130.169.5.120 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 130.169.5.120
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47847
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;130.169.5.120.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021100 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 11 16:59:56 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

Host 120.5.169.130.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 120.5.169.130.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.180.130	attackbotsspam	SSH Brute Force, server-1 sshd[22087]: Failed password for root from 222.186.180.130 port 34129 ssh2	2020-01-11 15:29:27
111.254.55.98	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 11-01-2020 04:55:09.	2020-01-11 15:33:42
103.99.15.175	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 11-01-2020 04:55:09.	2020-01-11 15:34:15
47.75.131.198	attackbotsspam	SSH invalid-user multiple login try	2020-01-11 15:25:43
222.186.175.182	attackspam	2020-01-11T07:31:36.447388abusebot-8.cloudsearch.cf sshd[18615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root 2020-01-11T07:31:38.717782abusebot-8.cloudsearch.cf sshd[18615]: Failed password for root from 222.186.175.182 port 42890 ssh2 2020-01-11T07:31:42.356826abusebot-8.cloudsearch.cf sshd[18615]: Failed password for root from 222.186.175.182 port 42890 ssh2 2020-01-11T07:31:36.447388abusebot-8.cloudsearch.cf sshd[18615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root 2020-01-11T07:31:38.717782abusebot-8.cloudsearch.cf sshd[18615]: Failed password for root from 222.186.175.182 port 42890 ssh2 2020-01-11T07:31:42.356826abusebot-8.cloudsearch.cf sshd[18615]: Failed password for root from 222.186.175.182 port 42890 ssh2 2020-01-11T07:31:36.447388abusebot-8.cloudsearch.cf sshd[18615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 ...	2020-01-11 15:39:48
95.165.164.170	attack	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-01-11 15:21:25
157.245.71.7	attackspam	Automatic report - XMLRPC Attack	2020-01-11 15:23:45
200.105.234.131	attackspambots	Invalid user pi from 200.105.234.131 port 34196	2020-01-11 15:25:04
59.42.37.48	attackbots	Jan 11 07:07:02 * sshd[17605]: Address 59.42.37.48 maps to 48.37.42.59.broad.gz.gd.dynamic.163data.com.cn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jan 11 07:07:02 * sshd[17605]: Invalid user xwu from 59.42.37.48 Jan 11 07:07:02 * sshd[17605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.42.37.48 Jan 11 07:07:04 * sshd[17605]: Failed password for invalid user xwu from 59.42.37.48 port 53279 ssh2 Jan 11 07:07:05 *** sshd[17605]: Received disconnect from 59.42.37.48: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=59.42.37.48	2020-01-11 15:55:06
106.12.76.183	attackbotsspam	Jan 11 14:35:06 itv-usvr-02 sshd[15824]: Invalid user 1502 from 106.12.76.183 port 53346 Jan 11 14:35:06 itv-usvr-02 sshd[15824]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.76.183 Jan 11 14:35:06 itv-usvr-02 sshd[15824]: Invalid user 1502 from 106.12.76.183 port 53346 Jan 11 14:35:07 itv-usvr-02 sshd[15824]: Failed password for invalid user 1502 from 106.12.76.183 port 53346 ssh2 Jan 11 14:37:18 itv-usvr-02 sshd[15845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.76.183 user=root Jan 11 14:37:20 itv-usvr-02 sshd[15845]: Failed password for root from 106.12.76.183 port 41410 ssh2	2020-01-11 15:51:34
177.152.38.93	attack	[Sat Jan 11 11:54:42.857904 2020] [:error] [pid 8840:tid 140478095808256] [client 177.152.38.93:59766] [client 177.152.38.93] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197:80"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XhlVEsWJR76VRgCXUs12rAAAAD0"] ...	2020-01-11 15:51:56
106.12.94.5	attackspam	Jan 11 09:10:04 server sshd\[32378\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.94.5 user=root Jan 11 09:10:05 server sshd\[32378\]: Failed password for root from 106.12.94.5 port 57750 ssh2 Jan 11 09:33:50 server sshd\[6069\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.94.5 user=root Jan 11 09:33:52 server sshd\[6069\]: Failed password for root from 106.12.94.5 port 57640 ssh2 Jan 11 09:36:52 server sshd\[7017\]: Invalid user delete from 106.12.94.5 ...	2020-01-11 15:52:58
222.186.42.155	attack	Jan 11 08:45:56 dcd-gentoo sshd[21048]: User root from 222.186.42.155 not allowed because none of user's groups are listed in AllowGroups Jan 11 08:46:00 dcd-gentoo sshd[21048]: error: PAM: Authentication failure for illegal user root from 222.186.42.155 Jan 11 08:45:56 dcd-gentoo sshd[21048]: User root from 222.186.42.155 not allowed because none of user's groups are listed in AllowGroups Jan 11 08:46:00 dcd-gentoo sshd[21048]: error: PAM: Authentication failure for illegal user root from 222.186.42.155 Jan 11 08:45:56 dcd-gentoo sshd[21048]: User root from 222.186.42.155 not allowed because none of user's groups are listed in AllowGroups Jan 11 08:46:00 dcd-gentoo sshd[21048]: error: PAM: Authentication failure for illegal user root from 222.186.42.155 Jan 11 08:46:00 dcd-gentoo sshd[21048]: Failed keyboard-interactive/pam for invalid user root from 222.186.42.155 port 46695 ssh2 ...	2020-01-11 15:49:36
61.1.235.174	attackbots	1578718493 - 01/11/2020 05:54:53 Host: 61.1.235.174/61.1.235.174 Port: 445 TCP Blocked	2020-01-11 15:47:56
114.231.42.206	attackbotsspam	2020-01-10 22:54:33 dovecot_login authenticator failed for (rshwf) [114.231.42.206]:50435 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=linjia@lerctr.org) 2020-01-10 22:54:41 dovecot_login authenticator failed for (ylwdu) [114.231.42.206]:50435 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=linjia@lerctr.org) 2020-01-10 22:54:55 dovecot_login authenticator failed for (wztne) [114.231.42.206]:50435 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=linjia@lerctr.org) ...	2020-01-11 15:47:36

最近上报的IP列表

157.88.34.118	28.31.188.36	199.231.152.232	100.36.122.167
197.172.161.0	138.221.217.172	190.50.198.110	61.59.86.29
189.124.2.152	62.220.100.11	141.30.229.157	120.105.124.154
229.93.162.166	121.11.172.216	6.182.131.152	247.125.209.192
25.149.46.196	226.174.128.108	225.76.179.55	251.252.68.43