129.56.2.44 - IPInfo

基本信息:

城市(city): Lekki

省份(region): Lagos

国家(country): Nigeria

运营商(isp): Natcom Development and Investment Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Mobile ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-05-21 06:02:49

相同子网IP讨论:

IP	类型	时间
129.56.23.25	attack	2020-09-28 04:45:03
129.56.23.25	attackbots	2020-09-27 21:03:04
129.56.23.25	attackbots	2020-09-27 12:43:02

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.56.2.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18534
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.56.2.44.			IN	A

;; AUTHORITY SECTION:
.			508	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052001 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 21 06:02:44 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 44.2.56.129.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 44.2.56.129.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
49.88.112.117	attackbotsspam	May 25 09:23:10 vps sshd[613467]: Failed password for root from 49.88.112.117 port 24494 ssh2 May 25 09:23:12 vps sshd[613467]: Failed password for root from 49.88.112.117 port 24494 ssh2 May 25 09:23:14 vps sshd[613467]: Failed password for root from 49.88.112.117 port 24494 ssh2 May 25 09:24:10 vps sshd[617494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.117 user=root May 25 09:24:13 vps sshd[617494]: Failed password for root from 49.88.112.117 port 46951 ssh2 ...	2020-05-25 15:42:08
92.207.180.50	attackspambots	...	2020-05-25 16:15:04
222.186.31.83	attackbots	May 25 03:56:31 plusreed sshd[28695]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.83 user=root May 25 03:56:34 plusreed sshd[28695]: Failed password for root from 222.186.31.83 port 54331 ssh2 ...	2020-05-25 16:01:02
162.243.137.229	attack	srv02 Mass scanning activity detected Target: 18245 ..	2020-05-25 16:04:52
211.253.24.102	attackspambots	May 25 14:50:48 itv-usvr-01 sshd[31259]: Invalid user cape from 211.253.24.102 May 25 14:50:48 itv-usvr-01 sshd[31259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.253.24.102 May 25 14:50:48 itv-usvr-01 sshd[31259]: Invalid user cape from 211.253.24.102 May 25 14:50:50 itv-usvr-01 sshd[31259]: Failed password for invalid user cape from 211.253.24.102 port 56616 ssh2	2020-05-25 16:15:47
103.140.229.40	attackspam	20/5/25@00:12:15: FAIL: Alarm-Network address from=103.140.229.40 ...	2020-05-25 15:33:41
106.13.175.211	attack	May 24 21:35:31 web1 sshd\[6648\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.175.211 user=root May 24 21:35:33 web1 sshd\[6648\]: Failed password for root from 106.13.175.211 port 60846 ssh2 May 24 21:38:22 web1 sshd\[6968\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.175.211 user=root May 24 21:38:24 web1 sshd\[6968\]: Failed password for root from 106.13.175.211 port 56960 ssh2 May 24 21:41:01 web1 sshd\[7288\]: Invalid user test from 106.13.175.211 May 24 21:41:01 web1 sshd\[7288\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.175.211	2020-05-25 16:09:23
106.12.192.201	attack	May 25 09:43:24 sip sshd[398860]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.192.201 May 25 09:43:24 sip sshd[398860]: Invalid user uftp from 106.12.192.201 port 41956 May 25 09:43:26 sip sshd[398860]: Failed password for invalid user uftp from 106.12.192.201 port 41956 ssh2 ...	2020-05-25 15:57:36
74.82.47.51	attackspam	8443/tcp 5555/tcp 5900/tcp... [2020-03-27/05-24]42pkt,13pt.(tcp),2pt.(udp)	2020-05-25 15:51:28
122.51.62.212	attackbotsspam	Failed password for invalid user vedrine from 122.51.62.212 port 57322 ssh2	2020-05-25 15:33:08
111.252.224.165	attackbots	TCP (SYN) 111.252.224.165:63373 -> port 23, len 44	2020-05-25 15:47:19
87.251.74.213	attack	May 25 10:01:16 debian-2gb-nbg1-2 kernel: \[12652480.947955\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=87.251.74.213 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=58183 PROTO=TCP SPT=40571 DPT=4896 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-25 16:08:17
157.230.253.85	attackspam	SSH brute force attempt	2020-05-25 15:51:50
93.123.16.126	attackbots	May 24 19:48:25 eddieflores sshd\[22186\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.123.16.126 user=root May 24 19:48:27 eddieflores sshd\[22186\]: Failed password for root from 93.123.16.126 port 36230 ssh2 May 24 19:51:28 eddieflores sshd\[22448\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.123.16.126 user=root May 24 19:51:30 eddieflores sshd\[22448\]: Failed password for root from 93.123.16.126 port 55502 ssh2 May 24 19:54:27 eddieflores sshd\[22670\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.123.16.126 user=root	2020-05-25 16:00:19
195.24.207.199	attackbotsspam	Brute force attempt	2020-05-25 15:38:20

最近上报的IP列表

172.255.224.61	151.5.138.252	121.41.88.110	128.118.147.138
79.173.163.184	58.6.6.76	179.204.155.248	94.15.67.133
113.190.40.34	86.250.181.106	180.104.59.86	69.209.5.185
165.123.10.237	196.196.10.248	5.76.63.8	83.25.119.205
77.73.160.84	59.78.42.6	113.187.101.154	5.254.113.223