120.138.92.126

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Malaysia

运营商(isp): MacroLynx Sdn Bhd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	$f2bV_matches	2019-12-03 03:16:20
attack	Invalid user hung from 120.138.92.126 port 40910	2019-11-30 16:17:24
attack	Nov 25 12:34:31 gw1 sshd[7541]: Failed password for root from 120.138.92.126 port 46509 ssh2 Nov 25 12:42:13 gw1 sshd[7761]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.138.92.126 ...	2019-11-25 15:56:51

类型

评论内容

时间

attackspambots

$f2bV_matches

2019-12-03 03:16:20

attack

Invalid user hung from 120.138.92.126 port 40910

2019-11-30 16:17:24

attack

Nov 25 12:34:31 gw1 sshd[7541]: Failed password for root from 120.138.92.126 port 46509 ssh2
Nov 25 12:42:13 gw1 sshd[7761]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.138.92.126
...

2019-11-25 15:56:51

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.138.92.126
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36398
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;120.138.92.126.			IN	A

;; AUTHORITY SECTION:
.			472	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112500 1800 900 604800 86400

;; Query time: 112 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 25 15:56:45 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 126.92.138.120.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 126.92.138.120.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
206.189.204.63	attack	Sep 30 13:06:15 friendsofhawaii sshd\[6993\]: Invalid user bodega from 206.189.204.63 Sep 30 13:06:15 friendsofhawaii sshd\[6993\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.204.63 Sep 30 13:06:18 friendsofhawaii sshd\[6993\]: Failed password for invalid user bodega from 206.189.204.63 port 59306 ssh2 Sep 30 13:10:32 friendsofhawaii sshd\[7538\]: Invalid user wh from 206.189.204.63 Sep 30 13:10:32 friendsofhawaii sshd\[7538\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.204.63	2019-10-01 07:21:10
211.159.241.77	attack	Oct 1 00:39:00 OPSO sshd\[28165\]: Invalid user acharya from 211.159.241.77 port 56470 Oct 1 00:39:00 OPSO sshd\[28165\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.159.241.77 Oct 1 00:39:02 OPSO sshd\[28165\]: Failed password for invalid user acharya from 211.159.241.77 port 56470 ssh2 Oct 1 00:43:30 OPSO sshd\[29024\]: Invalid user xaviera from 211.159.241.77 port 38716 Oct 1 00:43:30 OPSO sshd\[29024\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.159.241.77	2019-10-01 06:58:15
164.177.42.33	attackbots	web-1 [ssh] SSH Attack	2019-10-01 07:05:17
45.40.194.129	attackspam	Oct 1 01:56:29 server sshd\[17131\]: Invalid user ripley from 45.40.194.129 port 59486 Oct 1 01:56:29 server sshd\[17131\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.40.194.129 Oct 1 01:56:30 server sshd\[17131\]: Failed password for invalid user ripley from 45.40.194.129 port 59486 ssh2 Oct 1 01:59:57 server sshd\[13419\]: Invalid user cock from 45.40.194.129 port 35096 Oct 1 01:59:57 server sshd\[13419\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.40.194.129	2019-10-01 07:20:45
188.166.148.161	attackspam	Automatic report - XMLRPC Attack	2019-10-01 07:18:50
191.185.210.194	attackspambots	Oct 1 02:07:23 server sshd\[4374\]: Invalid user tester from 191.185.210.194 port 59912 Oct 1 02:07:23 server sshd\[4374\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.185.210.194 Oct 1 02:07:25 server sshd\[4374\]: Failed password for invalid user tester from 191.185.210.194 port 59912 ssh2 Oct 1 02:13:20 server sshd\[12129\]: Invalid user shobo from 191.185.210.194 port 44676 Oct 1 02:13:20 server sshd\[12129\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.185.210.194	2019-10-01 07:22:51
60.220.230.21	attackbotsspam	2019-10-01T01:18:38.086954tmaserv sshd\[27069\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.220.230.21 2019-10-01T01:18:39.644841tmaserv sshd\[27069\]: Failed password for invalid user 123456 from 60.220.230.21 port 47241 ssh2 2019-10-01T01:34:32.641016tmaserv sshd\[27907\]: Invalid user 123456 from 60.220.230.21 port 54472 2019-10-01T01:34:32.643595tmaserv sshd\[27907\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.220.230.21 2019-10-01T01:34:34.501777tmaserv sshd\[27907\]: Failed password for invalid user 123456 from 60.220.230.21 port 54472 ssh2 2019-10-01T01:38:18.942142tmaserv sshd\[28166\]: Invalid user huawei123 from 60.220.230.21 port 42162 2019-10-01T01:38:18.944669tmaserv sshd\[28166\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.220.230.21 ...	2019-10-01 06:52:35
129.211.117.47	attackspam	Oct 1 01:18:21 vps691689 sshd[20496]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.117.47 Oct 1 01:18:23 vps691689 sshd[20496]: Failed password for invalid user web15 from 129.211.117.47 port 34950 ssh2 Oct 1 01:22:47 vps691689 sshd[20562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.117.47 ...	2019-10-01 07:28:06
91.105.197.254	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/91.105.197.254/ RU - 1H : (297) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : RU NAME ASN : ASN197349 IP : 91.105.197.254 CIDR : 91.105.197.0/24 PREFIX COUNT : 24 UNIQUE IP COUNT : 6144 WYKRYTE ATAKI Z ASN197349 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-01 07:19:42
92.118.38.52	attack	Oct 1 00:54:54 mail postfix/smtps/smtpd\[24866\]: warning: unknown\[92.118.38.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 1 00:57:55 mail postfix/smtps/smtpd\[24866\]: warning: unknown\[92.118.38.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 1 01:00:56 mail postfix/smtps/smtpd\[25442\]: warning: unknown\[92.118.38.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-10-01 07:19:19
94.102.49.190	attackbotsspam	3389BruteforceStormFW23	2019-10-01 06:51:45
222.186.42.241	attackspam	Oct 1 01:07:26 dcd-gentoo sshd[21613]: User root from 222.186.42.241 not allowed because none of user's groups are listed in AllowGroups Oct 1 01:07:28 dcd-gentoo sshd[21613]: error: PAM: Authentication failure for illegal user root from 222.186.42.241 Oct 1 01:07:26 dcd-gentoo sshd[21613]: User root from 222.186.42.241 not allowed because none of user's groups are listed in AllowGroups Oct 1 01:07:28 dcd-gentoo sshd[21613]: error: PAM: Authentication failure for illegal user root from 222.186.42.241 Oct 1 01:07:26 dcd-gentoo sshd[21613]: User root from 222.186.42.241 not allowed because none of user's groups are listed in AllowGroups Oct 1 01:07:28 dcd-gentoo sshd[21613]: error: PAM: Authentication failure for illegal user root from 222.186.42.241 Oct 1 01:07:28 dcd-gentoo sshd[21613]: Failed keyboard-interactive/pam for invalid user root from 222.186.42.241 port 58656 ssh2 ...	2019-10-01 07:23:31
106.13.4.172	attackbotsspam	2019-09-30T21:56:56.341140hub.schaetter.us sshd\[8663\]: Invalid user csgo from 106.13.4.172 port 51154 2019-09-30T21:56:56.350039hub.schaetter.us sshd\[8663\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.172 2019-09-30T21:56:58.836359hub.schaetter.us sshd\[8663\]: Failed password for invalid user csgo from 106.13.4.172 port 51154 ssh2 2019-09-30T22:00:07.737813hub.schaetter.us sshd\[8678\]: Invalid user bot from 106.13.4.172 port 53362 2019-09-30T22:00:07.748299hub.schaetter.us sshd\[8678\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.172 ...	2019-10-01 07:22:31
113.78.217.252	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/113.78.217.252/ CN - 1H : (361) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4134 IP : 113.78.217.252 CIDR : 113.64.0.0/11 PREFIX COUNT : 5430 UNIQUE IP COUNT : 106919680 WYKRYTE ATAKI Z ASN4134 : 1H - 6 3H - 16 6H - 32 12H - 77 24H - 142 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-01 07:26:07
85.248.42.101	attackbotsspam	Oct 1 00:55:07 cp sshd[4522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.248.42.101 Oct 1 00:55:07 cp sshd[4522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.248.42.101	2019-10-01 07:20:10

最近上报的IP列表

69.75.63.158	111.67.197.14	103.219.143.9	113.89.69.229
149.202.63.159	213.109.234.217	5.22.195.171	50.199.94.83
49.235.228.145	187.210.228.254	14.2.125.209	157.52.211.162
125.124.91.206	14.226.244.2	46.101.156.202	39.97.235.4
185.104.187.123	82.163.190.148	101.36.153.183	170.173.84.4