121.46.4.143 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Guangdong Aofei Data Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	SSH Brute-Force reported by Fail2Ban	2020-04-06 15:17:32

相同子网IP讨论:

IP	类型	评论内容	时间
121.46.4.222	attackspambots	2019-12-22T06:23:12.334825abusebot-2.cloudsearch.cf sshd[3517]: Invalid user www-data from 121.46.4.222 port 39705 2019-12-22T06:23:12.338991abusebot-2.cloudsearch.cf sshd[3517]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.4.222 2019-12-22T06:23:12.334825abusebot-2.cloudsearch.cf sshd[3517]: Invalid user www-data from 121.46.4.222 port 39705 2019-12-22T06:23:13.897329abusebot-2.cloudsearch.cf sshd[3517]: Failed password for invalid user www-data from 121.46.4.222 port 39705 ssh2 2019-12-22T06:29:57.576827abusebot-2.cloudsearch.cf sshd[3619]: Invalid user pretenders from 121.46.4.222 port 36096 2019-12-22T06:29:57.583797abusebot-2.cloudsearch.cf sshd[3619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.4.222 2019-12-22T06:29:57.576827abusebot-2.cloudsearch.cf sshd[3619]: Invalid user pretenders from 121.46.4.222 port 36096 2019-12-22T06:29:59.740381abusebot-2.cloudsearch.cf sshd[3619]: Fa ...	2019-12-22 15:22:06
121.46.4.222	attackbotsspam	Dec 15 13:52:29 itv-usvr-01 sshd[6146]: Invalid user user from 121.46.4.222 Dec 15 13:52:29 itv-usvr-01 sshd[6146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.4.222 Dec 15 13:52:29 itv-usvr-01 sshd[6146]: Invalid user user from 121.46.4.222 Dec 15 13:52:31 itv-usvr-01 sshd[6146]: Failed password for invalid user user from 121.46.4.222 port 58993 ssh2 Dec 15 13:58:28 itv-usvr-01 sshd[6366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.4.222 user=root Dec 15 13:58:30 itv-usvr-01 sshd[6366]: Failed password for root from 121.46.4.222 port 50369 ssh2	2019-12-15 15:27:56
121.46.4.222	attackbots	$f2bV_matches	2019-12-10 14:02:36
121.46.4.222	attackspambots	Dec 2 00:28:02 hpm sshd\[13322\]: Invalid user opedal from 121.46.4.222 Dec 2 00:28:02 hpm sshd\[13322\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.4.222 Dec 2 00:28:04 hpm sshd\[13322\]: Failed password for invalid user opedal from 121.46.4.222 port 53457 ssh2 Dec 2 00:36:58 hpm sshd\[14199\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.4.222 user=bin Dec 2 00:37:00 hpm sshd\[14199\]: Failed password for bin from 121.46.4.222 port 56537 ssh2	2019-12-02 19:14:30
121.46.4.222	attackbotsspam	2019-12-01T05:49:30.462180centos sshd\[20538\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.4.222 user=root 2019-12-01T05:49:32.365364centos sshd\[20538\]: Failed password for root from 121.46.4.222 port 46524 ssh2 2019-12-01T05:58:14.411815centos sshd\[20801\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.4.222 user=root	2019-12-01 13:30:05
121.46.4.222	attackbotsspam	2019-11-28T11:16:17.836005ns386461 sshd\[18222\]: Invalid user www-data from 121.46.4.222 port 41923 2019-11-28T11:16:17.840798ns386461 sshd\[18222\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.4.222 2019-11-28T11:16:19.798083ns386461 sshd\[18222\]: Failed password for invalid user www-data from 121.46.4.222 port 41923 ssh2 2019-11-28T11:29:28.309429ns386461 sshd\[29613\]: Invalid user backup from 121.46.4.222 port 50292 2019-11-28T11:29:28.314156ns386461 sshd\[29613\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.4.222 ...	2019-11-28 21:33:16
121.46.4.222	attack	$f2bV_matches	2019-11-27 13:25:57
121.46.4.222	attackbots	Nov 22 05:11:25 pl3server sshd[32127]: Invalid user www from 121.46.4.222 Nov 22 05:11:25 pl3server sshd[32127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.4.222 Nov 22 05:11:27 pl3server sshd[32127]: Failed password for invalid user www from 121.46.4.222 port 54163 ssh2 Nov 22 05:11:28 pl3server sshd[32127]: Received disconnect from 121.46.4.222: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=121.46.4.222	2019-11-24 15:58:48
121.46.4.222	attack	Nov 22 05:11:25 pl3server sshd[32127]: Invalid user www from 121.46.4.222 Nov 22 05:11:25 pl3server sshd[32127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.4.222 Nov 22 05:11:27 pl3server sshd[32127]: Failed password for invalid user www from 121.46.4.222 port 54163 ssh2 Nov 22 05:11:28 pl3server sshd[32127]: Received disconnect from 121.46.4.222: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=121.46.4.222	2019-11-23 17:28:40

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.46.4.143
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23546
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.46.4.143.			IN	A

;; AUTHORITY SECTION:
.			472	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040600 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 06 15:17:28 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 143.4.46.121.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 143.4.46.121.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
118.212.95.18	attack	Oct 26 20:24:14 hcbbdb sshd\[14981\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.212.95.18 user=root Oct 26 20:24:16 hcbbdb sshd\[14981\]: Failed password for root from 118.212.95.18 port 41490 ssh2 Oct 26 20:29:39 hcbbdb sshd\[15547\]: Invalid user coder from 118.212.95.18 Oct 26 20:29:39 hcbbdb sshd\[15547\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.212.95.18 Oct 26 20:29:41 hcbbdb sshd\[15547\]: Failed password for invalid user coder from 118.212.95.18 port 50836 ssh2	2019-10-27 04:33:01
152.32.76.186	attackbotsspam	Oct 26 06:07:07 *** sshd[11494]: Failed password for invalid user ubuntu from 152.32.76.186 port 43835 ssh2	2019-10-27 04:17:42
179.52.61.30	attackspambots	Invalid user pi from 179.52.61.30 port 60542	2019-10-27 04:12:52
216.83.44.102	attackspam	2019-10-26T19:31:00.547788abusebot-5.cloudsearch.cf sshd\[22068\]: Invalid user qf from 216.83.44.102 port 39500	2019-10-27 04:04:24
212.120.186.15	attackspam	Invalid user admin from 212.120.186.15 port 59673	2019-10-27 04:04:43
118.89.93.101	attackspam	Oct 21 13:02:13 nexus sshd[26335]: Invalid user applmgr from 118.89.93.101 port 48762 Oct 21 13:02:14 nexus sshd[26335]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.93.101 Oct 21 13:02:16 nexus sshd[26335]: Failed password for invalid user applmgr from 118.89.93.101 port 48762 ssh2 Oct 21 13:02:16 nexus sshd[26335]: Received disconnect from 118.89.93.101 port 48762:11: Normal Shutdown, Thank you for playing [preauth] Oct 21 13:02:16 nexus sshd[26335]: Disconnected from 118.89.93.101 port 48762 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=118.89.93.101	2019-10-27 04:33:31
191.14.245.42	attackspambots	Invalid user admin from 191.14.245.42 port 31791	2019-10-27 04:08:25
180.76.237.125	attack	Oct 26 19:03:44 host sshd[57550]: Invalid user phil from 180.76.237.125 port 52686 ...	2019-10-27 04:11:38
5.39.77.117	attackspambots	Invalid user user from 5.39.77.117 port 55341 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.77.117 Failed password for invalid user user from 5.39.77.117 port 55341 ssh2 Invalid user nt from 5.39.77.117 port 46408 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.77.117	2019-10-27 04:30:31
222.252.25.241	attackspambots	Oct 26 16:55:52 ws24vmsma01 sshd[196775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.252.25.241 Oct 26 16:55:54 ws24vmsma01 sshd[196775]: Failed password for invalid user zimbra from 222.252.25.241 port 39062 ssh2 ...	2019-10-27 04:03:15
200.41.86.59	attack	SSH Brute-Force reported by Fail2Ban	2019-10-27 04:06:38
178.121.134.141	attackbotsspam	Invalid user admin from 178.121.134.141 port 37608	2019-10-27 04:13:35
45.55.206.241	attackbots	Invalid user afif from 45.55.206.241 port 57159	2019-10-27 03:56:56
218.149.228.171	attackbotsspam	Invalid user admin from 218.149.228.171 port 50136	2019-10-27 04:03:58
45.55.157.147	attackspam	SSH bruteforce (Triggered fail2ban)	2019-10-27 03:57:25

最近上报的IP列表

45.8.224.143	45.169.111.238	182.54.159.246	106.13.5.175
81.34.11.252	170.209.46.105	190.100.218.139	60.198.240.56
17.115.106.154	244.114.62.147	245.58.157.130	121.35.180.100
116.148.231.241	237.77.143.232	74.131.80.69	141.156.164.48
186.204.134.31	185.254.58.179	232.230.149.132	114.177.220.165