129.204.94.8 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	SSH login attempts with user root.	2019-11-30 06:33:57

相同子网IP讨论:

IP	类型	评论内容	时间
129.204.94.158	attack	Aug 11 14:08:29 gospond sshd[7630]: Failed password for root from 129.204.94.158 port 43644 ssh2 Aug 11 14:08:27 gospond sshd[7630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.158 user=root Aug 11 14:08:29 gospond sshd[7630]: Failed password for root from 129.204.94.158 port 43644 ssh2 ...	2020-08-12 01:40:13
129.204.94.158	attackspam	2020-07-30T01:28:42.830955ks3355764 sshd[10746]: Invalid user shangzengqiang from 129.204.94.158 port 58072 2020-07-30T01:28:45.078049ks3355764 sshd[10746]: Failed password for invalid user shangzengqiang from 129.204.94.158 port 58072 ssh2 ...	2020-07-30 07:50:52
129.204.94.79	attackbots	Mar 21 22:57:04 silence02 sshd[25369]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.79 Mar 21 22:57:07 silence02 sshd[25369]: Failed password for invalid user xs from 129.204.94.79 port 54752 ssh2 Mar 21 23:03:06 silence02 sshd[25738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.79	2020-03-22 06:40:36
129.204.94.79	attackspambots	Mar 12 23:28:35 meumeu sshd[10519]: Failed password for root from 129.204.94.79 port 54098 ssh2 Mar 12 23:34:56 meumeu sshd[11602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.79 Mar 12 23:34:59 meumeu sshd[11602]: Failed password for invalid user ackerjapan from 129.204.94.79 port 43376 ssh2 ...	2020-03-13 06:47:48
129.204.94.79	attackbotsspam	Jan 22 15:15:20 ms-srv sshd[24269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.79 Jan 22 15:15:21 ms-srv sshd[24269]: Failed password for invalid user ubuntu from 129.204.94.79 port 58658 ssh2	2020-03-08 20:13:37
129.204.94.79	attackspambots	Jan 19 05:55:18 MK-Soft-VM4 sshd[4052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.79 Jan 19 05:55:20 MK-Soft-VM4 sshd[4052]: Failed password for invalid user gh from 129.204.94.79 port 47054 ssh2 ...	2020-01-19 13:06:49
129.204.94.79	attack	Jan 18 19:36:35 tuxlinux sshd[20591]: Invalid user lfs from 129.204.94.79 port 49992 Jan 18 19:36:35 tuxlinux sshd[20591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.79 Jan 18 19:36:35 tuxlinux sshd[20591]: Invalid user lfs from 129.204.94.79 port 49992 Jan 18 19:36:35 tuxlinux sshd[20591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.79 ...	2020-01-19 04:38:05
129.204.94.79	attack	Jan 16 20:23:47 vps691689 sshd[19407]: Failed password for root from 129.204.94.79 port 46078 ssh2 Jan 16 20:26:30 vps691689 sshd[19502]: Failed password for root from 129.204.94.79 port 43018 ssh2 ...	2020-01-17 04:11:25
129.204.94.81	attackspambots	Jan 9 21:36:03 DAAP sshd[20360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 user=root Jan 9 21:36:05 DAAP sshd[20360]: Failed password for root from 129.204.94.81 port 36665 ssh2 Jan 9 21:42:04 DAAP sshd[20495]: Invalid user test from 129.204.94.81 port 58405 Jan 9 21:42:04 DAAP sshd[20495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 Jan 9 21:42:04 DAAP sshd[20495]: Invalid user test from 129.204.94.81 port 58405 Jan 9 21:42:06 DAAP sshd[20495]: Failed password for invalid user test from 129.204.94.81 port 58405 ssh2 ...	2020-01-10 04:50:10
129.204.94.81	attackbotsspam	Jan 7 15:47:16 legacy sshd[15229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 Jan 7 15:47:17 legacy sshd[15229]: Failed password for invalid user test11 from 129.204.94.81 port 43450 ssh2 Jan 7 15:52:14 legacy sshd[15528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 ...	2020-01-07 23:08:20
129.204.94.79	attackbots	Jan 3 17:41:26 sso sshd[10642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.79 Jan 3 17:41:28 sso sshd[10642]: Failed password for invalid user backups from 129.204.94.79 port 49968 ssh2 ...	2020-01-04 01:45:23
129.204.94.106	attack	Jan 3 10:53:56 localhost sshd\[9420\]: Invalid user yng from 129.204.94.106 port 52486 Jan 3 10:53:56 localhost sshd\[9420\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.106 Jan 3 10:53:58 localhost sshd\[9420\]: Failed password for invalid user yng from 129.204.94.106 port 52486 ssh2	2020-01-03 18:01:06
129.204.94.81	attackbotsspam	Jan 3 05:38:54 raspberrypi sshd\[30112\]: Invalid user applmgr from 129.204.94.81Jan 3 05:38:56 raspberrypi sshd\[30112\]: Failed password for invalid user applmgr from 129.204.94.81 port 56628 ssh2Jan 3 05:59:42 raspberrypi sshd\[30807\]: Invalid user new from 129.204.94.81 ...	2020-01-03 15:51:26
129.204.94.81	attack	Dec 28 04:22:02 vps46666688 sshd[25588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 Dec 28 04:22:04 vps46666688 sshd[25588]: Failed password for invalid user parra from 129.204.94.81 port 38460 ssh2 ...	2019-12-28 21:39:54
129.204.94.81	attackspam	Dec 19 16:14:21 ns3042688 sshd\[23730\]: Invalid user www from 129.204.94.81 Dec 19 16:14:21 ns3042688 sshd\[23730\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 Dec 19 16:14:23 ns3042688 sshd\[23730\]: Failed password for invalid user www from 129.204.94.81 port 44949 ssh2 Dec 19 16:22:16 ns3042688 sshd\[27460\]: Invalid user ident from 129.204.94.81 Dec 19 16:22:16 ns3042688 sshd\[27460\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 ...	2019-12-20 03:04:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.204.94.8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21996
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.204.94.8.			IN	A

;; AUTHORITY SECTION:
.			585	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112901 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 30 06:33:54 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 8.94.204.129.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 8.94.204.129.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
185.176.27.42	attackbotsspam	TCP (SYN) 185.176.27.42:53173 -> port 2396, len 44	2020-08-09 02:48:15
138.59.146.242	attack	From send-julio-1618-alkosa.com.br-8@vendastop10.com.br Sat Aug 08 09:10:24 2020 Received: from mm146-242.vendastop10.com.br ([138.59.146.242]:49889)	2020-08-09 02:48:50
80.246.2.153	attackbots	Fail2Ban - SSH Bruteforce Attempt	2020-08-09 02:40:26
142.93.195.15	attack	Aug 8 21:55:20 venus kernel: [104024.969658] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:66:8f:ed:d2:74:7f:6e:37:e3:08:00 SRC=142.93.195.15 DST=78.47.70.226 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=53263 PROTO=TCP SPT=52402 DPT=24162 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-09 03:02:30
198.199.109.36	attack	CMS Bruteforce / WebApp Attack attempt	2020-08-09 03:03:04
138.121.170.194	attackbotsspam	Aug 8 17:54:58 vlre-nyc-1 sshd\[2303\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.121.170.194 user=root Aug 8 17:55:00 vlre-nyc-1 sshd\[2303\]: Failed password for root from 138.121.170.194 port 44700 ssh2 Aug 8 17:56:23 vlre-nyc-1 sshd\[2320\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.121.170.194 user=root Aug 8 17:56:25 vlre-nyc-1 sshd\[2320\]: Failed password for root from 138.121.170.194 port 59454 ssh2 Aug 8 17:57:28 vlre-nyc-1 sshd\[2338\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.121.170.194 user=root ...	2020-08-09 02:30:12
222.186.61.19	attackspam	Sent packet to closed port: 31280	2020-08-09 02:33:19
45.78.38.122	attackspam	Aug 8 05:30:58 mockhub sshd[24738]: Failed password for root from 45.78.38.122 port 26422 ssh2 ...	2020-08-09 02:54:58
139.186.4.114	attackspam	2020-08-08T17:24:59+0200 Failed SSH Authentication/Brute Force Attack. (Server 10)	2020-08-09 02:31:30
182.253.117.99	attackbots	$f2bV_matches	2020-08-09 02:44:56
1.179.137.10	attackbotsspam	Aug 8 14:24:44 PorscheCustomer sshd[26863]: Failed password for root from 1.179.137.10 port 45978 ssh2 Aug 8 14:29:30 PorscheCustomer sshd[27036]: Failed password for root from 1.179.137.10 port 56401 ssh2 ...	2020-08-09 02:29:35
216.218.206.79	attackspambots	Fail2Ban Ban Triggered	2020-08-09 02:53:55
65.52.184.54	attack	Multiple SSH authentication failures from 65.52.184.54	2020-08-09 02:54:44
185.16.37.135	attackbots	SSH brute-force attempt	2020-08-09 02:53:24
120.53.243.211	attackspam	web-1 [ssh_2] SSH Attack	2020-08-09 03:05:21

最近上报的IP列表

118.24.114.1	117.157.15.2	115.112.143.1	114.118.96.2
114.112.58.1	119.90.3.21	113.200.236.6	111.93.200.5
111.68.104.1	221.232.130.26	111.231.119.1	109.102.158.1
162.135.184.115	109.86.213.5	94.6.146.134	106.52.106.6
106.52.17.2	106.51.98.1	106.51.0.4	87.99.159.145