221.132.85.120

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea, Republic of

运营商(isp): NexG Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	$f2bV_matches	2019-12-19 06:25:49
attackspambots	$f2bV_matches	2019-12-15 02:28:47
attack	Dec 14 12:01:38 server sshd\[32710\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.132.85.120 user=mysql Dec 14 12:01:40 server sshd\[32710\]: Failed password for mysql from 221.132.85.120 port 53506 ssh2 Dec 14 12:11:02 server sshd\[3033\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.132.85.120 user=root Dec 14 12:11:04 server sshd\[3033\]: Failed password for root from 221.132.85.120 port 39694 ssh2 Dec 14 12:17:07 server sshd\[4800\]: Invalid user wkiconsole from 221.132.85.120 Dec 14 12:17:07 server sshd\[4800\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.132.85.120 ...	2019-12-14 19:55:57
attackspambots	Dec 9 21:26:59 heissa sshd\[12833\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.132.85.120 user=root Dec 9 21:27:01 heissa sshd\[12833\]: Failed password for root from 221.132.85.120 port 42870 ssh2 Dec 9 21:36:31 heissa sshd\[14326\]: Invalid user saturn from 221.132.85.120 port 36124 Dec 9 21:36:31 heissa sshd\[14326\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.132.85.120 Dec 9 21:36:32 heissa sshd\[14326\]: Failed password for invalid user saturn from 221.132.85.120 port 36124 ssh2	2019-12-11 21:24:06

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 221.132.85.120
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7278
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;221.132.85.120.			IN	A

;; AUTHORITY SECTION:
.			576	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121100 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Dec 11 21:23:52 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

120.85.132.221.in-addr.arpa domain name pointer static.221-132-85-120.nexg.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
120.85.132.221.in-addr.arpa	name = static.221-132-85-120.nexg.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
67.205.139.107	attackspambots	[portscan] tcp/22 [SSH] *(RWIN=65535)(06240931)	2019-06-25 05:27:23
43.228.129.229	attackbots	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(06240931)	2019-06-25 05:29:38
182.52.87.75	attackbots	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(06240931)	2019-06-25 05:44:08
27.211.228.161	attack	[portscan] tcp/22 [SSH] *(RWIN=50407)(06240931)	2019-06-25 05:32:44
36.85.231.165	attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(06240931)	2019-06-25 05:31:36
1.20.217.173	attackbotsspam	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(06240931)	2019-06-25 05:34:36
182.254.242.230	attackspam	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(06240931)	2019-06-25 05:43:17
222.73.85.76	attackspam	Scanning random ports - tries to find possible vulnerable services	2019-06-25 05:35:21
118.175.218.177	attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(06240931)	2019-06-25 05:51:12
58.64.174.139	attackbotsspam	Scanning random ports - tries to find possible vulnerable services	2019-06-25 05:28:47
42.187.121.111	attackbotsspam	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(06240931)	2019-06-25 05:30:59
208.187.165.83	attackspam	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(06240931)	2019-06-25 06:06:33
34.77.55.136	attackbotsspam	[portscan] tcp/102 [TSAP] *(RWIN=65535)(06240931)	2019-06-25 05:32:18
216.218.206.71	attackspam	[portscan] udp/137 [netbios NS] *(RWIN=-)(06240931)	2019-06-25 05:37:12
183.63.177.44	attack	[portscan] tcp/1433 [MsSQL] [scan/connect: 3 time(s)] *(RWIN=8192,65535)(06240931)	2019-06-25 05:42:58

最近上报的IP列表

179.218.90.168	156.202.17.14	36.71.192.55	107.174.254.24
172.245.208.190	113.172.210.221	203.190.154.83	114.33.250.151
103.192.76.16	101.28.29.116	155.192.125.29	167.160.65.45
50.200.170.92	92.108.44.249	66.57.107.210	77.97.6.176
23.254.55.94	187.4.158.172	82.50.105.100	109.226.213.125