120.52.139.130

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Cloud Data Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	2020-10-01T03:34:29.872102hostname sshd[121908]: Failed password for invalid user cloud from 120.52.139.130 port 37033 ssh2 ...	2020-10-02 02:50:46
attack	Oct 1 10:18:53 pornomens sshd\[14280\]: Invalid user dan from 120.52.139.130 port 50565 Oct 1 10:18:53 pornomens sshd\[14280\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130 Oct 1 10:18:55 pornomens sshd\[14280\]: Failed password for invalid user dan from 120.52.139.130 port 50565 ssh2 ...	2020-10-01 19:02:24
attackbots	Aug 10 08:12:11 sip sshd[1256265]: Failed password for root from 120.52.139.130 port 40429 ssh2 Aug 10 08:16:40 sip sshd[1256299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130 user=root Aug 10 08:16:42 sip sshd[1256299]: Failed password for root from 120.52.139.130 port 33680 ssh2 ...	2020-08-10 14:24:52
attackbotsspam	2020-08-09T05:40:48.826545v22018076590370373 sshd[6795]: Failed password for root from 120.52.139.130 port 22250 ssh2 2020-08-09T05:45:59.735727v22018076590370373 sshd[3773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130 user=root 2020-08-09T05:46:02.352941v22018076590370373 sshd[3773]: Failed password for root from 120.52.139.130 port 24310 ssh2 2020-08-09T05:51:03.776702v22018076590370373 sshd[3638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130 user=root 2020-08-09T05:51:06.127391v22018076590370373 sshd[3638]: Failed password for root from 120.52.139.130 port 25403 ssh2 ...	2020-08-09 16:14:43
attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-03T20:26:54Z and 2020-08-03T20:37:03Z	2020-08-04 05:24:36
attackspam	Aug 2 22:56:01 kh-dev-server sshd[28684]: Failed password for root from 120.52.139.130 port 8181 ssh2 ...	2020-08-03 08:29:53
attackspambots	Invalid user jht from 120.52.139.130 port 50062	2020-08-01 15:26:39
attackspambots	Invalid user jht from 120.52.139.130 port 50062	2020-07-30 16:03:59
attack	Invalid user cy from 120.52.139.130 port 2771	2020-07-29 20:11:44
attack	Jul 28 22:29:53 vps sshd[701022]: Failed password for invalid user yogesh from 120.52.139.130 port 64547 ssh2 Jul 28 22:32:47 vps sshd[716161]: Invalid user pangrui from 120.52.139.130 port 40113 Jul 28 22:32:47 vps sshd[716161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130 Jul 28 22:32:49 vps sshd[716161]: Failed password for invalid user pangrui from 120.52.139.130 port 40113 ssh2 Jul 28 22:35:41 vps sshd[730947]: Invalid user nsbot from 120.52.139.130 port 15430 ...	2020-07-29 04:40:07
attack	k+ssh-bruteforce	2020-07-28 23:39:27
attack	2020-07-26T14:05:53.739744vps751288.ovh.net sshd\[25536\]: Invalid user aline from 120.52.139.130 port 63790 2020-07-26T14:05:53.744849vps751288.ovh.net sshd\[25536\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130 2020-07-26T14:05:55.332638vps751288.ovh.net sshd\[25536\]: Failed password for invalid user aline from 120.52.139.130 port 63790 ssh2 2020-07-26T14:07:01.780785vps751288.ovh.net sshd\[25564\]: Invalid user rpmbuilder from 120.52.139.130 port 13380 2020-07-26T14:07:01.787290vps751288.ovh.net sshd\[25564\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130	2020-07-26 21:12:46
attack	Jul 19 00:10:25 eventyay sshd[11200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130 Jul 19 00:10:26 eventyay sshd[11200]: Failed password for invalid user acs from 120.52.139.130 port 34656 ssh2 Jul 19 00:15:45 eventyay sshd[11365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130 ...	2020-07-19 06:28:20
attack	Jun 23 19:21:50 gw1 sshd[19164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130 Jun 23 19:21:52 gw1 sshd[19164]: Failed password for invalid user zhan from 120.52.139.130 port 9178 ssh2 ...	2020-06-23 23:39:50
attack	2020-05-27T07:47:18.370626ns386461 sshd\[6463\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130 user=root 2020-05-27T07:47:20.009080ns386461 sshd\[6463\]: Failed password for root from 120.52.139.130 port 48199 ssh2 2020-05-27T07:51:59.085810ns386461 sshd\[10715\]: Invalid user monitoring from 120.52.139.130 port 47243 2020-05-27T07:51:59.090529ns386461 sshd\[10715\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130 2020-05-27T07:52:00.638616ns386461 sshd\[10715\]: Failed password for invalid user monitoring from 120.52.139.130 port 47243 ssh2 ...	2020-05-27 16:23:02
attack	Automatic report - Banned IP Access	2020-05-25 19:03:31
attack	Triggered by Fail2Ban at Ares web server	2020-05-25 06:26:36
attackbots	$f2bV_matches	2020-05-16 17:31:20
attackbots	$f2bV_matches	2020-05-16 05:57:02
attackbotsspam	May 15 16:30:08 ArkNodeAT sshd\[1217\]: Invalid user fede from 120.52.139.130 May 15 16:30:08 ArkNodeAT sshd\[1217\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.139.130 May 15 16:30:09 ArkNodeAT sshd\[1217\]: Failed password for invalid user fede from 120.52.139.130 port 32382 ssh2	2020-05-15 23:20:10
attackspam	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-05-09 08:33:18
attack	$f2bV_matches	2020-05-08 19:35:28
attack	(sshd) Failed SSH login from 120.52.139.130 (CN/China/-): 5 in the last 3600 secs	2020-04-23 04:53:01
attack	Apr 12 01:43:54 sshd[7438]: Failed password for invalid user cacti from 120.52.139.130 port 4572 ssh2	2020-04-12 07:46:11
attack	Total attacks: 2	2020-03-30 00:56:27
attackbotsspam	SSH-BruteForce	2020-03-23 10:21:19
attack	Automatic report - SSH Brute-Force Attack	2020-02-29 00:32:06

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.52.139.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24442
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;120.52.139.130.			IN	A

;; AUTHORITY SECTION:
.			479	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022800 1800 900 604800 86400

;; Query time: 107 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 29 00:32:00 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 130.139.52.120.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 130.139.52.120.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
114.32.79.219	attackbotsspam	Automatic report - Port Scan Attack	2020-04-11 01:43:04
120.92.78.188	attackbots	Apr 10 15:19:23 pi sshd[15656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.78.188 Apr 10 15:19:24 pi sshd[15656]: Failed password for invalid user ubuntu from 120.92.78.188 port 42712 ssh2	2020-04-11 01:30:58
159.65.172.240	attack	Apr 10 07:50:58 pixelmemory sshd[30647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.172.240 Apr 10 07:51:00 pixelmemory sshd[30647]: Failed password for invalid user git from 159.65.172.240 port 53362 ssh2 Apr 10 08:01:47 pixelmemory sshd[32200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.172.240 ...	2020-04-11 01:43:59
134.209.148.107	attackbots	Apr 10 18:52:02 vmd48417 sshd[25963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107	2020-04-11 01:19:29
218.92.0.172	attackspambots	$f2bV_matches_ltvn	2020-04-11 01:44:47
104.248.237.238	attackspam	2020-04-10T18:17:21.476602vps751288.ovh.net sshd\[27252\]: Invalid user kf from 104.248.237.238 port 45426 2020-04-10T18:17:21.486978vps751288.ovh.net sshd\[27252\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.237.238 2020-04-10T18:17:23.703977vps751288.ovh.net sshd\[27252\]: Failed password for invalid user kf from 104.248.237.238 port 45426 ssh2 2020-04-10T18:20:17.176929vps751288.ovh.net sshd\[27258\]: Invalid user postgres from 104.248.237.238 port 44128 2020-04-10T18:20:17.184664vps751288.ovh.net sshd\[27258\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.237.238	2020-04-11 01:31:30
58.210.219.5	attackbotsspam	Helo	2020-04-11 01:28:25
113.134.211.28	attackbotsspam	2020-04-10T14:05:02.798015abusebot-4.cloudsearch.cf sshd[2201]: Invalid user licongcong from 113.134.211.28 port 38072 2020-04-10T14:05:02.805551abusebot-4.cloudsearch.cf sshd[2201]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.134.211.28 2020-04-10T14:05:02.798015abusebot-4.cloudsearch.cf sshd[2201]: Invalid user licongcong from 113.134.211.28 port 38072 2020-04-10T14:05:04.135414abusebot-4.cloudsearch.cf sshd[2201]: Failed password for invalid user licongcong from 113.134.211.28 port 38072 ssh2 2020-04-10T14:08:05.392494abusebot-4.cloudsearch.cf sshd[2396]: Invalid user apache from 113.134.211.28 port 45654 2020-04-10T14:08:05.402552abusebot-4.cloudsearch.cf sshd[2396]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.134.211.28 2020-04-10T14:08:05.392494abusebot-4.cloudsearch.cf sshd[2396]: Invalid user apache from 113.134.211.28 port 45654 2020-04-10T14:08:07.188738abusebot-4.cloudsearch.cf ss ...	2020-04-11 01:51:46
62.234.44.43	attackspambots	Apr 10 19:28:26 localhost sshd\[8857\]: Invalid user test from 62.234.44.43 Apr 10 19:28:26 localhost sshd\[8857\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.44.43 Apr 10 19:28:27 localhost sshd\[8857\]: Failed password for invalid user test from 62.234.44.43 port 48929 ssh2 Apr 10 19:31:45 localhost sshd\[9138\]: Invalid user admin from 62.234.44.43 Apr 10 19:31:45 localhost sshd\[9138\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.44.43 ...	2020-04-11 02:03:12
191.7.28.50	attackspam	(sshd) Failed SSH login from 191.7.28.50 (BR/Brazil/ip-191-7-28-50.ipd.nemesistec.com.br): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 10 17:29:50 andromeda sshd[13490]: Invalid user venta from 191.7.28.50 port 54198 Apr 10 17:29:52 andromeda sshd[13490]: Failed password for invalid user venta from 191.7.28.50 port 54198 ssh2 Apr 10 17:34:22 andromeda sshd[13685]: Invalid user teamspeak from 191.7.28.50 port 34610	2020-04-11 01:37:12
34.80.223.251	attackspambots	2020-04-10T16:39:22.444156dmca.cloudsearch.cf sshd[18142]: Invalid user wildfly from 34.80.223.251 port 54781 2020-04-10T16:39:22.450500dmca.cloudsearch.cf sshd[18142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=251.223.80.34.bc.googleusercontent.com 2020-04-10T16:39:22.444156dmca.cloudsearch.cf sshd[18142]: Invalid user wildfly from 34.80.223.251 port 54781 2020-04-10T16:39:24.716904dmca.cloudsearch.cf sshd[18142]: Failed password for invalid user wildfly from 34.80.223.251 port 54781 ssh2 2020-04-10T16:48:59.438381dmca.cloudsearch.cf sshd[18968]: Invalid user rail from 34.80.223.251 port 26818 2020-04-10T16:48:59.445039dmca.cloudsearch.cf sshd[18968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=251.223.80.34.bc.googleusercontent.com 2020-04-10T16:48:59.438381dmca.cloudsearch.cf sshd[18968]: Invalid user rail from 34.80.223.251 port 26818 2020-04-10T16:49:01.895711dmca.cloudsearch.cf sshd[18968]: ...	2020-04-11 01:37:49
222.186.175.183	attackspambots	Apr 10 19:41:56 v22018086721571380 sshd[6780]: error: maximum authentication attempts exceeded for root from 222.186.175.183 port 45326 ssh2 [preauth]	2020-04-11 01:42:33
106.13.28.99	attack	Unauthorized SSH login attempts	2020-04-11 01:46:44
190.111.140.239	attackbotsspam	Automatic report - Port Scan Attack	2020-04-11 01:30:07
14.248.152.224	attack	(smtpauth) Failed SMTP AUTH login from 14.248.152.224 (VN/Vietnam/static.vnpt.vn): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-04-10 16:36:25 plain authenticator failed for ([127.0.0.1]) [14.248.152.224]: 535 Incorrect authentication data (set_id=fd2302)	2020-04-11 01:47:10

最近上报的IP列表

59.120.178.249	42.117.175.231	210.16.86.6	189.134.220.183
151.84.3.105	1.209.1.125	42.117.17.95	212.55.98.85
199.201.78.4	83.23.196.51	176.14.16.250	120.132.7.61
42.117.141.179	37.28.166.211	183.82.134.64	123.25.218.72
94.60.178.131	42.117.137.17	185.253.218.155	45.159.74.81