129.204.94.8 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	SSH login attempts with user root.	2019-11-30 06:33:57

相同子网IP讨论:

IP	类型	评论内容	时间
129.204.94.158	attack	Aug 11 14:08:29 gospond sshd[7630]: Failed password for root from 129.204.94.158 port 43644 ssh2 Aug 11 14:08:27 gospond sshd[7630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.158 user=root Aug 11 14:08:29 gospond sshd[7630]: Failed password for root from 129.204.94.158 port 43644 ssh2 ...	2020-08-12 01:40:13
129.204.94.158	attackspam	2020-07-30T01:28:42.830955ks3355764 sshd[10746]: Invalid user shangzengqiang from 129.204.94.158 port 58072 2020-07-30T01:28:45.078049ks3355764 sshd[10746]: Failed password for invalid user shangzengqiang from 129.204.94.158 port 58072 ssh2 ...	2020-07-30 07:50:52
129.204.94.79	attackbots	Mar 21 22:57:04 silence02 sshd[25369]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.79 Mar 21 22:57:07 silence02 sshd[25369]: Failed password for invalid user xs from 129.204.94.79 port 54752 ssh2 Mar 21 23:03:06 silence02 sshd[25738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.79	2020-03-22 06:40:36
129.204.94.79	attackspambots	Mar 12 23:28:35 meumeu sshd[10519]: Failed password for root from 129.204.94.79 port 54098 ssh2 Mar 12 23:34:56 meumeu sshd[11602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.79 Mar 12 23:34:59 meumeu sshd[11602]: Failed password for invalid user ackerjapan from 129.204.94.79 port 43376 ssh2 ...	2020-03-13 06:47:48
129.204.94.79	attackbotsspam	Jan 22 15:15:20 ms-srv sshd[24269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.79 Jan 22 15:15:21 ms-srv sshd[24269]: Failed password for invalid user ubuntu from 129.204.94.79 port 58658 ssh2	2020-03-08 20:13:37
129.204.94.79	attackspambots	Jan 19 05:55:18 MK-Soft-VM4 sshd[4052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.79 Jan 19 05:55:20 MK-Soft-VM4 sshd[4052]: Failed password for invalid user gh from 129.204.94.79 port 47054 ssh2 ...	2020-01-19 13:06:49
129.204.94.79	attack	Jan 18 19:36:35 tuxlinux sshd[20591]: Invalid user lfs from 129.204.94.79 port 49992 Jan 18 19:36:35 tuxlinux sshd[20591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.79 Jan 18 19:36:35 tuxlinux sshd[20591]: Invalid user lfs from 129.204.94.79 port 49992 Jan 18 19:36:35 tuxlinux sshd[20591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.79 ...	2020-01-19 04:38:05
129.204.94.79	attack	Jan 16 20:23:47 vps691689 sshd[19407]: Failed password for root from 129.204.94.79 port 46078 ssh2 Jan 16 20:26:30 vps691689 sshd[19502]: Failed password for root from 129.204.94.79 port 43018 ssh2 ...	2020-01-17 04:11:25
129.204.94.81	attackspambots	Jan 9 21:36:03 DAAP sshd[20360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 user=root Jan 9 21:36:05 DAAP sshd[20360]: Failed password for root from 129.204.94.81 port 36665 ssh2 Jan 9 21:42:04 DAAP sshd[20495]: Invalid user test from 129.204.94.81 port 58405 Jan 9 21:42:04 DAAP sshd[20495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 Jan 9 21:42:04 DAAP sshd[20495]: Invalid user test from 129.204.94.81 port 58405 Jan 9 21:42:06 DAAP sshd[20495]: Failed password for invalid user test from 129.204.94.81 port 58405 ssh2 ...	2020-01-10 04:50:10
129.204.94.81	attackbotsspam	Jan 7 15:47:16 legacy sshd[15229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 Jan 7 15:47:17 legacy sshd[15229]: Failed password for invalid user test11 from 129.204.94.81 port 43450 ssh2 Jan 7 15:52:14 legacy sshd[15528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 ...	2020-01-07 23:08:20
129.204.94.79	attackbots	Jan 3 17:41:26 sso sshd[10642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.79 Jan 3 17:41:28 sso sshd[10642]: Failed password for invalid user backups from 129.204.94.79 port 49968 ssh2 ...	2020-01-04 01:45:23
129.204.94.106	attack	Jan 3 10:53:56 localhost sshd\[9420\]: Invalid user yng from 129.204.94.106 port 52486 Jan 3 10:53:56 localhost sshd\[9420\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.106 Jan 3 10:53:58 localhost sshd\[9420\]: Failed password for invalid user yng from 129.204.94.106 port 52486 ssh2	2020-01-03 18:01:06
129.204.94.81	attackbotsspam	Jan 3 05:38:54 raspberrypi sshd\[30112\]: Invalid user applmgr from 129.204.94.81Jan 3 05:38:56 raspberrypi sshd\[30112\]: Failed password for invalid user applmgr from 129.204.94.81 port 56628 ssh2Jan 3 05:59:42 raspberrypi sshd\[30807\]: Invalid user new from 129.204.94.81 ...	2020-01-03 15:51:26
129.204.94.81	attack	Dec 28 04:22:02 vps46666688 sshd[25588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 Dec 28 04:22:04 vps46666688 sshd[25588]: Failed password for invalid user parra from 129.204.94.81 port 38460 ssh2 ...	2019-12-28 21:39:54
129.204.94.81	attackspam	Dec 19 16:14:21 ns3042688 sshd\[23730\]: Invalid user www from 129.204.94.81 Dec 19 16:14:21 ns3042688 sshd\[23730\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 Dec 19 16:14:23 ns3042688 sshd\[23730\]: Failed password for invalid user www from 129.204.94.81 port 44949 ssh2 Dec 19 16:22:16 ns3042688 sshd\[27460\]: Invalid user ident from 129.204.94.81 Dec 19 16:22:16 ns3042688 sshd\[27460\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 ...	2019-12-20 03:04:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.204.94.8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21996
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.204.94.8.			IN	A

;; AUTHORITY SECTION:
.			585	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112901 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 30 06:33:54 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 8.94.204.129.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 8.94.204.129.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
59.55.142.211	attackbotsspam	Unauthorized connection attempt detected from IP address 59.55.142.211 to port 445	2020-05-31 23:41:39
116.52.9.220	attack	Unauthorized connection attempt detected from IP address 116.52.9.220 to port 22	2020-05-31 23:30:08
122.226.188.213	attackspam	Unauthorized connection attempt detected from IP address 122.226.188.213 to port 222	2020-06-01 00:02:40
118.123.173.18	attackspam	Unauthorized connection attempt detected from IP address 118.123.173.18 to port 445	2020-05-31 23:26:41
176.65.241.165	attack	1433/tcp 1433/tcp [2020-05-17/31]2pkt	2020-05-31 23:59:27
190.193.88.204	attack	Brute forcing RDP port 3389	2020-05-31 23:51:13
198.143.158.82	attack	Unauthorized connection attempt detected from IP address 198.143.158.82 to port 3310	2020-05-31 23:50:47
71.6.146.186	attackbots	May 31 17:10:05 host proftpd[5771]: 0.0.0.0 (71.6.146.186[71.6.146.186]) - USER anonymous: no such user found from 71.6.146.186 [71.6.146.186] to 163.172.107.87:21 ...	2020-05-31 23:39:24
139.162.99.243	attackbotsspam	Unauthorized connection attempt detected from IP address 139.162.99.243 to port 25	2020-06-01 00:01:06
117.92.122.152	attackspam	Unauthorized connection attempt detected from IP address 117.92.122.152 to port 26	2020-05-31 23:28:04
60.213.214.126	attackspam	Unauthorized connection attempt detected from IP address 60.213.214.126 to port 23	2020-05-31 23:41:06
183.100.42.87	attackbotsspam	Unauthorized connection attempt detected from IP address 183.100.42.87 to port 23	2020-05-31 23:56:00
117.221.192.56	attackspam	DATE:2020-05-31 15:35:10, IP:117.221.192.56, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-05-31 23:27:36
118.186.244.152	attackspambots	Unauthorized connection attempt detected from IP address 118.186.244.152 to port 1433	2020-05-31 23:25:53
182.148.122.8	attackbots	Unauthorized connection attempt detected from IP address 182.148.122.8 to port 1433	2020-05-31 23:56:27

最近上报的IP列表

118.24.114.1	117.157.15.2	115.112.143.1	114.118.96.2
114.112.58.1	119.90.3.21	113.200.236.6	111.93.200.5
111.68.104.1	221.232.130.26	111.231.119.1	109.102.158.1
162.135.184.115	109.86.213.5	94.6.146.134	106.52.106.6
106.52.17.2	106.51.98.1	106.51.0.4	87.99.159.145