119.29.116.2 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	DATE:2020-10-08 22:06:24, IP:119.29.116.2, PORT:ssh SSH brute force auth (docker-dc)	2020-10-09 05:51:29
attackspambots	$f2bV_matches	2020-10-08 22:07:58
attackspambots	Oct 8 12:21:08 web1 sshd[11402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.116.2 user=root Oct 8 12:21:10 web1 sshd[11402]: Failed password for root from 119.29.116.2 port 58054 ssh2 Oct 8 12:30:51 web1 sshd[14613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.116.2 user=root Oct 8 12:30:53 web1 sshd[14613]: Failed password for root from 119.29.116.2 port 34054 ssh2 Oct 8 12:33:35 web1 sshd[15461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.116.2 user=root Oct 8 12:33:37 web1 sshd[15461]: Failed password for root from 119.29.116.2 port 34112 ssh2 Oct 8 12:36:28 web1 sshd[16504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.116.2 user=root Oct 8 12:36:31 web1 sshd[16504]: Failed password for root from 119.29.116.2 port 34190 ssh2 Oct 8 12:39:09 web1 sshd[17341]: pam_unix(s ...	2020-10-08 14:02:17
attack	Oct 1 01:15:49 abendstille sshd\[24824\]: Invalid user admin from 119.29.116.2 Oct 1 01:15:49 abendstille sshd\[24824\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.116.2 Oct 1 01:15:51 abendstille sshd\[24824\]: Failed password for invalid user admin from 119.29.116.2 port 47128 ssh2 Oct 1 01:20:16 abendstille sshd\[29069\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.116.2 user=root Oct 1 01:20:18 abendstille sshd\[29069\]: Failed password for root from 119.29.116.2 port 38448 ssh2 ...	2020-10-01 07:36:05
attackbots	Sep 30 03:46:45 php1 sshd\[1070\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.116.2 user=root Sep 30 03:46:47 php1 sshd\[1070\]: Failed password for root from 119.29.116.2 port 33088 ssh2 Sep 30 03:51:38 php1 sshd\[1461\]: Invalid user shan from 119.29.116.2 Sep 30 03:51:38 php1 sshd\[1461\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.116.2 Sep 30 03:51:41 php1 sshd\[1461\]: Failed password for invalid user shan from 119.29.116.2 port 58484 ssh2	2020-10-01 00:04:32
attackspam	Sep 29 16:38:09 sip sshd[1768629]: Invalid user demo2 from 119.29.116.2 port 55960 Sep 29 16:38:11 sip sshd[1768629]: Failed password for invalid user demo2 from 119.29.116.2 port 55960 ssh2 Sep 29 16:43:12 sip sshd[1768663]: Invalid user ftp from 119.29.116.2 port 52644 ...	2020-09-30 00:43:41

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.29.116.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46025
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;119.29.116.2.			IN	A

;; AUTHORITY SECTION:
.			376	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020092900 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 30 00:43:31 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 2.116.29.119.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.116.29.119.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
113.165.56.53	attackbotsspam	20/6/11@23:55:20: FAIL: Alarm-Network address from=113.165.56.53 ...	2020-06-12 15:11:41
106.54.200.209	attackspam	Jun 11 20:55:17 mockhub sshd[28999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.200.209 Jun 11 20:55:19 mockhub sshd[28999]: Failed password for invalid user djh from 106.54.200.209 port 60940 ssh2 ...	2020-06-12 15:13:39
134.209.176.160	attackbotsspam	Jun 11 20:11:00 eddieflores sshd\[10168\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.176.160 user=root Jun 11 20:11:02 eddieflores sshd\[10168\]: Failed password for root from 134.209.176.160 port 50464 ssh2 Jun 11 20:14:49 eddieflores sshd\[10448\]: Invalid user test from 134.209.176.160 Jun 11 20:14:49 eddieflores sshd\[10448\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.176.160 Jun 11 20:14:51 eddieflores sshd\[10448\]: Failed password for invalid user test from 134.209.176.160 port 53248 ssh2	2020-06-12 15:09:37
106.13.110.74	attack	Jun 12 15:39:46 localhost sshd[979326]: Connection closed by 106.13.110.74 port 32948 [preauth] ...	2020-06-12 15:33:06
58.218.150.170	attackbots	2020-06-12T07:03:27.419470galaxy.wi.uni-potsdam.de sshd[21678]: Invalid user teamspeak from 58.218.150.170 port 54710 2020-06-12T07:03:27.421796galaxy.wi.uni-potsdam.de sshd[21678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.218.150.170 2020-06-12T07:03:27.419470galaxy.wi.uni-potsdam.de sshd[21678]: Invalid user teamspeak from 58.218.150.170 port 54710 2020-06-12T07:03:29.977243galaxy.wi.uni-potsdam.de sshd[21678]: Failed password for invalid user teamspeak from 58.218.150.170 port 54710 ssh2 2020-06-12T07:03:58.891750galaxy.wi.uni-potsdam.de sshd[21742]: Invalid user libby from 58.218.150.170 port 56790 2020-06-12T07:03:58.893761galaxy.wi.uni-potsdam.de sshd[21742]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.218.150.170 2020-06-12T07:03:58.891750galaxy.wi.uni-potsdam.de sshd[21742]: Invalid user libby from 58.218.150.170 port 56790 2020-06-12T07:04:01.040370galaxy.wi.uni-potsdam.de sshd[217 ...	2020-06-12 15:14:11
223.247.218.112	attackspambots	2020-06-12T05:52:22.701658shield sshd\[27358\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.218.112 user=root 2020-06-12T05:52:24.180919shield sshd\[27358\]: Failed password for root from 223.247.218.112 port 41946 ssh2 2020-06-12T05:53:57.277723shield sshd\[27787\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.218.112 user=root 2020-06-12T05:53:59.800522shield sshd\[27787\]: Failed password for root from 223.247.218.112 port 50652 ssh2 2020-06-12T05:55:42.691983shield sshd\[28055\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.218.112 user=root	2020-06-12 14:59:29
185.234.219.113	attackspam	smtpd Brute Force	2020-06-12 15:31:20
159.65.163.234	attackbotsspam	Port scan denied	2020-06-12 15:25:49
196.52.43.106	attackspambots	TCP (SYN) 196.52.43.106:50887 -> port 5907, len 44	2020-06-12 15:23:01
104.131.189.4	attack	2020-06-12T06:55:21.9965341240 sshd\[17024\]: Invalid user sex from 104.131.189.4 port 47966 2020-06-12T06:55:22.0007831240 sshd\[17024\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.189.4 2020-06-12T06:55:23.5053191240 sshd\[17024\]: Failed password for invalid user sex from 104.131.189.4 port 47966 ssh2 ...	2020-06-12 15:14:54
40.39.109.187	attackbotsspam		2020-06-12 14:55:32
106.52.148.196	attackbotsspam	Jun 12 00:11:58 Host-KLAX-C sshd[12002]: User root from 106.52.148.196 not allowed because not listed in AllowUsers ...	2020-06-12 14:54:39
222.186.30.35	attack	Banned for a week because repeated abuses, for example SSH, but not only	2020-06-12 15:33:42
46.218.85.69	attackbots	Invalid user stone from 46.218.85.69 port 33307	2020-06-12 15:17:14
49.235.163.198	attack	Jun 12 06:56:34 jane sshd[25365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.163.198 Jun 12 06:56:36 jane sshd[25365]: Failed password for invalid user swapnil from 49.235.163.198 port 57839 ssh2 ...	2020-06-12 15:00:47

最近上报的IP列表

162.40.195.19	47.133.2.82	107.114.228.216	81.37.105.201
65.202.21.102	27.62.5.207	77.232.8.28	79.66.26.111
73.200.136.133	102.127.33.36	31.236.121.242	76.199.14.10
106.8.229.79	193.72.33.225	67.171.244.153	72.121.238.91
106.248.235.58	188.10.132.125	206.181.217.28	107.211.103.96