129.204.94.8 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	SSH login attempts with user root.	2019-11-30 06:33:57

相同子网IP讨论:

IP	类型	评论内容	时间
129.204.94.158	attack	Aug 11 14:08:29 gospond sshd[7630]: Failed password for root from 129.204.94.158 port 43644 ssh2 Aug 11 14:08:27 gospond sshd[7630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.158 user=root Aug 11 14:08:29 gospond sshd[7630]: Failed password for root from 129.204.94.158 port 43644 ssh2 ...	2020-08-12 01:40:13
129.204.94.158	attackspam	2020-07-30T01:28:42.830955ks3355764 sshd[10746]: Invalid user shangzengqiang from 129.204.94.158 port 58072 2020-07-30T01:28:45.078049ks3355764 sshd[10746]: Failed password for invalid user shangzengqiang from 129.204.94.158 port 58072 ssh2 ...	2020-07-30 07:50:52
129.204.94.79	attackbots	Mar 21 22:57:04 silence02 sshd[25369]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.79 Mar 21 22:57:07 silence02 sshd[25369]: Failed password for invalid user xs from 129.204.94.79 port 54752 ssh2 Mar 21 23:03:06 silence02 sshd[25738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.79	2020-03-22 06:40:36
129.204.94.79	attackspambots	Mar 12 23:28:35 meumeu sshd[10519]: Failed password for root from 129.204.94.79 port 54098 ssh2 Mar 12 23:34:56 meumeu sshd[11602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.79 Mar 12 23:34:59 meumeu sshd[11602]: Failed password for invalid user ackerjapan from 129.204.94.79 port 43376 ssh2 ...	2020-03-13 06:47:48
129.204.94.79	attackbotsspam	Jan 22 15:15:20 ms-srv sshd[24269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.79 Jan 22 15:15:21 ms-srv sshd[24269]: Failed password for invalid user ubuntu from 129.204.94.79 port 58658 ssh2	2020-03-08 20:13:37
129.204.94.79	attackspambots	Jan 19 05:55:18 MK-Soft-VM4 sshd[4052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.79 Jan 19 05:55:20 MK-Soft-VM4 sshd[4052]: Failed password for invalid user gh from 129.204.94.79 port 47054 ssh2 ...	2020-01-19 13:06:49
129.204.94.79	attack	Jan 18 19:36:35 tuxlinux sshd[20591]: Invalid user lfs from 129.204.94.79 port 49992 Jan 18 19:36:35 tuxlinux sshd[20591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.79 Jan 18 19:36:35 tuxlinux sshd[20591]: Invalid user lfs from 129.204.94.79 port 49992 Jan 18 19:36:35 tuxlinux sshd[20591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.79 ...	2020-01-19 04:38:05
129.204.94.79	attack	Jan 16 20:23:47 vps691689 sshd[19407]: Failed password for root from 129.204.94.79 port 46078 ssh2 Jan 16 20:26:30 vps691689 sshd[19502]: Failed password for root from 129.204.94.79 port 43018 ssh2 ...	2020-01-17 04:11:25
129.204.94.81	attackspambots	Jan 9 21:36:03 DAAP sshd[20360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 user=root Jan 9 21:36:05 DAAP sshd[20360]: Failed password for root from 129.204.94.81 port 36665 ssh2 Jan 9 21:42:04 DAAP sshd[20495]: Invalid user test from 129.204.94.81 port 58405 Jan 9 21:42:04 DAAP sshd[20495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 Jan 9 21:42:04 DAAP sshd[20495]: Invalid user test from 129.204.94.81 port 58405 Jan 9 21:42:06 DAAP sshd[20495]: Failed password for invalid user test from 129.204.94.81 port 58405 ssh2 ...	2020-01-10 04:50:10
129.204.94.81	attackbotsspam	Jan 7 15:47:16 legacy sshd[15229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 Jan 7 15:47:17 legacy sshd[15229]: Failed password for invalid user test11 from 129.204.94.81 port 43450 ssh2 Jan 7 15:52:14 legacy sshd[15528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 ...	2020-01-07 23:08:20
129.204.94.79	attackbots	Jan 3 17:41:26 sso sshd[10642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.79 Jan 3 17:41:28 sso sshd[10642]: Failed password for invalid user backups from 129.204.94.79 port 49968 ssh2 ...	2020-01-04 01:45:23
129.204.94.106	attack	Jan 3 10:53:56 localhost sshd\[9420\]: Invalid user yng from 129.204.94.106 port 52486 Jan 3 10:53:56 localhost sshd\[9420\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.106 Jan 3 10:53:58 localhost sshd\[9420\]: Failed password for invalid user yng from 129.204.94.106 port 52486 ssh2	2020-01-03 18:01:06
129.204.94.81	attackbotsspam	Jan 3 05:38:54 raspberrypi sshd\[30112\]: Invalid user applmgr from 129.204.94.81Jan 3 05:38:56 raspberrypi sshd\[30112\]: Failed password for invalid user applmgr from 129.204.94.81 port 56628 ssh2Jan 3 05:59:42 raspberrypi sshd\[30807\]: Invalid user new from 129.204.94.81 ...	2020-01-03 15:51:26
129.204.94.81	attack	Dec 28 04:22:02 vps46666688 sshd[25588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 Dec 28 04:22:04 vps46666688 sshd[25588]: Failed password for invalid user parra from 129.204.94.81 port 38460 ssh2 ...	2019-12-28 21:39:54
129.204.94.81	attackspam	Dec 19 16:14:21 ns3042688 sshd\[23730\]: Invalid user www from 129.204.94.81 Dec 19 16:14:21 ns3042688 sshd\[23730\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 Dec 19 16:14:23 ns3042688 sshd\[23730\]: Failed password for invalid user www from 129.204.94.81 port 44949 ssh2 Dec 19 16:22:16 ns3042688 sshd\[27460\]: Invalid user ident from 129.204.94.81 Dec 19 16:22:16 ns3042688 sshd\[27460\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 ...	2019-12-20 03:04:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.204.94.8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21996
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.204.94.8.			IN	A

;; AUTHORITY SECTION:
.			585	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112901 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 30 06:33:54 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 8.94.204.129.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 8.94.204.129.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
177.244.36.14	attackbotsspam	Performing DDOS attack	2020-08-07 02:51:11
94.102.53.112	attackspam	Aug 6 20:58:26 debian-2gb-nbg1-2 kernel: \[18998761.485965\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=94.102.53.112 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=47650 PROTO=TCP SPT=44873 DPT=12804 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-07 03:12:31
180.76.160.50	attackbotsspam	Aug 6 18:34:07 ovpn sshd\[15685\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.160.50 user=root Aug 6 18:34:09 ovpn sshd\[15685\]: Failed password for root from 180.76.160.50 port 55994 ssh2 Aug 6 18:40:06 ovpn sshd\[20729\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.160.50 user=root Aug 6 18:40:07 ovpn sshd\[20729\]: Failed password for root from 180.76.160.50 port 54044 ssh2 Aug 6 18:43:04 ovpn sshd\[23138\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.160.50 user=root	2020-08-07 02:59:31
197.50.250.124	attack	1596720012 - 08/06/2020 15:20:12 Host: 197.50.250.124/197.50.250.124 Port: 445 TCP Blocked	2020-08-07 03:23:40
23.129.64.216	attack	port scan and connect, tcp 8081 (blackice-icecap)	2020-08-07 02:45:28
184.105.139.125	attackspam	Port scan: Attack repeated for 24 hours	2020-08-07 03:20:24
165.227.191.15	attack	Aug 6 21:09:36 theomazars sshd[26638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.191.15 user=root Aug 6 21:09:38 theomazars sshd[26638]: Failed password for root from 165.227.191.15 port 59498 ssh2	2020-08-07 03:13:27
139.199.30.155	attackspam	Aug 6 16:28:06 vps647732 sshd[11558]: Failed password for root from 139.199.30.155 port 42702 ssh2 ...	2020-08-07 03:04:40
212.83.152.136	attackspam	212.83.152.136 - - [06/Aug/2020:14:51:01 +0100] "POST /wp-login.php HTTP/1.1" 200 1969 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.83.152.136 - - [06/Aug/2020:14:51:02 +0100] "POST /wp-login.php HTTP/1.1" 200 1954 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.83.152.136 - - [06/Aug/2020:14:51:02 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-07 02:53:56
164.132.44.25	attackbots	Aug 6 20:33:39 host sshd[29651]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=25.ip-164-132-44.eu user=root Aug 6 20:33:41 host sshd[29651]: Failed password for root from 164.132.44.25 port 39726 ssh2 ...	2020-08-07 03:07:43
139.219.13.163	attack	2020-08-05T02:45:47.205393hostname sshd[117209]: Failed password for root from 139.219.13.163 port 38614 ssh2 ...	2020-08-07 03:06:35
193.27.228.220	attack	Aug 6 19:40:31 debian-2gb-nbg1-2 kernel: \[18994086.010401\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=193.27.228.220 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=18059 PROTO=TCP SPT=50583 DPT=3450 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-07 03:17:33
106.53.74.246	attackbotsspam	2020-08-06T19:02:35.094083amanda2.illicoweb.com sshd\[16882\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.74.246 user=root 2020-08-06T19:02:37.290283amanda2.illicoweb.com sshd\[16882\]: Failed password for root from 106.53.74.246 port 35148 ssh2 2020-08-06T19:05:27.909159amanda2.illicoweb.com sshd\[17532\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.74.246 user=root 2020-08-06T19:05:29.718851amanda2.illicoweb.com sshd\[17532\]: Failed password for root from 106.53.74.246 port 49158 ssh2 2020-08-06T19:08:20.503860amanda2.illicoweb.com sshd\[18129\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.74.246 user=root ...	2020-08-07 02:57:54
67.207.88.180	attack	Fail2Ban Ban Triggered	2020-08-07 02:55:22
180.76.238.70	attackspambots	2020-08-06T18:38:12.764337amanda2.illicoweb.com sshd\[10053\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.238.70 user=root 2020-08-06T18:38:14.780350amanda2.illicoweb.com sshd\[10053\]: Failed password for root from 180.76.238.70 port 35104 ssh2 2020-08-06T18:41:20.612072amanda2.illicoweb.com sshd\[11206\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.238.70 user=root 2020-08-06T18:41:22.437430amanda2.illicoweb.com sshd\[11206\]: Failed password for root from 180.76.238.70 port 46990 ssh2 2020-08-06T18:44:08.832949amanda2.illicoweb.com sshd\[12009\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.238.70 user=root ...	2020-08-07 02:56:26

最近上报的IP列表

118.24.114.1	117.157.15.2	115.112.143.1	114.118.96.2
114.112.58.1	119.90.3.21	113.200.236.6	111.93.200.5
111.68.104.1	221.232.130.26	111.231.119.1	109.102.158.1
162.135.184.115	109.86.213.5	94.6.146.134	106.52.106.6
106.52.17.2	106.51.98.1	106.51.0.4	87.99.159.145