120.132.12.136

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Netcom Broadband Corporation Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Jul 26 14:14:13 Ubuntu-1404-trusty-64-minimal sshd\[21298\]: Invalid user ambari from 120.132.12.136 Jul 26 14:14:13 Ubuntu-1404-trusty-64-minimal sshd\[21298\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.12.136 Jul 26 14:14:15 Ubuntu-1404-trusty-64-minimal sshd\[21298\]: Failed password for invalid user ambari from 120.132.12.136 port 57954 ssh2 Jul 26 14:25:25 Ubuntu-1404-trusty-64-minimal sshd\[27165\]: Invalid user kal from 120.132.12.136 Jul 26 14:25:25 Ubuntu-1404-trusty-64-minimal sshd\[27165\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.12.136	2020-07-26 20:40:22
attackbotsspam	Invalid user guest from 120.132.12.136 port 50218	2020-07-26 16:35:33

类型

评论内容

时间

attackspam

Jul 26 14:14:13 Ubuntu-1404-trusty-64-minimal sshd\[21298\]: Invalid user ambari from 120.132.12.136
Jul 26 14:14:13 Ubuntu-1404-trusty-64-minimal sshd\[21298\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.12.136
Jul 26 14:14:15 Ubuntu-1404-trusty-64-minimal sshd\[21298\]: Failed password for invalid user ambari from 120.132.12.136 port 57954 ssh2
Jul 26 14:25:25 Ubuntu-1404-trusty-64-minimal sshd\[27165\]: Invalid user kal from 120.132.12.136
Jul 26 14:25:25 Ubuntu-1404-trusty-64-minimal sshd\[27165\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.12.136

2020-07-26 20:40:22

attackbotsspam

Invalid user guest from 120.132.12.136 port 50218

2020-07-26 16:35:33

相同子网IP讨论:

IP	类型	评论内容	时间
120.132.124.179	attackbots	TCP (SYN) 120.132.124.179:14367 -> port 1433, len 40	2020-09-30 00:03:21
120.132.124.179	attack	TCP (SYN) 120.132.124.179:14367 -> port 1433, len 40	2020-09-29 16:20:06
120.132.12.162	attack	Aug 22 15:08:03 NPSTNNYC01T sshd[312]: Failed password for root from 120.132.12.162 port 40186 ssh2 Aug 22 15:09:34 NPSTNNYC01T sshd[461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.12.162 Aug 22 15:09:36 NPSTNNYC01T sshd[461]: Failed password for invalid user g from 120.132.12.162 port 50616 ssh2 ...	2020-08-23 03:15:02
120.132.12.162	attackspam	$f2bV_matches	2020-08-14 12:26:01
120.132.12.162	attackbots	failed root login	2020-08-10 23:08:53
120.132.12.162	attackbots	k+ssh-bruteforce	2020-08-07 22:50:03
120.132.12.162	attackbotsspam	SSH Brute Force	2020-07-29 15:19:13
120.132.12.162	attack	Invalid user ginelle from 120.132.12.162 port 57431	2020-07-24 19:58:48
120.132.124.179	attackbots	Unauthorized connection attempt detected from IP address 120.132.124.179 to port 1433	2020-07-07 03:57:03
120.132.12.162	attackspambots	Jun 30 00:01:54 ovpn sshd\[29377\]: Invalid user ids from 120.132.12.162 Jun 30 00:01:54 ovpn sshd\[29377\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.12.162 Jun 30 00:01:56 ovpn sshd\[29377\]: Failed password for invalid user ids from 120.132.12.162 port 56831 ssh2 Jun 30 00:05:19 ovpn sshd\[30160\]: Invalid user black from 120.132.12.162 Jun 30 00:05:19 ovpn sshd\[30160\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.12.162	2020-06-30 07:36:50
120.132.120.7	attack	Jun 29 13:29:45 raspberrypi sshd[14522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.120.7 Jun 29 13:29:46 raspberrypi sshd[14522]: Failed password for invalid user zzg from 120.132.120.7 port 43716 ssh2 ...	2020-06-30 02:00:51
120.132.124.179	attack	port scan and connect, tcp 1433 (ms-sql-s)	2020-06-27 22:41:46
120.132.120.7	attackbots	Jun 24 01:25:33 lnxweb61 sshd[26882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.120.7	2020-06-24 08:02:50
120.132.124.179	attackspam	Unauthorized connection attempt from IP address 120.132.124.179 on Port 445(SMB)	2020-06-20 19:45:52
120.132.12.162	attackbotsspam	Invalid user rabie from 120.132.12.162 port 40985	2020-06-19 08:23:33

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.132.12.136
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19741
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;120.132.12.136.			IN	A

;; AUTHORITY SECTION:
.			515	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072600 1800 900 604800 86400

;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jul 26 16:35:27 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 136.12.132.120.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 136.12.132.120.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
2.101.68.152	attackbots	Unauthorized connection attempt detected from IP address 2.101.68.152 to port 4567 [J]	2020-01-19 06:42:29
18.214.72.41	attackspambots	Unauthorized connection attempt detected from IP address 18.214.72.41 to port 2220 [J]	2020-01-19 06:40:48
157.230.235.233	attackspam	Unauthorized connection attempt detected from IP address 157.230.235.233 to port 2220 [J]	2020-01-19 06:51:47
94.131.206.15	attackspambots	Unauthorized connection attempt detected from IP address 94.131.206.15 to port 85 [J]	2020-01-19 06:59:33
49.235.139.216	attackbots	Invalid user tower from 49.235.139.216 port 45336	2020-01-19 07:04:37
211.157.111.154	attackspam	Unauthorized connection attempt detected from IP address 211.157.111.154 to port 1433 [J]	2020-01-19 07:11:48
13.126.34.182	attackspam	Unauthorized connection attempt detected from IP address 13.126.34.182 to port 2220 [J]	2020-01-19 06:41:29
163.44.158.105	attack	2020-01-18T23:11:09.040983shield sshd\[8529\]: Invalid user security from 163.44.158.105 port 53164 2020-01-18T23:11:09.050049shield sshd\[8529\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.44.158.105 2020-01-18T23:11:10.857793shield sshd\[8529\]: Failed password for invalid user security from 163.44.158.105 port 53164 ssh2 2020-01-18T23:13:13.082271shield sshd\[9052\]: Invalid user oracle from 163.44.158.105 port 42110 2020-01-18T23:13:13.088977shield sshd\[9052\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.44.158.105	2020-01-19 07:19:37
94.233.78.142	attack	Unauthorized connection attempt detected from IP address 94.233.78.142 to port 85 [J]	2020-01-19 06:59:15
200.158.198.184	attack	Invalid user yan from 200.158.198.184 port 38110	2020-01-19 06:45:50
37.17.174.157	attack	Unauthorized connection attempt detected from IP address 37.17.174.157 to port 2220 [J]	2020-01-19 06:39:55
162.62.26.240	attack	Unauthorized connection attempt detected from IP address 162.62.26.240 to port 8089 [J]	2020-01-19 06:51:09
199.223.232.221	attackspam	Unauthorized connection attempt detected from IP address 199.223.232.221 to port 2220 [J]	2020-01-19 07:12:53
104.225.228.186	attackbots	Unauthorized connection attempt detected from IP address 104.225.228.186 to port 85 [J]	2020-01-19 06:57:19
223.149.253.80	attack	Unauthorized connection attempt detected from IP address 223.149.253.80 to port 23 [J]	2020-01-19 07:08:35

最近上报的IP列表

94.143.197.57	85.115.153.154	223.46.59.133	77.230.168.228
114.205.55.82	37.148.102.59	168.121.106.2	13.211.218.195
161.189.108.119	202.95.10.7	225.27.70.115	62.112.11.86
37.170.145.198	147.199.29.150	231.145.225.102	231.102.150.238
219.14.212.97	14.104.20.221	98.6.220.199	79.135.133.247