58.20.129.76 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): CNC Group HuNan YueYang Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Jul 19 11:48:40 home sshd[25413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.76 Jul 19 11:48:42 home sshd[25413]: Failed password for invalid user ao from 58.20.129.76 port 37728 ssh2 Jul 19 11:54:32 home sshd[26016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.76 ...	2020-07-19 18:23:19
attackbotsspam	TCP (SYN) 58.20.129.76:45841 -> port 32763, len 44	2020-07-02 00:15:31
attack	firewall-block, port(s): 354/tcp	2020-06-22 16:40:49
attackbots	Invalid user xoh from 58.20.129.76 port 38308	2020-06-14 15:10:45
attack	Jun 12 13:28:38 abendstille sshd\[4908\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.76 user=root Jun 12 13:28:39 abendstille sshd\[4908\]: Failed password for root from 58.20.129.76 port 51802 ssh2 Jun 12 13:29:37 abendstille sshd\[5839\]: Invalid user admin from 58.20.129.76 Jun 12 13:29:37 abendstille sshd\[5839\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.76 Jun 12 13:29:38 abendstille sshd\[5839\]: Failed password for invalid user admin from 58.20.129.76 port 56298 ssh2 ...	2020-06-12 19:59:22
attack	$f2bV_matches	2020-06-07 12:58:24
attackbotsspam	Jun 5 20:06:54 server sshd[29058]: Failed password for root from 58.20.129.76 port 54508 ssh2 Jun 5 20:09:58 server sshd[29506]: Failed password for root from 58.20.129.76 port 41512 ssh2 ...	2020-06-06 02:32:17
attackspambots	Jun 1 16:57:36 sip sshd[495531]: Failed password for root from 58.20.129.76 port 47398 ssh2 Jun 1 17:02:25 sip sshd[495545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.76 user=root Jun 1 17:02:27 sip sshd[495545]: Failed password for root from 58.20.129.76 port 42454 ssh2 ...	2020-06-01 23:26:29
attackspambots	Invalid user admin from 58.20.129.76 port 37486	2020-05-30 14:35:31
attack	2020-05-22T21:40:54.592140shield sshd\[20941\]: Invalid user cdb from 58.20.129.76 port 57828 2020-05-22T21:40:54.595635shield sshd\[20941\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.76 2020-05-22T21:40:56.249936shield sshd\[20941\]: Failed password for invalid user cdb from 58.20.129.76 port 57828 ssh2 2020-05-22T21:44:49.606747shield sshd\[21625\]: Invalid user pbz from 58.20.129.76 port 49878 2020-05-22T21:44:49.610415shield sshd\[21625\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.76	2020-05-23 05:57:01
attack	2020-05-14 22:51:10.222375-0500 localhost sshd[23342]: Failed password for root from 58.20.129.76 port 37795 ssh2	2020-05-15 14:27:54
attackspambots	Invalid user userftp from 58.20.129.76 port 59045	2020-05-15 03:33:13
attackbotsspam	Ssh brute force	2020-05-13 08:12:00
attackbotsspam	$f2bV_matches	2020-05-12 18:55:05
attack	Apr 22 05:56:33 debian-2gb-nbg1-2 kernel: \[9786748.407793\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=58.20.129.76 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=232 ID=30979 PROTO=TCP SPT=42722 DPT=19308 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-22 13:08:40
attackspam	$f2bV_matches	2020-04-14 03:38:00
attackbotsspam	Apr 5 17:25:37 meumeu sshd[9268]: Failed password for root from 58.20.129.76 port 51763 ssh2 Apr 5 17:30:19 meumeu sshd[9798]: Failed password for root from 58.20.129.76 port 45884 ssh2 ...	2020-04-06 01:47:27
attackbots	Feb 15 14:51:19 sd-53420 sshd\[28636\]: Invalid user rohr from 58.20.129.76 Feb 15 14:51:19 sd-53420 sshd\[28636\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.76 Feb 15 14:51:22 sd-53420 sshd\[28636\]: Failed password for invalid user rohr from 58.20.129.76 port 49303 ssh2 Feb 15 14:54:07 sd-53420 sshd\[28838\]: Invalid user zhouh from 58.20.129.76 Feb 15 14:54:07 sd-53420 sshd\[28838\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.76 ...	2020-02-15 22:02:53
attackbots	Invalid user hang from 58.20.129.76 port 37287	2020-02-14 21:36:29
attackbots	SSH Brute-Force reported by Fail2Ban	2020-02-06 18:17:34
attackspam	Automatic report - Banned IP Access	2020-02-03 16:34:04
attackbotsspam	Jan 31 12:53:06 MK-Soft-VM8 sshd[30045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.76 Jan 31 12:53:08 MK-Soft-VM8 sshd[30045]: Failed password for invalid user melina from 58.20.129.76 port 59487 ssh2 ...	2020-01-31 20:11:50
attackbotsspam	SSH login attempts brute force.	2020-01-29 16:20:03
attackbots	Jan 1 10:39:39 sd-53420 sshd\[19345\]: Invalid user centos from 58.20.129.76 Jan 1 10:39:39 sd-53420 sshd\[19345\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.76 Jan 1 10:39:40 sd-53420 sshd\[19345\]: Failed password for invalid user centos from 58.20.129.76 port 51049 ssh2 Jan 1 10:42:46 sd-53420 sshd\[20395\]: User lp from 58.20.129.76 not allowed because none of user's groups are listed in AllowGroups Jan 1 10:42:46 sd-53420 sshd\[20395\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.76 user=lp ...	2020-01-01 17:44:06
attackbotsspam	2019-12-16T21:10:34.051474shield sshd\[8097\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.76 user=root 2019-12-16T21:10:36.851978shield sshd\[8097\]: Failed password for root from 58.20.129.76 port 35844 ssh2 2019-12-16T21:15:26.590067shield sshd\[9134\]: Invalid user backup from 58.20.129.76 port 57684 2019-12-16T21:15:26.594637shield sshd\[9134\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.76 2019-12-16T21:15:28.481701shield sshd\[9134\]: Failed password for invalid user backup from 58.20.129.76 port 57684 ssh2	2019-12-17 05:16:23
attackspam	SSH invalid-user multiple login attempts	2019-12-10 07:12:54
attackspam	2019-11-10T16:44:14.980964abusebot-6.cloudsearch.cf sshd\[13963\]: Invalid user aerospacemodeler from 58.20.129.76 port 46820	2019-11-11 01:11:24
attackspam	2019-11-10T05:25:30.272682abusebot-5.cloudsearch.cf sshd\[21842\]: Invalid user 12345678 from 58.20.129.76 port 48343	2019-11-10 14:06:41
attack	SSH Brute-Force reported by Fail2Ban	2019-11-07 16:37:43
attackbotsspam	Nov 5 15:06:03 venus sshd\[15583\]: Invalid user training from 58.20.129.76 port 50215 Nov 5 15:06:03 venus sshd\[15583\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.76 Nov 5 15:06:05 venus sshd\[15583\]: Failed password for invalid user training from 58.20.129.76 port 50215 ssh2 ...	2019-11-05 23:28:19

相同子网IP讨论:

IP	类型	评论内容	时间
58.20.129.46	attackspambots	May 5 18:48:27 kapalua sshd\[18287\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.46 user=root May 5 18:48:28 kapalua sshd\[18287\]: Failed password for root from 58.20.129.46 port 48066 ssh2 May 5 18:52:35 kapalua sshd\[18618\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.46 user=root May 5 18:52:37 kapalua sshd\[18618\]: Failed password for root from 58.20.129.46 port 37500 ssh2 May 5 18:57:07 kapalua sshd\[18940\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.46 user=root	2020-05-06 13:06:07
58.20.129.46	attack	Apr 14 06:47:56 legacy sshd[12374]: Failed password for bin from 58.20.129.46 port 58398 ssh2 Apr 14 06:52:05 legacy sshd[12542]: Failed password for root from 58.20.129.46 port 43936 ssh2 Apr 14 06:56:07 legacy sshd[12645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.46 ...	2020-04-14 13:03:37
58.20.129.46	attack	Lines containing failures of 58.20.129.46 Apr 12 00:56:22 shared11 sshd[15050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.46 user=r.r Apr 12 00:56:24 shared11 sshd[15050]: Failed password for r.r from 58.20.129.46 port 50412 ssh2 Apr 12 00:56:25 shared11 sshd[15050]: Received disconnect from 58.20.129.46 port 50412:11: Bye Bye [preauth] Apr 12 00:56:25 shared11 sshd[15050]: Disconnected from authenticating user r.r 58.20.129.46 port 50412 [preauth] Apr 12 01:14:39 shared11 sshd[20941]: Invalid user comrades from 58.20.129.46 port 57336 Apr 12 01:14:39 shared11 sshd[20941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.46 Apr 12 01:14:41 shared11 sshd[20941]: Failed password for invalid user comrades from 58.20.129.46 port 57336 ssh2 Apr 12 01:14:42 shared11 sshd[20941]: Received disconnect from 58.20.129.46 port 57336:11: Bye Bye [preauth] Apr 12 01:14:42 shared11........ ------------------------------	2020-04-12 08:09:26
58.20.129.50	attackbotsspam	1433/tcp 1433/tcp 1433/tcp... [2019-10-17/11-15]4pkt,1pt.(tcp)	2019-11-16 14:00:23

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 58.20.129.76
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43831
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;58.20.129.76.			IN	A

;; AUTHORITY SECTION:
.			470	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102900 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 29 16:56:22 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 76.129.20.58.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 100.100.2.136, trying next server
** server can't find 76.129.20.58.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
63.79.60.180	attackbots	2019-12-10T17:50:03.303881abusebot-8.cloudsearch.cf sshd\[25612\]: Invalid user nauthy from 63.79.60.180 port 58672	2019-12-11 01:55:18
170.0.13.218	attack	firewall-block, port(s): 445/tcp	2019-12-11 01:41:30
51.255.35.41	attackbots	Dec 10 17:17:04 ns41 sshd[27630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.35.41	2019-12-11 01:30:05
176.118.30.155	attackbots	Dec 10 05:47:20 web1 sshd\[10486\]: Invalid user steelers from 176.118.30.155 Dec 10 05:47:20 web1 sshd\[10486\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.118.30.155 Dec 10 05:47:22 web1 sshd\[10486\]: Failed password for invalid user steelers from 176.118.30.155 port 56920 ssh2 Dec 10 05:54:03 web1 sshd\[11161\]: Invalid user @\#\$WERSDF from 176.118.30.155 Dec 10 05:54:03 web1 sshd\[11161\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.118.30.155	2019-12-11 01:48:29
191.243.143.170	attack	Dec 10 07:32:41 wbs sshd\[21140\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.243.143.170 user=root Dec 10 07:32:43 wbs sshd\[21140\]: Failed password for root from 191.243.143.170 port 46570 ssh2 Dec 10 07:39:38 wbs sshd\[21974\]: Invalid user herronald from 191.243.143.170 Dec 10 07:39:38 wbs sshd\[21974\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.243.143.170 Dec 10 07:39:39 wbs sshd\[21974\]: Failed password for invalid user herronald from 191.243.143.170 port 55402 ssh2	2019-12-11 01:49:35
213.91.164.126	attackbots	port scan and connect, tcp 80 (http)	2019-12-11 01:34:07
81.201.60.150	attackspambots	Dec 10 07:12:35 web1 sshd\[19681\]: Invalid user carlis from 81.201.60.150 Dec 10 07:12:35 web1 sshd\[19681\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.201.60.150 Dec 10 07:12:38 web1 sshd\[19681\]: Failed password for invalid user carlis from 81.201.60.150 port 45545 ssh2 Dec 10 07:17:54 web1 sshd\[20231\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.201.60.150 user=games Dec 10 07:17:57 web1 sshd\[20231\]: Failed password for games from 81.201.60.150 port 49263 ssh2	2019-12-11 01:21:25
120.138.117.102	attackbots	proto=tcp . spt=44702 . dpt=25 . (Listed on dnsbl-sorbs plus abuseat-org and spamcop) (774)	2019-12-11 01:50:27
50.35.30.243	attackspambots	Dec 10 06:25:59 hanapaa sshd\[15930\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail5.abcsitehosting.com user=root Dec 10 06:26:00 hanapaa sshd\[15930\]: Failed password for root from 50.35.30.243 port 44507 ssh2 Dec 10 06:31:50 hanapaa sshd\[16467\]: Invalid user 123 from 50.35.30.243 Dec 10 06:31:50 hanapaa sshd\[16467\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail5.abcsitehosting.com Dec 10 06:31:51 hanapaa sshd\[16467\]: Failed password for invalid user 123 from 50.35.30.243 port 48909 ssh2	2019-12-11 01:39:38
31.221.121.62	attackspam	Fake Googlebot	2019-12-11 01:20:34
71.105.113.251	attack	Dec 10 17:16:30 web8 sshd\[4680\]: Invalid user info from 71.105.113.251 Dec 10 17:16:30 web8 sshd\[4680\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=71.105.113.251 Dec 10 17:16:33 web8 sshd\[4680\]: Failed password for invalid user info from 71.105.113.251 port 37768 ssh2 Dec 10 17:21:41 web8 sshd\[7267\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=71.105.113.251 user=root Dec 10 17:21:43 web8 sshd\[7267\]: Failed password for root from 71.105.113.251 port 45830 ssh2	2019-12-11 01:22:38
191.35.74.74	attack	Dec 10 17:15:05 sauna sshd[129868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.35.74.74 Dec 10 17:15:08 sauna sshd[129868]: Failed password for invalid user host from 191.35.74.74 port 46913 ssh2 ...	2019-12-11 01:51:54
122.144.211.235	attack	2019-12-10T09:46:46.739909ns547587 sshd\[13132\]: Invalid user backup from 122.144.211.235 port 42816 2019-12-10T09:46:46.745375ns547587 sshd\[13132\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.144.211.235 2019-12-10T09:46:48.578423ns547587 sshd\[13132\]: Failed password for invalid user backup from 122.144.211.235 port 42816 ssh2 2019-12-10T09:52:35.551104ns547587 sshd\[22347\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.144.211.235 user=root ...	2019-12-11 01:30:32
172.104.124.229	attackspam	SIP/5060 Probe, BF, Hack -	2019-12-11 01:18:32
188.165.194.169	attackbots	Dec 10 12:40:16 TORMINT sshd\[28950\]: Invalid user ctrls from 188.165.194.169 Dec 10 12:40:16 TORMINT sshd\[28950\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.165.194.169 Dec 10 12:40:19 TORMINT sshd\[28950\]: Failed password for invalid user ctrls from 188.165.194.169 port 38392 ssh2 ...	2019-12-11 01:56:53

最近上报的IP列表

96.126.94.179	136.57.166.60	111.9.222.127	132.216.144.15
38.50.83.66	190.213.155.37	233.42.183.76	130.25.207.176
42.111.175.52	2.159.217.29	107.90.74.77	101.119.152.173
85.9.195.136	84.2.244.194	143.91.58.15	134.100.63.179
115.57.131.212	181.228.147.141	106.124.131.194	161.228.33.248