121.200.55.131

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): India

运营商(isp): Wireless Solution India Pvt Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Automatic report - Port Scan Attack	2019-10-22 22:51:56

相同子网IP讨论:

IP	类型	评论内容	时间
121.200.55.37	attackbotsspam	2020-06-15T16:31:50+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-06-16 00:17:08
121.200.55.37	attack	Jun 14 03:32:07 ny01 sshd[29147]: Failed password for root from 121.200.55.37 port 36494 ssh2 Jun 14 03:35:11 ny01 sshd[29509]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.200.55.37 Jun 14 03:35:12 ny01 sshd[29509]: Failed password for invalid user r00t from 121.200.55.37 port 53156 ssh2	2020-06-14 15:43:52
121.200.55.37	attackspam	May 28 23:09:52 mout sshd[32706]: Invalid user alin from 121.200.55.37 port 58452	2020-05-29 05:30:46
121.200.55.37	attack	May 28 08:15:19 NPSTNNYC01T sshd[16041]: Failed password for root from 121.200.55.37 port 54764 ssh2 May 28 08:19:43 NPSTNNYC01T sshd[16407]: Failed password for root from 121.200.55.37 port 33082 ssh2 ...	2020-05-28 22:15:01
121.200.55.37	attackbotsspam	Invalid user hargreaves from 121.200.55.37 port 45930	2020-05-28 13:59:34
121.200.55.37	attackspambots	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-05-23 22:26:49
121.200.55.37	attackspam	May 20 15:59:52 ip-172-31-61-156 sshd[11268]: Invalid user ip from 121.200.55.37 May 20 15:59:54 ip-172-31-61-156 sshd[11268]: Failed password for invalid user ip from 121.200.55.37 port 53916 ssh2 May 20 15:59:52 ip-172-31-61-156 sshd[11268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.200.55.37 May 20 15:59:52 ip-172-31-61-156 sshd[11268]: Invalid user ip from 121.200.55.37 May 20 15:59:54 ip-172-31-61-156 sshd[11268]: Failed password for invalid user ip from 121.200.55.37 port 53916 ssh2 ...	2020-05-21 05:03:33
121.200.55.37	attack	May 1 15:44:41 nextcloud sshd\[14056\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.200.55.37 user=root May 1 15:44:43 nextcloud sshd\[14056\]: Failed password for root from 121.200.55.37 port 33784 ssh2 May 1 15:52:18 nextcloud sshd\[24104\]: Invalid user ftp_user from 121.200.55.37	2020-05-01 23:40:05
121.200.55.39	attackspambots	Apr 19 21:04:21 vlre-nyc-1 sshd\[2355\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.200.55.39 user=root Apr 19 21:04:22 vlre-nyc-1 sshd\[2355\]: Failed password for root from 121.200.55.39 port 51688 ssh2 Apr 19 21:09:17 vlre-nyc-1 sshd\[2496\]: Invalid user ss from 121.200.55.39 Apr 19 21:09:17 vlre-nyc-1 sshd\[2496\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.200.55.39 Apr 19 21:09:18 vlre-nyc-1 sshd\[2496\]: Failed password for invalid user ss from 121.200.55.39 port 43706 ssh2 ...	2020-04-20 06:14:34
121.200.55.37	attackspambots	Apr 12 11:03:44 ift sshd\[7856\]: Failed password for root from 121.200.55.37 port 59592 ssh2Apr 12 11:05:54 ift sshd\[8483\]: Failed password for root from 121.200.55.37 port 35252 ssh2Apr 12 11:08:00 ift sshd\[8691\]: Failed password for root from 121.200.55.37 port 39552 ssh2Apr 12 11:10:10 ift sshd\[9061\]: Failed password for root from 121.200.55.37 port 43764 ssh2Apr 12 11:12:18 ift sshd\[9223\]: Failed password for root from 121.200.55.37 port 47388 ssh2 ...	2020-04-12 18:44:41
121.200.55.37	attack	2020-04-10T21:06:04.969061shield sshd\[29930\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.200.55.37 user=root 2020-04-10T21:06:06.330828shield sshd\[29930\]: Failed password for root from 121.200.55.37 port 55830 ssh2 2020-04-10T21:10:26.214282shield sshd\[31166\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.200.55.37 user=root 2020-04-10T21:10:28.880269shield sshd\[31166\]: Failed password for root from 121.200.55.37 port 36870 ssh2 2020-04-10T21:14:49.839757shield sshd\[32530\]: Invalid user elke from 121.200.55.37 port 46166	2020-04-11 05:21:13
121.200.55.37	attackspam	$f2bV_matches	2020-04-11 00:50:09
121.200.55.37	attack	(sshd) Failed SSH login from 121.200.55.37 (IN/India/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 27 14:46:22 elude sshd[26975]: Invalid user jialiang from 121.200.55.37 port 50286 Mar 27 14:46:24 elude sshd[26975]: Failed password for invalid user jialiang from 121.200.55.37 port 50286 ssh2 Mar 27 14:52:44 elude sshd[27311]: Invalid user xtq from 121.200.55.37 port 36172 Mar 27 14:52:46 elude sshd[27311]: Failed password for invalid user xtq from 121.200.55.37 port 36172 ssh2 Mar 27 14:56:20 elude sshd[27548]: Invalid user ross from 121.200.55.37 port 37940	2020-03-28 02:14:20
121.200.55.37	attackbots	Mar 25 13:36:47 xeon sshd[468]: Failed password for invalid user lei from 121.200.55.37 port 44936 ssh2	2020-03-25 22:27:53
121.200.55.37	attack	2020-03-22 23:12:46,349 fail2ban.actions: WARNING [ssh] Ban 121.200.55.37	2020-03-23 06:28:48

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.200.55.131
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42341
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.200.55.131.			IN	A

;; AUTHORITY SECTION:
.			155	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102200 1800 900 604800 86400

;; Query time: 90 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 22 22:51:49 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 131.55.200.121.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 131.55.200.121.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
14.142.94.222	attackspam	Feb 18 01:06:12 web9 sshd\[15462\]: Invalid user ftpuser from 14.142.94.222 Feb 18 01:06:12 web9 sshd\[15462\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.94.222 Feb 18 01:06:14 web9 sshd\[15462\]: Failed password for invalid user ftpuser from 14.142.94.222 port 60866 ssh2 Feb 18 01:08:31 web9 sshd\[15831\]: Invalid user rachel from 14.142.94.222 Feb 18 01:08:31 web9 sshd\[15831\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.94.222	2020-02-18 19:53:29
123.16.157.108	attackspam	firewall-block, port(s): 8728/tcp	2020-02-18 19:43:31
46.102.69.246	attackspam	[portscan] tcp/23 [TELNET] *(RWIN=31282)(02181116)	2020-02-18 19:41:23
187.188.193.211	attackbotsspam	Feb 18 04:44:55 firewall sshd[12527]: Invalid user root2 from 187.188.193.211 Feb 18 04:44:56 firewall sshd[12527]: Failed password for invalid user root2 from 187.188.193.211 port 43032 ssh2 Feb 18 04:47:43 firewall sshd[12612]: Invalid user test from 187.188.193.211 ...	2020-02-18 20:08:45
51.38.126.92	attackbotsspam	Feb 18 05:49:42 ks10 sshd[1047824]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.126.92 Feb 18 05:49:44 ks10 sshd[1047824]: Failed password for invalid user hduser from 51.38.126.92 port 42376 ssh2 ...	2020-02-18 20:09:34
82.78.149.86	attackbots	unauthorized connection attempt	2020-02-18 19:57:07
204.48.19.178	attackbots	Feb 18 12:12:51 MK-Soft-VM3 sshd[9352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.48.19.178 Feb 18 12:12:53 MK-Soft-VM3 sshd[9352]: Failed password for invalid user unknown from 204.48.19.178 port 39354 ssh2 ...	2020-02-18 20:07:31
49.213.175.9	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-18 19:28:20
37.49.226.111	attackspambots	Feb 18 11:52:02 debian-2gb-nbg1-2 kernel: \[4282338.347627\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=37.49.226.111 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=22733 PROTO=TCP SPT=40206 DPT=50802 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-18 19:44:24
185.53.88.48	attackbots	TCP Port Scanning	2020-02-18 19:38:15
117.1.122.176	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 18-02-2020 04:50:09.	2020-02-18 19:46:42
49.213.164.70	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-18 20:03:49
49.213.167.58	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-18 19:54:28
221.122.78.202	attackspambots	Tried sshing with brute force.	2020-02-18 19:59:35
49.213.163.43	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-18 20:10:09

最近上报的IP列表

84.229.91.19	178.242.186.157	112.217.175.210	98.127.30.167
178.163.96.215	185.4.132.177	112.80.40.242	222.67.176.176
186.89.177.128	32.102.4.85	178.128.236.202	49.83.219.27
64.129.101.182	253.13.201.249	112.252.26.183	219.223.234.6
175.145.60.162	139.162.2.70	102.65.155.160	188.134.68.201