120.79.138.16 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.79.138.16
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9106
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;120.79.138.16.			IN	A

;; AUTHORITY SECTION:
.			274	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022031102 1800 900 604800 86400

;; Query time: 86 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 12 12:52:13 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 16.138.79.120.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 16.138.79.120.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
124.30.44.214	attackspambots	Brute-force attempt banned	2020-04-08 20:03:41
106.13.131.80	attackbots	Apr 8 13:44:58 rotator sshd\[23088\]: Invalid user cumulus from 106.13.131.80Apr 8 13:45:00 rotator sshd\[23088\]: Failed password for invalid user cumulus from 106.13.131.80 port 54630 ssh2Apr 8 13:48:18 rotator sshd\[23866\]: Invalid user test from 106.13.131.80Apr 8 13:48:19 rotator sshd\[23866\]: Failed password for invalid user test from 106.13.131.80 port 60072 ssh2Apr 8 13:49:41 rotator sshd\[23873\]: Failed password for backup from 106.13.131.80 port 47374 ssh2Apr 8 13:51:03 rotator sshd\[24625\]: Invalid user admin from 106.13.131.80 ...	2020-04-08 20:14:33
185.53.88.61	attack	[2020-04-08 06:18:14] NOTICE[12114][C-00002ca6] chan_sip.c: Call from '' (185.53.88.61:5070) to extension '7011972595897084' rejected because extension not found in context 'public'. [2020-04-08 06:18:14] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-08T06:18:14.847-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="7011972595897084",SessionID="0x7f020c088288",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.61/5070",ACLName="no_extension_match" [2020-04-08 06:21:23] NOTICE[12114][C-00002cab] chan_sip.c: Call from '' (185.53.88.61:5071) to extension '7011972595897084' rejected because extension not found in context 'public'. [2020-04-08 06:21:23] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-08T06:21:23.771-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="7011972595897084",SessionID="0x7f020c04b958",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UD ...	2020-04-08 20:13:18
123.206.59.235	attackbotsspam	SSH brute force attempt	2020-04-08 19:55:59
210.14.147.67	attackbotsspam	firewall-block, port(s): 3085/tcp	2020-04-08 20:18:32
123.206.45.16	attackspam	Apr 8 13:37:15 srv-ubuntu-dev3 sshd[121527]: Invalid user postgres from 123.206.45.16 Apr 8 13:37:15 srv-ubuntu-dev3 sshd[121527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.45.16 Apr 8 13:37:15 srv-ubuntu-dev3 sshd[121527]: Invalid user postgres from 123.206.45.16 Apr 8 13:37:17 srv-ubuntu-dev3 sshd[121527]: Failed password for invalid user postgres from 123.206.45.16 port 55958 ssh2 Apr 8 13:40:46 srv-ubuntu-dev3 sshd[122113]: Invalid user minecraft from 123.206.45.16 Apr 8 13:40:46 srv-ubuntu-dev3 sshd[122113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.45.16 Apr 8 13:40:46 srv-ubuntu-dev3 sshd[122113]: Invalid user minecraft from 123.206.45.16 Apr 8 13:40:48 srv-ubuntu-dev3 sshd[122113]: Failed password for invalid user minecraft from 123.206.45.16 port 36126 ssh2 ...	2020-04-08 20:08:44
103.254.120.222	attackspam	Apr 8 14:16:30 host01 sshd[25172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.254.120.222 Apr 8 14:16:31 host01 sshd[25172]: Failed password for invalid user steamcmd from 103.254.120.222 port 42596 ssh2 Apr 8 14:21:04 host01 sshd[26077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.254.120.222 ...	2020-04-08 20:39:53
14.18.66.61	attackspam	Apr 8 13:29:27 ns382633 sshd\[17418\]: Invalid user test from 14.18.66.61 port 44776 Apr 8 13:29:27 ns382633 sshd\[17418\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.18.66.61 Apr 8 13:29:29 ns382633 sshd\[17418\]: Failed password for invalid user test from 14.18.66.61 port 44776 ssh2 Apr 8 13:36:14 ns382633 sshd\[19010\]: Invalid user stunnel from 14.18.66.61 port 43528 Apr 8 13:36:14 ns382633 sshd\[19010\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.18.66.61	2020-04-08 20:08:08
196.52.43.90	attack	Honeypot attack, port: 4567, PTR: 196.52.43.90.netsystemsresearch.com.	2020-04-08 20:31:01
175.205.122.30	attackspambots	Apr 8 07:12:41 IngegnereFirenze sshd[18113]: User backup from 175.205.122.30 not allowed because not listed in AllowUsers ...	2020-04-08 20:01:09
222.186.175.140	attackspambots	(sshd) Failed SSH login from 222.186.175.140 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 8 13:46:35 amsweb01 sshd[370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.140 user=root Apr 8 13:46:37 amsweb01 sshd[370]: Failed password for root from 222.186.175.140 port 31942 ssh2 Apr 8 13:46:40 amsweb01 sshd[370]: Failed password for root from 222.186.175.140 port 31942 ssh2 Apr 8 13:46:43 amsweb01 sshd[370]: Failed password for root from 222.186.175.140 port 31942 ssh2 Apr 8 13:46:47 amsweb01 sshd[370]: Failed password for root from 222.186.175.140 port 31942 ssh2	2020-04-08 19:50:19
80.82.70.239	attack	scans 7 times in preceeding hours on the ports (in chronological order) 9427 9417 9418 9423 9411 9421 9406 resulting in total of 70 scans from 80.82.64.0/20 block.	2020-04-08 20:04:03
221.205.192.109	attackbots	FTP brute-force attack	2020-04-08 20:02:15
69.163.152.111	attackspam	69.163.152.111 - - [08/Apr/2020:08:33:43 +0200] "GET /wp-login.php HTTP/1.1" 200 5821 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 69.163.152.111 - - [08/Apr/2020:08:33:44 +0200] "POST /wp-login.php HTTP/1.1" 200 6601 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 69.163.152.111 - - [08/Apr/2020:08:33:46 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-08 20:28:34
92.63.194.91	attack	Unauthorized connection attempt detected from IP address 92.63.194.91 to port 22 [T]	2020-04-08 19:52:04

最近上报的IP列表

120.79.138.146	120.79.139.112	120.79.139.143	120.79.139.253
120.79.14.151	120.79.142.10	120.79.142.7	120.79.143.43
120.79.144.127	120.79.144.17	120.79.144.21	120.79.144.235
120.79.144.35	120.79.147.193	120.79.147.254	120.79.148.203
120.79.148.230	120.79.15.130	120.82.119.58	120.82.119.68