171.104.129.7 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Guangxi Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	SSH/22 MH Probe, BF, Hack -	2020-05-21 22:28:33

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 171.104.129.7
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23583
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;171.104.129.7.			IN	A

;; AUTHORITY SECTION:
.			521	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052101 1800 900 604800 86400

;; Query time: 99 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 21 22:28:27 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

7.129.104.171.in-addr.arpa has no PTR record

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 7.129.104.171.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
37.59.53.22	attack	Sep 7 20:09:39 SilenceServices sshd[24920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.53.22 Sep 7 20:09:41 SilenceServices sshd[24920]: Failed password for invalid user ubuntu from 37.59.53.22 port 56574 ssh2 Sep 7 20:13:19 SilenceServices sshd[26237]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.53.22	2019-09-08 02:24:12
119.235.48.42	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-07 10:06:56,917 INFO [amun_request_handler] PortScan Detected on Port: 445 (119.235.48.42)	2019-09-08 02:42:55
134.209.216.249	attackspambots	134.209.216.249 - - [07/Sep/2019:12:42:49 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.216.249 - - [07/Sep/2019:12:42:53 +0200] "POST /wp-login.php HTTP/1.1" 200 1704 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.216.249 - - [07/Sep/2019:12:43:25 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.216.249 - - [07/Sep/2019:12:43:33 +0200] "POST /wp-login.php HTTP/1.1" 200 1688 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.216.249 - - [07/Sep/2019:12:43:36 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.216.249 - - [07/Sep/2019:12:43:40 +0200] "POST /wp-login.php HTTP/1.1" 200 1684 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" .	2019-09-08 02:28:43
120.50.13.181	attackbotsspam	$f2bV_matches_ltvn	2019-09-08 02:49:03
3.0.111.11	attackbots	3.0.111.11 - - [07/Sep/2019:15:39:22 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 3.0.111.11 - - [07/Sep/2019:15:39:23 +0200] "POST /wp-login.php HTTP/1.1" 200 1704 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 3.0.111.11 - - [07/Sep/2019:15:39:24 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 3.0.111.11 - - [07/Sep/2019:15:39:25 +0200] "POST /wp-login.php HTTP/1.1" 200 1710 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 3.0.111.11 - - [07/Sep/2019:15:39:25 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 3.0.111.11 - - [07/Sep/2019:15:39:26 +0200] "POST /wp-login.php HTTP/1.1" 200 1710 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-09-08 02:40:19
217.144.185.139	attackbots	[portscan] Port scan	2019-09-08 02:45:14
115.97.49.35	attackbotsspam	Unauthorised access (Sep 7) SRC=115.97.49.35 LEN=52 TTL=114 ID=12376 DF TCP DPT=445 WINDOW=8192 SYN	2019-09-08 02:07:20
118.24.50.253	attackspam	2019-09-07T15:38:43.161142abusebot-5.cloudsearch.cf sshd\[13037\]: Invalid user samba from 118.24.50.253 port 51378	2019-09-08 02:17:16
129.213.96.241	attackspambots	Sep 7 13:45:17 xtremcommunity sshd\[44448\]: Invalid user admin from 129.213.96.241 port 47140 Sep 7 13:45:17 xtremcommunity sshd\[44448\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.96.241 Sep 7 13:45:19 xtremcommunity sshd\[44448\]: Failed password for invalid user admin from 129.213.96.241 port 47140 ssh2 Sep 7 13:55:08 xtremcommunity sshd\[44771\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.96.241 user=root Sep 7 13:55:10 xtremcommunity sshd\[44771\]: Failed password for root from 129.213.96.241 port 15400 ssh2 ...	2019-09-08 02:04:26
117.208.88.49	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-07 10:09:55,428 INFO [amun_request_handler] PortScan Detected on Port: 445 (117.208.88.49)	2019-09-08 02:06:44
136.32.230.96	attack	F2B jail: sshd. Time: 2019-09-07 20:00:19, Reported by: VKReport	2019-09-08 02:02:46
138.68.90.158	attackspam	Sep 7 21:21:19 server sshd\[6683\]: Invalid user teamspeak3-user from 138.68.90.158 port 35514 Sep 7 21:21:19 server sshd\[6683\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.90.158 Sep 7 21:21:21 server sshd\[6683\]: Failed password for invalid user teamspeak3-user from 138.68.90.158 port 35514 ssh2 Sep 7 21:25:12 server sshd\[22158\]: Invalid user test from 138.68.90.158 port 51646 Sep 7 21:25:12 server sshd\[22158\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.90.158	2019-09-08 02:25:56
190.151.105.182	attackspambots	Sep 7 18:17:56 Ubuntu-1404-trusty-64-minimal sshd\[13906\]: Invalid user admin from 190.151.105.182 Sep 7 18:17:56 Ubuntu-1404-trusty-64-minimal sshd\[13906\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.151.105.182 Sep 7 18:17:58 Ubuntu-1404-trusty-64-minimal sshd\[13906\]: Failed password for invalid user admin from 190.151.105.182 port 55406 ssh2 Sep 7 18:33:09 Ubuntu-1404-trusty-64-minimal sshd\[31826\]: Invalid user userftp from 190.151.105.182 Sep 7 18:33:09 Ubuntu-1404-trusty-64-minimal sshd\[31826\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.151.105.182	2019-09-08 02:31:13
5.189.162.36	attack	Sep 7 20:42:28 markkoudstaal sshd[24821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.189.162.36 Sep 7 20:42:30 markkoudstaal sshd[24821]: Failed password for invalid user test from 5.189.162.36 port 39958 ssh2 Sep 7 20:46:55 markkoudstaal sshd[25227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.189.162.36	2019-09-08 02:53:22
182.61.185.77	attackbots	Sep 7 16:52:43 MK-Soft-VM7 sshd\[7872\]: Invalid user ftpuser from 182.61.185.77 port 40820 Sep 7 16:52:43 MK-Soft-VM7 sshd\[7872\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.185.77 Sep 7 16:52:44 MK-Soft-VM7 sshd\[7872\]: Failed password for invalid user ftpuser from 182.61.185.77 port 40820 ssh2 ...	2019-09-08 02:00:37

最近上报的IP列表

193.239.26.31	37.99.117.3	194.146.188.206	90.188.116.232
131.196.46.23	77.229.177.216	118.96.225.15	23.108.216.48
129.73.15.99	101.69.200.162	36.74.230.136	36.7.129.167
2.59.79.137	81.213.108.19	202.38.182.232	183.83.138.105
41.111.138.122	189.251.57.207	140.227.187.145	65.99.170.184