120.52.139.130

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Cloud Data Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	2020-10-01T03:34:29.872102hostname sshd[121908]: Failed password for invalid user cloud from 120.52.139.130 port 37033 ssh2 ...	2020-10-02 02:50:46
attack	Oct 1 10:18:53 pornomens sshd\[14280\]: Invalid user dan from 120.52.139.130 port 50565 Oct 1 10:18:53 pornomens sshd\[14280\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130 Oct 1 10:18:55 pornomens sshd\[14280\]: Failed password for invalid user dan from 120.52.139.130 port 50565 ssh2 ...	2020-10-01 19:02:24
attackbots	Aug 10 08:12:11 sip sshd[1256265]: Failed password for root from 120.52.139.130 port 40429 ssh2 Aug 10 08:16:40 sip sshd[1256299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130 user=root Aug 10 08:16:42 sip sshd[1256299]: Failed password for root from 120.52.139.130 port 33680 ssh2 ...	2020-08-10 14:24:52
attackbotsspam	2020-08-09T05:40:48.826545v22018076590370373 sshd[6795]: Failed password for root from 120.52.139.130 port 22250 ssh2 2020-08-09T05:45:59.735727v22018076590370373 sshd[3773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130 user=root 2020-08-09T05:46:02.352941v22018076590370373 sshd[3773]: Failed password for root from 120.52.139.130 port 24310 ssh2 2020-08-09T05:51:03.776702v22018076590370373 sshd[3638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130 user=root 2020-08-09T05:51:06.127391v22018076590370373 sshd[3638]: Failed password for root from 120.52.139.130 port 25403 ssh2 ...	2020-08-09 16:14:43
attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-03T20:26:54Z and 2020-08-03T20:37:03Z	2020-08-04 05:24:36
attackspam	Aug 2 22:56:01 kh-dev-server sshd[28684]: Failed password for root from 120.52.139.130 port 8181 ssh2 ...	2020-08-03 08:29:53
attackspambots	Invalid user jht from 120.52.139.130 port 50062	2020-08-01 15:26:39
attackspambots	Invalid user jht from 120.52.139.130 port 50062	2020-07-30 16:03:59
attack	Invalid user cy from 120.52.139.130 port 2771	2020-07-29 20:11:44
attack	Jul 28 22:29:53 vps sshd[701022]: Failed password for invalid user yogesh from 120.52.139.130 port 64547 ssh2 Jul 28 22:32:47 vps sshd[716161]: Invalid user pangrui from 120.52.139.130 port 40113 Jul 28 22:32:47 vps sshd[716161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130 Jul 28 22:32:49 vps sshd[716161]: Failed password for invalid user pangrui from 120.52.139.130 port 40113 ssh2 Jul 28 22:35:41 vps sshd[730947]: Invalid user nsbot from 120.52.139.130 port 15430 ...	2020-07-29 04:40:07
attack	k+ssh-bruteforce	2020-07-28 23:39:27
attack	2020-07-26T14:05:53.739744vps751288.ovh.net sshd\[25536\]: Invalid user aline from 120.52.139.130 port 63790 2020-07-26T14:05:53.744849vps751288.ovh.net sshd\[25536\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130 2020-07-26T14:05:55.332638vps751288.ovh.net sshd\[25536\]: Failed password for invalid user aline from 120.52.139.130 port 63790 ssh2 2020-07-26T14:07:01.780785vps751288.ovh.net sshd\[25564\]: Invalid user rpmbuilder from 120.52.139.130 port 13380 2020-07-26T14:07:01.787290vps751288.ovh.net sshd\[25564\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130	2020-07-26 21:12:46
attack	Jul 19 00:10:25 eventyay sshd[11200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130 Jul 19 00:10:26 eventyay sshd[11200]: Failed password for invalid user acs from 120.52.139.130 port 34656 ssh2 Jul 19 00:15:45 eventyay sshd[11365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130 ...	2020-07-19 06:28:20
attack	Jun 23 19:21:50 gw1 sshd[19164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130 Jun 23 19:21:52 gw1 sshd[19164]: Failed password for invalid user zhan from 120.52.139.130 port 9178 ssh2 ...	2020-06-23 23:39:50
attack	2020-05-27T07:47:18.370626ns386461 sshd\[6463\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130 user=root 2020-05-27T07:47:20.009080ns386461 sshd\[6463\]: Failed password for root from 120.52.139.130 port 48199 ssh2 2020-05-27T07:51:59.085810ns386461 sshd\[10715\]: Invalid user monitoring from 120.52.139.130 port 47243 2020-05-27T07:51:59.090529ns386461 sshd\[10715\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130 2020-05-27T07:52:00.638616ns386461 sshd\[10715\]: Failed password for invalid user monitoring from 120.52.139.130 port 47243 ssh2 ...	2020-05-27 16:23:02
attack	Automatic report - Banned IP Access	2020-05-25 19:03:31
attack	Triggered by Fail2Ban at Ares web server	2020-05-25 06:26:36
attackbots	$f2bV_matches	2020-05-16 17:31:20
attackbots	$f2bV_matches	2020-05-16 05:57:02
attackbotsspam	May 15 16:30:08 ArkNodeAT sshd\[1217\]: Invalid user fede from 120.52.139.130 May 15 16:30:08 ArkNodeAT sshd\[1217\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130 May 15 16:30:09 ArkNodeAT sshd\[1217\]: Failed password for invalid user fede from 120.52.139.130 port 32382 ssh2	2020-05-15 23:20:10
attackspam	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-05-09 08:33:18
attack	$f2bV_matches	2020-05-08 19:35:28
attack	(sshd) Failed SSH login from 120.52.139.130 (CN/China/-): 5 in the last 3600 secs	2020-04-23 04:53:01
attack	Apr 12 01:43:54 sshd[7438]: Failed password for invalid user cacti from 120.52.139.130 port 4572 ssh2	2020-04-12 07:46:11
attack	Total attacks: 2	2020-03-30 00:56:27
attackbotsspam	SSH-BruteForce	2020-03-23 10:21:19
attack	Automatic report - SSH Brute-Force Attack	2020-02-29 00:32:06

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.52.139.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24442
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;120.52.139.130.			IN	A

;; AUTHORITY SECTION:
.			479	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022800 1800 900 604800 86400

;; Query time: 107 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 29 00:32:00 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 130.139.52.120.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 130.139.52.120.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
54.37.157.88	attack	DATE:2020-02-29 10:55:10, IP:54.37.157.88, PORT:ssh SSH brute force auth (docker-dc)	2020-02-29 19:07:47
115.216.58.155	attackspambots	Feb 29 06:41:18 grey postfix/smtpd\[12039\]: NOQUEUE: reject: RCPT from unknown\[115.216.58.155\]: 554 5.7.1 Service unavailable\; Client host \[115.216.58.155\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[115.216.58.155\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-29 18:51:58
111.229.199.102	attackspam	Feb 29 10:40:53 MK-Soft-VM4 sshd[27942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.199.102 Feb 29 10:40:55 MK-Soft-VM4 sshd[27942]: Failed password for invalid user bwadmin from 111.229.199.102 port 38350 ssh2 ...	2020-02-29 18:39:32
182.61.176.241	attackspambots	Feb 29 01:53:10 dallas01 sshd[20797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.176.241 Feb 29 01:53:11 dallas01 sshd[20797]: Failed password for invalid user ganhuaiyan from 182.61.176.241 port 52220 ssh2 Feb 29 01:57:18 dallas01 sshd[21280]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.176.241	2020-02-29 19:15:15
14.240.205.177	attack	Email rejected due to spam filtering	2020-02-29 19:17:51
59.152.196.154	attackbots	SSH Bruteforce attempt	2020-02-29 19:11:48
136.232.244.170	attack	20/2/29@00:40:58: FAIL: Alarm-Network address from=136.232.244.170 20/2/29@00:40:59: FAIL: Alarm-Network address from=136.232.244.170 ...	2020-02-29 19:05:43
112.234.72.203	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 18:49:21
185.53.88.29	attack	[2020-02-29 05:27:59] NOTICE[1148][C-0000cfff] chan_sip.c: Call from '' (185.53.88.29:5074) to extension '810972594771385' rejected because extension not found in context 'public'. [2020-02-29 05:27:59] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-02-29T05:27:59.734-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="810972594771385",SessionID="0x7fd82ce0e5f8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.29/5074",ACLName="no_extension_match" [2020-02-29 05:34:58] NOTICE[1148][C-0000d006] chan_sip.c: Call from '' (185.53.88.29:5074) to extension '9810972594771385' rejected because extension not found in context 'public'. [2020-02-29 05:34:58] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-02-29T05:34:58.197-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="9810972594771385",SessionID="0x7fd82c4d9f48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185. ...	2020-02-29 18:51:30
41.65.64.51	attack	Feb 28 23:08:37 web1 sshd\[14097\]: Invalid user sunny from 41.65.64.51 Feb 28 23:08:37 web1 sshd\[14097\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.65.64.51 Feb 28 23:08:39 web1 sshd\[14097\]: Failed password for invalid user sunny from 41.65.64.51 port 46448 ssh2 Feb 28 23:16:19 web1 sshd\[14861\]: Invalid user bobby from 41.65.64.51 Feb 28 23:16:19 web1 sshd\[14861\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.65.64.51	2020-02-29 18:40:07
160.20.196.202	attack	Email rejected due to spam filtering	2020-02-29 19:15:43
186.43.86.229	attackbotsspam	Automatic report - Port Scan Attack	2020-02-29 18:56:29
157.230.227.105	attackspam	Automatic report - Banned IP Access	2020-02-29 19:00:55
141.98.80.175	attackbots	...	2020-02-29 19:09:49
104.131.190.193	attackbots	Feb 29 11:20:41 MK-Soft-VM6 sshd[11321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.190.193 Feb 29 11:20:43 MK-Soft-VM6 sshd[11321]: Failed password for invalid user justinbiberx from 104.131.190.193 port 37986 ssh2 ...	2020-02-29 19:07:24

最近上报的IP列表

59.120.178.249	42.117.175.231	210.16.86.6	189.134.220.183
151.84.3.105	1.209.1.125	42.117.17.95	212.55.98.85
199.201.78.4	83.23.196.51	176.14.16.250	120.132.7.61
42.117.141.179	37.28.166.211	183.82.134.64	123.25.218.72
94.60.178.131	42.117.137.17	185.253.218.155	45.159.74.81