212.129.138.211

基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): Shenzhen Tencent Computer Systems Company Limited

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Invalid user DUP from 212.129.138.211 port 34866	2019-11-01 16:01:03
attackbots	Invalid user DUP from 212.129.138.211 port 49417	2019-11-01 08:16:42
attackbotsspam	Automatic report - Banned IP Access	2019-08-02 20:33:38
attackbotsspam	Invalid user DUP from 212.129.138.211 port 48599	2019-07-28 07:55:27
attackspambots	Invalid user DUP from 212.129.138.211 port 48599	2019-07-24 17:27:22

相同子网IP讨论:

IP	类型	评论内容	时间
212.129.138.198	attackspam	Nov 21 22:16:13 ms-srv sshd[53269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.138.198 user=nobody Nov 21 22:16:15 ms-srv sshd[53269]: Failed password for invalid user nobody from 212.129.138.198 port 56501 ssh2	2020-03-09 04:11:53
212.129.138.198	attackspam	Nov 21 22:16:13 ms-srv sshd[53269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.138.198 user=nobody Nov 21 22:16:15 ms-srv sshd[53269]: Failed password for invalid user nobody from 212.129.138.198 port 56501 ssh2	2020-02-15 23:44:33
212.129.138.198	attackbots	Dec 22 16:43:07 vps691689 sshd[26358]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.138.198 Dec 22 16:43:09 vps691689 sshd[26358]: Failed password for invalid user salim from 212.129.138.198 port 43049 ssh2 Dec 22 16:49:34 vps691689 sshd[26550]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.138.198 ...	2019-12-23 02:51:59
212.129.138.198	attackspam	web-1 [ssh_2] SSH Attack	2019-12-21 02:44:24
212.129.138.198	attackbots	--- report --- Dec 17 18:58:08 sshd: Connection from 212.129.138.198 port 35432 Dec 17 18:58:11 sshd: Failed password for root from 212.129.138.198 port 35432 ssh2 Dec 17 18:58:12 sshd: Received disconnect from 212.129.138.198: 11: Bye Bye [preauth]	2019-12-18 06:26:15
212.129.138.198	attackbotsspam	Dec 17 08:49:13 ny01 sshd[26073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.138.198 Dec 17 08:49:15 ny01 sshd[26073]: Failed password for invalid user server from 212.129.138.198 port 55663 ssh2 Dec 17 08:57:02 ny01 sshd[27254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.138.198	2019-12-17 22:08:05
212.129.138.67	attack	Dec 4 03:05:36 sachi sshd\[27060\]: Invalid user brasov from 212.129.138.67 Dec 4 03:05:36 sachi sshd\[27060\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.138.67 Dec 4 03:05:38 sachi sshd\[27060\]: Failed password for invalid user brasov from 212.129.138.67 port 41416 ssh2 Dec 4 03:13:47 sachi sshd\[27942\]: Invalid user corette from 212.129.138.67 Dec 4 03:13:47 sachi sshd\[27942\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.138.67	2019-12-05 00:23:10
212.129.138.67	attack	$f2bV_matches	2019-12-04 06:00:40
212.129.138.67	attack	Nov 28 09:55:27 microserver sshd[57335]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.138.67 user=root Nov 28 09:55:29 microserver sshd[57335]: Failed password for root from 212.129.138.67 port 44214 ssh2 Nov 28 10:03:06 microserver sshd[58185]: Invalid user deboer from 212.129.138.67 port 54964 Nov 28 10:03:06 microserver sshd[58185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.138.67 Nov 28 10:03:08 microserver sshd[58185]: Failed password for invalid user deboer from 212.129.138.67 port 54964 ssh2 Nov 28 10:18:24 microserver sshd[60241]: Invalid user gronnesby from 212.129.138.67 port 48232 Nov 28 10:18:24 microserver sshd[60241]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.138.67 Nov 28 10:18:27 microserver sshd[60241]: Failed password for invalid user gronnesby from 212.129.138.67 port 48232 ssh2 Nov 28 10:26:01 microserver sshd[61494]: Invalid user h	2019-11-28 17:57:08
212.129.138.67	attackbots	Nov 27 15:43:46 root sshd[8694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.138.67 Nov 27 15:43:48 root sshd[8694]: Failed password for invalid user hoea from 212.129.138.67 port 51110 ssh2 Nov 27 15:52:35 root sshd[8837]: Failed password for backup from 212.129.138.67 port 34356 ssh2 ...	2019-11-28 01:24:52
212.129.138.67	attack	Invalid user podolsky from 212.129.138.67 port 33684	2019-11-24 14:10:15
212.129.138.198	attackbotsspam	Nov 19 12:32:56 gw1 sshd[3127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.138.198 Nov 19 12:32:58 gw1 sshd[3127]: Failed password for invalid user knoebel from 212.129.138.198 port 54586 ssh2 ...	2019-11-19 15:53:00
212.129.138.198	attack	2019-11-18T15:54:57.690607abusebot-2.cloudsearch.cf sshd\[22087\]: Invalid user maccarthy from 212.129.138.198 port 60336	2019-11-19 00:20:06
212.129.138.67	attack	SSH Brute Force, server-1 sshd[32541]: Failed password for invalid user guest from 212.129.138.67 port 48480 ssh2	2019-11-14 03:58:47
212.129.138.67	attackbotsspam	2019-11-10T05:44:13.622110 sshd[12399]: Invalid user freware from 212.129.138.67 port 39012 2019-11-10T05:44:13.635684 sshd[12399]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.138.67 2019-11-10T05:44:13.622110 sshd[12399]: Invalid user freware from 212.129.138.67 port 39012 2019-11-10T05:44:15.836205 sshd[12399]: Failed password for invalid user freware from 212.129.138.67 port 39012 ssh2 2019-11-10T05:54:40.673306 sshd[12537]: Invalid user abcs from 212.129.138.67 port 52162 ...	2019-11-10 13:20:01

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.129.138.211
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29257
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;212.129.138.211.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun Apr 14 18:34:00 +08 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 211.138.129.212.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 211.138.129.212.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
106.12.49.118	attackspambots	Nov 27 23:51:50 vps666546 sshd\[22025\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 user=root Nov 27 23:51:52 vps666546 sshd\[22025\]: Failed password for root from 106.12.49.118 port 50120 ssh2 Nov 27 23:58:57 vps666546 sshd\[22298\]: Invalid user lehner from 106.12.49.118 port 54716 Nov 27 23:58:57 vps666546 sshd\[22298\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.118 Nov 27 23:59:00 vps666546 sshd\[22298\]: Failed password for invalid user lehner from 106.12.49.118 port 54716 ssh2 ...	2019-11-28 07:43:51
143.0.124.161	attackspambots	port scan/probe/communication attempt; port 23	2019-11-28 07:20:43
109.107.178.203	attack	Fail2Ban Ban Triggered	2019-11-28 07:36:59
195.16.41.170	attackbotsspam	Nov 27 23:53:12 sbg01 sshd[12475]: Failed password for root from 195.16.41.170 port 50574 ssh2 Nov 27 23:59:13 sbg01 sshd[12514]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.16.41.170 Nov 27 23:59:16 sbg01 sshd[12514]: Failed password for invalid user faucette from 195.16.41.170 port 56648 ssh2	2019-11-28 07:33:42
187.174.87.54	attack	27.11.2019 23:59:24 - RDP Login Fail Detected by https://www.elinox.de/RDP-Wächter	2019-11-28 07:33:58
81.45.56.199	attackbotsspam	Nov 27 18:32:48 ny01 sshd[27727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199 Nov 27 18:32:50 ny01 sshd[27727]: Failed password for invalid user snapper from 81.45.56.199 port 50130 ssh2 Nov 27 18:39:30 ny01 sshd[28367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199	2019-11-28 07:46:39
151.80.61.70	attackbotsspam	Automatic report - Banned IP Access	2019-11-28 07:48:55
121.36.175.203	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/121.36.175.203/ AU - 1H : (11) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : AU NAME ASN : ASN0 IP : 121.36.175.203 CIDR : 121.36.0.0/14 PREFIX COUNT : 50242 UNIQUE IP COUNT : 856039856 ATTACKS DETECTED ASN0 : 1H - 4 3H - 10 6H - 13 12H - 21 24H - 30 DateTime : 2019-11-27 23:59:12 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-11-28 07:34:38
117.50.36.53	attack	Nov 28 00:32:49 mout sshd[939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.36.53 user=root Nov 28 00:32:51 mout sshd[939]: Failed password for root from 117.50.36.53 port 37712 ssh2	2019-11-28 07:41:30
81.30.152.54	attackspambots	\[2019-11-27 18:41:49\] NOTICE\[2754\] chan_sip.c: Registration from '\' failed for '81.30.152.54:50942' - Wrong password \[2019-11-27 18:41:49\] SECURITY\[2765\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-11-27T18:41:49.358-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="1022",SessionID="0x7f26c4bb3d98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/81.30.152.54/50942",Challenge="61a1cd82",ReceivedChallenge="61a1cd82",ReceivedHash="056fdadfccdb8c95be737232ea0dcd27" \[2019-11-27 18:42:18\] NOTICE\[2754\] chan_sip.c: Registration from '\' failed for '81.30.152.54:61383' - Wrong password \[2019-11-27 18:42:18\] SECURITY\[2765\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-11-27T18:42:18.780-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="8298",SessionID="0x7f26c4a90648",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/81.30.152.54	2019-11-28 07:42:36
222.186.175.140	attackspambots	Nov 28 00:22:16 tux-35-217 sshd\[22136\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.140 user=root Nov 28 00:22:18 tux-35-217 sshd\[22136\]: Failed password for root from 222.186.175.140 port 65402 ssh2 Nov 28 00:22:21 tux-35-217 sshd\[22136\]: Failed password for root from 222.186.175.140 port 65402 ssh2 Nov 28 00:22:24 tux-35-217 sshd\[22136\]: Failed password for root from 222.186.175.140 port 65402 ssh2 ...	2019-11-28 07:23:36
176.31.191.173	attackbots	2019-11-27T22:59:32.831311abusebot-6.cloudsearch.cf sshd\[5328\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.ip-176-31-191.eu user=root	2019-11-28 07:22:16
218.92.0.187	attack	Nov 28 00:19:54 v22018086721571380 sshd[24527]: error: maximum authentication attempts exceeded for root from 218.92.0.187 port 12060 ssh2 [preauth]	2019-11-28 07:27:17
103.254.198.67	attackspam	Nov 27 23:59:36 ArkNodeAT sshd\[18358\]: Invalid user tortoise from 103.254.198.67 Nov 27 23:59:36 ArkNodeAT sshd\[18358\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.254.198.67 Nov 27 23:59:38 ArkNodeAT sshd\[18358\]: Failed password for invalid user tortoise from 103.254.198.67 port 38230 ssh2	2019-11-28 07:16:45
80.211.116.102	attackbotsspam	Nov 28 03:59:37 gw1 sshd[7548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.116.102 Nov 28 03:59:40 gw1 sshd[7548]: Failed password for invalid user utako from 80.211.116.102 port 51412 ssh2 ...	2019-11-28 07:17:15

最近上报的IP列表

49.150.94.13	193.228.57.30	110.49.40.2	212.156.113.66
184.22.124.85	162.243.160.215	193.95.183.104	94.97.33.255
201.59.14.26	42.238.144.50	157.230.108.13	206.41.177.126
103.53.165.1	142.93.67.103	116.68.105.247	107.174.150.106
177.52.26.26	134.209.74.77	82.235.80.66	179.110.224.27