94.191.29.221 - IPInfo

基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): Shenzhen Tencent Computer Systems Company Limited

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Oct 13 04:35:41 plusreed sshd[21190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.29.221 user=root Oct 13 04:35:43 plusreed sshd[21190]: Failed password for root from 94.191.29.221 port 39732 ssh2 ...	2019-10-13 19:35:15
attackspam	$f2bV_matches	2019-10-11 01:57:01
attack	Oct 8 05:55:21 xtremcommunity sshd\[308404\]: Invalid user P4ssw0rd111 from 94.191.29.221 port 54540 Oct 8 05:55:21 xtremcommunity sshd\[308404\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.29.221 Oct 8 05:55:23 xtremcommunity sshd\[308404\]: Failed password for invalid user P4ssw0rd111 from 94.191.29.221 port 54540 ssh2 Oct 8 05:59:41 xtremcommunity sshd\[308514\]: Invalid user Roland2017 from 94.191.29.221 port 56208 Oct 8 05:59:41 xtremcommunity sshd\[308514\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.29.221 ...	2019-10-08 19:32:10
attackspambots	Sep 21 06:47:01 www1 sshd\[26807\]: Invalid user webmail from 94.191.29.221Sep 21 06:47:04 www1 sshd\[26807\]: Failed password for invalid user webmail from 94.191.29.221 port 33402 ssh2Sep 21 06:51:35 www1 sshd\[27315\]: Invalid user xj from 94.191.29.221Sep 21 06:51:37 www1 sshd\[27315\]: Failed password for invalid user xj from 94.191.29.221 port 34840 ssh2Sep 21 06:56:12 www1 sshd\[27830\]: Invalid user 777 from 94.191.29.221Sep 21 06:56:14 www1 sshd\[27830\]: Failed password for invalid user 777 from 94.191.29.221 port 36286 ssh2 ...	2019-09-21 12:27:41
attackspambots	Sep 14 01:20:57 php1 sshd\[31369\]: Invalid user amsys from 94.191.29.221 Sep 14 01:20:58 php1 sshd\[31369\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.29.221 Sep 14 01:21:00 php1 sshd\[31369\]: Failed password for invalid user amsys from 94.191.29.221 port 50168 ssh2 Sep 14 01:26:27 php1 sshd\[32591\]: Invalid user fagan from 94.191.29.221 Sep 14 01:26:27 php1 sshd\[32591\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.29.221	2019-09-14 19:34:39
attackbots	Sep 5 15:36:23 xtremcommunity sshd\[7144\]: Invalid user 123456 from 94.191.29.221 port 35252 Sep 5 15:36:23 xtremcommunity sshd\[7144\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.29.221 Sep 5 15:36:26 xtremcommunity sshd\[7144\]: Failed password for invalid user 123456 from 94.191.29.221 port 35252 ssh2 Sep 5 15:40:13 xtremcommunity sshd\[7306\]: Invalid user 1 from 94.191.29.221 port 38702 Sep 5 15:40:13 xtremcommunity sshd\[7306\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.29.221 ...	2019-09-06 04:34:39
attackspambots	Aug 15 08:32:54 tdfoods sshd\[15178\]: Invalid user samba from 94.191.29.221 Aug 15 08:32:54 tdfoods sshd\[15178\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.29.221 Aug 15 08:32:56 tdfoods sshd\[15178\]: Failed password for invalid user samba from 94.191.29.221 port 60808 ssh2 Aug 15 08:38:57 tdfoods sshd\[15698\]: Invalid user ext from 94.191.29.221 Aug 15 08:38:57 tdfoods sshd\[15698\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.29.221	2019-08-16 03:15:25
attackspambots	k+ssh-bruteforce	2019-08-04 13:04:16
attack	Feb 2 10:28:17 vtv3 sshd\[31140\]: Invalid user Administrator from 94.191.29.221 port 53506 Feb 2 10:28:17 vtv3 sshd\[31140\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.29.221 Feb 2 10:28:20 vtv3 sshd\[31140\]: Failed password for invalid user Administrator from 94.191.29.221 port 53506 ssh2 Feb 2 10:34:14 vtv3 sshd\[32630\]: Invalid user zabbix from 94.191.29.221 port 57002 Feb 2 10:34:14 vtv3 sshd\[32630\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.29.221 Feb 20 03:58:21 vtv3 sshd\[6492\]: Invalid user cms from 94.191.29.221 port 33302 Feb 20 03:58:21 vtv3 sshd\[6492\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.29.221 Feb 20 03:58:23 vtv3 sshd\[6492\]: Failed password for invalid user cms from 94.191.29.221 port 33302 ssh2 Feb 20 04:05:36 vtv3 sshd\[8983\]: Invalid user ttt from 94.191.29.221 port 51742 Feb 20 04:05:36 vtv3 sshd\[8983\]:	2019-07-20 11:22:32
attackbots	Jul 6 20:24:21 lnxmysql61 sshd[4865]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.29.221 Jul 6 20:24:21 lnxmysql61 sshd[4865]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.29.221	2019-07-07 05:07:17
attackspam	Jul 1 08:36:42 gcems sshd\[19030\]: Invalid user user from 94.191.29.221 port 32774 Jul 1 08:36:43 gcems sshd\[19030\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.29.221 Jul 1 08:36:44 gcems sshd\[19030\]: Failed password for invalid user user from 94.191.29.221 port 32774 ssh2 Jul 1 08:37:38 gcems sshd\[19047\]: Invalid user user2 from 94.191.29.221 port 39446 Jul 1 08:37:38 gcems sshd\[19047\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.29.221 ...	2019-07-02 01:10:06

相同子网IP讨论:

IP	类型	评论内容	时间
94.191.29.65	attackspam	Unauthorized SSH login attempts	2019-08-22 16:44:32

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.191.29.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13352
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.191.29.221.			IN	A

;; AUTHORITY SECTION:
.			3044	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019033102 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 01 13:17:37 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 221.29.191.94.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 221.29.191.94.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
201.158.35.70	attack	2020-08-15T20:42:57.117262randservbullet-proofcloud-66.localdomain sshd[18833]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.158.35.70 user=root 2020-08-15T20:42:59.402074randservbullet-proofcloud-66.localdomain sshd[18833]: Failed password for root from 201.158.35.70 port 58840 ssh2 2020-08-15T20:45:58.662556randservbullet-proofcloud-66.localdomain sshd[18851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.158.35.70 user=root 2020-08-15T20:46:00.460772randservbullet-proofcloud-66.localdomain sshd[18851]: Failed password for root from 201.158.35.70 port 56505 ssh2 ...	2020-08-16 05:39:32
172.81.204.249	attackspam	Aug 15 23:12:28 electroncash sshd[363]: Failed password for root from 172.81.204.249 port 51267 ssh2 Aug 15 23:14:45 electroncash sshd[1026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.81.204.249 user=root Aug 15 23:14:47 electroncash sshd[1026]: Failed password for root from 172.81.204.249 port 53146 ssh2 Aug 15 23:17:09 electroncash sshd[1834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.81.204.249 user=root Aug 15 23:17:10 electroncash sshd[1834]: Failed password for root from 172.81.204.249 port 28439 ssh2 ...	2020-08-16 05:25:32
106.12.175.38	attackbots	Aug 15 22:27:51 myvps sshd[21021]: Failed password for root from 106.12.175.38 port 44710 ssh2 Aug 15 22:43:31 myvps sshd[30957]: Failed password for root from 106.12.175.38 port 39068 ssh2 ...	2020-08-16 05:20:23
219.75.134.27	attack	Aug 15 22:42:46 sso sshd[24639]: Failed password for root from 219.75.134.27 port 32831 ssh2 ...	2020-08-16 05:10:26
122.202.32.70	attackbotsspam	Aug 15 09:20:31 serwer sshd\[32750\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.202.32.70 user=root Aug 15 09:20:33 serwer sshd\[32750\]: Failed password for root from 122.202.32.70 port 38128 ssh2 Aug 15 09:29:05 serwer sshd\[5859\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.202.32.70 user=root ...	2020-08-16 05:18:33
222.186.190.14	attackspambots	Aug 15 17:12:55 ny01 sshd[16888]: Failed password for root from 222.186.190.14 port 40955 ssh2 Aug 15 17:12:56 ny01 sshd[16888]: Failed password for root from 222.186.190.14 port 40955 ssh2 Aug 15 17:12:59 ny01 sshd[16888]: Failed password for root from 222.186.190.14 port 40955 ssh2	2020-08-16 05:19:37
121.21.130.161	attack	(ftpd) Failed FTP login from 121.21.130.161 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Aug 16 01:49:16 ir1 pure-ftpd: (?@121.21.130.161) [WARNING] Authentication failed for user [anonymous]	2020-08-16 05:38:07
46.235.72.115	attackspambots	Aug 15 22:46:32 jane sshd[1353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.235.72.115 Aug 15 22:46:33 jane sshd[1353]: Failed password for invalid user Pass12345!@# from 46.235.72.115 port 53398 ssh2 ...	2020-08-16 05:13:31
141.98.81.210	attack	Failed none for invalid user guest from 141.98.81.210 port 42431 ssh2 Invalid user admin from 141.98.81.210 port 44259 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.210 Invalid user admin from 141.98.81.210 port 44259 Failed password for invalid user admin from 141.98.81.210 port 44259 ssh2	2020-08-16 05:24:12
45.174.223.250	attack	Attempted connection to port 445.	2020-08-16 05:43:12
91.204.248.28	attackspambots	Aug 15 22:57:17 abendstille sshd\[4524\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.204.248.28 user=root Aug 15 22:57:19 abendstille sshd\[4524\]: Failed password for root from 91.204.248.28 port 39288 ssh2 Aug 15 23:01:00 abendstille sshd\[7968\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.204.248.28 user=root Aug 15 23:01:02 abendstille sshd\[7968\]: Failed password for root from 91.204.248.28 port 49738 ssh2 Aug 15 23:04:50 abendstille sshd\[12280\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.204.248.28 user=root ...	2020-08-16 05:37:00
222.186.160.114	attack	2020-08-16T00:02:31.336256lavrinenko.info sshd[30322]: Failed password for root from 222.186.160.114 port 57120 ssh2 2020-08-16T00:04:39.278117lavrinenko.info sshd[30383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.160.114 user=root 2020-08-16T00:04:40.970705lavrinenko.info sshd[30383]: Failed password for root from 222.186.160.114 port 35586 ssh2 2020-08-16T00:06:39.331906lavrinenko.info sshd[30404]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.160.114 user=root 2020-08-16T00:06:41.165100lavrinenko.info sshd[30404]: Failed password for root from 222.186.160.114 port 41790 ssh2 ...	2020-08-16 05:12:39
62.234.68.31	attackspambots	Lines containing failures of 62.234.68.31 Aug 12 05:14:06 shared02 sshd[2635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.68.31 user=r.r Aug 12 05:14:09 shared02 sshd[2635]: Failed password for r.r from 62.234.68.31 port 52492 ssh2 Aug 12 05:14:09 shared02 sshd[2635]: Received disconnect from 62.234.68.31 port 52492:11: Bye Bye [preauth] Aug 12 05:14:09 shared02 sshd[2635]: Disconnected from authenticating user r.r 62.234.68.31 port 52492 [preauth] Aug 12 05:25:01 shared02 sshd[6122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.68.31 user=r.r Aug 12 05:25:03 shared02 sshd[6122]: Failed password for r.r from 62.234.68.31 port 39424 ssh2 Aug 12 05:25:04 shared02 sshd[6122]: Received disconnect from 62.234.68.31 port 39424:11: Bye Bye [preauth] Aug 12 05:25:04 shared02 sshd[6122]: Disconnected from authenticating user r.r 62.234.68.31 port 39424 [preauth] Aug 12 05:29:16........ ------------------------------	2020-08-16 05:37:29
201.147.239.23	attack	[f2b] sshd bruteforce, retries: 1	2020-08-16 05:31:45
141.98.81.209	attackspam	pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.209 Invalid user ubnt from 141.98.81.209 port 32895 Failed password for invalid user ubnt from 141.98.81.209 port 32895 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.209 user=root Failed password for root from 141.98.81.209 port 34663 ssh2	2020-08-16 05:44:43

最近上报的IP列表

115.95.178.170	77.218.58.4	193.112.52.201	186.235.84.238
37.187.54.45	203.109.156.50	134.0.195.170	218.92.0.187
36.67.204.186	54.69.16.110	203.109.156.35	176.53.43.49
51.75.255.166	203.109.156.68	59.1.48.98	122.70.153.225
175.167.26.200	173.217.225.14	148.251.113.238	192.99.245.135