29.112.34.80 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 29.112.34.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53125
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;29.112.34.80.			IN	A

;; AUTHORITY SECTION:
.			557	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050400 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon May 04 23:05:54 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 80.34.112.29.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 80.34.112.29.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
198.71.239.12	attackspam	Automatic report - XMLRPC Attack	2020-04-27 21:46:17
129.226.133.168	attack	2020-04-27T12:58:06.226737abusebot-3.cloudsearch.cf sshd[30603]: Invalid user afc from 129.226.133.168 port 51506 2020-04-27T12:58:06.234014abusebot-3.cloudsearch.cf sshd[30603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.133.168 2020-04-27T12:58:06.226737abusebot-3.cloudsearch.cf sshd[30603]: Invalid user afc from 129.226.133.168 port 51506 2020-04-27T12:58:07.895960abusebot-3.cloudsearch.cf sshd[30603]: Failed password for invalid user afc from 129.226.133.168 port 51506 ssh2 2020-04-27T13:01:06.085639abusebot-3.cloudsearch.cf sshd[30777]: Invalid user dina from 129.226.133.168 port 43384 2020-04-27T13:01:06.091197abusebot-3.cloudsearch.cf sshd[30777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.133.168 2020-04-27T13:01:06.085639abusebot-3.cloudsearch.cf sshd[30777]: Invalid user dina from 129.226.133.168 port 43384 2020-04-27T13:01:08.129546abusebot-3.cloudsearch.cf sshd[30777]: ...	2020-04-27 21:57:35
184.105.247.204	attack	Apr 27 13:56:41 debian-2gb-nbg1-2 kernel: \[10247532.277064\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=184.105.247.204 DST=195.201.40.59 LEN=80 TOS=0x00 PREC=0x00 TTL=52 ID=58853 DF PROTO=UDP SPT=16451 DPT=389 LEN=60	2020-04-27 21:53:28
124.156.121.233	attackspam	2020-04-27T14:06:17.485210struts4.enskede.local sshd\[1017\]: Invalid user deluge from 124.156.121.233 port 60130 2020-04-27T14:06:17.490922struts4.enskede.local sshd\[1017\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.121.233 2020-04-27T14:06:19.765905struts4.enskede.local sshd\[1017\]: Failed password for invalid user deluge from 124.156.121.233 port 60130 ssh2 2020-04-27T14:15:20.120217struts4.enskede.local sshd\[1279\]: Invalid user ppp from 124.156.121.233 port 56980 2020-04-27T14:15:20.126564struts4.enskede.local sshd\[1279\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.121.233 ...	2020-04-27 21:39:02
98.175.176.145	attack	Automatic report - Port Scan Attack	2020-04-27 21:57:55
84.17.48.54	attackspambots	fell into ViewStateTrap:wien2018	2020-04-27 21:34:25
218.92.0.179	attackbotsspam	web-1 [ssh_2] SSH Attack	2020-04-27 21:33:10
117.50.97.216	attackbots	Apr 27 13:32:56 ns392434 sshd[10224]: Invalid user ricoh from 117.50.97.216 port 52398 Apr 27 13:32:56 ns392434 sshd[10224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.97.216 Apr 27 13:32:56 ns392434 sshd[10224]: Invalid user ricoh from 117.50.97.216 port 52398 Apr 27 13:32:57 ns392434 sshd[10224]: Failed password for invalid user ricoh from 117.50.97.216 port 52398 ssh2 Apr 27 13:48:23 ns392434 sshd[10765]: Invalid user ecommerce from 117.50.97.216 port 60788 Apr 27 13:48:23 ns392434 sshd[10765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.97.216 Apr 27 13:48:23 ns392434 sshd[10765]: Invalid user ecommerce from 117.50.97.216 port 60788 Apr 27 13:48:25 ns392434 sshd[10765]: Failed password for invalid user ecommerce from 117.50.97.216 port 60788 ssh2 Apr 27 13:56:46 ns392434 sshd[11044]: Invalid user admin from 117.50.97.216 port 37914	2020-04-27 21:50:26
148.72.65.10	attackspambots	Apr 27 14:24:04 vpn01 sshd[5541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.65.10 Apr 27 14:24:06 vpn01 sshd[5541]: Failed password for invalid user ftpadm from 148.72.65.10 port 55996 ssh2 ...	2020-04-27 21:30:11
182.1.28.78	attackspam	[Mon Apr 27 18:57:15.406646 2020] [:error] [pid 5829:tid 140575048124160] [client 182.1.28.78:47219] [client 182.1.28.78] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/image-loader-worker-v1.js"] [unique_id "XqbImzsqLtpMvmFBdz70@gACHAI"] ...	2020-04-27 21:22:50
49.235.33.171	attackspam	Apr 27 09:55:02 firewall sshd[25684]: Invalid user zen from 49.235.33.171 Apr 27 09:55:04 firewall sshd[25684]: Failed password for invalid user zen from 49.235.33.171 port 46574 ssh2 Apr 27 10:00:00 firewall sshd[25821]: Invalid user ppldtepe from 49.235.33.171 ...	2020-04-27 21:41:17
180.76.119.34	attack	Apr 27 15:39:52 server sshd[1907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.119.34 Apr 27 15:39:54 server sshd[1907]: Failed password for invalid user brecht from 180.76.119.34 port 44374 ssh2 Apr 27 15:45:40 server sshd[2684]: Failed password for root from 180.76.119.34 port 48216 ssh2 ...	2020-04-27 21:50:44
142.93.172.64	attack	Apr 27 15:14:26 sshd\[26325\]: User root from 142.93.172.64 not allowed because not listed in AllowUsersApr 27 15:14:28 sshd\[26325\]: Failed password for invalid user root from 142.93.172.64 port 56206 ssh2 ...	2020-04-27 21:31:04
13.54.157.85	attackspambots	Apr 27 15:06:10 DAAP sshd[25837]: Invalid user admin from 13.54.157.85 port 54204 Apr 27 15:06:10 DAAP sshd[25837]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.54.157.85 Apr 27 15:06:10 DAAP sshd[25837]: Invalid user admin from 13.54.157.85 port 54204 Apr 27 15:06:12 DAAP sshd[25837]: Failed password for invalid user admin from 13.54.157.85 port 54204 ssh2 Apr 27 15:11:54 DAAP sshd[25976]: Invalid user synadmin from 13.54.157.85 port 51860 ...	2020-04-27 21:47:52
95.71.150.64	attackbots	04/27/2020-07:57:05.872238 95.71.150.64 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-04-27 21:36:20

最近上报的IP列表

238.31.194.205	178.176.166.171	68.183.37.169	34.80.195.79
189.18.236.120	167.172.52.204	82.221.4.63	176.31.120.169
45.153.248.194	45.65.173.26	102.64.159.19	68.183.219.122
129.2.112.144	249.255.96.135	49.248.108.242	182.61.136.167
152.247.71.185	139.226.226.158	66.123.85.223	7.128.39.119