120.92.117.134

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Kingsoft Cloud Internet Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	unauthorized connection attempt	2020-06-26 12:28:09

相同子网IP讨论:

IP	类型	评论内容	时间
120.92.117.182	attackbots	$f2bV_matches	2020-09-29 01:50:33
120.92.117.182	attackspam	Aug 31 06:44:25 lukav-desktop sshd\[18700\]: Invalid user andres from 120.92.117.182 Aug 31 06:44:25 lukav-desktop sshd\[18700\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.117.182 Aug 31 06:44:28 lukav-desktop sshd\[18700\]: Failed password for invalid user andres from 120.92.117.182 port 9426 ssh2 Aug 31 06:49:37 lukav-desktop sshd\[18769\]: Invalid user ubnt from 120.92.117.182 Aug 31 06:49:37 lukav-desktop sshd\[18769\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.117.182	2020-08-31 18:24:55
120.92.117.182	attackbotsspam	(sshd) Failed SSH login from 120.92.117.182 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 30 11:10:01 server sshd[4798]: Invalid user asterisk from 120.92.117.182 port 10898 Aug 30 11:10:04 server sshd[4798]: Failed password for invalid user asterisk from 120.92.117.182 port 10898 ssh2 Aug 30 11:27:07 server sshd[12918]: Invalid user riv from 120.92.117.182 port 26683 Aug 30 11:27:08 server sshd[12918]: Failed password for invalid user riv from 120.92.117.182 port 26683 ssh2 Aug 30 11:32:25 server sshd[15417]: Invalid user ftpuser from 120.92.117.182 port 21096	2020-08-30 23:36:43
120.92.117.184	attack	Aug 27 13:12:13 OPSO sshd\[16145\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.117.184 user=root Aug 27 13:12:14 OPSO sshd\[16145\]: Failed password for root from 120.92.117.184 port 26219 ssh2 Aug 27 13:17:31 OPSO sshd\[17371\]: Invalid user win from 120.92.117.184 port 4578 Aug 27 13:17:31 OPSO sshd\[17371\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.117.184 Aug 27 13:17:32 OPSO sshd\[17371\]: Failed password for invalid user win from 120.92.117.184 port 4578 ssh2	2019-08-27 19:21:35
120.92.117.184	attackbotsspam	Invalid user mhlee from 120.92.117.184 port 53131	2019-08-23 19:15:58
120.92.117.2	attackbots	SSH/22 MH Probe, BF, Hack -	2019-08-02 20:13:52

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.92.117.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29835
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;120.92.117.134.			IN	A

;; AUTHORITY SECTION:
.			457	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062502 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 26 12:27:51 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 134.117.92.120.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 134.117.92.120.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
209.97.167.100	attack	Apr 6 06:54:16 minden010 sshd[6753]: Failed password for root from 209.97.167.100 port 38550 ssh2 Apr 6 06:58:36 minden010 sshd[8116]: Failed password for root from 209.97.167.100 port 49772 ssh2 ...	2020-04-06 17:22:58
119.77.164.145	attackbotsspam	trying to access non-authorized port	2020-04-06 17:45:54
222.80.196.16	attackspam	Apr 6 05:22:30 vps58358 sshd\[4570\]: Invalid user P@s5word12 from 222.80.196.16Apr 6 05:22:31 vps58358 sshd\[4570\]: Failed password for invalid user P@s5word12 from 222.80.196.16 port 35480 ssh2Apr 6 05:26:15 vps58358 sshd\[4623\]: Invalid user !QAZ12345!QAZ from 222.80.196.16Apr 6 05:26:17 vps58358 sshd\[4623\]: Failed password for invalid user !QAZ12345!QAZ from 222.80.196.16 port 32880 ssh2Apr 6 05:29:46 vps58358 sshd\[4662\]: Invalid user !@\#$%\^@qwerty from 222.80.196.16Apr 6 05:29:48 vps58358 sshd\[4662\]: Failed password for invalid user !@\#$%\^@qwerty from 222.80.196.16 port 56030 ssh2 ...	2020-04-06 17:05:57
193.112.44.102	attackspambots	$f2bV_matches	2020-04-06 17:51:40
222.186.42.137	attack	Apr 6 11:33:26 MainVPS sshd[5601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.137 user=root Apr 6 11:33:28 MainVPS sshd[5601]: Failed password for root from 222.186.42.137 port 37477 ssh2 Apr 6 11:33:30 MainVPS sshd[5601]: Failed password for root from 222.186.42.137 port 37477 ssh2 Apr 6 11:33:26 MainVPS sshd[5601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.137 user=root Apr 6 11:33:28 MainVPS sshd[5601]: Failed password for root from 222.186.42.137 port 37477 ssh2 Apr 6 11:33:30 MainVPS sshd[5601]: Failed password for root from 222.186.42.137 port 37477 ssh2 Apr 6 11:33:26 MainVPS sshd[5601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.137 user=root Apr 6 11:33:28 MainVPS sshd[5601]: Failed password for root from 222.186.42.137 port 37477 ssh2 Apr 6 11:33:30 MainVPS sshd[5601]: Failed password for root from 222.186.42.137 port 374	2020-04-06 17:48:55
220.178.75.153	attackbots	Apr 6 10:29:27 vmd17057 sshd[3397]: Failed password for root from 220.178.75.153 port 30557 ssh2 ...	2020-04-06 17:20:29
180.76.148.87	attackspambots	$f2bV_matches	2020-04-06 17:42:36
77.40.62.146	attackbots	(smtpauth) Failed SMTP AUTH login from 77.40.62.146 (RU/Russia/146.62.pppoe.mari-el.ru): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-04-06 13:12:39 login authenticator failed for (localhost.localdomain) [77.40.62.146]: 535 Incorrect authentication data (set_id=hello@mehrbaft.com)	2020-04-06 17:08:21
183.63.87.236	attack	Apr 06 02:07:54 askasleikir sshd[125341]: Failed password for root from 183.63.87.236 port 44440 ssh2 Apr 06 01:53:42 askasleikir sshd[125075]: Failed password for root from 183.63.87.236 port 60614 ssh2 Apr 06 02:09:55 askasleikir sshd[125449]: Failed password for root from 183.63.87.236 port 39484 ssh2	2020-04-06 17:27:03
113.175.153.73	attackspam	1586145105 - 04/06/2020 05:51:45 Host: 113.175.153.73/113.175.153.73 Port: 445 TCP Blocked	2020-04-06 17:15:15
189.206.168.252	attackspam	20/4/5@23:51:43: FAIL: Alarm-Network address from=189.206.168.252 20/4/5@23:51:43: FAIL: Alarm-Network address from=189.206.168.252 ...	2020-04-06 17:16:48
62.84.155.107	attackspambots	port scan and connect, tcp 23 (telnet)	2020-04-06 17:36:41
186.101.193.125	attack	Unauthorized connection attempt detected from IP address 186.101.193.125 to port 8089	2020-04-06 17:25:31
101.89.201.250	attackbotsspam	Apr 5 07:08:09 cloud sshd[32666]: Failed password for root from 101.89.201.250 port 35170 ssh2 Apr 6 09:20:11 cloud sshd[1598]: Failed password for root from 101.89.201.250 port 43920 ssh2	2020-04-06 17:48:18
158.174.171.23	attackbotsspam	Apr 6 05:46:54 vayu sshd[276673]: Failed password for r.r from 158.174.171.23 port 36563 ssh2 Apr 6 05:46:54 vayu sshd[276673]: Received disconnect from 158.174.171.23: 11: Bye Bye [preauth] Apr 6 05:48:13 vayu sshd[276979]: Failed password for r.r from 158.174.171.23 port 43263 ssh2 Apr 6 05:48:13 vayu sshd[276979]: Received disconnect from 158.174.171.23: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=158.174.171.23	2020-04-06 17:17:48

最近上报的IP列表

117.50.37.103	1.212.68.75	1.29.24.103	31.28.230.118
68.183.95.85	36.137.140.128	3.136.135.51	181.32.90.108
46.7.5.219	163.83.71.51	125.215.187.54	202.114.93.97
46.223.15.13	182.180.121.7	37.187.161.195	44.97.99.97
22.151.169.244	114.116.124.108	54.159.78.28	134.17.217.30