138.117.163.130

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Peru

运营商(isp): Colinanet S.A.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 138.117.163.130 to port 23	2020-04-13 00:32:40
attackspambots	Unauthorized connection attempt detected from IP address 138.117.163.130 to port 23	2020-03-17 18:04:35
attackbotsspam	Unauthorised access (Mar 9) SRC=138.117.163.130 LEN=40 TTL=52 ID=24368 TCP DPT=23 WINDOW=56377 SYN Unauthorised access (Mar 9) SRC=138.117.163.130 LEN=40 TTL=52 ID=38357 TCP DPT=23 WINDOW=50680 SYN	2020-03-09 16:13:19

类型

评论内容

时间

attack

Unauthorized connection attempt detected from IP address 138.117.163.130 to port 23

2020-04-13 00:32:40

attackspambots

Unauthorized connection attempt detected from IP address 138.117.163.130 to port 23

2020-03-17 18:04:35

attackbotsspam

Unauthorised access (Mar  9) SRC=138.117.163.130 LEN=40 TTL=52 ID=24368 TCP DPT=23 WINDOW=56377 SYN 
Unauthorised access (Mar  9) SRC=138.117.163.130 LEN=40 TTL=52 ID=38357 TCP DPT=23 WINDOW=50680 SYN

2020-03-09 16:13:19

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.117.163.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45891
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.117.163.130.		IN	A

;; AUTHORITY SECTION:
.			335	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030900 1800 900 604800 86400

;; Query time: 90 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 09 16:13:15 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

130.163.117.138.in-addr.arpa domain name pointer 138-117-163-130.colinanet.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
130.163.117.138.in-addr.arpa	name = 138-117-163-130.colinanet.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
106.13.68.190	attackbotsspam	Jun 5 03:53:21 *** sshd[14347]: User root from 106.13.68.190 not allowed because not listed in AllowUsers	2020-06-05 16:25:16
127.0.0.1	attackbotsspam	Test Connectivity	2020-06-05 16:24:52
106.52.243.17	attackbotsspam	$f2bV_matches	2020-06-05 15:51:18
121.52.147.130	attackspam	Unauthorised access (Jun 5) SRC=121.52.147.130 LEN=52 TTL=114 ID=6 DF TCP DPT=445 WINDOW=8192 SYN	2020-06-05 16:23:11
123.232.102.30	attackbots	Jun 5 05:51:17 sip sshd[546385]: Failed password for root from 123.232.102.30 port 48032 ssh2 Jun 5 05:53:42 sip sshd[546405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.232.102.30 user=root Jun 5 05:53:45 sip sshd[546405]: Failed password for root from 123.232.102.30 port 42058 ssh2 ...	2020-06-05 16:09:51
46.101.103.207	attackspambots	prod6 ...	2020-06-05 15:54:38
31.170.51.56	attackbotsspam	(IR/Iran/-) SMTP Bruteforcing attempts	2020-06-05 15:56:48
122.116.206.211	attackbots	TCP (SYN) 122.116.206.211:51640 -> port 8000, len 44	2020-06-05 16:14:22
104.248.164.123	attackbots	Jun 5 07:53:46 lukav-desktop sshd\[28213\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.164.123 user=root Jun 5 07:53:47 lukav-desktop sshd\[28213\]: Failed password for root from 104.248.164.123 port 42874 ssh2 Jun 5 07:57:27 lukav-desktop sshd\[28288\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.164.123 user=root Jun 5 07:57:29 lukav-desktop sshd\[28288\]: Failed password for root from 104.248.164.123 port 46628 ssh2 Jun 5 08:01:06 lukav-desktop sshd\[28360\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.164.123 user=root	2020-06-05 16:19:30
178.90.91.130	attackbots	Jun 4 22:28:53 mailman postfix/smtpd[24428]: NOQUEUE: reject: RCPT from unknown[178.90.91.130]: 554 5.7.1 Service unavailable; Client host [178.90.91.130] blocked using sbl-xbl.spamhaus.org; https://www.spamhaus.org/query/ip/178.90.91.130 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<[178.90.91.130]> Jun 4 22:54:02 mailman postfix/smtpd[24838]: NOQUEUE: reject: RCPT from unknown[178.90.91.130]: 554 5.7.1 Service unavailable; Client host [178.90.91.130] blocked using sbl-xbl.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/query/ip/178.90.91.130; from= to= proto=ESMTP helo=<[178.90.91.130]>	2020-06-05 15:59:26
223.71.167.163	attackspam	Unauthorized connection attempt detected from IP address 223.71.167.163 to port 3307	2020-06-05 16:12:33
58.213.116.170	attack	Jun 5 10:10:11 dhoomketu sshd[503535]: Failed password for root from 58.213.116.170 port 45998 ssh2 Jun 5 10:12:37 dhoomketu sshd[503573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.116.170 user=root Jun 5 10:12:39 dhoomketu sshd[503573]: Failed password for root from 58.213.116.170 port 52272 ssh2 Jun 5 10:15:04 dhoomketu sshd[503593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.116.170 user=root Jun 5 10:15:06 dhoomketu sshd[503593]: Failed password for root from 58.213.116.170 port 58548 ssh2 ...	2020-06-05 15:55:29
112.211.248.148	bots	提交恶意回调数据，如果成功将导致未支付订单变为已支付 2020-05-20 14:32:05:{"test":"11111111111111111111","test2":"22222222222222222222"} 回调ip是112.211.248.148 2020-05-20 14:32:21:{"test":"11111111111111111111","test2":"22222222222222222222"} 回调ip是112.211.248.148 2020-05-20 14:32:24:{"test":"11111111111111111111","test2":"22222222222222222222"} 回调ip是112.211.248.148 2020-05-20 16:56:08:{"memberid":"10357","orderid":"2020052014400357794728757715","transaction_id":"5201440026155","amount":"50.0000","datetime":"20200520144338","returncode":"00","sign":"4868AB1CF8585447FB170C789173E32A","attach":"recharge","uniqueName":"memberid=10357&orderid=2020052014400357794728757715&transaction_id=5201440026155&amount=50.0000&datetime=20200520144338&returncode=00&sign=4868AB1CF8585447FB170C789173E32A&attach=recharge"} 回调ip是112.211.248.148	2020-06-05 16:16:54
31.170.60.72	attackbots	(IR/Iran/-) SMTP Bruteforcing attempts	2020-06-05 15:49:06
103.141.136.63	attack	Port probing on unauthorized port 3389	2020-06-05 16:22:20

最近上报的IP列表

78.165.74.33	58.153.92.204	134.129.211.236	103.209.83.235
203.82.35.106	94.209.136.189	1.160.207.235	27.3.254.105
82.251.159.240	175.134.204.88	180.251.8.105	117.92.16.228
113.74.190.155	1.55.141.203	223.207.218.0	23.254.70.166
108.182.34.188	86.122.188.225	113.254.197.222	187.177.165.128