149.129.136.211

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): Alibaba.com Singapore E-Commerce Private Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Unauthorised access (Aug 9) SRC=149.129.136.211 LEN=40 PREC=0x20 TTL=47 ID=22338 TCP DPT=8080 WINDOW=50376 SYN	2019-08-09 13:08:37

相同子网IP讨论:

IP	类型	评论内容	时间
149.129.136.90	attackbotsspam	20 attempts against mh-ssh on air	2020-10-03 04:53:48
149.129.136.90	attackbots	20 attempts against mh-ssh on cloud	2020-10-03 00:16:13
149.129.136.90	attackbotsspam	20 attempts against mh-ssh on cloud	2020-10-02 20:47:20
149.129.136.90	attack	20 attempts against mh-ssh on cloud	2020-10-02 17:20:09
149.129.136.90	attackspam	20 attempts against mh-ssh on cloud	2020-10-02 13:42:02
149.129.136.90	attackspam	20 attempts against mh-ssh on light	2020-09-30 08:36:29
149.129.136.90	attack	20 attempts against mh-ssh on light	2020-09-30 01:25:20
149.129.136.90	attack	20 attempts against mh-ssh on light	2020-09-29 17:24:38
149.129.136.113	attackspam	Aug 8 02:23:17 DDOS Attack: SRC=149.129.136.113 DST=[Masked] LEN=40 TOS=0x08 PREC=0x20 TTL=49 DF PROTO=TCP SPT=16456 DPT=80 WINDOW=0 RES=0x00 RST URGP=0	2019-08-08 13:10:26
149.129.136.212	attackbots	[portscan] tcp/23 [TELNET] *(RWIN=27604)(08050931)	2019-08-05 20:17:24
149.129.136.252	attackspambots	port scan and connect, tcp 23 (telnet)	2019-07-11 22:38:14

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.129.136.211
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30265
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;149.129.136.211.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080801 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 09 13:08:17 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 211.136.129.149.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 211.136.129.149.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
91.225.122.58	attackspam	Sep 4 06:36:41 markkoudstaal sshd[12797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.225.122.58 Sep 4 06:36:43 markkoudstaal sshd[12797]: Failed password for invalid user ts2 from 91.225.122.58 port 48536 ssh2 Sep 4 06:41:28 markkoudstaal sshd[13324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.225.122.58	2019-09-04 16:16:53
136.243.177.247	attackbots	$f2bV_matches	2019-09-04 16:46:29
167.114.185.237	attack	Sep 4 03:38:58 hcbbdb sshd\[21639\]: Invalid user julianne from 167.114.185.237 Sep 4 03:38:58 hcbbdb sshd\[21639\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=237.ip-167-114-185.net Sep 4 03:39:00 hcbbdb sshd\[21639\]: Failed password for invalid user julianne from 167.114.185.237 port 57456 ssh2 Sep 4 03:42:46 hcbbdb sshd\[22113\]: Invalid user ned from 167.114.185.237 Sep 4 03:42:46 hcbbdb sshd\[22113\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=237.ip-167-114-185.net	2019-09-04 16:32:15
111.230.183.115	attack	Port Scan detected from 111.230.183.115 (CN/China/-). 4 hits in the last 245 seconds	2019-09-04 16:58:11
213.202.211.200	attack	Sep 3 21:53:08 auw2 sshd\[4269\]: Invalid user penelope from 213.202.211.200 Sep 3 21:53:08 auw2 sshd\[4269\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.202.211.200 Sep 3 21:53:10 auw2 sshd\[4269\]: Failed password for invalid user penelope from 213.202.211.200 port 45018 ssh2 Sep 3 21:57:39 auw2 sshd\[4660\]: Invalid user deadlysw from 213.202.211.200 Sep 3 21:57:39 auw2 sshd\[4660\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.202.211.200	2019-09-04 16:08:47
112.169.9.150	attackbots	Sep 4 10:47:02 ArkNodeAT sshd\[25145\]: Invalid user user100 from 112.169.9.150 Sep 4 10:47:02 ArkNodeAT sshd\[25145\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.169.9.150 Sep 4 10:47:04 ArkNodeAT sshd\[25145\]: Failed password for invalid user user100 from 112.169.9.150 port 21755 ssh2	2019-09-04 16:50:58
139.155.123.84	attack	Sep 4 07:01:14 www sshd\[61023\]: Invalid user alfred from 139.155.123.84Sep 4 07:01:17 www sshd\[61023\]: Failed password for invalid user alfred from 139.155.123.84 port 48162 ssh2Sep 4 07:03:53 www sshd\[61038\]: Invalid user rodica from 139.155.123.84 ...	2019-09-04 16:57:50
106.75.92.239	attackbotsspam	Lines containing failures of 106.75.92.239 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.75.92.239	2019-09-04 16:45:27
27.254.137.144	attackbotsspam	Jul 4 13:59:39 Server10 sshd[25891]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.137.144 Jul 4 13:59:41 Server10 sshd[25891]: Failed password for invalid user beaute from 27.254.137.144 port 45404 ssh2 Jul 4 14:02:34 Server10 sshd[28775]: Invalid user mary from 27.254.137.144 port 37754 Jul 4 14:02:34 Server10 sshd[28775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.137.144 Jul 4 14:02:35 Server10 sshd[28775]: Failed password for invalid user mary from 27.254.137.144 port 37754 ssh2	2019-09-04 16:41:33
5.135.179.178	attackspam	Sep 4 10:12:15 SilenceServices sshd[18546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.179.178 Sep 4 10:12:17 SilenceServices sshd[18546]: Failed password for invalid user mi from 5.135.179.178 port 10509 ssh2 Sep 4 10:16:28 SilenceServices sshd[20196]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.179.178	2019-09-04 16:19:42
77.68.72.182	attackspambots	Sep 4 10:09:39 tux-35-217 sshd\[21194\]: Invalid user hot from 77.68.72.182 port 57528 Sep 4 10:09:39 tux-35-217 sshd\[21194\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.68.72.182 Sep 4 10:09:41 tux-35-217 sshd\[21194\]: Failed password for invalid user hot from 77.68.72.182 port 57528 ssh2 Sep 4 10:13:31 tux-35-217 sshd\[21316\]: Invalid user ftp_test from 77.68.72.182 port 45142 Sep 4 10:13:31 tux-35-217 sshd\[21316\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.68.72.182 ...	2019-09-04 16:52:42
210.157.255.252	attackbots	Sep 4 06:09:59 dedicated sshd[3046]: Invalid user ftp-user from 210.157.255.252 port 45540	2019-09-04 16:56:33
146.185.194.219	attackspam	Sep 4 09:33:42 mail sshd\[8438\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.185.194.219 user=root Sep 4 09:33:44 mail sshd\[8438\]: Failed password for root from 146.185.194.219 port 41482 ssh2 ...	2019-09-04 16:41:59
91.250.96.120	attack	Sep 4 10:18:58 srv206 sshd[4188]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=prexit01.prinet.eu user=root Sep 4 10:19:00 srv206 sshd[4188]: Failed password for root from 91.250.96.120 port 45174 ssh2 Sep 4 10:19:02 srv206 sshd[4188]: Failed password for root from 91.250.96.120 port 45174 ssh2 Sep 4 10:18:58 srv206 sshd[4188]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=prexit01.prinet.eu user=root Sep 4 10:19:00 srv206 sshd[4188]: Failed password for root from 91.250.96.120 port 45174 ssh2 Sep 4 10:19:02 srv206 sshd[4188]: Failed password for root from 91.250.96.120 port 45174 ssh2 ...	2019-09-04 16:54:33
118.122.196.104	attack	Unauthorized SSH login attempts	2019-09-04 16:54:04

最近上报的IP列表

93.90.200.160	178.128.215.148	186.7.156.171	64.136.154.172
113.195.147.93	111.126.72.52	93.156.47.135	80.240.61.150
47.91.110.4	60.19.187.196	39.62.34.179	179.191.177.95
103.209.98.44	49.118.138.151	89.183.173.136	52.179.138.240
82.79.75.239	122.224.223.186	39.66.11.9	66.249.73.155