119.29.10.2 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SSH login attempts with user root.	2019-11-30 06:40:16

相同子网IP讨论:

IP	类型	评论内容	时间
119.29.10.25	attack	$f2bV_matches	2020-09-30 03:13:53
119.29.10.25	attackspam	sshd: Failed password for invalid user .... from 119.29.10.25 port 59874 ssh2 (5 attempts)	2020-09-29 19:18:13
119.29.10.25	attackbotsspam	Sep 24 19:51:21 plg sshd[23357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.10.25 Sep 24 19:51:22 plg sshd[23357]: Failed password for invalid user csgoserver from 119.29.10.25 port 58615 ssh2 Sep 24 19:54:45 plg sshd[23413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.10.25 Sep 24 19:54:47 plg sshd[23413]: Failed password for invalid user userftp from 119.29.10.25 port 48723 ssh2 Sep 24 19:58:04 plg sshd[23458]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.10.25 Sep 24 19:58:06 plg sshd[23458]: Failed password for invalid user elsearch from 119.29.10.25 port 38831 ssh2 Sep 24 20:01:20 plg sshd[23499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.10.25 ...	2020-09-25 03:28:40
119.29.10.25	attackbots	Invalid user duser from 119.29.10.25 port 46147	2020-09-24 19:13:27
119.29.10.25	attack	Aug 17 10:01:03 NPSTNNYC01T sshd[2777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.10.25 Aug 17 10:01:05 NPSTNNYC01T sshd[2777]: Failed password for invalid user zhangfan from 119.29.10.25 port 57106 ssh2 Aug 17 10:04:48 NPSTNNYC01T sshd[3018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.10.25 ...	2020-08-17 23:08:07
119.29.10.25	attack	SSH Brute Force	2020-08-07 22:00:43
119.29.10.25	attackbots	Aug 5 16:15:05 marvibiene sshd[23502]: Failed password for root from 119.29.10.25 port 39080 ssh2 Aug 5 16:20:00 marvibiene sshd[23750]: Failed password for root from 119.29.10.25 port 36505 ssh2	2020-08-06 03:53:00
119.29.107.20	attackbots	Aug 3 05:44:28 vm0 sshd[1233]: Failed password for root from 119.29.107.20 port 32107 ssh2 ...	2020-08-03 12:52:02
119.29.10.25	attackspam	Aug 2 16:21:22 Tower sshd[2575]: Connection from 119.29.10.25 port 56062 on 192.168.10.220 port 22 rdomain "" Aug 2 16:21:26 Tower sshd[2575]: Failed password for root from 119.29.10.25 port 56062 ssh2 Aug 2 16:21:26 Tower sshd[2575]: Received disconnect from 119.29.10.25 port 56062:11: Bye Bye [preauth] Aug 2 16:21:26 Tower sshd[2575]: Disconnected from authenticating user root 119.29.10.25 port 56062 [preauth]	2020-08-03 08:09:37
119.29.107.20	attackbotsspam	Jul 23 13:54:08 icinga sshd[50700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.107.20 Jul 23 13:54:10 icinga sshd[50700]: Failed password for invalid user yip from 119.29.107.20 port 27901 ssh2 Jul 23 14:06:50 icinga sshd[7073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.107.20 ...	2020-07-24 01:39:06
119.29.10.25	attackbots	2020-07-23T11:49:02+0200 Failed SSH Authentication/Brute Force Attack. (Server 5)	2020-07-23 20:04:24
119.29.10.25	attack	Jul 18 11:29:56 ns392434 sshd[12760]: Invalid user tech from 119.29.10.25 port 41774 Jul 18 11:29:56 ns392434 sshd[12760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.10.25 Jul 18 11:29:56 ns392434 sshd[12760]: Invalid user tech from 119.29.10.25 port 41774 Jul 18 11:29:58 ns392434 sshd[12760]: Failed password for invalid user tech from 119.29.10.25 port 41774 ssh2 Jul 18 11:38:03 ns392434 sshd[13015]: Invalid user lgonzalez from 119.29.10.25 port 54266 Jul 18 11:38:03 ns392434 sshd[13015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.10.25 Jul 18 11:38:03 ns392434 sshd[13015]: Invalid user lgonzalez from 119.29.10.25 port 54266 Jul 18 11:38:04 ns392434 sshd[13015]: Failed password for invalid user lgonzalez from 119.29.10.25 port 54266 ssh2 Jul 18 11:44:48 ns392434 sshd[13324]: Invalid user raju from 119.29.10.25 port 60201	2020-07-18 19:30:42
119.29.10.25	attack	Jul 9 06:57:21 vpn01 sshd[17323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.10.25 Jul 9 06:57:23 vpn01 sshd[17323]: Failed password for invalid user xlong from 119.29.10.25 port 60774 ssh2 ...	2020-07-09 15:12:03
119.29.107.20	attack	Invalid user monitor from 119.29.107.20 port 14338	2020-06-12 17:01:59
119.29.10.25	attackspambots	Jun 10 07:38:57 serwer sshd\[21310\]: Invalid user hlwang from 119.29.10.25 port 53217 Jun 10 07:38:57 serwer sshd\[21310\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.10.25 Jun 10 07:38:58 serwer sshd\[21310\]: Failed password for invalid user hlwang from 119.29.10.25 port 53217 ssh2 ...	2020-06-10 14:52:18

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.29.10.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61265
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;119.29.10.2.			IN	A

;; AUTHORITY SECTION:
.			537	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112901 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 30 06:40:12 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

Host 2.10.29.119.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.10.29.119.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
203.230.6.175	attackbots	(sshd) Failed SSH login from 203.230.6.175 (KR/South Korea/-): 5 in the last 3600 secs	2020-05-26 03:00:47
209.65.71.3	attackspambots	k+ssh-bruteforce	2020-05-26 02:59:49
192.141.200.13	attackspambots	k+ssh-bruteforce	2020-05-26 02:28:30
192.241.167.50	attackbots	SSH brute-force: detected 6 distinct usernames within a 24-hour window.	2020-05-26 03:01:24
120.70.101.107	attackspam	May 25 17:02:28 pornomens sshd\[5764\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.70.101.107 user=root May 25 17:02:30 pornomens sshd\[5764\]: Failed password for root from 120.70.101.107 port 50379 ssh2 May 25 17:06:35 pornomens sshd\[5816\]: Invalid user cl from 120.70.101.107 port 40357 May 25 17:06:35 pornomens sshd\[5816\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.70.101.107 ...	2020-05-26 02:30:44
66.96.228.34	attack	2020-05-25T13:42:14.5851681495-001 sshd[30666]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.228.34 user=root 2020-05-25T13:42:17.3338971495-001 sshd[30666]: Failed password for root from 66.96.228.34 port 52352 ssh2 2020-05-25T13:45:33.9328001495-001 sshd[30784]: Invalid user kilhavn from 66.96.228.34 port 49006 2020-05-25T13:45:33.9402011495-001 sshd[30784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.228.34 2020-05-25T13:45:33.9328001495-001 sshd[30784]: Invalid user kilhavn from 66.96.228.34 port 49006 2020-05-25T13:45:36.0066441495-001 sshd[30784]: Failed password for invalid user kilhavn from 66.96.228.34 port 49006 ssh2 ...	2020-05-26 02:30:27
104.248.176.46	attackspambots	May 25 15:58:53 vps sshd[31071]: Failed password for root from 104.248.176.46 port 34534 ssh2 May 25 16:10:23 vps sshd[31986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.176.46 May 25 16:10:25 vps sshd[31986]: Failed password for invalid user carlos from 104.248.176.46 port 42294 ssh2 ...	2020-05-26 02:47:27
192.99.11.195	attackspambots	May 25 14:21:47 ny01 sshd[9081]: Failed password for root from 192.99.11.195 port 43344 ssh2 May 25 14:25:02 ny01 sshd[9465]: Failed password for root from 192.99.11.195 port 46298 ssh2 May 25 14:28:16 ny01 sshd[10386]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.11.195	2020-05-26 02:35:16
36.155.113.40	attackbotsspam	Invalid user hadoop from 36.155.113.40 port 41954	2020-05-26 02:54:50
165.227.80.114	attackbots	This client attempted to login to an administrator account on a Website, or abused from another resource.	2020-05-26 02:38:23
106.52.39.63	attackspambots	May 25 17:27:33 vlre-nyc-1 sshd\[28995\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.39.63 user=root May 25 17:27:34 vlre-nyc-1 sshd\[28995\]: Failed password for root from 106.52.39.63 port 56436 ssh2 May 25 17:31:53 vlre-nyc-1 sshd\[29090\]: Invalid user qqqqq from 106.52.39.63 May 25 17:31:53 vlre-nyc-1 sshd\[29090\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.39.63 May 25 17:31:54 vlre-nyc-1 sshd\[29090\]: Failed password for invalid user qqqqq from 106.52.39.63 port 40398 ssh2 ...	2020-05-26 02:32:43
212.145.192.205	attackspam	May 25 19:51:40 minden010 sshd[24868]: Failed password for root from 212.145.192.205 port 59492 ssh2 May 25 19:58:37 minden010 sshd[27694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.145.192.205 May 25 19:58:39 minden010 sshd[27694]: Failed password for invalid user grogers from 212.145.192.205 port 41548 ssh2 ...	2020-05-26 02:58:12
193.112.163.159	attack	5x Failed Password	2020-05-26 02:34:54
203.128.16.246	attack	2020-05-25T19:09:20.277463mail.cevreciler.com sshd[23260]: Invalid user pi from 203.128.16.246 port 53598 2020-05-25T19:09:20.492419mail.cevreciler.com sshd[23260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203-128-16-246.brain.net.pk 2020-05-25T19:09:20.609105mail.cevreciler.com sshd[23262]: Invalid user pi from 203.128.16.246 port 53600 2020-05-25T19:09:20.809377mail.cevreciler.com sshd[23262]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203-128-16-246.brain.net.pk 2020-05-25T19:09:22.853435mail.cevreciler.com sshd[23260]: Failed password for invalid user pi from 203.128.16.246 port 53598 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=203.128.16.246	2020-05-26 02:26:23
49.235.76.69	attackbots	Unauthorized connection attempt detected from IP address 49.235.76.69 to port 24	2020-05-26 02:23:54

最近上报的IP列表

106.52.106.6	106.52.17.2	106.51.98.1	106.51.0.4
87.99.159.145	3.88.143.18	210.66.20.116	143.255.241.105
106.14.122.2	106.13.52.1	106.13.5.1	106.13.147.6
106.13.15.1	106.12.89.1	67.224.33.144	106.12.220.2
106.12.178.6	106.12.159.2	114.29.236.196	104.244.79.1