129.211.55.124

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	SSH bruteforce	2020-04-21 05:16:31

相同子网IP讨论:

IP	类型	评论内容	时间
129.211.55.22	attack	Jul 22 13:28:53 dignus sshd[25452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 Jul 22 13:28:55 dignus sshd[25452]: Failed password for invalid user nelson from 129.211.55.22 port 55362 ssh2 Jul 22 13:35:36 dignus sshd[26351]: Invalid user sshvpn from 129.211.55.22 port 43584 Jul 22 13:35:36 dignus sshd[26351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 Jul 22 13:35:38 dignus sshd[26351]: Failed password for invalid user sshvpn from 129.211.55.22 port 43584 ssh2 ...	2020-07-23 04:49:58
129.211.55.22	attackspambots	Jul 20 05:50:04 h2779839 sshd[11125]: Invalid user admin from 129.211.55.22 port 45274 Jul 20 05:50:04 h2779839 sshd[11125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 Jul 20 05:50:04 h2779839 sshd[11125]: Invalid user admin from 129.211.55.22 port 45274 Jul 20 05:50:07 h2779839 sshd[11125]: Failed password for invalid user admin from 129.211.55.22 port 45274 ssh2 Jul 20 05:53:53 h2779839 sshd[12679]: Invalid user zxx from 129.211.55.22 port 56264 Jul 20 05:53:53 h2779839 sshd[12679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 Jul 20 05:53:53 h2779839 sshd[12679]: Invalid user zxx from 129.211.55.22 port 56264 Jul 20 05:53:55 h2779839 sshd[12679]: Failed password for invalid user zxx from 129.211.55.22 port 56264 ssh2 Jul 20 05:55:08 h2779839 sshd[12828]: Invalid user dekait from 129.211.55.22 port 41328 ...	2020-07-20 14:25:58
129.211.55.22	attack	SSH brute force	2020-07-08 09:37:40
129.211.55.22	attack	2020-06-24T03:25:07.571936billing sshd[7465]: Failed password for invalid user cacti from 129.211.55.22 port 59016 ssh2 2020-06-24T03:32:50.749825billing sshd[24598]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 user=root 2020-06-24T03:32:52.295782billing sshd[24598]: Failed password for root from 129.211.55.22 port 57948 ssh2 ...	2020-06-24 06:48:19
129.211.55.6	attackspambots	Jun 17 18:29:39 srv sshd[22374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6	2020-06-18 00:32:54
129.211.55.22	attack	Jun 13 06:24:00 dignus sshd[11402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 user=root Jun 13 06:24:02 dignus sshd[11402]: Failed password for root from 129.211.55.22 port 37314 ssh2 Jun 13 06:29:07 dignus sshd[11852]: Invalid user ts3bot1 from 129.211.55.22 port 34474 Jun 13 06:29:07 dignus sshd[11852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 Jun 13 06:29:09 dignus sshd[11852]: Failed password for invalid user ts3bot1 from 129.211.55.22 port 34474 ssh2 ...	2020-06-13 21:33:24
129.211.55.6	attack	Jun 9 13:26:35 localhost sshd[53949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 user=root Jun 9 13:26:37 localhost sshd[53949]: Failed password for root from 129.211.55.6 port 54728 ssh2 Jun 9 13:32:01 localhost sshd[54430]: Invalid user mjkang from 129.211.55.6 port 57610 Jun 9 13:32:01 localhost sshd[54430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 Jun 9 13:32:01 localhost sshd[54430]: Invalid user mjkang from 129.211.55.6 port 57610 Jun 9 13:32:03 localhost sshd[54430]: Failed password for invalid user mjkang from 129.211.55.6 port 57610 ssh2 ...	2020-06-09 21:52:49
129.211.55.22	attackbots	Jun 9 19:10:30 itv-usvr-01 sshd[485]: Invalid user ekologia from 129.211.55.22 Jun 9 19:10:30 itv-usvr-01 sshd[485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 Jun 9 19:10:30 itv-usvr-01 sshd[485]: Invalid user ekologia from 129.211.55.22 Jun 9 19:10:32 itv-usvr-01 sshd[485]: Failed password for invalid user ekologia from 129.211.55.22 port 41942 ssh2 Jun 9 19:17:30 itv-usvr-01 sshd[813]: Invalid user cuisine from 129.211.55.22	2020-06-09 21:06:43
129.211.55.22	attackspam	$f2bV_matches	2020-06-04 02:13:43
129.211.55.6	attack	Invalid user mv from 129.211.55.6 port 39540	2020-05-30 12:23:08
129.211.55.22	attackspambots	May 28 14:42:13 vps sshd[1027481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 user=root May 28 14:42:16 vps sshd[1027481]: Failed password for root from 129.211.55.22 port 39276 ssh2 May 28 14:48:09 vps sshd[4279]: Invalid user qwert from 129.211.55.22 port 45696 May 28 14:48:09 vps sshd[4279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 May 28 14:48:11 vps sshd[4279]: Failed password for invalid user qwert from 129.211.55.22 port 45696 ssh2 ...	2020-05-29 00:14:17
129.211.55.6	attack	May 26 17:51:27 icinga sshd[28795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 May 26 17:51:30 icinga sshd[28795]: Failed password for invalid user hadoop from 129.211.55.6 port 60594 ssh2 May 26 18:04:04 icinga sshd[48560]: Failed password for root from 129.211.55.6 port 38580 ssh2 ...	2020-05-27 00:56:55
129.211.55.22	attackbots	May 25 06:07:17 vps sshd[753365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 May 25 06:07:19 vps sshd[753365]: Failed password for invalid user webadmin from 129.211.55.22 port 60366 ssh2 May 25 06:12:52 vps sshd[781210]: Invalid user william from 129.211.55.22 port 37204 May 25 06:12:52 vps sshd[781210]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.22 May 25 06:12:54 vps sshd[781210]: Failed password for invalid user william from 129.211.55.22 port 37204 ssh2 ...	2020-05-25 16:13:12
129.211.55.6	attackbots	May 25 06:14:36 web1 sshd[16964]: Invalid user neriishi from 129.211.55.6 port 60360 May 25 06:14:36 web1 sshd[16964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 May 25 06:14:36 web1 sshd[16964]: Invalid user neriishi from 129.211.55.6 port 60360 May 25 06:14:38 web1 sshd[16964]: Failed password for invalid user neriishi from 129.211.55.6 port 60360 ssh2 May 25 06:26:20 web1 sshd[20156]: Invalid user usuario from 129.211.55.6 port 55972 May 25 06:26:20 web1 sshd[20156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 May 25 06:26:20 web1 sshd[20156]: Invalid user usuario from 129.211.55.6 port 55972 May 25 06:26:22 web1 sshd[20156]: Failed password for invalid user usuario from 129.211.55.6 port 55972 ssh2 May 25 06:31:59 web1 sshd[21554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 user=root May 25 06:32:01 web1 sshd[2 ...	2020-05-25 04:54:04
129.211.55.22	attackbots	Invalid user bpp from 129.211.55.22 port 41414	2020-05-24 06:43:24

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.211.55.124
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23351
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.211.55.124.			IN	A

;; AUTHORITY SECTION:
.			524	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042001 1800 900 604800 86400

;; Query time: 137 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 21 05:16:27 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 124.55.211.129.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 124.55.211.129.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.180.142	attackspam	10.01.2020 21:11:41 SSH access blocked by firewall	2020-01-11 05:26:00
179.126.33.157	attackspambots	Honeypot attack, port: 445, PTR: 179-126-033-157.xd-dynamic.algarnetsuper.com.br.	2020-01-11 05:46:13
5.38.178.133	attackbots	Honeypot attack, port: 81, PTR: 0526B285.dsl.pool.telekom.hu.	2020-01-11 05:13:02
218.241.154.197	attackspambots	Jan 10 22:11:51 debian-2gb-nbg1-2 kernel: \[950020.613060\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=218.241.154.197 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=238 ID=63891 PROTO=TCP SPT=53661 DPT=8080 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-11 05:13:44
108.29.119.112	attackspambots	Honeypot attack, port: 81, PTR: pool-108-29-119-112.nycmny.fios.verizon.net.	2020-01-11 05:25:24
109.110.52.77	attack	Jan 10 21:05:59 web8 sshd\[11692\]: Invalid user postgres from 109.110.52.77 Jan 10 21:05:59 web8 sshd\[11692\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.110.52.77 Jan 10 21:06:01 web8 sshd\[11692\]: Failed password for invalid user postgres from 109.110.52.77 port 52024 ssh2 Jan 10 21:11:29 web8 sshd\[14484\]: Invalid user firebird from 109.110.52.77 Jan 10 21:11:29 web8 sshd\[14484\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.110.52.77	2020-01-11 05:38:22
112.207.103.112	attackspam	1578660642 - 01/10/2020 13:50:42 Host: 112.207.103.112/112.207.103.112 Port: 445 TCP Blocked	2020-01-11 05:08:28
113.253.18.124	attack	Honeypot attack, port: 5555, PTR: 124-18-253-113-on-nets.com.	2020-01-11 05:13:24
192.214.121.37	attackspambots	Honeypot attack, port: 81, PTR: PTR record not found	2020-01-11 05:16:51
122.51.250.92	attack	Jan 10 05:16:48 eddieflores sshd\[26220\]: Invalid user eb from 122.51.250.92 Jan 10 05:16:48 eddieflores sshd\[26220\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.250.92 Jan 10 05:16:49 eddieflores sshd\[26220\]: Failed password for invalid user eb from 122.51.250.92 port 43168 ssh2 Jan 10 05:20:27 eddieflores sshd\[26566\]: Invalid user cn2011 from 122.51.250.92 Jan 10 05:20:27 eddieflores sshd\[26566\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.250.92	2020-01-11 05:11:25
49.88.112.112	attack	Jan 10 22:11:44 cvbnet sshd[7248]: Failed password for root from 49.88.112.112 port 15281 ssh2 Jan 10 22:11:48 cvbnet sshd[7248]: Failed password for root from 49.88.112.112 port 15281 ssh2 ...	2020-01-11 05:17:51
124.207.23.237	attack	unauthorized connection attempt	2020-01-11 05:11:08
118.24.30.97	attackspam	Jan 10 22:03:58 vps58358 sshd\[29602\]: Failed password for root from 118.24.30.97 port 43592 ssh2Jan 10 22:06:25 vps58358 sshd\[29630\]: Invalid user sam from 118.24.30.97Jan 10 22:06:27 vps58358 sshd\[29630\]: Failed password for invalid user sam from 118.24.30.97 port 38536 ssh2Jan 10 22:08:57 vps58358 sshd\[29642\]: Invalid user nagios from 118.24.30.97Jan 10 22:08:59 vps58358 sshd\[29642\]: Failed password for invalid user nagios from 118.24.30.97 port 33476 ssh2Jan 10 22:11:25 vps58358 sshd\[29735\]: Invalid user mpe from 118.24.30.97 ...	2020-01-11 05:42:57
106.54.102.127	attackbots	$f2bV_matches	2020-01-11 05:10:52
24.161.90.163	attackbots	Honeypot attack, port: 81, PTR: cpe-24-161-90-163.hvc.res.rr.com.	2020-01-11 05:27:31

最近上报的IP列表

110.246.176.36	181.16.175.205	90.70.83.201	118.27.15.50
119.93.174.32	77.100.111.24	91.83.100.185	218.41.31.79
79.35.81.65	221.3.106.121	24.231.171.98	44.252.183.227
104.246.4.6	200.128.126.75	92.90.32.95	223.63.62.154
90.183.94.210	35.173.226.9	81.65.160.168	154.146.248.30