148.70.129.112

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Invalid user postgresql from 148.70.129.112 port 16018	2020-10-10 23:45:33
attackspam	SSH login attempts.	2020-10-10 15:35:18
attack	[SID2] Fail2ban detected 5 failed SSH login attempts within 30 minutes. This report was submitted automatically.	2020-07-30 07:44:46
attack	Invalid user admin from 148.70.129.112 port 26116	2020-07-15 21:01:47
attackbotsspam	Jun 29 03:54:22 *** sshd[22147]: User root from 148.70.129.112 not allowed because not listed in AllowUsers	2020-06-29 15:23:19
attackbotsspam	Invalid user import from 148.70.129.112 port 47589	2020-06-23 12:33:23
attackspambots	Jun 15 14:10:27 inter-technics sshd[29639]: Invalid user ubuntu from 148.70.129.112 port 57028 Jun 15 14:10:27 inter-technics sshd[29639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.129.112 Jun 15 14:10:27 inter-technics sshd[29639]: Invalid user ubuntu from 148.70.129.112 port 57028 Jun 15 14:10:29 inter-technics sshd[29639]: Failed password for invalid user ubuntu from 148.70.129.112 port 57028 ssh2 Jun 15 14:15:20 inter-technics sshd[29942]: Invalid user ricardo from 148.70.129.112 port 57653 ...	2020-06-16 02:53:35
attackspambots	Jun 11 05:51:24 buvik sshd[29745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.129.112 Jun 11 05:51:25 buvik sshd[29745]: Failed password for invalid user tomcat7 from 148.70.129.112 port 51639 ssh2 Jun 11 05:58:53 buvik sshd[30660]: Invalid user toxic from 148.70.129.112 ...	2020-06-11 12:15:55
attack	May 16 04:38:53 vps647732 sshd[27331]: Failed password for root from 148.70.129.112 port 33758 ssh2 ...	2020-05-16 19:59:32
attack	May 5 15:04:55 gw1 sshd[29020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.129.112 May 5 15:04:57 gw1 sshd[29020]: Failed password for invalid user nagios from 148.70.129.112 port 20002 ssh2 ...	2020-05-05 18:05:11
attack	Apr 27 22:03:07 [host] sshd[5240]: pam_unix(sshd:a Apr 27 22:03:09 [host] sshd[5240]: Failed password Apr 27 22:13:04 [host] sshd[5859]: Invalid user sn	2020-04-28 04:17:47
attack	Invalid user avahi from 148.70.129.112 port 37120	2020-04-25 18:27:24
attackbotsspam	Apr 21 21:50:10 lock-38 sshd[1338341]: Failed password for invalid user jd from 148.70.129.112 port 50676 ssh2 Apr 21 21:50:10 lock-38 sshd[1338341]: Disconnected from invalid user jd 148.70.129.112 port 50676 [preauth] Apr 21 22:01:53 lock-38 sshd[1338636]: Invalid user eq from 148.70.129.112 port 14568 Apr 21 22:01:53 lock-38 sshd[1338636]: Invalid user eq from 148.70.129.112 port 14568 Apr 21 22:01:53 lock-38 sshd[1338636]: Failed password for invalid user eq from 148.70.129.112 port 14568 ssh2 ...	2020-04-22 05:55:56
attack	detected by Fail2Ban	2020-04-11 23:37:07
attackspam	Mar 17 18:36:49 plusreed sshd[20856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.129.112 user=vmail Mar 17 18:36:51 plusreed sshd[20856]: Failed password for vmail from 148.70.129.112 port 48734 ssh2 ...	2020-03-18 07:12:42

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.70.129.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27439
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.70.129.112.			IN	A

;; AUTHORITY SECTION:
.			317	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031702 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 18 07:12:39 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 112.129.70.148.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 112.129.70.148.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
193.104.35.82	attackbots	\[Sat Oct 26 06:59:35.264683 2019\] \[php7:error\] \[pid 2020\] \[client 193.104.35.82:33860\] script '/var/www/michele/indexe.php' not found or unable to stat, referer: http://site.ru ...	2019-10-26 14:10:51
198.71.231.61	attackbots	WordPress XMLRPC scan :: 198.71.231.61 0.092 BYPASS [26/Oct/2019:14:51:41 1100] www.[censored_4] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "WordPress/5.2; http://julepsalon.ca"	2019-10-26 13:49:50
183.203.96.105	attack	Oct 26 01:16:55 TORMINT sshd\[23537\]: Invalid user Passphp1 from 183.203.96.105 Oct 26 01:16:55 TORMINT sshd\[23537\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.203.96.105 Oct 26 01:16:57 TORMINT sshd\[23537\]: Failed password for invalid user Passphp1 from 183.203.96.105 port 41986 ssh2 ...	2019-10-26 14:06:25
91.225.200.240	attackbots	445/tcp 445/tcp 445/tcp... [2019-08-28/10-26]5pkt,1pt.(tcp)	2019-10-26 13:53:15
162.243.58.222	attackbotsspam	Oct 26 06:52:19 MK-Soft-VM7 sshd[22128]: Failed password for root from 162.243.58.222 port 41036 ssh2 ...	2019-10-26 13:54:59
51.38.37.128	attackbots	Invalid user vendas from 51.38.37.128 port 37926	2019-10-26 13:48:15
139.59.46.243	attackspambots	Oct 25 19:48:19 wbs sshd\[19329\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.46.243 user=root Oct 25 19:48:22 wbs sshd\[19329\]: Failed password for root from 139.59.46.243 port 51354 ssh2 Oct 25 19:53:01 wbs sshd\[19698\]: Invalid user system from 139.59.46.243 Oct 25 19:53:01 wbs sshd\[19698\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.46.243 Oct 25 19:53:03 wbs sshd\[19698\]: Failed password for invalid user system from 139.59.46.243 port 33874 ssh2	2019-10-26 14:04:38
93.170.52.60	attackbots	445/tcp 445/tcp [2019-09-28/10-26]2pkt	2019-10-26 14:03:07
190.54.37.171	attackbots	23/tcp 23/tcp 23/tcp... [2019-09-12/10-26]9pkt,1pt.(tcp)	2019-10-26 14:12:00
49.88.112.115	attack	Oct 25 18:42:19 php1 sshd\[22674\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115 user=root Oct 25 18:42:21 php1 sshd\[22674\]: Failed password for root from 49.88.112.115 port 43453 ssh2 Oct 25 18:43:23 php1 sshd\[22766\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115 user=root Oct 25 18:43:25 php1 sshd\[22766\]: Failed password for root from 49.88.112.115 port 63017 ssh2 Oct 25 18:47:12 php1 sshd\[23084\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115 user=root	2019-10-26 14:05:39
42.116.255.216	attackspam	Oct 26 07:00:58 mail sshd[7445]: Invalid user ubuntu from 42.116.255.216 ...	2019-10-26 13:49:21
107.173.51.220	attackbots	(From celiatownsend811@gmail.com) Hi! First impressions are important to engage potential clients. Your website is the first thing people see when they'd like to know about your business as they're browsing online. Therefore, the look and feel of your website can undoubtedly affect your business. Have you ever considered upgrading or redesign the user-interface of your site and make it more aesthetically pleasing and functional? I'm a freelancer who renovates and makes amazing websites that would ideally address your business needs. I also guarantee that for a cheap cost, I will be able to upgrade your current website or build you a brand-new one. If you'd like to know more about what design and features best suit your site, I would love to speak with you. If you want to learn more, I can give you a free consultation over the phone at a time you'd prefer. Just kindly let me know when. Talk soon! - Celia Townsend	2019-10-26 13:48:27
51.68.251.201	attackbots	Port Scan detected from 51.68.251.201 (FR/France/ip201.ip-51-68-251.eu). 4 hits in the last 231 seconds	2019-10-26 14:26:47
81.22.45.107	attackspam	Oct 26 08:01:50 mc1 kernel: \[3356048.310396\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.107 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=48163 PROTO=TCP SPT=56927 DPT=24702 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 26 08:06:18 mc1 kernel: \[3356316.102742\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.107 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=34005 PROTO=TCP SPT=56927 DPT=25111 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 26 08:06:46 mc1 kernel: \[3356343.840991\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.107 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=26293 PROTO=TCP SPT=56927 DPT=24947 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-26 14:08:17
112.85.42.237	attack	Oct 26 01:52:31 TORMINT sshd\[25356\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.237 user=root Oct 26 01:52:34 TORMINT sshd\[25356\]: Failed password for root from 112.85.42.237 port 43843 ssh2 Oct 26 01:53:08 TORMINT sshd\[25408\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.237 user=root ...	2019-10-26 14:05:21

最近上报的IP列表

84.151.195.201	61.161.45.25	189.152.247.92	111.229.171.219
178.35.144.74	112.226.204.26	103.232.172.42	193.37.72.105
111.229.186.30	103.89.176.74	185.22.9.7	90.102.70.31
45.140.204.199	36.237.198.198	5.188.217.103	137.220.175.40
106.52.44.179	114.36.125.180	83.185.255.176	134.175.129.213