29.105.6.96 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 29.105.6.96
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37646
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;29.105.6.96.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022200 1800 900 604800 86400

;; Query time: 145 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 22 19:46:03 CST 2025
;; MSG SIZE  rcvd: 104

HOST信息:

Host 96.6.105.29.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 96.6.105.29.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
104.236.63.99	attack	May 7 20:39:48 server sshd[30720]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.63.99 May 7 20:39:51 server sshd[30720]: Failed password for invalid user kw from 104.236.63.99 port 46890 ssh2 May 7 20:43:00 server sshd[31009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.63.99 ...	2020-05-08 02:49:19
37.252.73.149	attack	" "	2020-05-08 02:42:04
54.36.149.22	attackbots	Web Server Attack	2020-05-08 02:23:34
41.203.58.65	attackbots	RDP Brute-Force (honeypot 13)	2020-05-08 02:45:37
222.186.173.154	attackbots	May 7 20:24:15 minden010 sshd[3740]: Failed password for root from 222.186.173.154 port 36464 ssh2 May 7 20:24:19 minden010 sshd[3740]: Failed password for root from 222.186.173.154 port 36464 ssh2 May 7 20:24:22 minden010 sshd[3740]: Failed password for root from 222.186.173.154 port 36464 ssh2 May 7 20:24:25 minden010 sshd[3740]: Failed password for root from 222.186.173.154 port 36464 ssh2 ...	2020-05-08 02:25:36
88.85.111.147	attackspambots	$f2bV_matches	2020-05-08 02:24:51
175.6.108.125	attackspambots	May 7 17:21:36 *** sshd[7336]: Invalid user net from 175.6.108.125	2020-05-08 02:48:57
115.159.65.195	attack	May 7 20:12:59 ift sshd\[35193\]: Failed password for root from 115.159.65.195 port 40936 ssh2May 7 20:17:14 ift sshd\[36254\]: Invalid user it2 from 115.159.65.195May 7 20:17:16 ift sshd\[36254\]: Failed password for invalid user it2 from 115.159.65.195 port 60518 ssh2May 7 20:21:24 ift sshd\[37554\]: Invalid user sybase from 115.159.65.195May 7 20:21:26 ift sshd\[37554\]: Failed password for invalid user sybase from 115.159.65.195 port 51882 ssh2 ...	2020-05-08 02:57:56
193.77.155.50	attackbotsspam	May 7 19:21:37 haigwepa sshd[15885]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.77.155.50 May 7 19:21:39 haigwepa sshd[15885]: Failed password for invalid user pub from 193.77.155.50 port 43025 ssh2 ...	2020-05-08 02:47:04
81.12.167.149	attackspambots	[Fri May 08 00:21:56.970230 2020] [:error] [pid 3559:tid 139814473037568] [client 81.12.167.149:5829] [client 81.12.167.149] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_http_versions}" against "REQUEST_PROTOCOL" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "972"] [id "920430"] [msg "HTTP protocol version is not allowed by policy"] [data "HTTP/1.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/POLICY/PROTOCOL_NOT_ALLOWED"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.10"] [hostname "45.33.35.141"] [uri "/"] [unique_id "XrRDtOzf33yCbywf1ciYQAAAAAI"] ...	2020-05-08 02:36:19
218.92.0.158	attack	May 7 20:37:15 minden010 sshd[8112]: Failed password for root from 218.92.0.158 port 62191 ssh2 May 7 20:37:28 minden010 sshd[8112]: error: maximum authentication attempts exceeded for root from 218.92.0.158 port 62191 ssh2 [preauth] May 7 20:37:36 minden010 sshd[8215]: Failed password for root from 218.92.0.158 port 28167 ssh2 ...	2020-05-08 02:38:11
106.12.176.128	attackbotsspam	May 7 20:38:26 inter-technics sshd[29713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.176.128 user=root May 7 20:38:28 inter-technics sshd[29713]: Failed password for root from 106.12.176.128 port 51296 ssh2 May 7 20:41:50 inter-technics sshd[30373]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.176.128 user=root May 7 20:41:52 inter-technics sshd[30373]: Failed password for root from 106.12.176.128 port 36398 ssh2 May 7 20:45:15 inter-technics sshd[31093]: Invalid user sama from 106.12.176.128 port 49732 ...	2020-05-08 02:57:42
61.19.247.125	attackbotsspam	May 8 01:12:40 webhost01 sshd[2008]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.19.247.125 May 8 01:12:42 webhost01 sshd[2008]: Failed password for invalid user az from 61.19.247.125 port 55877 ssh2 ...	2020-05-08 02:21:05
14.248.83.163	attackspambots	May 8 03:06:05 web1 sshd[5047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.248.83.163 user=root May 8 03:06:06 web1 sshd[5047]: Failed password for root from 14.248.83.163 port 48084 ssh2 May 8 03:12:57 web1 sshd[8441]: Invalid user www from 14.248.83.163 port 51952 May 8 03:12:57 web1 sshd[8441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.248.83.163 May 8 03:12:57 web1 sshd[8441]: Invalid user www from 14.248.83.163 port 51952 May 8 03:13:00 web1 sshd[8441]: Failed password for invalid user www from 14.248.83.163 port 51952 ssh2 May 8 03:17:38 web1 sshd[10269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.248.83.163 user=root May 8 03:17:40 web1 sshd[10269]: Failed password for root from 14.248.83.163 port 58602 ssh2 May 8 03:22:01 web1 sshd[13333]: Invalid user stephen from 14.248.83.163 port 37052 ...	2020-05-08 02:32:54
178.128.58.117	attackspam	"Unauthorized connection attempt on SSHD detected"	2020-05-08 02:58:48

最近上报的IP列表

16.1.156.133	69.228.243.51	182.190.53.67	229.107.90.33
103.234.132.138	173.47.98.22	208.48.70.117	36.125.152.167
161.228.177.74	28.187.77.137	248.217.14.169	232.7.186.158
24.114.245.64	94.232.81.248	104.56.15.223	215.198.253.121
71.31.70.92	57.224.31.107	141.171.170.255	151.232.180.183