129.152.42.247

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Oracle Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	port scan and connect, tcp 443 (https)	2020-08-03 21:06:42
attackbots	Hit honeypot r.	2020-08-03 15:56:23

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.152.42.247
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11180
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.152.42.247.			IN	A

;; AUTHORITY SECTION:
.			508	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051900 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue May 19 17:35:45 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

247.42.152.129.in-addr.arpa domain name pointer oc-129-152-42-247.compute.oraclecloud.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
247.42.152.129.in-addr.arpa	name = oc-129-152-42-247.compute.oraclecloud.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
140.143.224.23	attackbotsspam	May 2 20:48:21 tuxlinux sshd[18090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.224.23 user=root May 2 20:48:23 tuxlinux sshd[18090]: Failed password for root from 140.143.224.23 port 56544 ssh2 May 2 20:48:21 tuxlinux sshd[18090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.224.23 user=root May 2 20:48:23 tuxlinux sshd[18090]: Failed password for root from 140.143.224.23 port 56544 ssh2 May 2 21:04:45 tuxlinux sshd[18441]: Invalid user tmu from 140.143.224.23 port 47774 ...	2020-05-03 04:14:44
106.54.16.96	attackbots	Invalid user rob from 106.54.16.96 port 51394	2020-05-03 04:20:44
185.113.98.211	attack	Honeypot attack, port: 5555, PTR: 185-113-98-211.cust.bredband2.com.	2020-05-03 04:16:59
181.189.222.20	attack	detected by Fail2Ban	2020-05-03 04:21:57
185.143.74.73	attackspam	May 2 22:33:00 relay postfix/smtpd\[31812\]: warning: unknown\[185.143.74.73\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 2 22:33:24 relay postfix/smtpd\[7224\]: warning: unknown\[185.143.74.73\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 2 22:34:06 relay postfix/smtpd\[9788\]: warning: unknown\[185.143.74.73\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 2 22:34:29 relay postfix/smtpd\[2286\]: warning: unknown\[185.143.74.73\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 2 22:35:12 relay postfix/smtpd\[660\]: warning: unknown\[185.143.74.73\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-03 04:42:37
181.143.186.235	attackspam	May 2 21:03:09 DAAP sshd[18765]: Invalid user server from 181.143.186.235 port 46700 May 2 21:03:09 DAAP sshd[18765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.143.186.235 May 2 21:03:09 DAAP sshd[18765]: Invalid user server from 181.143.186.235 port 46700 May 2 21:03:11 DAAP sshd[18765]: Failed password for invalid user server from 181.143.186.235 port 46700 ssh2 May 2 21:07:32 DAAP sshd[18808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.143.186.235 user=root May 2 21:07:34 DAAP sshd[18808]: Failed password for root from 181.143.186.235 port 59274 ssh2 ...	2020-05-03 04:22:39
42.3.165.182	attackspam	Honeypot attack, port: 5555, PTR: 42-3-165-182.static.netvigator.com.	2020-05-03 04:26:54
68.183.178.162	attackbots	May 2 22:30:50 eventyay sshd[5528]: Failed password for root from 68.183.178.162 port 40624 ssh2 May 2 22:35:10 eventyay sshd[5675]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.178.162 May 2 22:35:13 eventyay sshd[5675]: Failed password for invalid user nagios from 68.183.178.162 port 52650 ssh2 ...	2020-05-03 04:43:30
66.70.205.186	attackbotsspam	May 2 22:33:51 localhost sshd\[4062\]: Invalid user apache from 66.70.205.186 May 2 22:33:51 localhost sshd\[4062\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.205.186 May 2 22:33:53 localhost sshd\[4062\]: Failed password for invalid user apache from 66.70.205.186 port 60868 ssh2 May 2 22:35:07 localhost sshd\[4232\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.205.186 user=root May 2 22:35:09 localhost sshd\[4232\]: Failed password for root from 66.70.205.186 port 41658 ssh2 ...	2020-05-03 04:45:43
185.176.27.14	attackbots	firewall-block, port(s): 35494/tcp, 35586/tcp, 35587/tcp, 35588/tcp, 35681/tcp	2020-05-03 04:23:47
185.50.149.10	attackbotsspam	2020-05-02 22:02:51 dovecot_login authenticator failed for \(\[185.50.149.10\]\) \[185.50.149.10\]: 535 Incorrect authentication data \(set_id=commerciale@opso.it\) 2020-05-02 22:03:01 dovecot_login authenticator failed for \(\[185.50.149.10\]\) \[185.50.149.10\]: 535 Incorrect authentication data 2020-05-02 22:03:13 dovecot_login authenticator failed for \(\[185.50.149.10\]\) \[185.50.149.10\]: 535 Incorrect authentication data 2020-05-02 22:03:21 dovecot_login authenticator failed for \(\[185.50.149.10\]\) \[185.50.149.10\]: 535 Incorrect authentication data 2020-05-02 22:03:35 dovecot_login authenticator failed for \(\[185.50.149.10\]\) \[185.50.149.10\]: 535 Incorrect authentication data	2020-05-03 04:10:08
123.31.45.35	attack	Invalid user aziz from 123.31.45.35 port 53958	2020-05-03 04:18:03
103.212.32.184	attack	May 1 19:56:15 host sshd[11440]: User r.r from 103.212.32.184 not allowed because none of user's groups are listed in AllowGroups May 1 19:56:15 host sshd[11440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.212.32.184 user=r.r May 1 19:56:17 host sshd[11440]: Failed password for invalid user r.r from 103.212.32.184 port 37472 ssh2 May 1 19:56:18 host sshd[11440]: Received disconnect from 103.212.32.184 port 37472:11: Bye Bye [preauth] May 1 19:56:18 host sshd[11440]: Disconnected from invalid user r.r 103.212.32.184 port 37472 [preauth] May 1 20:14:33 host sshd[15951]: User r.r from 103.212.32.184 not allowed because none of user's groups are listed in AllowGroups May 1 20:14:33 host sshd[15951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.212.32.184 user=r.r May 1 20:14:35 host sshd[15951]: Failed password for invalid user r.r from 103.212.32.184 port 35444 ssh2 Ma........ -------------------------------	2020-05-03 04:23:21
185.143.74.73	attackspambots	May 2 22:17:46 v22019058497090703 postfix/smtpd[1814]: warning: unknown[185.143.74.73]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 2 22:18:53 v22019058497090703 postfix/smtpd[1820]: warning: unknown[185.143.74.73]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 2 22:19:58 v22019058497090703 postfix/smtpd[1820]: warning: unknown[185.143.74.73]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-03 04:29:32
15.206.124.121	attackspam	May 2 22:20:06 ns382633 sshd\[31317\]: Invalid user test from 15.206.124.121 port 45760 May 2 22:20:06 ns382633 sshd\[31317\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=15.206.124.121 May 2 22:20:08 ns382633 sshd\[31317\]: Failed password for invalid user test from 15.206.124.121 port 45760 ssh2 May 2 22:35:10 ns382633 sshd\[2062\]: Invalid user raju from 15.206.124.121 port 40714 May 2 22:35:10 ns382633 sshd\[2062\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=15.206.124.121	2020-05-03 04:44:19

最近上报的IP列表

113.166.0.212	66.102.8.180	165.22.215.128	157.50.236.63
63.143.163.71	248.211.70.225	193.34.210.4	119.207.70.87
241.136.237.152	28.84.211.130	126.112.219.197	181.198.240.199
153.206.102.255	22.130.184.57	28.88.30.198	172.81.224.43
113.117.136.235	47.244.9.128	222.116.70.13	35.197.133.35