120.132.61.80 - IPInfo

基本信息:

城市(city): Beijing

省份(region): Beijing

国家(country): China

运营商(isp): China Netcom Broadband Corporation Ltd.

主机名(hostname): unknown

机构(organization): China Unicom Beijing Province Network

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Invalid user ansible from 120.132.61.80 port 29248	2019-10-29 07:56:06
attackspambots	Oct 23 07:08:59 markkoudstaal sshd[17696]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.61.80 Oct 23 07:09:01 markkoudstaal sshd[17696]: Failed password for invalid user ovh from 120.132.61.80 port 60796 ssh2 Oct 23 07:14:14 markkoudstaal sshd[18209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.61.80	2019-10-23 13:14:19
attackbotsspam	Oct 8 10:30:16 s64-1 sshd[30481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.61.80 Oct 8 10:30:18 s64-1 sshd[30481]: Failed password for invalid user Docteur-123 from 120.132.61.80 port 41246 ssh2 Oct 8 10:33:56 s64-1 sshd[30497]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.61.80 ...	2019-10-08 17:12:12
attackspam	Sep 7 12:58:09 php1 sshd\[10044\]: Invalid user uftp from 120.132.61.80 Sep 7 12:58:09 php1 sshd\[10044\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.61.80 Sep 7 12:58:11 php1 sshd\[10044\]: Failed password for invalid user uftp from 120.132.61.80 port 4396 ssh2 Sep 7 12:59:29 php1 sshd\[10208\]: Invalid user admin1 from 120.132.61.80 Sep 7 12:59:29 php1 sshd\[10208\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.61.80	2019-09-08 12:36:51
attackspam	Sep 2 00:34:15 mail sshd\[32478\]: Invalid user peewee from 120.132.61.80 port 54662 Sep 2 00:34:15 mail sshd\[32478\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.61.80 ...	2019-09-02 07:44:54
attack	Aug 27 09:29:59 srv-4 sshd\[6360\]: Invalid user zabbix from 120.132.61.80 Aug 27 09:29:59 srv-4 sshd\[6360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.61.80 Aug 27 09:30:01 srv-4 sshd\[6360\]: Failed password for invalid user zabbix from 120.132.61.80 port 18612 ssh2 ...	2019-08-27 14:43:32
attackspambots	Aug 18 22:33:30 php2 sshd\[7932\]: Invalid user ullar from 120.132.61.80 Aug 18 22:33:30 php2 sshd\[7932\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.61.80 Aug 18 22:33:32 php2 sshd\[7932\]: Failed password for invalid user ullar from 120.132.61.80 port 57310 ssh2 Aug 18 22:36:55 php2 sshd\[8189\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.61.80 user=root Aug 18 22:36:57 php2 sshd\[8189\]: Failed password for root from 120.132.61.80 port 16422 ssh2	2019-08-19 19:10:33
attackspambots	2019-07-14T19:29:26.804274abusebot.cloudsearch.cf sshd\[4076\]: Invalid user scj from 120.132.61.80 port 53882	2019-07-15 03:38:47
attack	Jul 12 13:51:54 rpi sshd[2410]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.61.80 Jul 12 13:51:56 rpi sshd[2410]: Failed password for invalid user bitrix from 120.132.61.80 port 13264 ssh2	2019-07-12 20:10:27
attack	Jul 8 01:07:43 sanyalnet-cloud-vps4 sshd[32022]: Connection from 120.132.61.80 port 5978 on 64.137.160.124 port 23 Jul 8 01:07:47 sanyalnet-cloud-vps4 sshd[32022]: Invalid user helpdesk from 120.132.61.80 Jul 8 01:07:47 sanyalnet-cloud-vps4 sshd[32022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.61.80 Jul 8 01:07:49 sanyalnet-cloud-vps4 sshd[32022]: Failed password for invalid user helpdesk from 120.132.61.80 port 5978 ssh2 Jul 8 01:07:49 sanyalnet-cloud-vps4 sshd[32022]: Received disconnect from 120.132.61.80: 11: Bye Bye [preauth] Jul 8 01:09:27 sanyalnet-cloud-vps4 sshd[32025]: Connection from 120.132.61.80 port 18676 on 64.137.160.124 port 23 Jul 8 01:09:32 sanyalnet-cloud-vps4 sshd[32025]: Invalid user admin2 from 120.132.61.80 Jul 8 01:09:32 sanyalnet-cloud-vps4 sshd[32025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.61.80 ........ ----------------------------------------------- https://	2019-07-10 11:41:41
attackbots	2019-07-03T19:24:51.121591scmdmz1 sshd\[14436\]: Invalid user mario from 120.132.61.80 port 11586 2019-07-03T19:24:51.124344scmdmz1 sshd\[14436\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.61.80 2019-07-03T19:24:52.648572scmdmz1 sshd\[14436\]: Failed password for invalid user mario from 120.132.61.80 port 11586 ssh2 ...	2019-07-04 01:28:55

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.132.61.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17822
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;120.132.61.80.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070302 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jul 04 01:28:46 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 80.61.132.120.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 80.61.132.120.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
149.202.52.221	attack	Sep 6 19:13:55 ws12vmsma01 sshd[50622]: Invalid user radio from 149.202.52.221 Sep 6 19:13:57 ws12vmsma01 sshd[50622]: Failed password for invalid user radio from 149.202.52.221 port 49153 ssh2 Sep 6 19:17:35 ws12vmsma01 sshd[51109]: Invalid user ftpuser2 from 149.202.52.221 ...	2019-09-07 06:39:01
87.26.244.71	attackspambots	Unauthorized connection attempt from IP address 87.26.244.71 on Port 445(SMB)	2019-09-07 06:38:30
103.27.202.18	attack	Sep 6 12:45:50 vps200512 sshd\[1086\]: Invalid user dbuser from 103.27.202.18 Sep 6 12:45:50 vps200512 sshd\[1086\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.27.202.18 Sep 6 12:45:52 vps200512 sshd\[1086\]: Failed password for invalid user dbuser from 103.27.202.18 port 55018 ssh2 Sep 6 12:51:13 vps200512 sshd\[1158\]: Invalid user appltest from 103.27.202.18 Sep 6 12:51:13 vps200512 sshd\[1158\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.27.202.18	2019-09-07 06:21:53
181.210.16.132	attackspam	Looking for /www.sql.tar.gz, Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:68.0) Gecko/20100101 Firefox/68.0	2019-09-07 06:24:52
51.254.206.149	attackbotsspam	2019-09-06T21:55:43.604608abusebot-3.cloudsearch.cf sshd\[29672\]: Invalid user 1q2w3e4r from 51.254.206.149 port 34610	2019-09-07 06:04:19
96.72.82.25	attackspambots	Chat Spam	2019-09-07 06:23:31
77.44.58.58	attack	Automatic report - Port Scan Attack	2019-09-07 06:28:58
116.96.224.151	attackspam	Unauthorized connection attempt from IP address 116.96.224.151 on Port 445(SMB)	2019-09-07 06:49:46
103.76.204.30	attackbotsspam	Unauthorized connection attempt from IP address 103.76.204.30 on Port 445(SMB)	2019-09-07 06:27:00
36.42.100.247	attack	Sep 6 04:15:47 localhost kernel: [1495563.592221] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=36.42.100.247 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=45 ID=30645 PROTO=TCP SPT=60005 DPT=52869 WINDOW=47421 RES=0x00 SYN URGP=0 Sep 6 04:15:47 localhost kernel: [1495563.592246] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=36.42.100.247 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=45 ID=30645 PROTO=TCP SPT=60005 DPT=52869 SEQ=758669438 ACK=0 WINDOW=47421 RES=0x00 SYN URGP=0 Sep 6 10:01:54 localhost kernel: [1516331.330601] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=36.42.100.247 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=45 ID=11306 PROTO=TCP SPT=62246 DPT=52869 WINDOW=6647 RES=0x00 SYN URGP=0 Sep 6 10:01:54 localhost kernel: [1516331.330627] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=36.42.100.247 DST=[mungedIP2] LEN=40 TOS=0x08 PRE	2019-09-07 06:26:31
189.126.230.67	attack	Caught in portsentry honeypot	2019-09-07 06:07:40
106.12.21.212	attack	invalid user	2019-09-07 06:20:47
40.112.250.138	attack	Sep 6 17:01:39 taivassalofi sshd[240732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.112.250.138 Sep 6 17:01:41 taivassalofi sshd[240732]: Failed password for invalid user tomcat from 40.112.250.138 port 11520 ssh2 ...	2019-09-07 06:35:59
187.141.9.50	attackbotsspam	Unauthorized connection attempt from IP address 187.141.9.50 on Port 445(SMB)	2019-09-07 06:06:04
179.216.145.14	attack	Unauthorized connection attempt from IP address 179.216.145.14 on Port 445(SMB)	2019-09-07 06:04:57

最近上报的IP列表

60.27.27.13	195.88.66.131	129.113.187.54	69.117.214.80
14.169.99.106	194.160.251.233	102.34.52.143	42.242.230.163
184.64.178.29	177.84.115.246	115.192.180.151	199.254.96.251
113.90.232.89	116.22.92.191	47.254.135.232	161.128.85.132
52.184.29.61	87.29.150.123	98.196.40.40	52.32.215.247