129.56.2.44 - IPInfo

基本信息:

城市(city): Lekki

省份(region): Lagos

国家(country): Nigeria

运营商(isp): Natcom Development and Investment Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Mobile ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-05-21 06:02:49

相同子网IP讨论:

IP	类型	时间
129.56.23.25	attack	2020-09-28 04:45:03
129.56.23.25	attackbots	2020-09-27 21:03:04
129.56.23.25	attackbots	2020-09-27 12:43:02

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.56.2.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18534
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.56.2.44.			IN	A

;; AUTHORITY SECTION:
.			508	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052001 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 21 06:02:44 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 44.2.56.129.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 44.2.56.129.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
49.88.112.113	attackspambots	Feb 6 10:55:49 plusreed sshd[10556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Feb 6 10:55:51 plusreed sshd[10556]: Failed password for root from 49.88.112.113 port 21170 ssh2 ...	2020-02-07 00:06:06
182.184.74.181	attackbots	Port 23 (Telnet) access denied	2020-02-07 00:14:28
201.54.248.38	attackspam	20/2/6@08:44:48: FAIL: Alarm-Network address from=201.54.248.38 20/2/6@08:44:48: FAIL: Alarm-Network address from=201.54.248.38 ...	2020-02-07 00:06:52
51.38.48.242	attack	2020-02-06T15:26:54.886073abusebot-4.cloudsearch.cf sshd[23748]: Invalid user zvv from 51.38.48.242 port 40700 2020-02-06T15:26:54.893302abusebot-4.cloudsearch.cf sshd[23748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=242.ip-51-38-48.eu 2020-02-06T15:26:54.886073abusebot-4.cloudsearch.cf sshd[23748]: Invalid user zvv from 51.38.48.242 port 40700 2020-02-06T15:26:57.506200abusebot-4.cloudsearch.cf sshd[23748]: Failed password for invalid user zvv from 51.38.48.242 port 40700 ssh2 2020-02-06T15:29:49.827129abusebot-4.cloudsearch.cf sshd[23981]: Invalid user aha from 51.38.48.242 port 41862 2020-02-06T15:29:49.833848abusebot-4.cloudsearch.cf sshd[23981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=242.ip-51-38-48.eu 2020-02-06T15:29:49.827129abusebot-4.cloudsearch.cf sshd[23981]: Invalid user aha from 51.38.48.242 port 41862 2020-02-06T15:29:52.084007abusebot-4.cloudsearch.cf sshd[23981]: Failed pass ...	2020-02-06 23:39:40
139.59.238.14	attackbotsspam	(sshd) Failed SSH login from 139.59.238.14 (SG/Singapore/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 6 15:37:43 ubnt-55d23 sshd[5307]: Invalid user sgt from 139.59.238.14 port 43522 Feb 6 15:37:45 ubnt-55d23 sshd[5307]: Failed password for invalid user sgt from 139.59.238.14 port 43522 ssh2	2020-02-06 23:36:16
51.91.20.174	attackspam	Feb 6 15:00:38 web8 sshd\[6210\]: Invalid user vle from 51.91.20.174 Feb 6 15:00:38 web8 sshd\[6210\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.20.174 Feb 6 15:00:40 web8 sshd\[6210\]: Failed password for invalid user vle from 51.91.20.174 port 47830 ssh2 Feb 6 15:05:02 web8 sshd\[8437\]: Invalid user hnt from 51.91.20.174 Feb 6 15:05:02 web8 sshd\[8437\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.20.174	2020-02-07 00:06:21
85.114.137.162	attackspambots	invalid user	2020-02-07 00:09:42
187.102.34.88	attackbotsspam	v+ssh-bruteforce	2020-02-07 00:00:47
222.72.137.110	attackspambots	Feb 6 15:20:58 haigwepa sshd[19701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.72.137.110 Feb 6 15:21:00 haigwepa sshd[19701]: Failed password for invalid user aer from 222.72.137.110 port 49968 ssh2 ...	2020-02-07 00:00:18
176.31.244.63	attackbotsspam	Feb 6 12:21:13 vps46666688 sshd[27140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.244.63 Feb 6 12:21:16 vps46666688 sshd[27140]: Failed password for invalid user uvs from 176.31.244.63 port 40607 ssh2 ...	2020-02-06 23:39:59
93.174.93.123	attackbotsspam	Feb 6 15:59:38 debian-2gb-nbg1-2 kernel: \[3260423.151556\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=93.174.93.123 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=17107 PROTO=TCP SPT=42932 DPT=4412 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-06 23:41:21
128.199.142.138	attack	Feb 6 16:53:11 mout sshd[9890]: Invalid user euj from 128.199.142.138 port 40118	2020-02-07 00:05:03
130.185.74.183	attack	02/06/2020-14:45:12.595925 130.185.74.183 Protocol: 6 ET POLICY Cleartext WordPress Login	2020-02-06 23:38:25
1.34.107.92	attack	Feb 6 15:43:25 hcbbdb sshd\[29491\]: Invalid user nto from 1.34.107.92 Feb 6 15:43:25 hcbbdb sshd\[29491\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1-34-107-92.hinet-ip.hinet.net Feb 6 15:43:26 hcbbdb sshd\[29491\]: Failed password for invalid user nto from 1.34.107.92 port 41231 ssh2 Feb 6 15:47:18 hcbbdb sshd\[29902\]: Invalid user rrg from 1.34.107.92 Feb 6 15:47:18 hcbbdb sshd\[29902\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1-34-107-92.hinet-ip.hinet.net	2020-02-07 00:12:26
202.65.144.46	attack	SSH bruteforce (Triggered fail2ban)	2020-02-06 23:59:33

最近上报的IP列表

172.255.224.61	151.5.138.252	121.41.88.110	128.118.147.138
79.173.163.184	58.6.6.76	179.204.155.248	94.15.67.133
113.190.40.34	86.250.181.106	180.104.59.86	69.209.5.185
165.123.10.237	196.196.10.248	5.76.63.8	83.25.119.205
77.73.160.84	59.78.42.6	113.187.101.154	5.254.113.223