必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Oracle Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:
类型 评论内容 时间
attack
Apr 12 12:09:04 *** sshd[27798]: Invalid user hoken from 129.146.139.144
2020-04-12 21:05:37
attackspam
2020-04-11T06:38:54.285858ionos.janbro.de sshd[98498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.146.139.144  user=root
2020-04-11T06:38:56.386036ionos.janbro.de sshd[98498]: Failed password for root from 129.146.139.144 port 40045 ssh2
2020-04-11T06:46:02.689490ionos.janbro.de sshd[98545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.146.139.144  user=root
2020-04-11T06:46:04.230971ionos.janbro.de sshd[98545]: Failed password for root from 129.146.139.144 port 47490 ssh2
2020-04-11T06:53:27.258207ionos.janbro.de sshd[98569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.146.139.144  user=root
2020-04-11T06:53:29.207999ionos.janbro.de sshd[98569]: Failed password for root from 129.146.139.144 port 55123 ssh2
2020-04-11T07:00:53.487286ionos.janbro.de sshd[98588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rh
...
2020-04-11 15:42:50
attack
2019-12-19 07:03:20,291 fail2ban.filter         [1733]: INFO    [ssh] Found 129.146.139.144 - 2019-12-19 07:03:20
2019-12-19 07:03:22,256 fail2ban.filter         [1733]: INFO    [ssh] Found 129.146.139.144 - 2019-12-19 07:03:22
2019-12-19 07:04:39,501 fail2ban.filter         [1733]: INFO    [ssh] Found 129.146.139.144 - 2019-12-19 07:04:39
2019-12-19 07:04:41,305 fail2ban.filter         [1733]: INFO    [ssh] Found 129.146.139.144 - 2019-12-19 07:04:41
2019-12-19 07:04:50,364 fail2ban.filter         [1733]: INFO    [ssh] Found 129.146.139.144 - 2019-12-19 07:04:50
2019-12-19 07:04:59,716 fail2ban.filter         [1733]: INFO    [ssh] Found 129.146.139.144 - 2019-12-19 07:04:59
2019-12-19 07:05:06,105 fail2ban.filter         [1733]: INFO    [ssh] Found 129.146.139.144 - 2019-12-19 07:05:06
2019-12-19 07:05:08,828 fail2ban.filter         [1733]: INFO    [ssh] Found 129.146.139.144 - 2019-12-19 07:05:08
2019-12-19 07:05:15,227 fail2ban.filter         [1733]: INFO    [ssh] Fo........
-------------------------------
2019-12-19 22:22:39
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.146.139.144
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17933
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.146.139.144.		IN	A

;; AUTHORITY SECTION:
.			427	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121900 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 19 22:22:36 CST 2019
;; MSG SIZE  rcvd: 119
HOST信息:
Host 144.139.146.129.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 144.139.146.129.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
219.157.144.211 attack
SSHScan
2019-07-05 14:25:17
117.27.151.104 attackspam
port scan and connect, tcp 22 (ssh)
2019-07-05 14:21:36
177.39.84.130 attack
Jul  5 04:47:28 ns41 sshd[30173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.39.84.130
2019-07-05 14:25:39
197.50.45.114 attackbotsspam
@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 15:21:30,722 INFO [shellcode_manager] (197.50.45.114) no match, writing hexdump (cfb324d8f927273a627f62285042ab8a :2124231) - MS17010 (EternalBlue)
2019-07-05 14:20:50
114.35.59.240 attackbots
114.35.59.240 - - [05/Jul/2019:00:44:04 +0200] "POST [munged]wp-login.php HTTP/1.1" 444 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 0.000
2019-07-05 14:15:48
42.112.185.185 attackspambots
2019-07-05 00:23:18 unexpected disconnection while reading SMTP command from ([42.112.185.185]) [42.112.185.185]:61119 I=[10.100.18.25]:25 (error: Connection reset by peer)
2019-07-05 00:23:57 unexpected disconnection while reading SMTP command from ([42.112.185.185]) [42.112.185.185]:56816 I=[10.100.18.25]:25 (error: Connection reset by peer)
2019-07-05 00:24:56 unexpected disconnection while reading SMTP command from ([42.112.185.185]) [42.112.185.185]:35979 I=[10.100.18.25]:25 (error: Connection reset by peer)


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=42.112.185.185
2019-07-05 14:24:25
118.143.85.51 attack
port scan and connect, tcp 1433 (ms-sql-s)
2019-07-05 14:02:34
132.232.102.60 attackspam
Invalid user ciserve from 132.232.102.60 port 35682
pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.102.60
Failed password for invalid user ciserve from 132.232.102.60 port 35682 ssh2
Invalid user zhun from 132.232.102.60 port 32786
pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.102.60
2019-07-05 14:31:34
177.228.104.251 attackspam
2019-07-05 00:22:20 unexpected disconnection while reading SMTP command from (customer-CLN-104-251.megared.net.mx) [177.228.104.251]:49462 I=[10.100.18.23]:25 (error: Connection reset by peer)
2019-07-05 00:23:28 unexpected disconnection while reading SMTP command from (customer-CLN-104-251.megared.net.mx) [177.228.104.251]:21597 I=[10.100.18.23]:25 (error: Connection reset by peer)
2019-07-05 00:23:37 unexpected disconnection while reading SMTP command from (customer-CLN-104-251.megared.net.mx) [177.228.104.251]:43879 I=[10.100.18.23]:25 (error: Connection reset by peer)


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=177.228.104.251
2019-07-05 14:19:04
116.31.116.2 attack
SSH bruteforce
2019-07-05 14:26:57
27.34.3.99 attackbots
Jul  5 00:24:01 mailserver sshd[13734]: Invalid user admin from 27.34.3.99
Jul  5 00:24:01 mailserver sshd[13734]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.34.3.99
Jul  5 00:24:03 mailserver sshd[13734]: Failed password for invalid user admin from 27.34.3.99 port 56300 ssh2
Jul  5 00:24:04 mailserver sshd[13734]: Connection closed by 27.34.3.99 port 56300 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=27.34.3.99
2019-07-05 14:22:55
179.25.244.123 attackspambots
2019-07-04 23:23:06 unexpected disconnection while reading SMTP command from r179-25-244-123.dialup.adsl.anteldata.net.uy [179.25.244.123]:8079 I=[10.100.18.25]:25 (error: Connection reset by peer)
2019-07-05 00:21:48 unexpected disconnection while reading SMTP command from r179-25-244-123.dialup.adsl.anteldata.net.uy [179.25.244.123]:43047 I=[10.100.18.25]:25 (error: Connection reset by peer)
2019-07-05 00:22:35 unexpected disconnection while reading SMTP command from r179-25-244-123.dialup.adsl.anteldata.net.uy [179.25.244.123]:4103 I=[10.100.18.25]:25 (error: Connection reset by peer)


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=179.25.244.123
2019-07-05 14:15:29
177.135.93.227 attackbots
Jul  5 08:18:43 dedicated sshd[25635]: Invalid user pul from 177.135.93.227 port 42326
2019-07-05 14:19:23
165.227.151.59 attackbots
Jul  5 05:13:39 localhost sshd\[9985\]: Invalid user to from 165.227.151.59 port 41180
Jul  5 05:13:39 localhost sshd\[9985\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.151.59
Jul  5 05:13:41 localhost sshd\[9985\]: Failed password for invalid user to from 165.227.151.59 port 41180 ssh2
...
2019-07-05 14:08:38
122.190.107.209 attack
Jul  4 17:43:14 mailman postfix/smtpd[11681]: NOQUEUE: reject: RCPT from unknown[122.190.107.209]: 554 5.7.1 Service unavailable; Client host [122.190.107.209] blocked using sbl-xbl.spamhaus.org; https://www.spamhaus.org/query/ip/122.190.107.209 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to=<[munged][at][munged]> proto=ESMTP helo=
Jul  4 17:43:15 mailman postfix/smtpd[11683]: NOQUEUE: reject: RCPT from unknown[122.190.107.209]: 554 5.7.1 Service unavailable; Client host [122.190.107.209] blocked using sbl-xbl.spamhaus.org; https://www.spamhaus.org/query/ip/122.190.107.209 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to=<[munged][at][munged]> proto=ESMTP helo=
2019-07-05 14:33:58

最近上报的IP列表

1.54.203.46 118.68.153.59 139.5.242.184 81.93.78.144
211.166.59.79 186.237.48.46 87.246.7.35 60.53.92.85
149.202.251.94 115.78.121.251 77.28.84.142 103.140.30.173
138.118.78.239 122.51.167.47 176.100.60.240 95.155.58.52
45.117.182.79 1.10.214.104 190.2.118.244 94.177.189.145