129.211.55.124

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	SSH bruteforce	2020-04-21 05:16:31

相同子网IP讨论:

IP	类型	评论内容	时间
129.211.55.22	attack	Jul 22 13:28:53 dignus sshd[25452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 Jul 22 13:28:55 dignus sshd[25452]: Failed password for invalid user nelson from 129.211.55.22 port 55362 ssh2 Jul 22 13:35:36 dignus sshd[26351]: Invalid user sshvpn from 129.211.55.22 port 43584 Jul 22 13:35:36 dignus sshd[26351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 Jul 22 13:35:38 dignus sshd[26351]: Failed password for invalid user sshvpn from 129.211.55.22 port 43584 ssh2 ...	2020-07-23 04:49:58
129.211.55.22	attackspambots	Jul 20 05:50:04 h2779839 sshd[11125]: Invalid user admin from 129.211.55.22 port 45274 Jul 20 05:50:04 h2779839 sshd[11125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 Jul 20 05:50:04 h2779839 sshd[11125]: Invalid user admin from 129.211.55.22 port 45274 Jul 20 05:50:07 h2779839 sshd[11125]: Failed password for invalid user admin from 129.211.55.22 port 45274 ssh2 Jul 20 05:53:53 h2779839 sshd[12679]: Invalid user zxx from 129.211.55.22 port 56264 Jul 20 05:53:53 h2779839 sshd[12679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 Jul 20 05:53:53 h2779839 sshd[12679]: Invalid user zxx from 129.211.55.22 port 56264 Jul 20 05:53:55 h2779839 sshd[12679]: Failed password for invalid user zxx from 129.211.55.22 port 56264 ssh2 Jul 20 05:55:08 h2779839 sshd[12828]: Invalid user dekait from 129.211.55.22 port 41328 ...	2020-07-20 14:25:58
129.211.55.22	attack	SSH brute force	2020-07-08 09:37:40
129.211.55.22	attack	2020-06-24T03:25:07.571936billing sshd[7465]: Failed password for invalid user cacti from 129.211.55.22 port 59016 ssh2 2020-06-24T03:32:50.749825billing sshd[24598]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 user=root 2020-06-24T03:32:52.295782billing sshd[24598]: Failed password for root from 129.211.55.22 port 57948 ssh2 ...	2020-06-24 06:48:19
129.211.55.6	attackspambots	Jun 17 18:29:39 srv sshd[22374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6	2020-06-18 00:32:54
129.211.55.22	attack	Jun 13 06:24:00 dignus sshd[11402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 user=root Jun 13 06:24:02 dignus sshd[11402]: Failed password for root from 129.211.55.22 port 37314 ssh2 Jun 13 06:29:07 dignus sshd[11852]: Invalid user ts3bot1 from 129.211.55.22 port 34474 Jun 13 06:29:07 dignus sshd[11852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 Jun 13 06:29:09 dignus sshd[11852]: Failed password for invalid user ts3bot1 from 129.211.55.22 port 34474 ssh2 ...	2020-06-13 21:33:24
129.211.55.6	attack	Jun 9 13:26:35 localhost sshd[53949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 user=root Jun 9 13:26:37 localhost sshd[53949]: Failed password for root from 129.211.55.6 port 54728 ssh2 Jun 9 13:32:01 localhost sshd[54430]: Invalid user mjkang from 129.211.55.6 port 57610 Jun 9 13:32:01 localhost sshd[54430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 Jun 9 13:32:01 localhost sshd[54430]: Invalid user mjkang from 129.211.55.6 port 57610 Jun 9 13:32:03 localhost sshd[54430]: Failed password for invalid user mjkang from 129.211.55.6 port 57610 ssh2 ...	2020-06-09 21:52:49
129.211.55.22	attackbots	Jun 9 19:10:30 itv-usvr-01 sshd[485]: Invalid user ekologia from 129.211.55.22 Jun 9 19:10:30 itv-usvr-01 sshd[485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 Jun 9 19:10:30 itv-usvr-01 sshd[485]: Invalid user ekologia from 129.211.55.22 Jun 9 19:10:32 itv-usvr-01 sshd[485]: Failed password for invalid user ekologia from 129.211.55.22 port 41942 ssh2 Jun 9 19:17:30 itv-usvr-01 sshd[813]: Invalid user cuisine from 129.211.55.22	2020-06-09 21:06:43
129.211.55.22	attackspam	$f2bV_matches	2020-06-04 02:13:43
129.211.55.6	attack	Invalid user mv from 129.211.55.6 port 39540	2020-05-30 12:23:08
129.211.55.22	attackspambots	May 28 14:42:13 vps sshd[1027481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 user=root May 28 14:42:16 vps sshd[1027481]: Failed password for root from 129.211.55.22 port 39276 ssh2 May 28 14:48:09 vps sshd[4279]: Invalid user qwert from 129.211.55.22 port 45696 May 28 14:48:09 vps sshd[4279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 May 28 14:48:11 vps sshd[4279]: Failed password for invalid user qwert from 129.211.55.22 port 45696 ssh2 ...	2020-05-29 00:14:17
129.211.55.6	attack	May 26 17:51:27 icinga sshd[28795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 May 26 17:51:30 icinga sshd[28795]: Failed password for invalid user hadoop from 129.211.55.6 port 60594 ssh2 May 26 18:04:04 icinga sshd[48560]: Failed password for root from 129.211.55.6 port 38580 ssh2 ...	2020-05-27 00:56:55
129.211.55.22	attackbots	May 25 06:07:17 vps sshd[753365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 May 25 06:07:19 vps sshd[753365]: Failed password for invalid user webadmin from 129.211.55.22 port 60366 ssh2 May 25 06:12:52 vps sshd[781210]: Invalid user william from 129.211.55.22 port 37204 May 25 06:12:52 vps sshd[781210]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 May 25 06:12:54 vps sshd[781210]: Failed password for invalid user william from 129.211.55.22 port 37204 ssh2 ...	2020-05-25 16:13:12
129.211.55.6	attackbots	May 25 06:14:36 web1 sshd[16964]: Invalid user neriishi from 129.211.55.6 port 60360 May 25 06:14:36 web1 sshd[16964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 May 25 06:14:36 web1 sshd[16964]: Invalid user neriishi from 129.211.55.6 port 60360 May 25 06:14:38 web1 sshd[16964]: Failed password for invalid user neriishi from 129.211.55.6 port 60360 ssh2 May 25 06:26:20 web1 sshd[20156]: Invalid user usuario from 129.211.55.6 port 55972 May 25 06:26:20 web1 sshd[20156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 May 25 06:26:20 web1 sshd[20156]: Invalid user usuario from 129.211.55.6 port 55972 May 25 06:26:22 web1 sshd[20156]: Failed password for invalid user usuario from 129.211.55.6 port 55972 ssh2 May 25 06:31:59 web1 sshd[21554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 user=root May 25 06:32:01 web1 sshd[2 ...	2020-05-25 04:54:04
129.211.55.22	attackbots	Invalid user bpp from 129.211.55.22 port 41414	2020-05-24 06:43:24

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.211.55.124
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23351
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.211.55.124.			IN	A

;; AUTHORITY SECTION:
.			524	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042001 1800 900 604800 86400

;; Query time: 137 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 21 05:16:27 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 124.55.211.129.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 124.55.211.129.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
121.69.135.162	attack	$f2bV_matches	2020-03-09 20:00:53
188.166.150.17	attackbotsspam	Brute-force attempt banned	2020-03-09 19:59:49
171.229.0.46	attackspam	Port probing on unauthorized port 9530	2020-03-09 20:17:17
167.56.140.237	attackspambots	Scan detected and blocked 2020.03.09 13:31:47	2020-03-09 20:42:56
104.236.142.200	attackspam	Mar 9 11:45:52 *** sshd[976]: User root from 104.236.142.200 not allowed because not listed in AllowUsers	2020-03-09 20:01:14
104.244.76.189	attackbots	Mar 9 05:33:58 UTC__SANYALnet-Labs__lste sshd[27744]: Connection from 104.244.76.189 port 36598 on 192.168.1.10 port 22 Mar 9 05:33:59 UTC__SANYALnet-Labs__lste sshd[27744]: Invalid user admin from 104.244.76.189 port 36598 Mar 9 05:33:59 UTC__SANYALnet-Labs__lste sshd[27744]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.244.76.189 Mar 9 05:34:02 UTC__SANYALnet-Labs__lste sshd[27744]: Failed password for invalid user admin from 104.244.76.189 port 36598 ssh2 Mar 9 05:34:02 UTC__SANYALnet-Labs__lste sshd[27744]: Connection closed by 104.244.76.189 port 36598 [preauth] Mar 9 05:34:48 UTC__SANYALnet-Labs__lste sshd[27906]: Connection from 104.244.76.189 port 56474 on 192.168.1.10 port 22 Mar 9 05:34:49 UTC__SANYALnet-Labs__lste sshd[27906]: Invalid user openelec from 104.244.76.189 port 56474 Mar 9 05:34:49 UTC__SANYALnet-Labs__lste sshd[27906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh........ -------------------------------	2020-03-09 20:25:09
208.117.222.117	attackbots	DATE:2020-03-09 04:41:19, IP:208.117.222.117, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-03-09 20:02:15
125.161.106.13	attackbots	Unauthorized connection attempt from IP address 125.161.106.13 on Port 445(SMB)	2020-03-09 20:40:23
121.101.134.181	attack	Honeypot attack, port: 445, PTR: ip-181.134.101.terabit.net.id.	2020-03-09 20:32:13
171.240.24.173	attack	Honeypot attack, port: 445, PTR: dynamic-ip-adsl.viettel.vn.	2020-03-09 20:22:33
106.111.94.49	attackbots	Automatic report - Port Scan Attack	2020-03-09 20:08:09
196.1.240.122	attackspambots	20/3/9@00:32:29: FAIL: Alarm-Network address from=196.1.240.122 ...	2020-03-09 20:30:18
18.184.61.164	attack	Automatic report - XMLRPC Attack	2020-03-09 20:11:20
125.162.85.115	attack	Unauthorised access (Mar 9) SRC=125.162.85.115 LEN=52 TTL=118 ID=179 DF TCP DPT=445 WINDOW=8192 SYN	2020-03-09 20:03:15
218.92.0.148	attack	Mar 9 13:11:20 v22018076622670303 sshd\[19227\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.148 user=root Mar 9 13:11:22 v22018076622670303 sshd\[19227\]: Failed password for root from 218.92.0.148 port 2404 ssh2 Mar 9 13:11:26 v22018076622670303 sshd\[19227\]: Failed password for root from 218.92.0.148 port 2404 ssh2 ...	2020-03-09 20:13:31

最近上报的IP列表

110.246.176.36	181.16.175.205	90.70.83.201	118.27.15.50
119.93.174.32	77.100.111.24	91.83.100.185	218.41.31.79
79.35.81.65	221.3.106.121	24.231.171.98	44.252.183.227
104.246.4.6	200.128.126.75	92.90.32.95	223.63.62.154
90.183.94.210	35.173.226.9	81.65.160.168	154.146.248.30