120.85.41.138 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.85.41.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57946
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;120.85.41.138.			IN	A

;; AUTHORITY SECTION:
.			597	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022701 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 03:28:15 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 138.41.85.120.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.41.85.120.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
51.68.198.113	attack	51.68.198.113 (GB/United Kingdom/-), 7 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 9 09:33:26 jbs1 sshd[12794]: Failed password for root from 51.68.198.113 port 41102 ssh2 Sep 9 09:30:22 jbs1 sshd[11559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.175.126 user=root Sep 9 09:30:24 jbs1 sshd[11559]: Failed password for root from 106.13.175.126 port 35562 ssh2 Sep 9 09:31:05 jbs1 sshd[11912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.211.192 user=root Sep 9 09:31:08 jbs1 sshd[11912]: Failed password for root from 142.93.211.192 port 38564 ssh2 Sep 9 09:27:35 jbs1 sshd[10504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.167.200.10 user=root Sep 9 09:27:37 jbs1 sshd[10504]: Failed password for root from 109.167.200.10 port 51156 ssh2 IP Addresses Blocked:	2020-09-09 22:54:57
140.143.1.129	attackbots	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=admin	2020-09-09 23:25:41
175.24.74.107	attackbotsspam	Sep 7 16:01:00 cumulus sshd[21985]: Invalid user ghostname from 175.24.74.107 port 42412 Sep 7 16:01:00 cumulus sshd[21985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.74.107 Sep 7 16:01:02 cumulus sshd[21985]: Failed password for invalid user ghostname from 175.24.74.107 port 42412 ssh2 Sep 7 16:01:03 cumulus sshd[21985]: Received disconnect from 175.24.74.107 port 42412:11: Bye Bye [preauth] Sep 7 16:01:03 cumulus sshd[21985]: Disconnected from 175.24.74.107 port 42412 [preauth] Sep 7 16:20:04 cumulus sshd[23634]: Connection closed by 175.24.74.107 port 36580 [preauth] Sep 7 16:25:10 cumulus sshd[23999]: Connection closed by 175.24.74.107 port 45822 [preauth] Sep 7 16:45:40 cumulus sshd[25848]: Connection closed by 175.24.74.107 port 54552 [preauth] Sep 7 16:50:34 cumulus sshd[26266]: Invalid user admin from 175.24.74.107 port 35588 Sep 7 16:50:34 cumulus sshd[26266]: pam_unix(sshd:auth): authentication fai........ -------------------------------	2020-09-09 23:05:25
143.255.8.2	attackbots	leo_www	2020-09-09 23:23:10
123.125.21.125	attack	Sep 9 08:51:10 root sshd[27360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.125.21.125 ...	2020-09-09 22:52:02
154.127.39.3	attack	Sep 1 05:43:23 mail.srvfarm.net postfix/smtpd[837216]: warning: unknown[154.127.39.3]: SASL PLAIN authentication failed: Sep 1 05:43:23 mail.srvfarm.net postfix/smtpd[837216]: lost connection after AUTH from unknown[154.127.39.3] Sep 1 05:48:07 mail.srvfarm.net postfix/smtpd[845241]: warning: unknown[154.127.39.3]: SASL PLAIN authentication failed: Sep 1 05:48:07 mail.srvfarm.net postfix/smtpd[845241]: lost connection after AUTH from unknown[154.127.39.3] Sep 1 05:52:51 mail.srvfarm.net postfix/smtpd[843233]: warning: unknown[154.127.39.3]: SASL PLAIN authentication failed:	2020-09-09 23:06:11
20.52.57.245	attack	Sep 4 02:18:49 web01.agentur-b-2.de postfix/smtps/smtpd[3853822]: warning: unknown[20.52.57.245]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 4 02:20:08 web01.agentur-b-2.de postfix/smtps/smtpd[3853822]: warning: unknown[20.52.57.245]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 4 02:21:27 web01.agentur-b-2.de postfix/smtps/smtpd[3853822]: warning: unknown[20.52.57.245]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 4 02:22:47 web01.agentur-b-2.de postfix/smtps/smtpd[3853822]: warning: unknown[20.52.57.245]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 4 02:24:06 web01.agentur-b-2.de postfix/smtps/smtpd[3853822]: warning: unknown[20.52.57.245]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-09-09 23:11:21
46.101.181.170	attack	2020-09-09T13:03:50.012759dmca.cloudsearch.cf sshd[9189]: Invalid user arijit from 46.101.181.170 port 45016 2020-09-09T13:03:50.017552dmca.cloudsearch.cf sshd[9189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.181.170 2020-09-09T13:03:50.012759dmca.cloudsearch.cf sshd[9189]: Invalid user arijit from 46.101.181.170 port 45016 2020-09-09T13:03:52.291910dmca.cloudsearch.cf sshd[9189]: Failed password for invalid user arijit from 46.101.181.170 port 45016 ssh2 2020-09-09T13:08:45.169297dmca.cloudsearch.cf sshd[9246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.181.170 user=root 2020-09-09T13:08:46.941952dmca.cloudsearch.cf sshd[9246]: Failed password for root from 46.101.181.170 port 51324 ssh2 2020-09-09T13:13:41.366575dmca.cloudsearch.cf sshd[9293]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.181.170 user=root 2020-09-09T13:13:43.4404 ...	2020-09-09 22:57:11
156.54.122.60	attackbotsspam	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=root	2020-09-09 23:29:00
197.248.16.118	attack	Failed password for root from 197.248.16.118 port 41696 ssh2 Failed password for root from 197.248.16.118 port 41624 ssh2	2020-09-09 23:35:10
104.248.123.70	attackspam	Sep 9 03:21:43 PorscheCustomer sshd[6467]: Failed password for root from 104.248.123.70 port 42334 ssh2 Sep 9 03:25:36 PorscheCustomer sshd[6562]: Failed password for root from 104.248.123.70 port 48462 ssh2 ...	2020-09-09 23:08:50
112.217.225.61	attackbotsspam	SSH Brute Force	2020-09-09 23:20:32
109.111.252.21	attackbots	Sep 9 12:32:09 xxx sshd[4400]: Invalid user siegmund from 109.111.252.21 Sep 9 12:32:12 xxx sshd[4400]: Failed password for invalid user siegmund from 109.111.252.21 port 40328 ssh2 Sep 9 12:33:40 xxx sshd[4445]: Invalid user webadmin from 109.111.252.21 Sep 9 12:33:42 xxx sshd[4445]: Failed password for invalid user webadmin from 109.111.252.21 port 51116 ssh2 Sep 9 12:34:17 xxx sshd[4467]: Failed password for r.r from 109.111.252.21 port 55764 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=109.111.252.21	2020-09-09 22:53:50
199.167.91.162	attack	port scan and connect, tcp 23 (telnet)	2020-09-09 23:07:15
114.67.82.217	attack	Sep 9 15:36:17 vps sshd[24603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.82.217 Sep 9 15:36:19 vps sshd[24603]: Failed password for invalid user build from 114.67.82.217 port 42510 ssh2 Sep 9 15:54:34 vps sshd[25810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.82.217 ...	2020-09-09 22:52:34

最近上报的IP列表

120.85.41.255	120.85.41.46	120.85.41.96	120.85.42.0
120.85.42.117	120.85.42.195	120.85.42.176	120.85.42.206
120.85.42.240	120.85.42.66	120.85.43.179	120.85.43.193
120.85.43.52	120.85.43.64	120.85.43.95	120.85.91.112
120.85.91.110	120.85.91.130	120.85.91.10	120.85.91.173