121.40.129.135

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Aliyun Computing Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 121.40.129.135 to port 445	2020-01-01 19:56:43

相同子网IP讨论:

IP	类型	评论内容	时间
121.40.129.34	attackbotsspam	IDS multiserver	2020-04-09 03:55:13

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.40.129.135
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17315
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.40.129.135.			IN	A

;; AUTHORITY SECTION:
.			218	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019123101 1800 900 604800 86400

;; Query time: 924 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 01 19:56:41 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 135.129.40.121.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 135.129.40.121.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
185.220.31.246	attack	[ ?? ] From bounce5@pegandopromocao.com.br Wed Jul 17 22:17:00 2019 Received: from host2.pegandopromocao.com.br ([185.220.31.246]:34644)	2019-07-18 16:12:34
81.192.159.130	attackbotsspam	Multiple SSH auth failures recorded by fail2ban	2019-07-18 15:22:53
59.127.172.234	attack	Jul 18 10:07:18 vps647732 sshd[5366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.127.172.234 Jul 18 10:07:19 vps647732 sshd[5366]: Failed password for invalid user shawn from 59.127.172.234 port 38948 ssh2 ...	2019-07-18 16:11:41
124.105.13.150	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-17 02:56:04,868 INFO [shellcode_manager] (124.105.13.150) no match, writing hexdump (76dc64ff3b5cf13852aa01f9c6bd3565 :2362264) - MS17010 (EternalBlue)	2019-07-18 15:53:05
45.230.100.247	attackspambots	2019-07-17 20:18:01 H=(45-230-100-247.in-addr.arpa) [45.230.100.247]:58712 I=[192.147.25.65]:25 sender verify fail for : Unrouteable address 2019-07-17 20:18:01 H=(45-230-100-247.in-addr.arpa) [45.230.100.247]:58712 I=[192.147.25.65]:25 F= rejected RCPT : Sender verify failed 2019-07-17 20:18:02 H=(45-230-100-247.in-addr.arpa) [45.230.100.247]:58712 I=[192.147.25.65]:25 F= rejected RCPT : Sender verify failed ...	2019-07-18 15:47:03
177.158.40.186	attackbotsspam	Automatic report - Port Scan Attack	2019-07-18 15:58:54
138.197.152.113	attack	Jul 18 09:52:32 legacy sshd[7983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.152.113 Jul 18 09:52:34 legacy sshd[7983]: Failed password for invalid user paul from 138.197.152.113 port 41910 ssh2 Jul 18 09:58:56 legacy sshd[8218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.152.113 ...	2019-07-18 16:11:04
61.216.38.23	attack	Jul 18 09:55:57 server sshd[17948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.216.38.23 ...	2019-07-18 16:10:43
125.141.139.23	attackspambots	Jul 17 22:58:59 vps200512 sshd\[21674\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.141.139.23 user=root Jul 17 22:59:02 vps200512 sshd\[21674\]: Failed password for root from 125.141.139.23 port 42376 ssh2 Jul 17 23:04:54 vps200512 sshd\[21849\]: Invalid user ts from 125.141.139.23 Jul 17 23:04:54 vps200512 sshd\[21849\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.141.139.23 Jul 17 23:04:56 vps200512 sshd\[21849\]: Failed password for invalid user ts from 125.141.139.23 port 41404 ssh2	2019-07-18 15:50:47
77.43.74.58	attackspam	Jul 18 10:30:21 srv-4 sshd\[8065\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.43.74.58 user=postgres Jul 18 10:30:23 srv-4 sshd\[8065\]: Failed password for postgres from 77.43.74.58 port 35366 ssh2 Jul 18 10:35:18 srv-4 sshd\[8511\]: Invalid user cam from 77.43.74.58 Jul 18 10:35:18 srv-4 sshd\[8511\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.43.74.58 ...	2019-07-18 15:39:48
209.99.132.5	attackspambots	WordPress XMLRPC scan :: 209.99.132.5 0.140 BYPASS [18/Jul/2019:11:18:57 1000] www.[censored_1] "POST /xmlrpc.php HTTP/1.1" 200 382 "https://www.[censored_1]/" "PHP/7.2.64"	2019-07-18 15:23:59
91.134.241.32	attackspambots	Jul 18 08:21:59 MK-Soft-Root1 sshd\[23115\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.241.32 user=root Jul 18 08:22:02 MK-Soft-Root1 sshd\[23115\]: Failed password for root from 91.134.241.32 port 55498 ssh2 Jul 18 08:26:30 MK-Soft-Root1 sshd\[23793\]: Invalid user user1 from 91.134.241.32 port 52778 Jul 18 08:26:30 MK-Soft-Root1 sshd\[23793\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.241.32 ...	2019-07-18 15:45:12
51.38.90.195	attackspambots	Jul 18 09:35:23 SilenceServices sshd[18185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.90.195 Jul 18 09:35:25 SilenceServices sshd[18185]: Failed password for invalid user wyf from 51.38.90.195 port 37410 ssh2 Jul 18 09:39:58 SilenceServices sshd[21138]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.90.195	2019-07-18 15:40:55
195.175.55.10	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-17 03:31:26,465 INFO [shellcode_manager] (195.175.55.10) no match, writing hexdump (194ef0ea3d242f70e3910afaf9bba4ac :2126554) - MS17010 (EternalBlue)	2019-07-18 15:22:31
213.152.180.5	attackspam	Jul 18 05:49:38 server2 sshd\[21605\]: User root from 213.152.180.5 not allowed because not listed in AllowUsers Jul 18 05:49:39 server2 sshd\[21607\]: Invalid user admin from 213.152.180.5 Jul 18 05:49:39 server2 sshd\[21609\]: Invalid user ubnt from 213.152.180.5 Jul 18 05:49:40 server2 sshd\[21611\]: Invalid user admin from 213.152.180.5 Jul 18 05:49:41 server2 sshd\[21613\]: User root from 213.152.180.5 not allowed because not listed in AllowUsers Jul 18 05:49:41 server2 sshd\[21615\]: Invalid user usuario from 213.152.180.5	2019-07-18 15:41:48

最近上报的IP列表

112.145.106.40	6.124.218.147	215.8.207.118	32.37.164.247
54.160.54.73	32.149.58.192	110.189.59.87	86.228.226.86
110.153.65.131	158.29.41.212	139.221.27.74	220.234.65.88
208.213.236.248	188.182.34.92	83.245.242.71	101.51.98.221
156.221.154.228	126.117.92.223	171.198.142.227	119.207.231.102