138.121.128.20

基本信息:

城市(city): Teresina

省份(region): Piaui

国家(country): Brazil

运营商(isp): Itech Telecom

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Icarus honeypot on github	2020-06-15 00:17:58
attack	1433/tcp 445/tcp... [2019-09-15/11-07]7pkt,2pt.(tcp)	2019-11-07 17:54:34

相同子网IP讨论:

IP	类型	评论内容	时间
138.121.128.19	attackspambots	Bruteforce detected by fail2ban	2020-08-28 22:36:41
138.121.128.19	attackspam	SSH login attempts.	2020-08-27 04:12:52
138.121.128.19	attackspam	Aug 20 12:07:00 scw-6657dc sshd[7596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.121.128.19 user=root Aug 20 12:07:00 scw-6657dc sshd[7596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.121.128.19 user=root Aug 20 12:07:02 scw-6657dc sshd[7596]: Failed password for root from 138.121.128.19 port 34650 ssh2 ...	2020-08-20 21:41:38
138.121.128.19	attackspam	Aug 16 11:13:11 ip106 sshd[21276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.121.128.19 Aug 16 11:13:14 ip106 sshd[21276]: Failed password for invalid user els from 138.121.128.19 port 54574 ssh2 ...	2020-08-16 17:40:47
138.121.128.19	attackspam	2020-08-12 23:16:34.372024-0500 localhost sshd[1565]: Failed password for root from 138.121.128.19 port 35192 ssh2	2020-08-13 18:23:37
138.121.128.19	attack	Aug 1 07:48:38 buvik sshd[7773]: Failed password for root from 138.121.128.19 port 51614 ssh2 Aug 1 07:52:14 buvik sshd[8385]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.121.128.19 user=root Aug 1 07:52:16 buvik sshd[8385]: Failed password for root from 138.121.128.19 port 46428 ssh2 ...	2020-08-01 13:53:51
138.121.128.19	attackbots	Invalid user jira from 138.121.128.19 port 39228	2020-07-31 02:26:10
138.121.128.94	attackbotsspam	Unauthorized connection attempt detected from IP address 138.121.128.94 to port 8080	2020-07-22 20:46:44
138.121.128.19	attack	$f2bV_matches	2020-07-14 14:36:17
138.121.128.19	attackbots	Jul 12 21:56:25 meumeu sshd[487515]: Invalid user admin1 from 138.121.128.19 port 41802 Jul 12 21:56:25 meumeu sshd[487515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.121.128.19 Jul 12 21:56:25 meumeu sshd[487515]: Invalid user admin1 from 138.121.128.19 port 41802 Jul 12 21:56:27 meumeu sshd[487515]: Failed password for invalid user admin1 from 138.121.128.19 port 41802 ssh2 Jul 12 21:59:54 meumeu sshd[487606]: Invalid user redmine from 138.121.128.19 port 37862 Jul 12 21:59:54 meumeu sshd[487606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.121.128.19 Jul 12 21:59:54 meumeu sshd[487606]: Invalid user redmine from 138.121.128.19 port 37862 Jul 12 21:59:55 meumeu sshd[487606]: Failed password for invalid user redmine from 138.121.128.19 port 37862 ssh2 Jul 12 22:03:22 meumeu sshd[488035]: Invalid user kos from 138.121.128.19 port 33926 ...	2020-07-13 04:05:02
138.121.128.19	attackspam	Jun 30 21:05:34 vps sshd[15244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.121.128.19 Jun 30 21:05:36 vps sshd[15244]: Failed password for invalid user upload from 138.121.128.19 port 46862 ssh2 Jun 30 21:19:25 vps sshd[16402]: Failed password for root from 138.121.128.19 port 56782 ssh2 ...	2020-07-02 02:25:39
138.121.128.19	attackbots	Jun 20 14:13:56 sip sshd[713615]: Failed password for invalid user cynthia from 138.121.128.19 port 56554 ssh2 Jun 20 14:17:52 sip sshd[713652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.121.128.19 user=root Jun 20 14:17:54 sip sshd[713652]: Failed password for root from 138.121.128.19 port 56166 ssh2 ...	2020-06-20 23:07:34
138.121.128.19	attackspam	frenzy	2020-06-20 14:08:36
138.121.128.46	attack	Port Scan detected! ...	2020-05-27 06:42:30
138.121.128.46	attackspam	Connection by 138.121.128.46 on port: 23 got caught by honeypot at 5/14/2020 4:50:39 AM	2020-05-14 15:28:23

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.121.128.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61576
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.121.128.20.			IN	A

;; AUTHORITY SECTION:
.			417	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110700 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Nov 07 17:54:30 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

20.128.121.138.in-addr.arpa domain name pointer 20.128.121.138.itechtelecom.net.br.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.128.121.138.in-addr.arpa	name = 20.128.121.138.itechtelecom.net.br.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
185.220.101.146	attackbotsspam	Sep 6 22:57:32 george sshd[15497]: Failed password for root from 185.220.101.146 port 29238 ssh2 Sep 6 22:57:37 george sshd[15497]: Failed password for root from 185.220.101.146 port 29238 ssh2 Sep 6 22:57:40 george sshd[15497]: Failed password for root from 185.220.101.146 port 29238 ssh2 Sep 6 22:57:44 george sshd[15497]: Failed password for root from 185.220.101.146 port 29238 ssh2 Sep 6 22:57:48 george sshd[15497]: Failed password for root from 185.220.101.146 port 29238 ssh2 ...	2020-09-07 12:05:35
34.64.225.109	attackspambots	Forbidden directory scan :: 2020/09/06 18:54:51 [error] 1010#1010: *1652268 access forbidden by rule, client: 34.64.225.109, server: [censored_1], request: "GET //.env HTTP/1.1", host: "www.[censored_1]"	2020-09-07 08:52:59
42.113.60.241	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-07 08:39:49
58.87.114.13	attackbotsspam	invalid user carolina from 58.87.114.13 port 38118 ssh2	2020-09-07 08:47:24
152.136.149.160	attack	SSH login attempts.	2020-09-07 08:46:52
64.132.150.35	attackspambots	Honeypot attack, port: 445, PTR: barracuda.gipath.com.	2020-09-07 08:34:42
51.195.7.14	attackspambots	[2020-09-07 00:05:38] NOTICE[1194] chan_sip.c: Registration from '' failed for '51.195.7.14:50445' - Wrong password [2020-09-07 00:05:38] SECURITY[1233] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-09-07T00:05:38.878-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="7057",SessionID="0x7f2ddc27a9a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/51.195.7.14/50445",Challenge="62781fb3",ReceivedChallenge="62781fb3",ReceivedHash="a619f9d1db93b51c3b6b153590330632" [2020-09-07 00:06:10] NOTICE[1194] chan_sip.c: Registration from '' failed for '51.195.7.14:62741' - Wrong password [2020-09-07 00:06:10] SECURITY[1233] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-09-07T00:06:10.866-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="3000",SessionID="0x7f2ddc00cc78",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/51.195.7.14/62741", ...	2020-09-07 12:07:06
51.77.151.175	attackbots	SSH / Telnet Brute Force Attempts on Honeypot	2020-09-07 08:27:16
192.241.226.249	attack	Fail2Ban Ban Triggered	2020-09-07 08:36:41
218.92.0.133	attackspam	Sep 7 14:06:06 localhost sshd[2192553]: Unable to negotiate with 218.92.0.133 port 44972: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] ...	2020-09-07 12:07:41
138.68.100.212	attackbotsspam	Sep 7 04:03:16 *** sshd[24427]: Did not receive identification string from 138.68.100.212	2020-09-07 12:11:36
91.229.112.12	attackspam	[Mon Aug 17 22:20:47 2020] - DDoS Attack From IP: 91.229.112.12 Port: 45819	2020-09-07 08:48:46
102.42.82.1	attack	Port probing on unauthorized port 23	2020-09-07 12:09:54
176.210.160.189	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-07 12:04:07
144.217.60.239	attackbots	(sshd) Failed SSH login from 144.217.60.239 (CA/Canada/ip239.ip-144-217-60.net): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 6 20:38:50 server sshd[26541]: Failed password for root from 144.217.60.239 port 47380 ssh2 Sep 6 20:38:52 server sshd[26541]: Failed password for root from 144.217.60.239 port 47380 ssh2 Sep 6 20:38:56 server sshd[26541]: Failed password for root from 144.217.60.239 port 47380 ssh2 Sep 6 20:38:57 server sshd[26541]: Failed password for root from 144.217.60.239 port 47380 ssh2 Sep 6 20:39:00 server sshd[26541]: Failed password for root from 144.217.60.239 port 47380 ssh2	2020-09-07 08:39:15

最近上报的IP列表

31.47.0.106	90.159.28.67	170.238.215.80	59.125.81.174
45.125.66.31	36.72.112.117	183.131.85.4	112.198.27.4
129.205.19.100	94.237.120.97	94.21.100.60	80.151.61.108
107.161.91.46	35.225.55.241	212.92.112.121	185.245.84.244
171.117.73.219	37.120.217.52	172.245.206.17	51.158.189.247

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表