102.132.138.97

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Africa

运营商(isp): Cool Ideas Service Provider (Pty) Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	TCP (SYN) 102.132.138.97:27900 -> port 8080, len 40	2020-06-06 19:23:10

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 102.132.138.97
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10585
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;102.132.138.97.			IN	A

;; AUTHORITY SECTION:
.			312	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060600 1800 900 604800 86400

;; Query time: 94 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 06 19:23:05 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 97.138.132.102.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
97.138.132.102.in-addr.arpa	name = n21t-cust.coolideas.co.za.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
46.38.144.117	attack	Jan 13 06:15:40 relay postfix/smtpd\[11153\]: warning: unknown\[46.38.144.117\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 13 06:15:52 relay postfix/smtpd\[2862\]: warning: unknown\[46.38.144.117\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 13 06:16:13 relay postfix/smtpd\[11153\]: warning: unknown\[46.38.144.117\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 13 06:16:29 relay postfix/smtpd\[2859\]: warning: unknown\[46.38.144.117\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 13 06:16:53 relay postfix/smtpd\[11153\]: warning: unknown\[46.38.144.117\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-01-13 13:18:12
170.253.6.125	attackbotsspam	Unauthorized connection attempt detected from IP address 170.253.6.125 to port 2220 [J]	2020-01-13 09:20:35
45.14.148.98	attackspambots	RO_Parfumuri Femei.com SRL_<177>1578891410 [1:2522084:3938] ET TOR Known Tor Relay/Router (Not Exit) Node TCP Traffic group 85 [Classification: Misc Attack] [Priority: 2] {TCP} 45.14.148.98:47926	2020-01-13 13:01:30
51.77.192.100	attackbotsspam	Unauthorized connection attempt detected from IP address 51.77.192.100 to port 2220 [J]	2020-01-13 09:23:50
159.89.203.214	attack	2020-01-12T23:44:19.610444shield sshd\[503\]: Invalid user servers from 159.89.203.214 port 45034 2020-01-12T23:44:19.613875shield sshd\[503\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.203.214 2020-01-12T23:44:21.323093shield sshd\[503\]: Failed password for invalid user servers from 159.89.203.214 port 45034 ssh2 2020-01-12T23:44:58.324974shield sshd\[818\]: Invalid user servers from 159.89.203.214 port 56580 2020-01-12T23:44:58.330172shield sshd\[818\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.203.214	2020-01-13 09:27:52
92.118.37.99	attackbotsspam	Jan 13 05:55:48 debian-2gb-nbg1-2 kernel: \[1150652.319887\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=92.118.37.99 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=2080 PROTO=TCP SPT=52751 DPT=31801 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-13 13:05:17
218.240.130.106	attackspam	Jan 13 05:53:25 meumeu sshd[344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.240.130.106 Jan 13 05:53:27 meumeu sshd[344]: Failed password for invalid user openkm from 218.240.130.106 port 47904 ssh2 Jan 13 05:56:56 meumeu sshd[934]: Failed password for root from 218.240.130.106 port 57860 ssh2 ...	2020-01-13 13:12:07
212.79.122.1	attackspam	Unauthorized connection attempt detected from IP address 212.79.122.1 to port 2220 [J]	2020-01-13 09:22:02
49.88.112.65	attack	Jan 13 04:55:41 hcbbdb sshd\[30498\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.65 user=root Jan 13 04:55:44 hcbbdb sshd\[30498\]: Failed password for root from 49.88.112.65 port 13779 ssh2 Jan 13 04:55:46 hcbbdb sshd\[30498\]: Failed password for root from 49.88.112.65 port 13779 ssh2 Jan 13 04:55:48 hcbbdb sshd\[30498\]: Failed password for root from 49.88.112.65 port 13779 ssh2 Jan 13 04:56:37 hcbbdb sshd\[30592\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.65 user=root	2020-01-13 13:14:06
52.81.22.185	attackbotsspam	Jan 13 01:20:38 server6 sshd[12474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-52-81-22-185.cn-north-1.compute.amazonaws.com.cn Jan 13 01:20:40 server6 sshd[12474]: Failed password for invalid user fernanda from 52.81.22.185 port 34722 ssh2 Jan 13 01:20:40 server6 sshd[12474]: Received disconnect from 52.81.22.185: 11: Bye Bye [preauth] Jan 13 01:31:45 server6 sshd[29039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-52-81-22-185.cn-north-1.compute.amazonaws.com.cn Jan 13 01:31:47 server6 sshd[29039]: Failed password for invalid user aa from 52.81.22.185 port 46296 ssh2 Jan 13 01:31:47 server6 sshd[29039]: Received disconnect from 52.81.22.185: 11: Bye Bye [preauth] Jan 13 01:35:03 server6 sshd[32201]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-52-81-22-185.cn-north-1.compute.amazonaws.com.cn Jan 13 01:35:06 server6 sshd[32201........ -------------------------------	2020-01-13 09:32:34
109.57.86.21	attack	Jan 12 21:18:17 xxx sshd[29363]: Invalid user testing from 109.57.86.21 Jan 12 21:18:19 xxx sshd[29363]: Failed password for invalid user testing from 109.57.86.21 port 35318 ssh2 Jan 12 22:06:26 xxx sshd[32327]: Invalid user wp from 109.57.86.21 Jan 12 22:06:29 xxx sshd[32327]: Failed password for invalid user wp from 109.57.86.21 port 52430 ssh2 Jan 12 22:18:24 xxx sshd[742]: Invalid user redmine from 109.57.86.21 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=109.57.86.21	2020-01-13 09:31:56
199.200.20.254	attackspam	Bruteforce on SSH Honeypot	2020-01-13 09:23:03
184.105.139.97	attackspam	" "	2020-01-13 13:14:45
73.8.91.33	attack	Jan 13 05:53:55 vpn01 sshd[7354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=73.8.91.33 Jan 13 05:53:57 vpn01 sshd[7354]: Failed password for invalid user michael from 73.8.91.33 port 46136 ssh2 ...	2020-01-13 13:15:09
118.24.6.27	attackbotsspam	abuseConfidenceScore blocked for 12h	2020-01-13 09:30:46

最近上报的IP列表

197.41.255.144	225.0.60.17	172.67.198.166	14.178.181.163
66.113.136.229	177.136.163.84	9.247.198.61	112.112.160.87
51.89.14.120	211.219.80.147	187.95.182.81	187.149.86.191
13.90.201.25	114.143.210.170	114.5.208.194	123.122.161.85
46.71.187.204	171.14.78.196	194.153.232.99	189.68.86.246