121.46.4.143 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Guangdong Aofei Data Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	SSH Brute-Force reported by Fail2Ban	2020-04-06 15:17:32

相同子网IP讨论:

IP	类型	评论内容	时间
121.46.4.222	attackspambots	2019-12-22T06:23:12.334825abusebot-2.cloudsearch.cf sshd[3517]: Invalid user www-data from 121.46.4.222 port 39705 2019-12-22T06:23:12.338991abusebot-2.cloudsearch.cf sshd[3517]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.4.222 2019-12-22T06:23:12.334825abusebot-2.cloudsearch.cf sshd[3517]: Invalid user www-data from 121.46.4.222 port 39705 2019-12-22T06:23:13.897329abusebot-2.cloudsearch.cf sshd[3517]: Failed password for invalid user www-data from 121.46.4.222 port 39705 ssh2 2019-12-22T06:29:57.576827abusebot-2.cloudsearch.cf sshd[3619]: Invalid user pretenders from 121.46.4.222 port 36096 2019-12-22T06:29:57.583797abusebot-2.cloudsearch.cf sshd[3619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.4.222 2019-12-22T06:29:57.576827abusebot-2.cloudsearch.cf sshd[3619]: Invalid user pretenders from 121.46.4.222 port 36096 2019-12-22T06:29:59.740381abusebot-2.cloudsearch.cf sshd[3619]: Fa ...	2019-12-22 15:22:06
121.46.4.222	attackbotsspam	Dec 15 13:52:29 itv-usvr-01 sshd[6146]: Invalid user user from 121.46.4.222 Dec 15 13:52:29 itv-usvr-01 sshd[6146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.4.222 Dec 15 13:52:29 itv-usvr-01 sshd[6146]: Invalid user user from 121.46.4.222 Dec 15 13:52:31 itv-usvr-01 sshd[6146]: Failed password for invalid user user from 121.46.4.222 port 58993 ssh2 Dec 15 13:58:28 itv-usvr-01 sshd[6366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.4.222 user=root Dec 15 13:58:30 itv-usvr-01 sshd[6366]: Failed password for root from 121.46.4.222 port 50369 ssh2	2019-12-15 15:27:56
121.46.4.222	attackbots	$f2bV_matches	2019-12-10 14:02:36
121.46.4.222	attackspambots	Dec 2 00:28:02 hpm sshd\[13322\]: Invalid user opedal from 121.46.4.222 Dec 2 00:28:02 hpm sshd\[13322\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.4.222 Dec 2 00:28:04 hpm sshd\[13322\]: Failed password for invalid user opedal from 121.46.4.222 port 53457 ssh2 Dec 2 00:36:58 hpm sshd\[14199\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.4.222 user=bin Dec 2 00:37:00 hpm sshd\[14199\]: Failed password for bin from 121.46.4.222 port 56537 ssh2	2019-12-02 19:14:30
121.46.4.222	attackbotsspam	2019-12-01T05:49:30.462180centos sshd\[20538\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.4.222 user=root 2019-12-01T05:49:32.365364centos sshd\[20538\]: Failed password for root from 121.46.4.222 port 46524 ssh2 2019-12-01T05:58:14.411815centos sshd\[20801\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.4.222 user=root	2019-12-01 13:30:05
121.46.4.222	attackbotsspam	2019-11-28T11:16:17.836005ns386461 sshd\[18222\]: Invalid user www-data from 121.46.4.222 port 41923 2019-11-28T11:16:17.840798ns386461 sshd\[18222\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.4.222 2019-11-28T11:16:19.798083ns386461 sshd\[18222\]: Failed password for invalid user www-data from 121.46.4.222 port 41923 ssh2 2019-11-28T11:29:28.309429ns386461 sshd\[29613\]: Invalid user backup from 121.46.4.222 port 50292 2019-11-28T11:29:28.314156ns386461 sshd\[29613\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.4.222 ...	2019-11-28 21:33:16
121.46.4.222	attack	$f2bV_matches	2019-11-27 13:25:57
121.46.4.222	attackbots	Nov 22 05:11:25 pl3server sshd[32127]: Invalid user www from 121.46.4.222 Nov 22 05:11:25 pl3server sshd[32127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.4.222 Nov 22 05:11:27 pl3server sshd[32127]: Failed password for invalid user www from 121.46.4.222 port 54163 ssh2 Nov 22 05:11:28 pl3server sshd[32127]: Received disconnect from 121.46.4.222: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=121.46.4.222	2019-11-24 15:58:48
121.46.4.222	attack	Nov 22 05:11:25 pl3server sshd[32127]: Invalid user www from 121.46.4.222 Nov 22 05:11:25 pl3server sshd[32127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.4.222 Nov 22 05:11:27 pl3server sshd[32127]: Failed password for invalid user www from 121.46.4.222 port 54163 ssh2 Nov 22 05:11:28 pl3server sshd[32127]: Received disconnect from 121.46.4.222: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=121.46.4.222	2019-11-23 17:28:40

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.46.4.143
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23546
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.46.4.143.			IN	A

;; AUTHORITY SECTION:
.			472	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040600 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 06 15:17:28 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 143.4.46.121.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 143.4.46.121.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
128.199.252.156	attack	Oct 2 06:23:56 [host] sshd[7116]: Invalid user brancoli from 128.199.252.156 Oct 2 06:23:56 [host] sshd[7116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.252.156 Oct 2 06:23:57 [host] sshd[7116]: Failed password for invalid user brancoli from 128.199.252.156 port 50628 ssh2	2019-10-02 15:09:13
160.153.154.142	attackbotsspam	160.153.154.142 - - [01/Oct/2019:23:51:12 -0400] "GET /?action=view&manufacturerID=158&productID=29211&linkID=13000&redirect=1&page=products1111111111111'%20UNION%20SELECT%20CHAR(45,120,49,45,81,45)--%20%20 HTTP/1.1" 302 379 "-" "-" 160.153.154.142 - - [01/Oct/2019:23:51:13 -0400] "GET /?action=view&manufacturerID=158&productID=29211&linkID=13000&redirect=1&page=products1111111111111'%20UNION%20SELECT%20CHAR(45,120,49,45,81,45)--%20%20 HTTP/1.1" 200 56468 "-" "-" ...	2019-10-02 14:58:42
5.196.93.55	attackbots	Automatic report - XMLRPC Attack	2019-10-02 14:57:30
94.23.215.90	attack	Oct 2 07:34:00 microserver sshd[25601]: Invalid user cloud_user from 94.23.215.90 port 59313 Oct 2 07:34:00 microserver sshd[25601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.215.90 Oct 2 07:34:03 microserver sshd[25601]: Failed password for invalid user cloud_user from 94.23.215.90 port 59313 ssh2 Oct 2 07:37:39 microserver sshd[26178]: Invalid user martine from 94.23.215.90 port 57802 Oct 2 07:37:39 microserver sshd[26178]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.215.90 Oct 2 07:48:14 microserver sshd[27494]: Invalid user ubuntu from 94.23.215.90 port 55516 Oct 2 07:48:14 microserver sshd[27494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.215.90 Oct 2 07:48:16 microserver sshd[27494]: Failed password for invalid user ubuntu from 94.23.215.90 port 55516 ssh2 Oct 2 07:51:47 microserver sshd[28079]: Invalid user odroid from 94.23.215.90 port 61374	2019-10-02 14:37:32
103.249.52.5	attackbots	Oct 2 07:09:43 taivassalofi sshd[113195]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.249.52.5 Oct 2 07:09:45 taivassalofi sshd[113195]: Failed password for invalid user 123 from 103.249.52.5 port 40912 ssh2 ...	2019-10-02 15:13:23
69.90.16.116	attackbotsspam	Oct 2 11:59:23 webhost01 sshd[13429]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.90.16.116 Oct 2 11:59:25 webhost01 sshd[13429]: Failed password for invalid user costin from 69.90.16.116 port 55758 ssh2 ...	2019-10-02 14:51:40
37.11.95.137	attackspam	Oct 2 05:33:06 h2022099 sshd[7885]: Invalid user admin from 37.11.95.137 Oct 2 05:33:08 h2022099 sshd[7885]: Failed password for invalid user admin from 37.11.95.137 port 43568 ssh2 Oct 2 05:33:08 h2022099 sshd[7885]: Received disconnect from 37.11.95.137: 11: Bye Bye [preauth] Oct 2 05:33:10 h2022099 sshd[7892]: Failed password for r.r from 37.11.95.137 port 43574 ssh2 Oct 2 05:33:10 h2022099 sshd[7892]: Received disconnect from 37.11.95.137: 11: Bye Bye [preauth] Oct 2 05:33:11 h2022099 sshd[7900]: Invalid user admin from 37.11.95.137 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=37.11.95.137	2019-10-02 14:47:47
138.0.6.215	attackspam	Oct 1 17:13:33 f201 sshd[27958]: Connection closed by 138.0.6.215 [preauth] Oct 1 18:33:58 f201 sshd[16495]: Connection closed by 138.0.6.215 [preauth] Oct 1 21:25:15 f201 sshd[28766]: Connection closed by 138.0.6.215 [preauth] Oct 2 05:05:40 f201 sshd[19477]: Connection closed by 138.0.6.215 [preauth] Oct 2 05:42:00 f201 sshd[28850]: Connection closed by 138.0.6.215 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=138.0.6.215	2019-10-02 15:06:22
187.72.78.245	attackspambots	Oct 1 17:39:55 f201 sshd[2232]: reveeclipse mapping checking getaddrinfo for 187-072-078-245.static.ctbctelecom.com.br [187.72.78.245] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 1 17:39:56 f201 sshd[2232]: Connection closed by 187.72.78.245 [preauth] Oct 2 05:08:57 f201 sshd[19972]: reveeclipse mapping checking getaddrinfo for 187-072-078-245.static.ctbctelecom.com.br [187.72.78.245] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 2 05:08:57 f201 sshd[19972]: Connection closed by 187.72.78.245 [preauth] Oct 2 05:34:29 f201 sshd[26628]: reveeclipse mapping checking getaddrinfo for 187-072-078-245.static.ctbctelecom.com.br [187.72.78.245] failed - POSSIBLE BREAK-IN ATTEMPT! ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=187.72.78.245	2019-10-02 15:02:49
106.38.76.156	attack	Oct 2 06:41:06 site1 sshd\[59499\]: Invalid user aplusbiz from 106.38.76.156Oct 2 06:41:08 site1 sshd\[59499\]: Failed password for invalid user aplusbiz from 106.38.76.156 port 49966 ssh2Oct 2 06:45:51 site1 sshd\[59717\]: Invalid user adina from 106.38.76.156Oct 2 06:45:53 site1 sshd\[59717\]: Failed password for invalid user adina from 106.38.76.156 port 52825 ssh2Oct 2 06:50:47 site1 sshd\[59838\]: Invalid user tb from 106.38.76.156Oct 2 06:50:49 site1 sshd\[59838\]: Failed password for invalid user tb from 106.38.76.156 port 55678 ssh2 ...	2019-10-02 15:13:02
43.242.125.185	attackbotsspam	SSH Brute Force	2019-10-02 15:01:35
142.93.26.245	attackbotsspam	Oct 2 08:45:32 localhost sshd\[14071\]: Invalid user user4 from 142.93.26.245 port 35798 Oct 2 08:45:32 localhost sshd\[14071\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.26.245 Oct 2 08:45:34 localhost sshd\[14071\]: Failed password for invalid user user4 from 142.93.26.245 port 35798 ssh2	2019-10-02 15:05:32
222.186.175.167	attackspam	SSH Brute Force, server-1 sshd[30346]: Failed password for root from 222.186.175.167 port 49122 ssh2	2019-10-02 14:36:33
84.208.62.38	attackspambots	2019-10-02T09:39:20.226649tmaserv sshd\[3469\]: Invalid user uploader from 84.208.62.38 port 60896 2019-10-02T09:39:20.230148tmaserv sshd\[3469\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=cm-84.208.62.38.getinternet.no 2019-10-02T09:39:22.245980tmaserv sshd\[3469\]: Failed password for invalid user uploader from 84.208.62.38 port 60896 ssh2 2019-10-02T09:43:08.092831tmaserv sshd\[3786\]: Invalid user odroid from 84.208.62.38 port 45458 2019-10-02T09:43:08.096759tmaserv sshd\[3786\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=cm-84.208.62.38.getinternet.no 2019-10-02T09:43:09.747400tmaserv sshd\[3786\]: Failed password for invalid user odroid from 84.208.62.38 port 45458 ssh2 ...	2019-10-02 14:46:05
149.56.16.168	attack	Oct 1 21:05:32 sachi sshd\[3970\]: Invalid user amx from 149.56.16.168 Oct 1 21:05:32 sachi sshd\[3970\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns526371.ip-149-56-16.net Oct 1 21:05:33 sachi sshd\[3970\]: Failed password for invalid user amx from 149.56.16.168 port 52806 ssh2 Oct 1 21:09:31 sachi sshd\[4356\]: Invalid user oe from 149.56.16.168 Oct 1 21:09:31 sachi sshd\[4356\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns526371.ip-149-56-16.net	2019-10-02 15:12:24

最近上报的IP列表

45.8.224.143	45.169.111.238	182.54.159.246	106.13.5.175
81.34.11.252	170.209.46.105	190.100.218.139	60.198.240.56
17.115.106.154	244.114.62.147	245.58.157.130	121.35.180.100
116.148.231.241	237.77.143.232	74.131.80.69	141.156.164.48
186.204.134.31	185.254.58.179	232.230.149.132	114.177.220.165