220.180.121.6 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Anhui Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Brute force attempt	2019-12-07 19:30:40
attackspam	Oct 15 REMOVED dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 6 secs\): user=\, method=PLAIN, rip=220.180.121.6, lip=REMOVED, TLS, session=\ Oct 15 REMOVED dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 6 secs\): user=\, method=PLAIN, rip=220.180.121.6, lip=REMOVED, TLS, session=\ Oct 15 REMOVED dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 5 secs\): user=\, method=PLAIN, rip=220.180.121.6, lip=REMOVED, TLS: Disconnected, session=\	2019-10-15 15:48:15

类型

评论内容

时间

attackspambots

Brute force attempt

2019-12-07 19:30:40

attackspam

Oct 15 **REMOVED** dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 6 secs\): user=\, method=PLAIN, rip=220.180.121.6, lip=**REMOVED**, TLS, session=\
Oct 15 **REMOVED** dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 6 secs\): user=\, method=PLAIN, rip=220.180.121.6, lip=**REMOVED**, TLS, session=\
Oct 15 **REMOVED** dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 5 secs\): user=\, method=PLAIN, rip=220.180.121.6, lip=**REMOVED**, TLS: Disconnected, session=\

2019-10-15 15:48:15

相同子网IP讨论:

IP	类型	评论内容	时间
220.180.121.114	attackspam	Port Scan ...	2020-08-01 04:38:38

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.180.121.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42550
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;220.180.121.6.			IN	A

;; AUTHORITY SECTION:
.			477	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101500 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 15 15:48:12 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 6.121.180.220.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 6.121.180.220.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
14.187.101.172	attackbotsspam	lfd: (smtpauth) Failed SMTP AUTH login from 14.187.101.172 (static.vnpt.vn): 5 in the last 3600 secs - Wed Dec 19 22:09:16 2018	2020-02-07 09:41:09
61.19.123.126	attackbotsspam	lfd: (smtpauth) Failed SMTP AUTH login from 61.19.123.126 (TH/Thailand/-): 5 in the last 3600 secs - Mon Dec 17 06:47:27 2018	2020-02-07 09:59:42
180.108.146.136	attack	Brute force blocker - service: proftpd1 - aantal: 58 - Sun Dec 16 10:20:15 2018	2020-02-07 10:04:16
81.171.31.201	attack	TCP port 3389: Scan and connection	2020-02-07 10:12:53
185.234.216.227	attackspambots	lfd: (smtpauth) Failed SMTP AUTH login from 185.234.216.227 (-): 5 in the last 3600 secs - Wed Dec 19 10:55:51 2018	2020-02-07 09:46:19
36.78.83.109	attackbotsspam	lfd: (smtpauth) Failed SMTP AUTH login from 36.78.83.109 (-): 5 in the last 3600 secs - Mon Dec 17 14:09:34 2018	2020-02-07 10:00:11
121.238.13.31	attackspam	lfd: (smtpauth) Failed SMTP AUTH login from 121.238.13.31 (CN/China/31.13.238.121.broad.nt.js.dynamic.163data.com.cn): 5 in the last 3600 secs - Tue Dec 18 04:14:39 2018	2020-02-07 09:56:09
222.186.173.238	attack	Feb 7 01:43:37 124388 sshd[14842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.238 user=root Feb 7 01:43:39 124388 sshd[14842]: Failed password for root from 222.186.173.238 port 56954 ssh2 Feb 7 01:43:57 124388 sshd[14842]: error: maximum authentication attempts exceeded for root from 222.186.173.238 port 56954 ssh2 [preauth] Feb 7 01:44:02 124388 sshd[14844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.238 user=root Feb 7 01:44:04 124388 sshd[14844]: Failed password for root from 222.186.173.238 port 45800 ssh2	2020-02-07 09:55:34
103.253.42.61	attackbotsspam	Brute force blocker - service: exim2 - aantal: 25 - Sun Dec 16 08:00:17 2018	2020-02-07 10:08:56
113.70.36.231	attackspam	lfd: (smtpauth) Failed SMTP AUTH login from 113.70.36.231 (-): 5 in the last 3600 secs - Wed Dec 19 22:10:43 2018	2020-02-07 09:39:14
201.243.39.72	attack	lfd: (smtpauth) Failed SMTP AUTH login from 201.243.39.72 (VE/Venezuela/201-243-39-72.dyn.dsl.cantv.net): 5 in the last 3600 secs - Wed Dec 19 12:30:05 2018	2020-02-07 09:34:37
89.248.172.208	attack	Brute force blocker - service: exim2 - aantal: 25 - Wed Dec 19 00:50:15 2018	2020-02-07 09:54:22
45.125.65.125	attackspambots	Brute force blocker - service: exim2 - aantal: 25 - Sun Dec 16 09:00:18 2018	2020-02-07 10:07:46
223.197.151.55	attack	2019-11-02T12:00:53.622979suse-nuc sshd[22372]: Invalid user warlocks from 223.197.151.55 port 42372 ...	2020-02-07 10:11:20
67.205.135.127	attackbots	SSH / Telnet Brute Force Attempts on Honeypot	2020-02-07 09:49:59

最近上报的IP列表

153.149.141.166	60.16.248.121	192.228.100.228	52.33.29.45
100.35.76.159	210.12.202.220	192.169.243.224	106.56.247.85
189.235.128.153	93.171.155.30	106.226.50.194	70.2.245.174
190.11.190.33	41.50.46.93	117.202.20.220	71.58.196.193
72.27.99.59	113.160.158.242	113.182.7.202	34.68.79.121