131.138.169.152

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Canada

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.138.169.152
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49944
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;131.138.169.152.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025013100 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 31 14:13:28 CST 2025
;; MSG SIZE  rcvd: 108

HOST信息:

Host 152.169.138.131.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 152.169.138.131.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
181.48.28.13	attackspam	$f2bV_matches	2019-12-07 23:06:50
36.89.39.193	attack	xmlrpc attack	2019-12-07 23:24:26
197.251.144.207	attack	197.251.144.207 - - \[07/Dec/2019:16:08:32 +0100\] "POST /wp-login.php HTTP/1.0" 200 4404 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 197.251.144.207 - - \[07/Dec/2019:16:08:34 +0100\] "POST /wp-login.php HTTP/1.0" 200 4236 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 197.251.144.207 - - \[07/Dec/2019:16:08:36 +0100\] "POST /wp-login.php HTTP/1.0" 200 4235 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-12-07 23:23:06
125.76.225.197	attackspam	port scan and connect, tcp 1433 (ms-sql-s)	2019-12-07 23:17:09
178.62.180.164	attackbots	178.62.180.164 - - \[07/Dec/2019:11:15:00 +0000\] "POST /wp-login.php HTTP/1.1" 200 6393 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 178.62.180.164 - - \[07/Dec/2019:11:15:04 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" ...	2019-12-07 22:52:32
124.94.129.220	attack	$f2bV_matches	2019-12-07 23:29:50
85.248.42.101	attack	Dec 7 04:49:23 php1 sshd\[5173\]: Invalid user ninet from 85.248.42.101 Dec 7 04:49:23 php1 sshd\[5173\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.248.42.101 Dec 7 04:49:25 php1 sshd\[5173\]: Failed password for invalid user ninet from 85.248.42.101 port 54095 ssh2 Dec 7 04:54:56 php1 sshd\[6025\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.248.42.101 user=root Dec 7 04:54:58 php1 sshd\[6025\]: Failed password for root from 85.248.42.101 port 53063 ssh2	2019-12-07 23:03:19
218.92.0.173	attack	Dec 7 17:22:09 sauna sshd[205416]: Failed password for root from 218.92.0.173 port 41815 ssh2 Dec 7 17:22:23 sauna sshd[205416]: error: maximum authentication attempts exceeded for root from 218.92.0.173 port 41815 ssh2 [preauth] ...	2019-12-07 23:33:16
61.130.28.203	attackspambots	Dec 5 15:38:03 vh1 sshd[23765]: reveeclipse mapping checking getaddrinfo for 203.28.130.61.dial.wz.zj.dynamic.163data.com.cn [61.130.28.203] failed - POSSIBLE BREAK-IN ATTEMPT! Dec 5 15:38:03 vh1 sshd[23765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.130.28.203 user=r.r Dec 5 15:38:05 vh1 sshd[23765]: Failed password for r.r from 61.130.28.203 port 2897 ssh2 Dec 5 15:38:06 vh1 sshd[23766]: Received disconnect from 61.130.28.203: 11: Bye Bye Dec 5 15:42:46 vh1 sshd[23865]: reveeclipse mapping checking getaddrinfo for 203.28.130.61.dial.wz.zj.dynamic.163data.com.cn [61.130.28.203] failed - POSSIBLE BREAK-IN ATTEMPT! Dec 5 15:42:46 vh1 sshd[23865]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.130.28.203 user=r.r Dec 5 15:42:48 vh1 sshd[23865]: .... truncated .... d[28351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.130.28......... -------------------------------	2019-12-07 23:32:21
221.13.12.42	attack	The IP has triggered Cloudflare WAF. CF-Ray: 541456eaabfc6c26 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: theme-suka.skk.moe \| User-Agent: Mozilla/5.066704189 Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-07 23:34:14
159.100.123.106	attackbotsspam	Dec 5 03:45:46 h1637304 sshd[3483]: Failed password for r.r from 159.100.123.106 port 55676 ssh2 Dec 5 03:45:48 h1637304 sshd[3483]: Received disconnect from 159.100.123.106: 11: Bye Bye [preauth] Dec 5 19:04:52 h1637304 sshd[14306]: Failed password for invalid user nessuxxxxxxx from 159.100.123.106 port 41186 ssh2 Dec 5 19:04:52 h1637304 sshd[14306]: Received disconnect from 159.100.123.106: 11: Bye Bye [preauth] Dec 5 20:44:34 h1637304 sshd[11654]: Failed password for invalid user nfs from 159.100.123.106 port 39939 ssh2 Dec 5 20:44:34 h1637304 sshd[11654]: Received disconnect from 159.100.123.106: 11: Bye Bye [preauth] Dec 5 20:45:19 h1637304 sshd[16181]: Failed password for invalid user admin from 159.100.123.106 port 41625 ssh2 Dec 5 20:45:20 h1637304 sshd[16181]: Received disconnect from 159.100.123.106: 11: Bye Bye [preauth] Dec 5 20:46:01 h1637304 sshd[16202]: Failed password for invalid user webadmin from 159.100.123.106 port 43279 ssh2 Dec 5 20:46:01........ -------------------------------	2019-12-07 23:19:37
162.243.164.246	attackbots	Dec 7 05:19:11 php1 sshd\[1778\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.164.246 user=root Dec 7 05:19:12 php1 sshd\[1778\]: Failed password for root from 162.243.164.246 port 57316 ssh2 Dec 7 05:25:12 php1 sshd\[2345\]: Invalid user control from 162.243.164.246 Dec 7 05:25:12 php1 sshd\[2345\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.164.246 Dec 7 05:25:14 php1 sshd\[2345\]: Failed password for invalid user control from 162.243.164.246 port 38812 ssh2	2019-12-07 23:26:26
14.102.61.138	attack	proto=tcp . spt=53473 . dpt=25 . (Found on Blocklist de Dec 06) (267)	2019-12-07 22:55:57
123.160.246.55	attackspambots	Dec 7 16:00:41 sd-53420 sshd\[13101\]: Invalid user mcgeorge from 123.160.246.55 Dec 7 16:00:41 sd-53420 sshd\[13101\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.160.246.55 Dec 7 16:00:43 sd-53420 sshd\[13101\]: Failed password for invalid user mcgeorge from 123.160.246.55 port 35816 ssh2 Dec 7 16:08:30 sd-53420 sshd\[14607\]: Invalid user palat from 123.160.246.55 Dec 7 16:08:30 sd-53420 sshd\[14607\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.160.246.55 ...	2019-12-07 23:27:43
149.129.110.135	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 5413c457ca65849a \| WAF_Rule_ID: 1aff1cdfeb5c4074965d7cd85bfc1d4e \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36 \| CF_DC: HKG. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-07 23:31:30

最近上报的IP列表

228.123.127.246	74.83.168.125	148.163.247.43	23.201.190.83
22.255.211.88	12.251.141.147	16.179.196.205	218.77.218.8
78.105.157.28	77.11.170.103	157.174.204.8	193.129.142.209
140.136.149.189	135.3.174.31	129.109.229.137	15.48.43.146
141.118.242.69	226.15.117.236	203.71.40.48	251.149.132.18