129.204.52.199

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-09-23 19:57:33
attackspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-09-05 15:25:38
attackbots	Portscan detected	2019-09-05 04:53:07

相同子网IP讨论:

IP	类型	评论内容	时间
129.204.52.150	attackspam	Jun 7 08:38:09 yesfletchmain sshd\[17492\]: Invalid user teamspeak3 from 129.204.52.150 port 46762 Jun 7 08:38:09 yesfletchmain sshd\[17492\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.52.150 Jun 7 08:38:11 yesfletchmain sshd\[17492\]: Failed password for invalid user teamspeak3 from 129.204.52.150 port 46762 ssh2 Jun 7 08:43:09 yesfletchmain sshd\[17619\]: Invalid user worker from 129.204.52.150 port 52822 Jun 7 08:43:09 yesfletchmain sshd\[17619\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.52.150 ...	2019-12-24 03:14:24
129.204.52.150	attackspambots	Nov 12 07:33:29 localhost sshd\[26780\]: Invalid user nyracai from 129.204.52.150 port 58410 Nov 12 07:33:29 localhost sshd\[26780\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.52.150 Nov 12 07:33:31 localhost sshd\[26780\]: Failed password for invalid user nyracai from 129.204.52.150 port 58410 ssh2 Nov 12 07:38:20 localhost sshd\[26906\]: Invalid user catteryv from 129.204.52.150 port 39362 Nov 12 07:38:20 localhost sshd\[26906\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.52.150 ...	2019-11-12 19:34:15
129.204.52.150	attackspam	$f2bV_matches	2019-11-03 16:30:50
129.204.52.150	attackspambots	Sep 21 02:50:57 mail sshd\[10239\]: Invalid user oracle from 129.204.52.150 Sep 21 02:50:57 mail sshd\[10239\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.52.150 ...	2019-09-21 20:35:47
129.204.52.150	attack	Sep 13 13:21:00 vps647732 sshd[28188]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.52.150 Sep 13 13:21:02 vps647732 sshd[28188]: Failed password for invalid user user7 from 129.204.52.150 port 55594 ssh2 ...	2019-09-13 19:32:20
129.204.52.150	attack	Brute force SMTP login attempted. ...	2019-08-10 09:15:09
129.204.52.150	attack	Jul 27 05:27:24 vps647732 sshd[16453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.52.150 Jul 27 05:27:26 vps647732 sshd[16453]: Failed password for invalid user add from 129.204.52.150 port 38542 ssh2 ...	2019-07-27 11:39:09
129.204.52.150	attackbots	Jul 24 07:30:04 v22018076622670303 sshd\[9564\]: Invalid user bg from 129.204.52.150 port 43692 Jul 24 07:30:04 v22018076622670303 sshd\[9564\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.52.150 Jul 24 07:30:06 v22018076622670303 sshd\[9564\]: Failed password for invalid user bg from 129.204.52.150 port 43692 ssh2 ...	2019-07-24 14:18:12
129.204.52.150	attack	Jul 23 16:53:37 v22018076622670303 sshd\[3987\]: Invalid user test6 from 129.204.52.150 port 44762 Jul 23 16:53:37 v22018076622670303 sshd\[3987\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.52.150 Jul 23 16:53:39 v22018076622670303 sshd\[3987\]: Failed password for invalid user test6 from 129.204.52.150 port 44762 ssh2 ...	2019-07-23 23:27:36
129.204.52.150	attack	Jul 22 23:28:49 animalibera sshd[19585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.52.150 user=root Jul 22 23:28:51 animalibera sshd[19585]: Failed password for root from 129.204.52.150 port 44360 ssh2 ...	2019-07-23 07:41:39
129.204.52.150	attackbots	Invalid user zabbix from 129.204.52.150 port 59718	2019-07-19 20:26:24

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.204.52.199
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63539
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.204.52.199.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090402 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Sep 05 04:53:02 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 199.52.204.129.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 199.52.204.129.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
143.176.230.43	attackbots	$f2bV_matches	2019-12-07 20:08:12
218.205.242.247	attackbotsspam	Unauthorized access or intrusion attempt detected from Thor banned IP	2019-12-07 20:01:08
122.154.241.147	attackspambots	Dec 7 12:53:44 sd-53420 sshd\[11084\]: User root from 122.154.241.147 not allowed because none of user's groups are listed in AllowGroups Dec 7 12:53:44 sd-53420 sshd\[11084\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.154.241.147 user=root Dec 7 12:53:46 sd-53420 sshd\[11084\]: Failed password for invalid user root from 122.154.241.147 port 40088 ssh2 Dec 7 13:00:55 sd-53420 sshd\[12426\]: Invalid user spessot from 122.154.241.147 Dec 7 13:00:55 sd-53420 sshd\[12426\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.154.241.147 ...	2019-12-07 20:15:37
51.38.231.249	attack	$f2bV_matches	2019-12-07 19:42:23
104.248.26.43	attackspam	Dec 7 03:38:05 server sshd\[6474\]: Failed password for invalid user annice from 104.248.26.43 port 36234 ssh2 Dec 7 12:33:34 server sshd\[20509\]: Invalid user zackarylee from 104.248.26.43 Dec 7 12:33:34 server sshd\[20509\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.26.43 Dec 7 12:33:36 server sshd\[20509\]: Failed password for invalid user zackarylee from 104.248.26.43 port 51278 ssh2 Dec 7 12:43:44 server sshd\[23190\]: Invalid user denna from 104.248.26.43 Dec 7 12:43:44 server sshd\[23190\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.26.43 ...	2019-12-07 19:42:09
110.44.126.83	attackbotsspam	Dec 7 12:33:35 vmd26974 sshd[15041]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.44.126.83 Dec 7 12:33:37 vmd26974 sshd[15041]: Failed password for invalid user ccaruana from 110.44.126.83 port 48298 ssh2 ...	2019-12-07 19:45:13
218.92.0.180	attackbotsspam	Dec 7 01:36:55 web1 sshd\[27102\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.180 user=root Dec 7 01:36:57 web1 sshd\[27102\]: Failed password for root from 218.92.0.180 port 10984 ssh2 Dec 7 01:37:00 web1 sshd\[27102\]: Failed password for root from 218.92.0.180 port 10984 ssh2 Dec 7 01:37:04 web1 sshd\[27102\]: Failed password for root from 218.92.0.180 port 10984 ssh2 Dec 7 01:37:07 web1 sshd\[27102\]: Failed password for root from 218.92.0.180 port 10984 ssh2	2019-12-07 19:40:29
150.214.168.161	attackbotsspam	SSH bruteforce	2019-12-07 19:37:33
95.9.175.16	attackbots	Portscan detected	2019-12-07 20:10:29
198.100.148.71	attack	SSH Brute Force, server-1 sshd[20674]: Failed password for bin from 198.100.148.71 port 48354 ssh2	2019-12-07 19:46:46
54.37.225.179	attack	Dec 7 11:45:00 localhost sshd\[112083\]: Invalid user admin from 54.37.225.179 port 35978 Dec 7 11:45:00 localhost sshd\[112083\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.225.179 Dec 7 11:45:02 localhost sshd\[112083\]: Failed password for invalid user admin from 54.37.225.179 port 35978 ssh2 Dec 7 11:50:33 localhost sshd\[112268\]: Invalid user zieber from 54.37.225.179 port 45180 Dec 7 11:50:33 localhost sshd\[112268\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.225.179 ...	2019-12-07 19:57:04
50.77.182.77	attackbots	UTC: 2019-12-06 port: 23/tcp	2019-12-07 20:13:58
186.213.143.82	attackspam	Automatic report - Port Scan Attack	2019-12-07 19:51:17
106.13.145.44	attackbotsspam	Dec 7 09:56:59 server sshd\[13487\]: Invalid user sincelejo from 106.13.145.44 Dec 7 09:56:59 server sshd\[13487\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.145.44 Dec 7 09:57:01 server sshd\[13487\]: Failed password for invalid user sincelejo from 106.13.145.44 port 43022 ssh2 Dec 7 10:11:00 server sshd\[17009\]: Invalid user hubby from 106.13.145.44 Dec 7 10:11:00 server sshd\[17009\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.145.44 ...	2019-12-07 19:42:37
185.50.196.127	attackbots	Automatic report - XMLRPC Attack	2019-12-07 19:44:10

最近上报的IP列表

168.181.51.119	179.48.167.149	209.164.168.249	146.242.56.24
31.128.13.150	146.242.56.17	49.231.229.229	24.55.236.255
163.124.57.196	114.47.182.167	225.205.11.92	61.250.144.195
47.181.10.165	74.32.132.192	49.141.135.184	203.64.211.76
253.20.250.93	3.199.33.83	177.134.217.14	245.135.108.32