129.211.13.164

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Jan 9 17:48:02 ourumov-web sshd\[18021\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.13.164 user=root Jan 9 17:48:04 ourumov-web sshd\[18021\]: Failed password for root from 129.211.13.164 port 39838 ssh2 Jan 9 17:56:50 ourumov-web sshd\[18562\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.13.164 user=root ...	2020-01-10 02:49:14
attack	Dec 3 22:17:14 yesfletchmain sshd\[6393\]: Invalid user oa from 129.211.13.164 port 38040 Dec 3 22:17:14 yesfletchmain sshd\[6393\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.13.164 Dec 3 22:17:17 yesfletchmain sshd\[6393\]: Failed password for invalid user oa from 129.211.13.164 port 38040 ssh2 Dec 3 22:26:20 yesfletchmain sshd\[6576\]: Invalid user aDmin from 129.211.13.164 port 51954 Dec 3 22:26:20 yesfletchmain sshd\[6576\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.13.164 ...	2019-12-24 02:10:48
attackspambots	Dec 7 10:50:38 ns382633 sshd\[10273\]: Invalid user rico from 129.211.13.164 port 34702 Dec 7 10:50:38 ns382633 sshd\[10273\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.13.164 Dec 7 10:50:40 ns382633 sshd\[10273\]: Failed password for invalid user rico from 129.211.13.164 port 34702 ssh2 Dec 7 11:00:24 ns382633 sshd\[12058\]: Invalid user operator from 129.211.13.164 port 52902 Dec 7 11:00:24 ns382633 sshd\[12058\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.13.164	2019-12-07 22:14:17
attackbotsspam	Dec 2 19:46:35 areeb-Workstation sshd[7570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.13.164 Dec 2 19:46:37 areeb-Workstation sshd[7570]: Failed password for invalid user vmaloba from 129.211.13.164 port 41172 ssh2 ...	2019-12-02 23:18:49
attackbotsspam	Dec 1 18:52:20 kapalua sshd\[10890\]: Invalid user bobo from 129.211.13.164 Dec 1 18:52:20 kapalua sshd\[10890\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.13.164 Dec 1 18:52:22 kapalua sshd\[10890\]: Failed password for invalid user bobo from 129.211.13.164 port 47598 ssh2 Dec 1 18:58:54 kapalua sshd\[11597\]: Invalid user admin from 129.211.13.164 Dec 1 18:58:54 kapalua sshd\[11597\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.13.164	2019-12-02 13:16:54
attack	Nov 29 20:39:06 web9 sshd\[31991\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.13.164 user=root Nov 29 20:39:09 web9 sshd\[31991\]: Failed password for root from 129.211.13.164 port 51644 ssh2 Nov 29 20:43:14 web9 sshd\[32626\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.13.164 user=root Nov 29 20:43:16 web9 sshd\[32626\]: Failed password for root from 129.211.13.164 port 58480 ssh2 Nov 29 20:47:15 web9 sshd\[705\]: Invalid user valencia from 129.211.13.164	2019-11-30 16:59:52
attackbotsspam	Nov 26 21:06:04 vibhu-HP-Z238-Microtower-Workstation sshd\[6138\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.13.164 user=root Nov 26 21:06:05 vibhu-HP-Z238-Microtower-Workstation sshd\[6138\]: Failed password for root from 129.211.13.164 port 34466 ssh2 Nov 26 21:10:30 vibhu-HP-Z238-Microtower-Workstation sshd\[6384\]: Invalid user harshman from 129.211.13.164 Nov 26 21:10:30 vibhu-HP-Z238-Microtower-Workstation sshd\[6384\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.13.164 Nov 26 21:10:32 vibhu-HP-Z238-Microtower-Workstation sshd\[6384\]: Failed password for invalid user harshman from 129.211.13.164 port 41270 ssh2 ...	2019-11-26 23:53:11
attack	Nov 25 12:41:14 server sshd\[31429\]: Invalid user guest from 129.211.13.164 Nov 25 12:41:14 server sshd\[31429\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.13.164 Nov 25 12:41:16 server sshd\[31429\]: Failed password for invalid user guest from 129.211.13.164 port 43990 ssh2 Nov 25 12:51:07 server sshd\[1631\]: Invalid user Fabfac from 129.211.13.164 Nov 25 12:51:07 server sshd\[1631\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.13.164 ...	2019-11-25 21:12:18
attack	Nov 24 23:59:10 MK-Soft-VM3 sshd[25561]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.13.164 Nov 24 23:59:12 MK-Soft-VM3 sshd[25561]: Failed password for invalid user crissy from 129.211.13.164 port 33610 ssh2 ...	2019-11-25 07:16:36
attack	Nov 22 19:07:22 eddieflores sshd\[27955\]: Invalid user kakegawa from 129.211.13.164 Nov 22 19:07:22 eddieflores sshd\[27955\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.13.164 Nov 22 19:07:24 eddieflores sshd\[27955\]: Failed password for invalid user kakegawa from 129.211.13.164 port 34240 ssh2 Nov 22 19:11:37 eddieflores sshd\[28341\]: Invalid user xe@123 from 129.211.13.164 Nov 22 19:11:37 eddieflores sshd\[28341\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.13.164	2019-11-23 13:49:00
attack	$f2bV_matches	2019-11-17 08:51:01

相同子网IP讨论:

IP	类型	评论内容	时间
129.211.135.174	attack	(sshd) Failed SSH login from 129.211.135.174 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 10 15:38:20 server sshd[29357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.135.174 user=root Oct 10 15:38:22 server sshd[29357]: Failed password for root from 129.211.135.174 port 57508 ssh2 Oct 10 15:42:19 server sshd[30441]: Invalid user deploy from 129.211.135.174 port 41348 Oct 10 15:42:20 server sshd[30441]: Failed password for invalid user deploy from 129.211.135.174 port 41348 ssh2 Oct 10 15:45:30 server sshd[31296]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.135.174 user=root	2020-10-11 05:24:05
129.211.135.174	attack	2020-10-10T15:16:47.527664vps773228.ovh.net sshd[16921]: Failed password for root from 129.211.135.174 port 53510 ssh2 2020-10-10T15:21:05.350682vps773228.ovh.net sshd[16959]: Invalid user samba from 129.211.135.174 port 41208 2020-10-10T15:21:05.374048vps773228.ovh.net sshd[16959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.135.174 2020-10-10T15:21:05.350682vps773228.ovh.net sshd[16959]: Invalid user samba from 129.211.135.174 port 41208 2020-10-10T15:21:07.405420vps773228.ovh.net sshd[16959]: Failed password for invalid user samba from 129.211.135.174 port 41208 ssh2 ...	2020-10-10 21:29:00
129.211.135.174	attack	Sep 28 01:45:56 serwer sshd\[26060\]: Invalid user teste from 129.211.135.174 port 46182 Sep 28 01:45:56 serwer sshd\[26060\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.135.174 Sep 28 01:45:58 serwer sshd\[26060\]: Failed password for invalid user teste from 129.211.135.174 port 46182 ssh2 Sep 28 01:53:51 serwer sshd\[26746\]: Invalid user joan from 129.211.135.174 port 44994 Sep 28 01:53:51 serwer sshd\[26746\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.135.174 Sep 28 01:53:54 serwer sshd\[26746\]: Failed password for invalid user joan from 129.211.135.174 port 44994 ssh2 Sep 28 01:56:58 serwer sshd\[27024\]: Invalid user ubuntu from 129.211.135.174 port 47642 Sep 28 01:56:58 serwer sshd\[27024\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.135.174 Sep 28 01:57:00 serwer sshd\[27024\]: Failed password for invalid user ...	2020-09-29 05:45:09
129.211.135.174	attackspambots	Time: Sat Sep 26 19:54:12 2020 +0000 IP: 129.211.135.174 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 26 19:38:58 activeserver sshd[7895]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.135.174 user=postgres Sep 26 19:38:59 activeserver sshd[7895]: Failed password for postgres from 129.211.135.174 port 41140 ssh2 Sep 26 19:51:22 activeserver sshd[6978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.135.174 user=root Sep 26 19:51:24 activeserver sshd[6978]: Failed password for root from 129.211.135.174 port 60192 ssh2 Sep 26 19:54:06 activeserver sshd[13500]: Invalid user wetserver from 129.211.135.174 port 43974	2020-09-28 22:08:39
129.211.135.174	attackspambots	$f2bV_matches	2020-09-28 14:14:44
129.211.138.177	attackspam	(sshd) Failed SSH login from 129.211.138.177 (CN/China/-): 5 in the last 3600 secs	2020-09-02 21:11:25
129.211.138.177	attackbots	Invalid user xavier from 129.211.138.177 port 53326	2020-09-02 13:05:57
129.211.138.177	attackspam	Jul 26 12:12:44 server sshd[26217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.138.177 Jul 26 12:12:45 server sshd[26217]: Failed password for invalid user zav from 129.211.138.177 port 60348 ssh2 Jul 26 12:27:55 server sshd[26829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.138.177 Jul 26 12:27:56 server sshd[26829]: Failed password for invalid user jethro from 129.211.138.177 port 57922 ssh2	2020-09-02 06:08:28
129.211.138.177	attack	Sep 1 14:35:02 ns381471 sshd[31430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.138.177 Sep 1 14:35:04 ns381471 sshd[31430]: Failed password for invalid user toni from 129.211.138.177 port 45724 ssh2	2020-09-01 20:49:37
129.211.130.66	attackbotsspam	4281/tcp [2020-08-30]1pkt	2020-08-31 05:16:47
129.211.130.66	attackspam	Aug 30 18:23:35 h1745522 sshd[25122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.130.66 user=root Aug 30 18:23:37 h1745522 sshd[25122]: Failed password for root from 129.211.130.66 port 37580 ssh2 Aug 30 18:27:48 h1745522 sshd[25710]: Invalid user admin from 129.211.130.66 port 32976 Aug 30 18:27:48 h1745522 sshd[25710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.130.66 Aug 30 18:27:48 h1745522 sshd[25710]: Invalid user admin from 129.211.130.66 port 32976 Aug 30 18:27:50 h1745522 sshd[25710]: Failed password for invalid user admin from 129.211.130.66 port 32976 ssh2 Aug 30 18:33:27 h1745522 sshd[26542]: Invalid user santi from 129.211.130.66 port 56604 Aug 30 18:33:27 h1745522 sshd[26542]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.130.66 Aug 30 18:33:27 h1745522 sshd[26542]: Invalid user santi from 129.211.130.66 port 56604 Au ...	2020-08-31 04:15:01
129.211.13.226	attack	Aug 30 16:16:26 marvibiene sshd[925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.13.226 Aug 30 16:16:28 marvibiene sshd[925]: Failed password for invalid user nbi from 129.211.13.226 port 42316 ssh2 Aug 30 16:22:21 marvibiene sshd[1389]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.13.226	2020-08-31 00:50:50
129.211.138.177	attackbots	Invalid user plo from 129.211.138.177 port 48452	2020-08-29 07:23:38
129.211.13.226	attackbotsspam	2020-08-17T20:16:16.067164ionos.janbro.de sshd[33401]: Invalid user postgres from 129.211.13.226 port 58478 2020-08-17T20:16:20.093403ionos.janbro.de sshd[33401]: Failed password for invalid user postgres from 129.211.13.226 port 58478 ssh2 2020-08-17T20:22:11.322846ionos.janbro.de sshd[33418]: Invalid user vnc from 129.211.13.226 port 39318 2020-08-17T20:22:11.507259ionos.janbro.de sshd[33418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.13.226 2020-08-17T20:22:11.322846ionos.janbro.de sshd[33418]: Invalid user vnc from 129.211.13.226 port 39318 2020-08-17T20:22:13.501691ionos.janbro.de sshd[33418]: Failed password for invalid user vnc from 129.211.13.226 port 39318 ssh2 2020-08-17T20:28:16.480516ionos.janbro.de sshd[33431]: Invalid user tp from 129.211.13.226 port 48392 2020-08-17T20:28:16.632210ionos.janbro.de sshd[33431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.13.226 2020-08 ...	2020-08-18 04:57:43
129.211.13.226	attackbots	Aug 17 16:41:16 localhost sshd[4080048]: Invalid user angel from 129.211.13.226 port 47130 ...	2020-08-17 16:37:08

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.211.13.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10039
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.211.13.164.			IN	A

;; AUTHORITY SECTION:
.			442	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111601 1800 900 604800 86400

;; Query time: 179 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Nov 17 08:50:56 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 164.13.211.129.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 164.13.211.129.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
217.112.142.123	attackbotsspam	Email Spam	2020-03-23 08:48:29
163.44.154.239	attackbotsspam	Mar 23 00:45:20 s1 sshd\[23022\]: Invalid user gu from 163.44.154.239 port 2755 Mar 23 00:45:20 s1 sshd\[23022\]: Failed password for invalid user gu from 163.44.154.239 port 2755 ssh2 Mar 23 00:47:54 s1 sshd\[23106\]: Invalid user iw from 163.44.154.239 port 40809 Mar 23 00:47:54 s1 sshd\[23106\]: Failed password for invalid user iw from 163.44.154.239 port 40809 ssh2 Mar 23 00:48:57 s1 sshd\[23144\]: Invalid user gmy from 163.44.154.239 port 58699 Mar 23 00:48:57 s1 sshd\[23144\]: Failed password for invalid user gmy from 163.44.154.239 port 58699 ssh2 ...	2020-03-23 08:43:29
220.178.75.153	attack	fail2ban	2020-03-23 08:13:23
217.112.142.50	attackbotsspam	Email Spam	2020-03-23 08:52:16
220.132.4.198	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-23 08:19:46
217.61.109.80	attackspam	Mar 23 01:01:54 markkoudstaal sshd[1792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.109.80 Mar 23 01:01:56 markkoudstaal sshd[1792]: Failed password for invalid user ql from 217.61.109.80 port 57884 ssh2 Mar 23 01:06:54 markkoudstaal sshd[2475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.109.80	2020-03-23 08:20:17
24.142.36.105	attack	Mar 23 05:02:56 gw1 sshd[1616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.142.36.105 Mar 23 05:02:58 gw1 sshd[1616]: Failed password for invalid user wes from 24.142.36.105 port 49126 ssh2 ...	2020-03-23 08:15:17
111.161.35.146	attackspam	ICMP MH Probe, Scan /Distributed -	2020-03-23 08:43:56
101.255.65.138	attackspam	DATE:2020-03-23 01:05:28, IP:101.255.65.138, PORT:ssh SSH brute force auth (docker-dc)	2020-03-23 08:17:32
200.56.44.192	attackbots	Mar 22 20:16:56 NPSTNNYC01T sshd[6140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.56.44.192 Mar 22 20:16:58 NPSTNNYC01T sshd[6140]: Failed password for invalid user admin from 200.56.44.192 port 51864 ssh2 Mar 22 20:20:51 NPSTNNYC01T sshd[6318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.56.44.192 ...	2020-03-23 08:39:01
86.182.224.87	attackbots	Automatic report - Port Scan Attack	2020-03-23 08:42:31
217.112.142.16	attackbots	Email Spam	2020-03-23 08:53:44
185.255.96.99	attackspambots	B: Abusive content scan (301)	2020-03-23 08:16:31
217.112.142.113	attackspambots	Email Spam	2020-03-23 08:50:18
96.78.175.36	attack	Mar 22 20:13:37 reverseproxy sshd[104151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.78.175.36 Mar 22 20:13:39 reverseproxy sshd[104151]: Failed password for invalid user red from 96.78.175.36 port 57120 ssh2	2020-03-23 08:31:06

最近上报的IP列表

111.67.57.199	62.210.10.244	106.59.13.18	45.91.151.21
122.114.9.6	103.207.170.53	190.216.102.57	81.171.107.159
54.36.205.38	187.59.203.226	60.147.25.59	212.47.237.121
167.179.95.41	103.134.133.50	46.102.0.111	48.103.47.71
101.255.81.91	187.202.189.123	103.68.31.2	27.64.174.41