121.101.130.43

基本信息:

城市(city): Yogyakarta

省份(region): Yogyakarta

国家(country): Indonesia

运营商(isp): PT Selaras Citra Terabit

主机名(hostname): unknown

机构(organization): PT SELARAS CITRA TERABIT

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	"Account brute force using dictionary attack against Exchange Online"	2019-08-06 01:57:09

相同子网IP讨论:

IP	类型	评论内容	时间
121.101.130.163	attack	Telnet/23 MH Probe, BF, Hack -	2020-01-04 18:18:29
121.101.130.42	attack	Spambot-get old address of contact form	2019-10-18 02:41:34
121.101.130.41	attackspambots	"Account brute force using dictionary attack against Exchange Online"	2019-08-06 01:57:32

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.101.130.43
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25040
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.101.130.43.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051800 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat May 18 23:27:27 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

43.130.101.121.in-addr.arpa domain name pointer ip-43.130.101.terabit.net.id.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
43.130.101.121.in-addr.arpa	name = ip-43.130.101.terabit.net.id.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
68.207.243.38	attackbots	Fail2Ban Ban Triggered (2)	2020-07-04 11:26:59
139.170.150.251	attack	Jul 4 00:59:36 vps1 sshd[2193486]: Invalid user oracle from 139.170.150.251 port 36438 Jul 4 00:59:38 vps1 sshd[2193486]: Failed password for invalid user oracle from 139.170.150.251 port 36438 ssh2 ...	2020-07-04 11:50:36
103.253.113.173	attackspam	2020-07-03T23:05:52.734312shield sshd\[16878\]: Invalid user lyp from 103.253.113.173 port 41609 2020-07-03T23:05:52.737972shield sshd\[16878\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.253.113.173 2020-07-03T23:05:55.301239shield sshd\[16878\]: Failed password for invalid user lyp from 103.253.113.173 port 41609 ssh2 2020-07-03T23:14:35.141898shield sshd\[18393\]: Invalid user ftpuser from 103.253.113.173 port 38669 2020-07-03T23:14:35.145282shield sshd\[18393\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.253.113.173	2020-07-04 11:34:26
192.99.2.41	attackbotsspam	Lines containing failures of 192.99.2.41 Jul 1 18:25:21 kmh-wmh-001-nbg01 sshd[17028]: Invalid user ueda from 192.99.2.41 port 50208 Jul 1 18:25:21 kmh-wmh-001-nbg01 sshd[17028]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.2.41 Jul 1 18:25:23 kmh-wmh-001-nbg01 sshd[17028]: Failed password for invalid user ueda from 192.99.2.41 port 50208 ssh2 Jul 1 18:25:25 kmh-wmh-001-nbg01 sshd[17028]: Received disconnect from 192.99.2.41 port 50208:11: Bye Bye [preauth] Jul 1 18:25:25 kmh-wmh-001-nbg01 sshd[17028]: Disconnected from invalid user ueda 192.99.2.41 port 50208 [preauth] Jul 1 18:38:01 kmh-wmh-001-nbg01 sshd[18659]: Invalid user nagios from 192.99.2.41 port 57198 Jul 1 18:38:01 kmh-wmh-001-nbg01 sshd[18659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.2.41 Jul 1 18:38:03 kmh-wmh-001-nbg01 sshd[18659]: Failed password for invalid user nagios from 192.99.2.41 port ........ ------------------------------	2020-07-04 11:32:03
222.127.97.91	attackbotsspam	Jul 4 02:53:29 abendstille sshd\[10014\]: Invalid user admin from 222.127.97.91 Jul 4 02:53:29 abendstille sshd\[10014\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.127.97.91 Jul 4 02:53:31 abendstille sshd\[10014\]: Failed password for invalid user admin from 222.127.97.91 port 18373 ssh2 Jul 4 02:57:05 abendstille sshd\[13598\]: Invalid user adam from 222.127.97.91 Jul 4 02:57:05 abendstille sshd\[13598\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.127.97.91 ...	2020-07-04 11:19:04
112.85.42.173	attackspambots	Jul 4 04:17:28 ajax sshd[25722]: Failed password for root from 112.85.42.173 port 18487 ssh2 Jul 4 04:17:31 ajax sshd[25722]: Failed password for root from 112.85.42.173 port 18487 ssh2	2020-07-04 11:19:47
183.129.159.242	attack	Spam detected 2020.07.04 01:14:34 blocked until 2020.08.22 18:17:21 by HoneyPot	2020-07-04 11:22:26
120.92.155.102	attackspam	Jul 4 05:37:16 vps687878 sshd\[7902\]: Invalid user mycat from 120.92.155.102 port 49046 Jul 4 05:37:16 vps687878 sshd\[7902\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.155.102 Jul 4 05:37:18 vps687878 sshd\[7902\]: Failed password for invalid user mycat from 120.92.155.102 port 49046 ssh2 Jul 4 05:40:42 vps687878 sshd\[8293\]: Invalid user sdt from 120.92.155.102 port 24814 Jul 4 05:40:42 vps687878 sshd\[8293\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.155.102 ...	2020-07-04 11:58:47
167.71.171.32	attackspambots	167.71.171.32 - - [04/Jul/2020:02:26:53 +0100] "POST /wp-login.php HTTP/1.1" 200 1967 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.71.171.32 - - [04/Jul/2020:02:26:54 +0100] "POST /wp-login.php HTTP/1.1" 200 1994 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.71.171.32 - - [04/Jul/2020:02:26:54 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-04 11:47:59
157.47.154.134	attackbotsspam	1593818054 - 07/04/2020 01:14:14 Host: 157.47.154.134/157.47.154.134 Port: 445 TCP Blocked	2020-07-04 11:55:58
89.36.210.121	attackbotsspam	SSH Brute-Forcing (server2)	2020-07-04 11:57:52
51.77.140.232	attackspambots	51.77.140.232 - - [04/Jul/2020:04:38:50 +0100] "POST /wp-login.php HTTP/1.1" 200 2261 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.77.140.232 - - [04/Jul/2020:04:38:51 +0100] "POST /wp-login.php HTTP/1.1" 200 2234 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.77.140.232 - - [04/Jul/2020:04:38:51 +0100] "POST /wp-login.php HTTP/1.1" 200 2233 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-04 11:41:58
139.99.105.138	attackspam	2020-07-04T03:30:58.996977mail.standpoint.com.ua sshd[1375]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.105.138 user=root 2020-07-04T03:31:00.857197mail.standpoint.com.ua sshd[1375]: Failed password for root from 139.99.105.138 port 50264 ssh2 2020-07-04T03:34:21.127530mail.standpoint.com.ua sshd[1868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.105.138 user=root 2020-07-04T03:34:23.188953mail.standpoint.com.ua sshd[1868]: Failed password for root from 139.99.105.138 port 46926 ssh2 2020-07-04T03:37:37.288944mail.standpoint.com.ua sshd[2361]: Invalid user debian from 139.99.105.138 port 43608 ...	2020-07-04 11:37:39
45.119.212.105	attackspambots	Jul 4 04:28:06 eventyay sshd[11016]: Failed password for root from 45.119.212.105 port 36588 ssh2 Jul 4 04:32:58 eventyay sshd[11171]: Failed password for root from 45.119.212.105 port 44662 ssh2 ...	2020-07-04 11:43:44
193.27.228.221	attack	[H1.VM1] Blocked by UFW	2020-07-04 11:45:09

最近上报的IP列表

91.62.39.39	137.4.105.106	39.134.26.20	42.237.138.107
51.231.100.143	196.6.205.173	31.19.51.191	183.82.211.16
44.61.171.108	5.190.142.47	111.211.57.44	115.115.104.1
182.114.197.131	200.108.22.252	84.144.145.5	201.23.97.225
99.71.157.20	13.36.242.57	38.90.111.85	148.165.192.215