41.129.2.139 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Egypt

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
41.129.20.206	attack	TCP (SYN) 41.129.20.206:21745 -> port 8080, len 40	2020-10-06 04:50:12
41.129.20.206	attack	TCP (SYN) 41.129.20.206:25840 -> port 8080, len 40	2020-10-05 20:53:09
41.129.20.206	attackspam	Unauthorised access (Oct 5) SRC=41.129.20.206 LEN=40 TOS=0x10 PREC=0x40 TTL=50 ID=20832 TCP DPT=8080 WINDOW=12697 SYN Unauthorised access (Oct 4) SRC=41.129.20.206 LEN=40 TOS=0x10 PREC=0x40 TTL=48 ID=14245 TCP DPT=8080 WINDOW=37144 SYN	2020-10-05 12:42:13
41.129.22.209	attack	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-08-28 02:12:58
41.129.21.112	attack	Honeypot attack, port: 5555, PTR: PTR record not found	2020-02-05 05:28:50
41.129.20.13	attackspam	unauthorized connection attempt	2020-01-12 18:18:55
41.129.23.218	attackbotsspam	Unauthorized connection attempt detected from IP address 41.129.23.218 to port 9090	2020-01-05 09:44:55

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.129.2.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45282
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;41.129.2.139.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080900 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 09 20:46:01 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 139.2.129.41.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 139.2.129.41.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
106.12.84.4	attackspam	Lines containing failures of 106.12.84.4 Aug 3 09:39:01 shared02 sshd[5853]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.84.4 user=r.r Aug 3 09:39:02 shared02 sshd[5853]: Failed password for r.r from 106.12.84.4 port 58078 ssh2 Aug 3 09:39:03 shared02 sshd[5853]: Received disconnect from 106.12.84.4 port 58078:11: Bye Bye [preauth] Aug 3 09:39:03 shared02 sshd[5853]: Disconnected from authenticating user r.r 106.12.84.4 port 58078 [preauth] Aug 3 09:44:04 shared02 sshd[7925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.84.4 user=r.r Aug 3 09:44:06 shared02 sshd[7925]: Failed password for r.r from 106.12.84.4 port 45668 ssh2 Aug 3 09:44:06 shared02 sshd[7925]: Received disconnect from 106.12.84.4 port 45668:11: Bye Bye [preauth] Aug 3 09:44:06 shared02 sshd[7925]: Disconnected from authenticating user r.r 106.12.84.4 port 45668 [preauth] ........ ----------------------------------------------- http	2020-08-05 19:00:22
158.69.235.18	attack	Aug 5 02:30:41 Tower sshd[44693]: Connection from 158.69.235.18 port 55880 on 192.168.10.220 port 22 rdomain "" Aug 5 02:30:41 Tower sshd[44693]: Failed password for root from 158.69.235.18 port 55880 ssh2 Aug 5 02:30:41 Tower sshd[44693]: Received disconnect from 158.69.235.18 port 55880:11: Bye Bye [preauth] Aug 5 02:30:41 Tower sshd[44693]: Disconnected from authenticating user root 158.69.235.18 port 55880 [preauth]	2020-08-05 19:16:45
95.9.192.85	attackspambots	Unauthorized connection attempt detected from IP address 95.9.192.85 to port 23	2020-08-05 18:55:20
222.186.175.167	attackbotsspam	Aug 5 13:06:47 ip40 sshd[7679]: Failed password for root from 222.186.175.167 port 16926 ssh2 Aug 5 13:06:52 ip40 sshd[7679]: Failed password for root from 222.186.175.167 port 16926 ssh2 ...	2020-08-05 19:19:22
119.96.120.113	attack	2020-08-05T03:48:00.572778vps-d63064a2 sshd[122005]: User root from 119.96.120.113 not allowed because not listed in AllowUsers 2020-08-05T03:48:00.625061vps-d63064a2 sshd[122005]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.96.120.113 user=root 2020-08-05T03:48:00.572778vps-d63064a2 sshd[122005]: User root from 119.96.120.113 not allowed because not listed in AllowUsers 2020-08-05T03:48:02.335853vps-d63064a2 sshd[122005]: Failed password for invalid user root from 119.96.120.113 port 54990 ssh2 ...	2020-08-05 19:22:05
51.89.136.104	attack	frenzy	2020-08-05 19:19:01
36.26.68.41	attack	Aug 4 20:46:28 pl3server sshd[28552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.26.68.41 user=r.r Aug 4 20:46:30 pl3server sshd[28552]: Failed password for r.r from 36.26.68.41 port 52402 ssh2 Aug 4 20:46:32 pl3server sshd[28552]: Received disconnect from 36.26.68.41 port 52402:11: Bye Bye [preauth] Aug 4 20:46:32 pl3server sshd[28552]: Disconnected from 36.26.68.41 port 52402 [preauth] Aug 4 20:54:16 pl3server sshd[861]: Connection closed by 36.26.68.41 port 44112 [preauth] Aug 4 21:00:25 pl3server sshd[5157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.26.68.41 user=r.r Aug 4 21:00:27 pl3server sshd[5157]: Failed password for r.r from 36.26.68.41 port 50770 ssh2 Aug 4 21:00:27 pl3server sshd[5157]: Received disconnect from 36.26.68.41 port 50770:11: Bye Bye [preauth] Aug 4 21:00:27 pl3server sshd[5157]: Disconnected from 36.26.68.41 port 50770 [preauth] Aug 4 21........ -------------------------------	2020-08-05 19:26:44
182.75.33.14	attackbotsspam	Aug 5 06:55:29 ip106 sshd[32108]: Failed password for root from 182.75.33.14 port 28114 ssh2 ...	2020-08-05 19:06:47
212.83.132.45	attack	[2020-08-05 06:49:00] NOTICE[1248] chan_sip.c: Registration from '"1253"' failed for '212.83.132.45:9343' - Wrong password [2020-08-05 06:49:00] SECURITY[1275] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-05T06:49:00.946-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1253",SessionID="0x7f27204a5448",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.132.45/9343",Challenge="65670887",ReceivedChallenge="65670887",ReceivedHash="b107c4f082e535103082a78dfe55e326" [2020-08-05 06:49:27] NOTICE[1248] chan_sip.c: Registration from '"1259"' failed for '212.83.132.45:9652' - Wrong password [2020-08-05 06:49:27] SECURITY[1275] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-05T06:49:27.325-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1259",SessionID="0x7f27200a09d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212. ...	2020-08-05 19:07:39
106.198.45.237	attack	Port probing on unauthorized port 445	2020-08-05 18:57:33
210.211.107.3	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-05T03:39:38Z and 2020-08-05T03:47:58Z	2020-08-05 19:24:01
185.38.3.138	attack	Aug 5 09:33:37 sip sshd[8402]: Failed password for root from 185.38.3.138 port 55022 ssh2 Aug 5 09:43:57 sip sshd[11283]: Failed password for root from 185.38.3.138 port 54018 ssh2	2020-08-05 19:25:28
218.92.0.148	attack	Aug 5 12:53:03 santamaria sshd\[11028\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.148 user=root Aug 5 12:53:05 santamaria sshd\[11028\]: Failed password for root from 218.92.0.148 port 34620 ssh2 Aug 5 12:53:11 santamaria sshd\[11030\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.148 user=root ...	2020-08-05 18:54:16
103.239.254.70	attack	Dovecot Invalid User Login Attempt.	2020-08-05 19:05:17
218.26.204.42	attackbots	Port Scan ...	2020-08-05 19:18:07

最近上报的IP列表

89.46.104.161	35.184.103.114	83.73.51.163	103.120.178.112
117.35.219.145	52.15.134.14	115.49.34.131	220.129.48.227
212.224.126.76	184.168.193.140	154.0.164.181	78.32.218.249
114.236.158.189	114.100.117.244	169.232.76.199	186.212.109.21
47.96.166.75	113.109.78.46	23.254.142.160	95.216.113.20

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表