120.132.12.136

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Netcom Broadband Corporation Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Jul 26 14:14:13 Ubuntu-1404-trusty-64-minimal sshd\[21298\]: Invalid user ambari from 120.132.12.136 Jul 26 14:14:13 Ubuntu-1404-trusty-64-minimal sshd\[21298\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.12.136 Jul 26 14:14:15 Ubuntu-1404-trusty-64-minimal sshd\[21298\]: Failed password for invalid user ambari from 120.132.12.136 port 57954 ssh2 Jul 26 14:25:25 Ubuntu-1404-trusty-64-minimal sshd\[27165\]: Invalid user kal from 120.132.12.136 Jul 26 14:25:25 Ubuntu-1404-trusty-64-minimal sshd\[27165\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.12.136	2020-07-26 20:40:22
attackbotsspam	Invalid user guest from 120.132.12.136 port 50218	2020-07-26 16:35:33

类型

评论内容

时间

attackspam

Jul 26 14:14:13 Ubuntu-1404-trusty-64-minimal sshd\[21298\]: Invalid user ambari from 120.132.12.136
Jul 26 14:14:13 Ubuntu-1404-trusty-64-minimal sshd\[21298\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.12.136
Jul 26 14:14:15 Ubuntu-1404-trusty-64-minimal sshd\[21298\]: Failed password for invalid user ambari from 120.132.12.136 port 57954 ssh2
Jul 26 14:25:25 Ubuntu-1404-trusty-64-minimal sshd\[27165\]: Invalid user kal from 120.132.12.136
Jul 26 14:25:25 Ubuntu-1404-trusty-64-minimal sshd\[27165\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.12.136

2020-07-26 20:40:22

attackbotsspam

Invalid user guest from 120.132.12.136 port 50218

2020-07-26 16:35:33

相同子网IP讨论:

IP	类型	评论内容	时间
120.132.124.179	attackbots	TCP (SYN) 120.132.124.179:14367 -> port 1433, len 40	2020-09-30 00:03:21
120.132.124.179	attack	TCP (SYN) 120.132.124.179:14367 -> port 1433, len 40	2020-09-29 16:20:06
120.132.12.162	attack	Aug 22 15:08:03 NPSTNNYC01T sshd[312]: Failed password for root from 120.132.12.162 port 40186 ssh2 Aug 22 15:09:34 NPSTNNYC01T sshd[461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.12.162 Aug 22 15:09:36 NPSTNNYC01T sshd[461]: Failed password for invalid user g from 120.132.12.162 port 50616 ssh2 ...	2020-08-23 03:15:02
120.132.12.162	attackspam	$f2bV_matches	2020-08-14 12:26:01
120.132.12.162	attackbots	failed root login	2020-08-10 23:08:53
120.132.12.162	attackbots	k+ssh-bruteforce	2020-08-07 22:50:03
120.132.12.162	attackbotsspam	SSH Brute Force	2020-07-29 15:19:13
120.132.12.162	attack	Invalid user ginelle from 120.132.12.162 port 57431	2020-07-24 19:58:48
120.132.124.179	attackbots	Unauthorized connection attempt detected from IP address 120.132.124.179 to port 1433	2020-07-07 03:57:03
120.132.12.162	attackspambots	Jun 30 00:01:54 ovpn sshd\[29377\]: Invalid user ids from 120.132.12.162 Jun 30 00:01:54 ovpn sshd\[29377\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.12.162 Jun 30 00:01:56 ovpn sshd\[29377\]: Failed password for invalid user ids from 120.132.12.162 port 56831 ssh2 Jun 30 00:05:19 ovpn sshd\[30160\]: Invalid user black from 120.132.12.162 Jun 30 00:05:19 ovpn sshd\[30160\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.12.162	2020-06-30 07:36:50
120.132.120.7	attack	Jun 29 13:29:45 raspberrypi sshd[14522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.120.7 Jun 29 13:29:46 raspberrypi sshd[14522]: Failed password for invalid user zzg from 120.132.120.7 port 43716 ssh2 ...	2020-06-30 02:00:51
120.132.124.179	attack	port scan and connect, tcp 1433 (ms-sql-s)	2020-06-27 22:41:46
120.132.120.7	attackbots	Jun 24 01:25:33 lnxweb61 sshd[26882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.120.7	2020-06-24 08:02:50
120.132.124.179	attackspam	Unauthorized connection attempt from IP address 120.132.124.179 on Port 445(SMB)	2020-06-20 19:45:52
120.132.12.162	attackbotsspam	Invalid user rabie from 120.132.12.162 port 40985	2020-06-19 08:23:33

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.132.12.136
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19741
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;120.132.12.136.			IN	A

;; AUTHORITY SECTION:
.			515	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072600 1800 900 604800 86400

;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jul 26 16:35:27 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 136.12.132.120.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 136.12.132.120.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
114.219.157.97	attackbots	Jun 24 03:45:35 onepixel sshd[1847633]: Invalid user bhaskar from 114.219.157.97 port 51339 Jun 24 03:45:35 onepixel sshd[1847633]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.219.157.97 Jun 24 03:45:35 onepixel sshd[1847633]: Invalid user bhaskar from 114.219.157.97 port 51339 Jun 24 03:45:38 onepixel sshd[1847633]: Failed password for invalid user bhaskar from 114.219.157.97 port 51339 ssh2 Jun 24 03:49:01 onepixel sshd[1849310]: Invalid user master from 114.219.157.97 port 46517	2020-06-24 19:43:48
218.92.0.133	attack	Jun 24 13:25:22 santamaria sshd\[22373\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.133 user=root Jun 24 13:25:24 santamaria sshd\[22373\]: Failed password for root from 218.92.0.133 port 20416 ssh2 Jun 24 13:25:27 santamaria sshd\[22373\]: Failed password for root from 218.92.0.133 port 20416 ssh2 ...	2020-06-24 19:26:45
133.242.155.85	attack	detected by Fail2Ban	2020-06-24 19:40:14
51.178.8.29	attackspam	From return-leo=toptec.net.br@conectoficial.we.bs Tue Jun 23 20:49:10 2020 Received: from conf915-mx-4.conectoficial.we.bs ([51.178.8.29]:51268)	2020-06-24 19:32:28
217.251.109.79	attackbots	SSH Brute-Force reported by Fail2Ban	2020-06-24 19:27:27
193.70.0.42	attack	2020-06-24T11:06:00.310884homeassistant sshd[10559]: Invalid user admin from 193.70.0.42 port 59628 2020-06-24T11:06:00.324297homeassistant sshd[10559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.0.42 ...	2020-06-24 19:38:06
154.205.252.55	attackbotsspam	TCP (SYN) 154.205.252.55:43250 -> port 1698, len 44	2020-06-24 19:38:56
106.12.131.161	attackspam	Jun 24 07:50:03 rotator sshd\[2076\]: Invalid user suporte from 106.12.131.161Jun 24 07:50:04 rotator sshd\[2076\]: Failed password for invalid user suporte from 106.12.131.161 port 60644 ssh2Jun 24 07:51:49 rotator sshd\[2869\]: Failed password for root from 106.12.131.161 port 53204 ssh2Jun 24 07:53:28 rotator sshd\[2881\]: Failed password for root from 106.12.131.161 port 45758 ssh2Jun 24 07:55:10 rotator sshd\[3027\]: Invalid user testuser from 106.12.131.161Jun 24 07:55:12 rotator sshd\[3027\]: Failed password for invalid user testuser from 106.12.131.161 port 38316 ssh2 ...	2020-06-24 19:37:52
218.4.239.146	attackbotsspam	2020-06-24T17:30:58.075025mx1.h3z.jp postfix/smtpd[8596]: warning: unknown[218.4.239.146]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-06-24T17:31:05.263465mx1.h3z.jp postfix/smtpd[8596]: warning: unknown[218.4.239.146]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-06-24T17:31:16.123397mx1.h3z.jp postfix/smtpd[8596]: warning: unknown[218.4.239.146]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-24 19:23:09
184.105.139.67	attackspam	Fail2Ban Ban Triggered	2020-06-24 19:37:20
171.241.234.40	attack	PHI,WP GET /wp-login.php	2020-06-24 19:38:30
107.180.92.3	attackspam	$f2bV_matches	2020-06-24 19:19:58
190.218.21.217	attack	Automatic report - XMLRPC Attack	2020-06-24 19:35:04
91.92.109.77	attackbotsspam	Jun 24 04:50:06 ip-172-31-62-245 sshd\[19717\]: Invalid user 123456 from 91.92.109.77\ Jun 24 04:50:08 ip-172-31-62-245 sshd\[19717\]: Failed password for invalid user 123456 from 91.92.109.77 port 49450 ssh2\ Jun 24 04:56:27 ip-172-31-62-245 sshd\[19754\]: Invalid user ebs from 91.92.109.77\ Jun 24 04:56:29 ip-172-31-62-245 sshd\[19754\]: Failed password for invalid user ebs from 91.92.109.77 port 47508 ssh2\ Jun 24 04:59:32 ip-172-31-62-245 sshd\[19768\]: Invalid user Password2020 from 91.92.109.77\	2020-06-24 19:29:12
140.246.229.200	attack	Jun 24 07:50:39 rotator sshd\[2851\]: Failed password for root from 140.246.229.200 port 50034 ssh2Jun 24 07:52:25 rotator sshd\[2874\]: Failed password for root from 140.246.229.200 port 38748 ssh2Jun 24 07:54:10 rotator sshd\[2888\]: Invalid user sftp from 140.246.229.200Jun 24 07:54:12 rotator sshd\[2888\]: Failed password for invalid user sftp from 140.246.229.200 port 55694 ssh2Jun 24 07:56:05 rotator sshd\[3673\]: Invalid user kim from 140.246.229.200Jun 24 07:56:06 rotator sshd\[3673\]: Failed password for invalid user kim from 140.246.229.200 port 44420 ssh2 ...	2020-06-24 19:42:12

最近上报的IP列表

94.143.197.57	85.115.153.154	223.46.59.133	77.230.168.228
114.205.55.82	37.148.102.59	168.121.106.2	13.211.218.195
161.189.108.119	202.95.10.7	225.27.70.115	62.112.11.86
37.170.145.198	147.199.29.150	231.145.225.102	231.102.150.238
219.14.212.97	14.104.20.221	98.6.220.199	79.135.133.247