129.146.139.144

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Oracle Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Apr 12 12:09:04 *** sshd[27798]: Invalid user hoken from 129.146.139.144	2020-04-12 21:05:37
attackspam	2020-04-11T06:38:54.285858ionos.janbro.de sshd[98498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.146.139.144 user=root 2020-04-11T06:38:56.386036ionos.janbro.de sshd[98498]: Failed password for root from 129.146.139.144 port 40045 ssh2 2020-04-11T06:46:02.689490ionos.janbro.de sshd[98545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.146.139.144 user=root 2020-04-11T06:46:04.230971ionos.janbro.de sshd[98545]: Failed password for root from 129.146.139.144 port 47490 ssh2 2020-04-11T06:53:27.258207ionos.janbro.de sshd[98569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.146.139.144 user=root 2020-04-11T06:53:29.207999ionos.janbro.de sshd[98569]: Failed password for root from 129.146.139.144 port 55123 ssh2 2020-04-11T07:00:53.487286ionos.janbro.de sshd[98588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rh ...	2020-04-11 15:42:50
attack	2019-12-19 07:03:20,291 fail2ban.filter [1733]: INFO [ssh] Found 129.146.139.144 - 2019-12-19 07:03:20 2019-12-19 07:03:22,256 fail2ban.filter [1733]: INFO [ssh] Found 129.146.139.144 - 2019-12-19 07:03:22 2019-12-19 07:04:39,501 fail2ban.filter [1733]: INFO [ssh] Found 129.146.139.144 - 2019-12-19 07:04:39 2019-12-19 07:04:41,305 fail2ban.filter [1733]: INFO [ssh] Found 129.146.139.144 - 2019-12-19 07:04:41 2019-12-19 07:04:50,364 fail2ban.filter [1733]: INFO [ssh] Found 129.146.139.144 - 2019-12-19 07:04:50 2019-12-19 07:04:59,716 fail2ban.filter [1733]: INFO [ssh] Found 129.146.139.144 - 2019-12-19 07:04:59 2019-12-19 07:05:06,105 fail2ban.filter [1733]: INFO [ssh] Found 129.146.139.144 - 2019-12-19 07:05:06 2019-12-19 07:05:08,828 fail2ban.filter [1733]: INFO [ssh] Found 129.146.139.144 - 2019-12-19 07:05:08 2019-12-19 07:05:15,227 fail2ban.filter [1733]: INFO [ssh] Fo........ -------------------------------	2019-12-19 22:22:39

类型

评论内容

时间

attack

Apr 12 12:09:04 *** sshd[27798]: Invalid user hoken from 129.146.139.144

2020-04-12 21:05:37

attackspam

2020-04-11T06:38:54.285858ionos.janbro.de sshd[98498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.146.139.144  user=root
2020-04-11T06:38:56.386036ionos.janbro.de sshd[98498]: Failed password for root from 129.146.139.144 port 40045 ssh2
2020-04-11T06:46:02.689490ionos.janbro.de sshd[98545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.146.139.144  user=root
2020-04-11T06:46:04.230971ionos.janbro.de sshd[98545]: Failed password for root from 129.146.139.144 port 47490 ssh2
2020-04-11T06:53:27.258207ionos.janbro.de sshd[98569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.146.139.144  user=root
2020-04-11T06:53:29.207999ionos.janbro.de sshd[98569]: Failed password for root from 129.146.139.144 port 55123 ssh2
2020-04-11T07:00:53.487286ionos.janbro.de sshd[98588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rh
...

2020-04-11 15:42:50

attack

2019-12-19 07:03:20,291 fail2ban.filter         [1733]: INFO    [ssh] Found 129.146.139.144 - 2019-12-19 07:03:20
2019-12-19 07:03:22,256 fail2ban.filter         [1733]: INFO    [ssh] Found 129.146.139.144 - 2019-12-19 07:03:22
2019-12-19 07:04:39,501 fail2ban.filter         [1733]: INFO    [ssh] Found 129.146.139.144 - 2019-12-19 07:04:39
2019-12-19 07:04:41,305 fail2ban.filter         [1733]: INFO    [ssh] Found 129.146.139.144 - 2019-12-19 07:04:41
2019-12-19 07:04:50,364 fail2ban.filter         [1733]: INFO    [ssh] Found 129.146.139.144 - 2019-12-19 07:04:50
2019-12-19 07:04:59,716 fail2ban.filter         [1733]: INFO    [ssh] Found 129.146.139.144 - 2019-12-19 07:04:59
2019-12-19 07:05:06,105 fail2ban.filter         [1733]: INFO    [ssh] Found 129.146.139.144 - 2019-12-19 07:05:06
2019-12-19 07:05:08,828 fail2ban.filter         [1733]: INFO    [ssh] Found 129.146.139.144 - 2019-12-19 07:05:08
2019-12-19 07:05:15,227 fail2ban.filter         [1733]: INFO    [ssh] Fo........
-------------------------------

2019-12-19 22:22:39

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.146.139.144
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17933
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.146.139.144.		IN	A

;; AUTHORITY SECTION:
.			427	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121900 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 19 22:22:36 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 144.139.146.129.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 144.139.146.129.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
219.157.144.211	attack	SSHScan	2019-07-05 14:25:17
117.27.151.104	attackspam	port scan and connect, tcp 22 (ssh)	2019-07-05 14:21:36
177.39.84.130	attack	Jul 5 04:47:28 ns41 sshd[30173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.39.84.130	2019-07-05 14:25:39
197.50.45.114	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 15:21:30,722 INFO [shellcode_manager] (197.50.45.114) no match, writing hexdump (cfb324d8f927273a627f62285042ab8a :2124231) - MS17010 (EternalBlue)	2019-07-05 14:20:50
114.35.59.240	attackbots	114.35.59.240 - - [05/Jul/2019:00:44:04 +0200] "POST [munged]wp-login.php HTTP/1.1" 444 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 0.000	2019-07-05 14:15:48
42.112.185.185	attackspambots	2019-07-05 00:23:18 unexpected disconnection while reading SMTP command from ([42.112.185.185]) [42.112.185.185]:61119 I=[10.100.18.25]:25 (error: Connection reset by peer) 2019-07-05 00:23:57 unexpected disconnection while reading SMTP command from ([42.112.185.185]) [42.112.185.185]:56816 I=[10.100.18.25]:25 (error: Connection reset by peer) 2019-07-05 00:24:56 unexpected disconnection while reading SMTP command from ([42.112.185.185]) [42.112.185.185]:35979 I=[10.100.18.25]:25 (error: Connection reset by peer) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=42.112.185.185	2019-07-05 14:24:25
118.143.85.51	attack	port scan and connect, tcp 1433 (ms-sql-s)	2019-07-05 14:02:34
132.232.102.60	attackspam	Invalid user ciserve from 132.232.102.60 port 35682 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.102.60 Failed password for invalid user ciserve from 132.232.102.60 port 35682 ssh2 Invalid user zhun from 132.232.102.60 port 32786 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.102.60	2019-07-05 14:31:34
177.228.104.251	attackspam	2019-07-05 00:22:20 unexpected disconnection while reading SMTP command from (customer-CLN-104-251.megared.net.mx) [177.228.104.251]:49462 I=[10.100.18.23]:25 (error: Connection reset by peer) 2019-07-05 00:23:28 unexpected disconnection while reading SMTP command from (customer-CLN-104-251.megared.net.mx) [177.228.104.251]:21597 I=[10.100.18.23]:25 (error: Connection reset by peer) 2019-07-05 00:23:37 unexpected disconnection while reading SMTP command from (customer-CLN-104-251.megared.net.mx) [177.228.104.251]:43879 I=[10.100.18.23]:25 (error: Connection reset by peer) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=177.228.104.251	2019-07-05 14:19:04
116.31.116.2	attack	SSH bruteforce	2019-07-05 14:26:57
27.34.3.99	attackbots	Jul 5 00:24:01 mailserver sshd[13734]: Invalid user admin from 27.34.3.99 Jul 5 00:24:01 mailserver sshd[13734]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.34.3.99 Jul 5 00:24:03 mailserver sshd[13734]: Failed password for invalid user admin from 27.34.3.99 port 56300 ssh2 Jul 5 00:24:04 mailserver sshd[13734]: Connection closed by 27.34.3.99 port 56300 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=27.34.3.99	2019-07-05 14:22:55
179.25.244.123	attackspambots	2019-07-04 23:23:06 unexpected disconnection while reading SMTP command from r179-25-244-123.dialup.adsl.anteldata.net.uy [179.25.244.123]:8079 I=[10.100.18.25]:25 (error: Connection reset by peer) 2019-07-05 00:21:48 unexpected disconnection while reading SMTP command from r179-25-244-123.dialup.adsl.anteldata.net.uy [179.25.244.123]:43047 I=[10.100.18.25]:25 (error: Connection reset by peer) 2019-07-05 00:22:35 unexpected disconnection while reading SMTP command from r179-25-244-123.dialup.adsl.anteldata.net.uy [179.25.244.123]:4103 I=[10.100.18.25]:25 (error: Connection reset by peer) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=179.25.244.123	2019-07-05 14:15:29
177.135.93.227	attackbots	Jul 5 08:18:43 dedicated sshd[25635]: Invalid user pul from 177.135.93.227 port 42326	2019-07-05 14:19:23
165.227.151.59	attackbots	Jul 5 05:13:39 localhost sshd\[9985\]: Invalid user to from 165.227.151.59 port 41180 Jul 5 05:13:39 localhost sshd\[9985\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.151.59 Jul 5 05:13:41 localhost sshd\[9985\]: Failed password for invalid user to from 165.227.151.59 port 41180 ssh2 ...	2019-07-05 14:08:38
122.190.107.209	attack	Jul 4 17:43:14 mailman postfix/smtpd[11681]: NOQUEUE: reject: RCPT from unknown[122.190.107.209]: 554 5.7.1 Service unavailable; Client host [122.190.107.209] blocked using sbl-xbl.spamhaus.org; https://www.spamhaus.org/query/ip/122.190.107.209 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to=<[munged][at][munged]> proto=ESMTP helo= Jul 4 17:43:15 mailman postfix/smtpd[11683]: NOQUEUE: reject: RCPT from unknown[122.190.107.209]: 554 5.7.1 Service unavailable; Client host [122.190.107.209] blocked using sbl-xbl.spamhaus.org; https://www.spamhaus.org/query/ip/122.190.107.209 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to=<[munged][at][munged]> proto=ESMTP helo=	2019-07-05 14:33:58

最近上报的IP列表

1.54.203.46	118.68.153.59	139.5.242.184	81.93.78.144
211.166.59.79	186.237.48.46	87.246.7.35	60.53.92.85
149.202.251.94	115.78.121.251	77.28.84.142	103.140.30.173
138.118.78.239	122.51.167.47	176.100.60.240	95.155.58.52
45.117.182.79	1.10.214.104	190.2.118.244	94.177.189.145