129.204.121.245

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Aug 21 15:55:27 * sshd[30616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.121.245 Aug 21 15:55:29 * sshd[30616]: Failed password for invalid user admin from 129.204.121.245 port 33103 ssh2	2020-08-21 22:18:44
attack	leo_www	2020-08-20 12:13:48
attack	Aug 18 15:08:39 Host-KEWR-E sshd[13424]: Invalid user ubuntu from 129.204.121.245 port 46571 ...	2020-08-19 04:47:19
attack	Aug 18 08:22:27 vps46666688 sshd[9561]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.121.245 Aug 18 08:22:29 vps46666688 sshd[9561]: Failed password for invalid user schmidt from 129.204.121.245 port 35377 ssh2 ...	2020-08-18 19:42:09
attackbots	2020-08-16T19:23:59.146493billing sshd[22168]: Failed password for invalid user wxd from 129.204.121.245 port 60190 ssh2 2020-08-16T19:27:24.831686billing sshd[29312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.121.245 user=root 2020-08-16T19:27:26.838214billing sshd[29312]: Failed password for root from 129.204.121.245 port 43551 ssh2 ...	2020-08-16 21:41:30
attackbots	bruteforce detected	2020-08-03 08:04:20
attack	Jul 27 21:15:02 xxxxxxx1 sshd[24032]: Invalid user username from 129.204.121.245 port 33445 Jul 27 21:15:02 xxxxxxx1 sshd[24032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.121.245 Jul 27 21:15:04 xxxxxxx1 sshd[24032]: Failed password for invalid user username from 129.204.121.245 port 33445 ssh2 Jul 27 21:16:49 xxxxxxx1 sshd[24290]: Invalid user caidanwei from 129.204.121.245 port 52183 Jul 27 21:16:49 xxxxxxx1 sshd[24290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.121.245 Jul 27 21:16:51 xxxxxxx1 sshd[24290]: Failed password for invalid user caidanwei from 129.204.121.245 port 52183 ssh2 Jul 27 21:17:37 xxxxxxx1 sshd[24306]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.121.245 user=news Jul 27 21:17:39 xxxxxxx1 sshd[24306]: Failed password for news from 129.204.121.245 port 60979 ssh2 Jul 27 21:18:24 xxxxxxx1 ssh........ ------------------------------	2020-08-02 17:53:54
attackspambots	Unauthorized access or intrusion attempt detected from Thor banned IP	2020-07-29 04:23:01

相同子网IP讨论:

IP	类型	评论内容	时间
129.204.121.113	attack	Oct 12 15:40:21 vps639187 sshd\[4903\]: Invalid user jean from 129.204.121.113 port 56088 Oct 12 15:40:21 vps639187 sshd\[4903\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.121.113 Oct 12 15:40:23 vps639187 sshd\[4903\]: Failed password for invalid user jean from 129.204.121.113 port 56088 ssh2 ...	2020-10-13 00:36:08
129.204.121.113	attack	Bruteforce detected by fail2ban	2020-10-12 16:00:44
129.204.121.113	attackspam	Sep 29 05:22:08 ghostname-secure sshd[24149]: Failed password for invalid user b from 129.204.121.113 port 48926 ssh2 Sep 29 05:22:08 ghostname-secure sshd[24149]: Received disconnect from 129.204.121.113: 11: Bye Bye [preauth] Sep 29 05:33:49 ghostname-secure sshd[24237]: Connection closed by 129.204.121.113 [preauth] Sep 29 05:37:18 ghostname-secure sshd[24308]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.121.113 user=r.r Sep 29 05:37:20 ghostname-secure sshd[24308]: Failed password for r.r from 129.204.121.113 port 41428 ssh2 Sep 29 05:37:20 ghostname-secure sshd[24308]: Received disconnect from 129.204.121.113: 11: Bye Bye [preauth] Sep 29 05:41:45 ghostname-secure sshd[24448]: Failed password for invalid user nagios from 129.204.121.113 port 60934 ssh2 Sep 29 05:41:45 ghostname-secure sshd[24448]: Received disconnect from 129.204.121.113: 11: Bye Bye [preauth] Sep 29 05:46:01 ghostname-secure sshd[24493]: Failed ........ -------------------------------	2020-10-04 08:53:37
129.204.121.113	attackbots	Invalid user kara from 129.204.121.113 port 49838	2020-10-04 01:26:57
129.204.121.60	attackbotsspam	Mar 15 09:06:04 yesfletchmain sshd\[23502\]: Invalid user postgres from 129.204.121.60 port 60652 Mar 15 09:06:04 yesfletchmain sshd\[23502\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.121.60 Mar 15 09:06:05 yesfletchmain sshd\[23502\]: Failed password for invalid user postgres from 129.204.121.60 port 60652 ssh2 Mar 15 09:12:52 yesfletchmain sshd\[23728\]: Invalid user eco from 129.204.121.60 port 58674 Mar 15 09:12:52 yesfletchmain sshd\[23728\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.121.60 ...	2019-12-24 04:41:35

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.204.121.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52586
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.204.121.245.		IN	A

;; AUTHORITY SECTION:
.			284	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072801 1800 900 604800 86400

;; Query time: 77 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 29 04:22:57 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 245.121.204.129.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 245.121.204.129.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
191.238.209.162	attackspam	(sshd) Failed SSH login from 191.238.209.162 (BR/Brazil/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 11 21:15:11 instance-20200224-1146 sshd[8399]: Did not receive identification string from 191.238.209.162 port 43354 Jun 11 21:16:07 instance-20200224-1146 sshd[8453]: Invalid user ansible from 191.238.209.162 port 46820 Jun 11 21:16:14 instance-20200224-1146 sshd[8457]: Invalid user ansible from 191.238.209.162 port 34728 Jun 11 21:16:43 instance-20200224-1146 sshd[8484]: Invalid user butter from 191.238.209.162 port 42710 Jun 11 21:16:49 instance-20200224-1146 sshd[8488]: Invalid user postgres from 191.238.209.162 port 58788	2020-06-12 05:34:23
85.107.51.95	attack	20/6/11@16:39:48: FAIL: Alarm-Intrusion address from=85.107.51.95 ...	2020-06-12 05:04:28
106.12.55.112	attack	2020-06-11T20:34:21.477340abusebot-3.cloudsearch.cf sshd[10848]: Invalid user qlw from 106.12.55.112 port 43269 2020-06-11T20:34:21.483740abusebot-3.cloudsearch.cf sshd[10848]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.55.112 2020-06-11T20:34:21.477340abusebot-3.cloudsearch.cf sshd[10848]: Invalid user qlw from 106.12.55.112 port 43269 2020-06-11T20:34:23.272977abusebot-3.cloudsearch.cf sshd[10848]: Failed password for invalid user qlw from 106.12.55.112 port 43269 ssh2 2020-06-11T20:39:36.401624abusebot-3.cloudsearch.cf sshd[11156]: Invalid user kg from 106.12.55.112 port 39932 2020-06-11T20:39:36.408588abusebot-3.cloudsearch.cf sshd[11156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.55.112 2020-06-11T20:39:36.401624abusebot-3.cloudsearch.cf sshd[11156]: Invalid user kg from 106.12.55.112 port 39932 2020-06-11T20:39:38.443526abusebot-3.cloudsearch.cf sshd[11156]: Failed password fo ...	2020-06-12 05:14:28
122.54.247.83	attack	Jun 11 22:43:22 srv-ubuntu-dev3 sshd[103867]: Invalid user zxx from 122.54.247.83 Jun 11 22:43:22 srv-ubuntu-dev3 sshd[103867]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.54.247.83 Jun 11 22:43:22 srv-ubuntu-dev3 sshd[103867]: Invalid user zxx from 122.54.247.83 Jun 11 22:43:24 srv-ubuntu-dev3 sshd[103867]: Failed password for invalid user zxx from 122.54.247.83 port 41488 ssh2 Jun 11 22:47:02 srv-ubuntu-dev3 sshd[104511]: Invalid user dbus from 122.54.247.83 Jun 11 22:47:02 srv-ubuntu-dev3 sshd[104511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.54.247.83 Jun 11 22:47:02 srv-ubuntu-dev3 sshd[104511]: Invalid user dbus from 122.54.247.83 Jun 11 22:47:04 srv-ubuntu-dev3 sshd[104511]: Failed password for invalid user dbus from 122.54.247.83 port 41692 ssh2 Jun 11 22:50:33 srv-ubuntu-dev3 sshd[105043]: Invalid user maxx from 122.54.247.83 ...	2020-06-12 05:16:11
137.74.132.171	attackbotsspam	2020-06-11 20:23:55,082 fail2ban.actions [937]: NOTICE [sshd] Ban 137.74.132.171 2020-06-11 20:57:15,910 fail2ban.actions [937]: NOTICE [sshd] Ban 137.74.132.171 2020-06-11 21:33:11,885 fail2ban.actions [937]: NOTICE [sshd] Ban 137.74.132.171 2020-06-11 22:06:06,859 fail2ban.actions [937]: NOTICE [sshd] Ban 137.74.132.171 2020-06-11 22:39:43,121 fail2ban.actions [937]: NOTICE [sshd] Ban 137.74.132.171 ...	2020-06-12 05:10:30
96.125.164.246	attackspam	(sshd) Failed SSH login from 96.125.164.246 (US/United States/dk1.dk1-us.com): 5 in the last 3600 secs	2020-06-12 05:04:05
49.88.112.111	attackbotsspam	Jun 11 16:59:55 plusreed sshd[27164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.111 user=root Jun 11 16:59:56 plusreed sshd[27164]: Failed password for root from 49.88.112.111 port 33669 ssh2 ...	2020-06-12 05:02:23
185.220.101.195	attack	(mod_security) mod_security (id:210492) triggered by 185.220.101.195 (DE/Germany/-): 5 in the last 3600 secs	2020-06-12 05:10:10
113.94.85.207	attackbotsspam	" "	2020-06-12 05:31:57
115.159.220.190	attackspambots	SSH Bruteforce attack	2020-06-12 05:17:11
51.75.144.43	attackbots	srv02 SSH BruteForce Attacks 22 ..	2020-06-12 05:34:05
180.76.57.58	attackbots	"fail2ban match"	2020-06-12 05:20:39
178.128.216.246	attackbots	C1,WP GET /wordpress/wp-login.php	2020-06-12 05:38:28
162.248.52.99	attack	2020-06-11T20:33:55.230508abusebot-7.cloudsearch.cf sshd[24007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.248.52.99 user=root 2020-06-11T20:33:57.451243abusebot-7.cloudsearch.cf sshd[24007]: Failed password for root from 162.248.52.99 port 51640 ssh2 2020-06-11T20:36:53.064641abusebot-7.cloudsearch.cf sshd[24160]: Invalid user lx from 162.248.52.99 port 48498 2020-06-11T20:36:53.067466abusebot-7.cloudsearch.cf sshd[24160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.248.52.99 2020-06-11T20:36:53.064641abusebot-7.cloudsearch.cf sshd[24160]: Invalid user lx from 162.248.52.99 port 48498 2020-06-11T20:36:55.057337abusebot-7.cloudsearch.cf sshd[24160]: Failed password for invalid user lx from 162.248.52.99 port 48498 ssh2 2020-06-11T20:39:40.698554abusebot-7.cloudsearch.cf sshd[24447]: Invalid user admin from 162.248.52.99 port 45354 ...	2020-06-12 05:14:09
157.245.55.174	attackspambots	Jun 11 22:34:07 DAAP sshd[17070]: Invalid user cesar from 157.245.55.174 port 34352 Jun 11 22:34:07 DAAP sshd[17070]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.55.174 Jun 11 22:34:07 DAAP sshd[17070]: Invalid user cesar from 157.245.55.174 port 34352 Jun 11 22:34:09 DAAP sshd[17070]: Failed password for invalid user cesar from 157.245.55.174 port 34352 ssh2 Jun 11 22:39:25 DAAP sshd[17159]: Invalid user nginx from 157.245.55.174 port 37126 ...	2020-06-12 05:25:30

最近上报的IP列表

188.84.224.51	188.32.128.29	178.175.142.134	5.62.18.139
81.17.246.242	213.57.209.130	151.224.110.116	91.122.87.239
115.223.7.110	61.79.139.170	199.21.30.181	195.70.43.234
182.122.18.193	221.223.98.210	182.151.2.98	136.169.168.52
218.106.36.60	92.124.163.137	212.103.48.106	111.250.128.247