120.132.99.80 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Netcom Broadband Corporation Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Host Scan	2019-12-29 15:51:32

相同子网IP讨论:

IP	类型	评论内容	时间
120.132.99.101	attackspambots	Oct 9 20:41:45 main sshd[14160]: Failed password for invalid user vnc from 120.132.99.101 port 36008 ssh2 Oct 9 20:42:53 main sshd[14288]: Failed password for invalid user upload from 120.132.99.101 port 42208 ssh2 Oct 9 20:45:48 main sshd[14500]: Failed password for invalid user test from 120.132.99.101 port 10491 ssh2 Oct 9 20:46:34 main sshd[14520]: Failed password for invalid user tomcat from 120.132.99.101 port 16687 ssh2 Oct 9 20:47:19 main sshd[14552]: Failed password for invalid user admin from 120.132.99.101 port 22887 ssh2 Oct 9 20:51:48 main sshd[14752]: Failed password for invalid user test from 120.132.99.101 port 60061 ssh2 Oct 9 20:57:13 main sshd[14998]: Failed password for invalid user deployer from 120.132.99.101 port 46930 ssh2 Oct 9 20:58:40 main sshd[15056]: Failed password for invalid user adm from 120.132.99.101 port 59324 ssh2 Oct 9 21:00:06 main sshd[15124]: Failed password for invalid user manager from 120.132.99.101 port 15215 ssh2	2020-10-10 06:45:08
120.132.99.101	attack	(sshd) Failed SSH login from 120.132.99.101 (CN/China/-): 5 in the last 3600 secs	2020-10-09 22:58:20
120.132.99.101	attackbotsspam	Oct 9 02:43:18 IngegnereFirenze sshd[9499]: Failed password for invalid user test from 120.132.99.101 port 54501 ssh2 ...	2020-10-09 14:48:12
120.132.99.101	attackspambots	Time: Sun Aug 30 12:08:23 2020 +0000 IP: 120.132.99.101 (-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Aug 30 11:59:10 ca-16-ede1 sshd[58124]: Invalid user postgres from 120.132.99.101 port 51200 Aug 30 11:59:11 ca-16-ede1 sshd[58124]: Failed password for invalid user postgres from 120.132.99.101 port 51200 ssh2 Aug 30 12:05:54 ca-16-ede1 sshd[59292]: Invalid user orbit from 120.132.99.101 port 60829 Aug 30 12:05:56 ca-16-ede1 sshd[59292]: Failed password for invalid user orbit from 120.132.99.101 port 60829 ssh2 Aug 30 12:08:17 ca-16-ede1 sshd[59647]: Invalid user secure from 120.132.99.101 port 32310	2020-08-30 22:36:23
120.132.99.101	attack	Aug 26 16:46:09 Host-KLAX-C sshd[32192]: User root from 120.132.99.101 not allowed because not listed in AllowUsers ...	2020-08-27 07:20:05
120.132.99.101	attackbots	Invalid user mch from 120.132.99.101 port 38615	2020-08-21 19:53:57
120.132.99.101	attack	Aug 20 02:28:21 vps639187 sshd\[13970\]: Invalid user hadoopuser from 120.132.99.101 port 49582 Aug 20 02:28:21 vps639187 sshd\[13970\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.99.101 Aug 20 02:28:23 vps639187 sshd\[13970\]: Failed password for invalid user hadoopuser from 120.132.99.101 port 49582 ssh2 ...	2020-08-20 09:01:02

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.132.99.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61740
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;120.132.99.80.			IN	A

;; AUTHORITY SECTION:
.			431	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122900 1800 900 604800 86400

;; Query time: 111 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 29 15:51:28 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 80.99.132.120.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 80.99.132.120.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
51.210.109.128	attackbots	2020-09-14T12:54:48.623378mail.standpoint.com.ua sshd[8333]: Failed password for root from 51.210.109.128 port 56160 ssh2 2020-09-14T12:58:22.246714mail.standpoint.com.ua sshd[8763]: Invalid user dircreate from 51.210.109.128 port 34708 2020-09-14T12:58:22.249382mail.standpoint.com.ua sshd[8763]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vps-243e392a.vps.ovh.net 2020-09-14T12:58:22.246714mail.standpoint.com.ua sshd[8763]: Invalid user dircreate from 51.210.109.128 port 34708 2020-09-14T12:58:24.949263mail.standpoint.com.ua sshd[8763]: Failed password for invalid user dircreate from 51.210.109.128 port 34708 ssh2 ...	2020-09-14 18:01:25
123.30.236.149	attack	sshd: Failed password for .... from 123.30.236.149 port 34238 ssh2 (10 attempts)	2020-09-14 18:32:55
93.221.47.106	attackspam	Sep 14 12:44:14 w sshd[24460]: Invalid user pi from 93.221.47.106 Sep 14 12:44:14 w sshd[24461]: Invalid user pi from 93.221.47.106 Sep 14 12:44:14 w sshd[24460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.221.47.106 Sep 14 12:44:14 w sshd[24461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.221.47.106 Sep 14 12:44:17 w sshd[24460]: Failed password for invalid user pi from 93.221.47.106 port 51048 ssh2 Sep 14 12:44:17 w sshd[24461]: Failed password for invalid user pi from 93.221.47.106 port 51052 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=93.221.47.106	2020-09-14 18:03:19
36.6.57.82	attackspam	Sep 13 20:13:17 srv01 postfix/smtpd\[30701\]: warning: unknown\[36.6.57.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 13 20:13:29 srv01 postfix/smtpd\[30701\]: warning: unknown\[36.6.57.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 13 20:13:45 srv01 postfix/smtpd\[30701\]: warning: unknown\[36.6.57.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 13 20:14:04 srv01 postfix/smtpd\[30701\]: warning: unknown\[36.6.57.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 13 20:14:15 srv01 postfix/smtpd\[30701\]: warning: unknown\[36.6.57.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-14 18:26:26
167.114.113.141	attackbots	167.114.113.141 (CA/Canada/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 14 06:11:37 server4 sshd[17921]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.130.153.101 user=root Sep 14 06:11:39 server4 sshd[17921]: Failed password for root from 118.130.153.101 port 40036 ssh2 Sep 14 06:13:47 server4 sshd[19022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.208.128 user=root Sep 14 06:13:49 server4 sshd[19022]: Failed password for root from 122.51.208.128 port 50172 ssh2 Sep 14 06:12:56 server4 sshd[18494]: Failed password for root from 167.114.113.141 port 51548 ssh2 Sep 14 06:14:38 server4 sshd[19498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.44.60 user=root IP Addresses Blocked: 118.130.153.101 (KR/South Korea/-) 122.51.208.128 (CN/China/-)	2020-09-14 18:15:47
185.191.171.11	attackspam	Brute force attack stopped by firewall	2020-09-14 18:12:00
188.166.6.130	attackspam	prod8 ...	2020-09-14 18:33:29
183.82.34.162	attack	Sep 14 08:38:41 nextcloud sshd\[25812\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82.34.162 user=root Sep 14 08:38:42 nextcloud sshd\[25812\]: Failed password for root from 183.82.34.162 port 33398 ssh2 Sep 14 08:42:54 nextcloud sshd\[31257\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82.34.162 user=root	2020-09-14 18:05:53
213.230.107.202	attackspambots	Sep 14 01:41:49 eventyay sshd[31044]: Failed password for root from 213.230.107.202 port 12067 ssh2 Sep 14 01:46:16 eventyay sshd[31157]: Failed password for root from 213.230.107.202 port 7842 ssh2 ...	2020-09-14 18:11:05
106.52.64.125	attack	5x Failed Password	2020-09-14 17:57:53
69.250.156.161	attack	SSH Bruteforce Attempt on Honeypot	2020-09-14 18:06:54
115.79.225.252	attackspambots	Automatic report - Port Scan Attack	2020-09-14 18:08:23
178.62.49.137	attackbots	TCP port : 9259	2020-09-14 18:24:08
222.186.31.83	attackspambots	Sep 14 12:31:18 abendstille sshd\[13186\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.83 user=root Sep 14 12:31:21 abendstille sshd\[13186\]: Failed password for root from 222.186.31.83 port 28193 ssh2 Sep 14 12:31:29 abendstille sshd\[13643\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.83 user=root Sep 14 12:31:31 abendstille sshd\[13643\]: Failed password for root from 222.186.31.83 port 59509 ssh2 Sep 14 12:31:33 abendstille sshd\[13643\]: Failed password for root from 222.186.31.83 port 59509 ssh2 ...	2020-09-14 18:35:56
91.241.59.47	attackspam	Fail2Ban Ban Triggered	2020-09-14 18:29:22

最近上报的IP列表

191.54.106.13	118.47.203.160	119.23.165.113	128.107.198.250
39.107.81.127	60.50.198.183	5.62.56.253	200.100.36.24
199.189.195.147	189.157.218.3	187.63.213.41	185.112.166.105
170.237.86.30	178.48.209.109	100.8.167.238	91.238.162.44
78.188.178.30	49.51.9.105	14.50.102.29	12.206.239.156