117.20.29.126 - IPInfo

基本信息:

城市(city): Lahore

省份(region): Punjab

国家(country): Pakistan

运营商(isp): Transworld Associates (Pvt.) Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	port scan and connect, tcp 23 (telnet)	2019-12-05 04:10:23

相同子网IP讨论:

IP	类型	评论内容	时间
117.20.29.205	attackspam	Honeypot attack, port: 5555, PTR: tw29-static205.tw1.com.	2020-03-22 23:39:02

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.20.29.126
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59345
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.20.29.126.			IN	A

;; AUTHORITY SECTION:
.			391	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120402 1800 900 604800 86400

;; Query time: 122 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 05 04:10:20 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

126.29.20.117.in-addr.arpa domain name pointer tw29-static126.tw1.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
126.29.20.117.in-addr.arpa	name = tw29-static126.tw1.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
182.61.136.53	attackspambots	Nov 16 05:04:16 hpm sshd\[10550\]: Invalid user qo from 182.61.136.53 Nov 16 05:04:16 hpm sshd\[10550\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.136.53 Nov 16 05:04:18 hpm sshd\[10550\]: Failed password for invalid user qo from 182.61.136.53 port 35096 ssh2 Nov 16 05:09:30 hpm sshd\[11089\]: Invalid user diderik from 182.61.136.53 Nov 16 05:09:30 hpm sshd\[11089\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.136.53	2019-11-16 23:19:38
111.17.211.166	attack	23/tcp 2323/tcp [2019-10-31/11-16]2pkt	2019-11-16 23:10:57
157.245.111.175	attackspam	Nov 16 05:24:13 wbs sshd\[387\]: Invalid user apache from 157.245.111.175 Nov 16 05:24:13 wbs sshd\[387\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.111.175 Nov 16 05:24:15 wbs sshd\[387\]: Failed password for invalid user apache from 157.245.111.175 port 38016 ssh2 Nov 16 05:28:40 wbs sshd\[804\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.111.175 user=root Nov 16 05:28:42 wbs sshd\[804\]: Failed password for root from 157.245.111.175 port 46628 ssh2	2019-11-16 23:39:26
42.57.182.175	attackbotsspam	37215/tcp [2019-11-14]2pkt	2019-11-16 23:36:04
49.213.196.247	attackbots	2323/tcp 23/tcp 9001/tcp... [2019-09-18/11-16]4pkt,4pt.(tcp)	2019-11-16 23:28:30
106.12.176.3	attackbotsspam	Nov 16 16:35:41 OPSO sshd\[30041\]: Invalid user Jewel from 106.12.176.3 port 54472 Nov 16 16:35:41 OPSO sshd\[30041\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.176.3 Nov 16 16:35:43 OPSO sshd\[30041\]: Failed password for invalid user Jewel from 106.12.176.3 port 54472 ssh2 Nov 16 16:41:50 OPSO sshd\[31063\]: Invalid user superuse from 106.12.176.3 port 33982 Nov 16 16:41:50 OPSO sshd\[31063\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.176.3	2019-11-16 23:44:18
91.134.135.220	attack	Nov 16 05:39:34 auw2 sshd\[10535\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.ip-91-134-135.eu user=mysql Nov 16 05:39:37 auw2 sshd\[10535\]: Failed password for mysql from 91.134.135.220 port 51380 ssh2 Nov 16 05:43:02 auw2 sshd\[10821\]: Invalid user apache from 91.134.135.220 Nov 16 05:43:02 auw2 sshd\[10821\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.ip-91-134-135.eu Nov 16 05:43:04 auw2 sshd\[10821\]: Failed password for invalid user apache from 91.134.135.220 port 59624 ssh2	2019-11-16 23:50:00
50.116.123.103	attackbotsspam	SSH bruteforce	2019-11-16 23:54:53
65.229.5.158	attackspambots	F2B jail: sshd. Time: 2019-11-16 16:25:34, Reported by: VKReport	2019-11-16 23:29:34
139.155.1.252	attackspam	$f2bV_matches	2019-11-16 23:20:53
199.19.224.191	attack	Nov 16 14:53:57 ip-172-31-14-3 sshd\[2815\]: Invalid user vagrant from 199.19.224.191 Nov 16 14:53:57 ip-172-31-14-3 sshd\[2805\]: Invalid user oracle from 199.19.224.191 Nov 16 14:53:57 ip-172-31-14-3 sshd\[2814\]: Invalid user aws from 199.19.224.191 Nov 16 14:53:57 ip-172-31-14-3 sshd\[2803\]: Invalid user postgres from 199.19.224.191 Nov 16 14:53:57 ip-172-31-14-3 sshd\[2810\]: Invalid user test from 199.19.224.191 Nov 16 14:53:57 ip-172-31-14-3 sshd\[2809\]: Invalid user tomcat from 199.19.224.191 Nov 16 14:53:57 ip-172-31-14-3 sshd\[2819\]: Invalid user admin from 199.19.224.191 Nov 16 14:53:57 ip-172-31-14-3 sshd\[2817\]: Invalid user ec2-user from 199.19.224.191 Nov 16 14:53:57 ip-172-31-14-3 sshd\[2818\]: Invalid user guest from 199.19.224.191 Nov 16 14:53:57 ip-172-31-14-3 sshd\[2812\]: Invalid user devops from 199.19.224.191 Nov 16 14:53:57 ip-172-31-14-3 sshd\[2811\]: Invalid user hadoop from 199.19.224.191 Nov 16 14:53:57 ip-172-31-14-3 sshd\[2813\]: Invalid user testuser from 199.19.224.191 Nov	2019-11-16 23:20:39
202.83.172.43	attack	SMB Server BruteForce Attack	2019-11-16 23:32:21
109.200.239.53	attackbotsspam	Automatic report - Port Scan Attack	2019-11-16 23:46:19
5.248.193.47	attackspambots	SMB Server BruteForce Attack	2019-11-16 23:28:04
213.226.11.149	attackbotsspam	2019-11-16T14:54:01.355810beta postfix/smtpd[29338]: NOQUEUE: reject: RCPT from wimax-pool-11-149.mtel.net[213.226.11.149]: 554 5.7.1 Service unavailable; Client host [213.226.11.149] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/query/ip/213.226.11.149; from= to= proto=ESMTP helo= ...	2019-11-16 23:16:35

最近上报的IP列表

54.222.49.214	170.199.184.10	177.10.180.130	86.209.112.26
210.52.59.131	107.163.249.139	104.143.118.137	3.19.69.255
142.217.141.53	118.200.127.161	94.177.132.4	81.32.191.3
79.118.252.55	161.77.34.151	194.223.66.199	197.132.109.17
144.74.141.137	49.198.176.80	146.96.149.137	1.172.147.82