.130	86.209.112.26
210.52.59.131	107.163.249.139	104.143.118.137	3.19.69.255
142.217.141.53	118.200.127.161	94.177.132.4	81.32.191.3
79.118.252.55	161.77.34.151	194.223.66.199	197.132.109.17
144.74.141.137	49.198.176.80	146.96.149.137	1.172.147.82