121.201.102.117

基本信息:

城市(city): unknown

省份(region): Guangdong

国家(country): China

运营商(isp): Guangdong RuiJiang Science and Tech Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 121.201.102.117 to port 3389 [T]	2020-01-06 04:18:11

相同子网IP讨论:

IP	类型	评论内容	时间
121.201.102.122	attack	Mar 30 19:41:00 silence02 sshd[12586]: Failed password for root from 121.201.102.122 port 44510 ssh2 Mar 30 19:42:56 silence02 sshd[12627]: Failed password for root from 121.201.102.122 port 55539 ssh2	2020-03-31 05:16:53
121.201.102.122	attackspam	Automatic report BANNED IP	2020-03-30 19:57:17
121.201.102.122	attackspam	Invalid user xpm from 121.201.102.122 port 39434	2020-03-30 09:37:04
121.201.102.122	attackbotsspam	Mar 11 05:10:20 server sshd\[19111\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.201.102.122 user=root Mar 11 05:10:22 server sshd\[19111\]: Failed password for root from 121.201.102.122 port 41462 ssh2 Mar 11 05:15:32 server sshd\[20077\]: Invalid user rstudio-server from 121.201.102.122 Mar 11 05:15:32 server sshd\[20077\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.201.102.122 Mar 11 05:15:34 server sshd\[20077\]: Failed password for invalid user rstudio-server from 121.201.102.122 port 38396 ssh2 ...	2020-03-11 11:18:45
121.201.102.122	attack	Mar 9 23:44:02 ns381471 sshd[31240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.201.102.122 Mar 9 23:44:04 ns381471 sshd[31240]: Failed password for invalid user hadoop from 121.201.102.122 port 39456 ssh2	2020-03-10 06:59:28

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.201.102.117
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54828
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.201.102.117.		IN	A

;; AUTHORITY SECTION:
.			598	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010501 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 06 04:18:08 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

117.102.201.121.in-addr.arpa domain name pointer 121.201.102.117.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
117.102.201.121.in-addr.arpa	name = 121.201.102.117.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
178.34.156.249	attackbots	Mar 23 13:50:15 mail sshd\[24004\]: Invalid user qq from 178.34.156.249 Mar 23 13:50:15 mail sshd\[24004\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.34.156.249 ...	2020-03-24 02:14:02
45.145.52.141	attack	Mar 23 17:02:31 debian-2gb-nbg1-2 kernel: \[7238439.460094\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.145.52.141 DST=195.201.40.59 LEN=60 TOS=0x00 PREC=0x00 TTL=57 ID=47759 DF PROTO=TCP SPT=42360 DPT=36777 WINDOW=1152 RES=0x00 SYN URGP=0	2020-03-24 02:05:04
188.35.187.50	attackbots	Mar 23 19:10:10 minden010 sshd[615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.35.187.50 Mar 23 19:10:12 minden010 sshd[615]: Failed password for invalid user ix from 188.35.187.50 port 50570 ssh2 Mar 23 19:14:19 minden010 sshd[2243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.35.187.50 ...	2020-03-24 02:15:48
42.101.38.160	attackspam	Mar 23 18:41:22 vmd17057 sshd[12572]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.101.38.160 Mar 23 18:41:23 vmd17057 sshd[12572]: Failed password for invalid user sinus from 42.101.38.160 port 47156 ssh2 ...	2020-03-24 02:16:56
211.205.95.1	attackspambots	20/3/23@11:47:10: FAIL: Alarm-Intrusion address from=211.205.95.1 ...	2020-03-24 02:08:54
41.95.192.127	attack	" "	2020-03-24 02:17:21
195.2.92.64	attackspam	Fail2Ban Ban Triggered	2020-03-24 02:13:10
114.204.218.154	attackbots	Mar 23 18:38:14 prox sshd[8185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.204.218.154 Mar 23 18:38:16 prox sshd[8185]: Failed password for invalid user pz from 114.204.218.154 port 51225 ssh2	2020-03-24 01:48:54
119.192.212.115	attackspambots	Mar 23 18:31:34 OPSO sshd\[18849\]: Invalid user mis from 119.192.212.115 port 51086 Mar 23 18:31:34 OPSO sshd\[18849\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.192.212.115 Mar 23 18:31:35 OPSO sshd\[18849\]: Failed password for invalid user mis from 119.192.212.115 port 51086 ssh2 Mar 23 18:33:05 OPSO sshd\[19056\]: Invalid user shardae from 119.192.212.115 port 47652 Mar 23 18:33:05 OPSO sshd\[19056\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.192.212.115	2020-03-24 02:16:30
80.211.2.150	attackspambots	2020-03-23T16:40:20.296991shield sshd\[21910\]: Invalid user redadmin from 80.211.2.150 port 39131 2020-03-23T16:40:20.305903shield sshd\[21910\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.2.150 2020-03-23T16:40:22.628003shield sshd\[21910\]: Failed password for invalid user redadmin from 80.211.2.150 port 39131 ssh2 2020-03-23T16:45:08.772679shield sshd\[22603\]: Invalid user user1 from 80.211.2.150 port 47077 2020-03-23T16:45:08.780088shield sshd\[22603\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.2.150	2020-03-24 02:04:29
198.245.53.242	attackbotsspam	Mar 23 18:31:19 silence02 sshd[28941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.245.53.242 Mar 23 18:31:21 silence02 sshd[28941]: Failed password for invalid user xiu from 198.245.53.242 port 49380 ssh2 Mar 23 18:35:12 silence02 sshd[29839]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.245.53.242	2020-03-24 01:47:02
49.233.183.7	attack	Lines containing failures of 49.233.183.7 Mar 22 19:59:06 penfold sshd[1814]: Invalid user emele from 49.233.183.7 port 37076 Mar 22 19:59:06 penfold sshd[1814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.183.7 Mar 22 19:59:08 penfold sshd[1814]: Failed password for invalid user emele from 49.233.183.7 port 37076 ssh2 Mar 22 19:59:10 penfold sshd[1814]: Received disconnect from 49.233.183.7 port 37076:11: Bye Bye [preauth] Mar 22 19:59:10 penfold sshd[1814]: Disconnected from invalid user emele 49.233.183.7 port 37076 [preauth] Mar 22 20:15:26 penfold sshd[2972]: Invalid user shoutcast from 49.233.183.7 port 36522 Mar 22 20:15:26 penfold sshd[2972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.183.7 Mar 22 20:15:28 penfold sshd[2972]: Failed password for invalid user shoutcast from 49.233.183.7 port 36522 ssh2 Mar 22 20:15:30 penfold sshd[2972]: Received disconnect fro........ ------------------------------	2020-03-24 01:58:16
49.51.159.151	attackspam	SSH bruteforce	2020-03-24 02:02:05
49.235.234.94	attack	Invalid user www from 49.235.234.94 port 57556	2020-03-24 01:42:59
123.113.185.57	attackbots	Lines containing failures of 123.113.185.57 Mar 23 16:40:55 shared10 sshd[31694]: Invalid user willenbring from 123.113.185.57 port 19343 Mar 23 16:40:55 shared10 sshd[31694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.113.185.57 Mar 23 16:40:56 shared10 sshd[31694]: Failed password for invalid user willenbring from 123.113.185.57 port 19343 ssh2 Mar 23 16:40:57 shared10 sshd[31694]: Received disconnect from 123.113.185.57 port 19343:11: Bye Bye [preauth] Mar 23 16:40:57 shared10 sshd[31694]: Disconnected from invalid user willenbring 123.113.185.57 port 19343 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=123.113.185.57	2020-03-24 01:56:26

最近上报的IP列表

183.217.22.223	89.131.17.244	177.38.245.34	88.241.74.196
87.255.69.226	122.130.94.69	125.14.183.197	138.184.156.63
88.122.92.128	207.213.74.243	183.252.145.125	190.108.209.9
79.25.76.32	41.29.37.254	111.208.123.142	78.189.160.100
3.216.74.190	75.52.105.185	65.236.147.196	160.172.140.176