138.166.130.46

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.166.130.46
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24962
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.166.130.46.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021902 1800 900 604800 86400

;; Query time: 34 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 13:00:14 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 46.130.166.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 46.130.166.138.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
58.58.66.198	attackbotsspam	1591877685 - 06/11/2020 14:14:45 Host: 58.58.66.198/58.58.66.198 Port: 445 TCP Blocked	2020-06-11 20:37:09
138.68.178.64	attack	Jun 11 01:50:35 web9 sshd\[29785\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.178.64 user=root Jun 11 01:50:37 web9 sshd\[29785\]: Failed password for root from 138.68.178.64 port 44162 ssh2 Jun 11 01:54:15 web9 sshd\[30322\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.178.64 user=root Jun 11 01:54:17 web9 sshd\[30322\]: Failed password for root from 138.68.178.64 port 45252 ssh2 Jun 11 01:57:48 web9 sshd\[30796\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.178.64 user=root	2020-06-11 19:59:28
185.236.202.205	attackspambots	2020-06-11 05:37:05.774238-0500 localhost smtpd[95811]: NOQUEUE: reject: RCPT from unknown[185.236.202.205]: 450 4.7.25 Client host rejected: cannot find your hostname, [185.236.202.205]; from= to= proto=ESMTP helo=	2020-06-11 19:56:57
87.244.197.7	attack	[Thu Jun 11 09:14:38.929186 2020] [:error] [pid 217907] [client 87.244.197.7:41412] [client 87.244.197.7] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "91"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 18)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "127.0.0.1"] [uri "/cgi-bin/ViewLog.asp"] [unique_id "XuIgLsXXHy@TtgWVfTtAagAAAAI"] ...	2020-06-11 20:34:07
87.246.7.70	attackbots	Jun 11 05:11:37 pixelmemory postfix/smtpd[2957544]: warning: unknown[87.246.7.70]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 11 05:12:33 pixelmemory postfix/smtpd[2957544]: warning: unknown[87.246.7.70]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 11 05:13:22 pixelmemory postfix/smtpd[2957544]: warning: unknown[87.246.7.70]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 11 05:14:17 pixelmemory postfix/smtpd[2957544]: warning: unknown[87.246.7.70]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 11 05:15:07 pixelmemory postfix/smtpd[2957544]: warning: unknown[87.246.7.70]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-11 20:15:34
185.225.39.51	attackspambots	2020-06-10 22:40:52.919225-0500 localhost smtpd[63183]: NOQUEUE: reject: RCPT from unknown[185.225.39.51]: 554 5.7.1 Service unavailable; Client host [185.225.39.51] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=	2020-06-11 19:57:53
110.93.200.118	attackspam	Jun 11 14:14:53 lnxweb61 sshd[9093]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.93.200.118 Jun 11 14:14:53 lnxweb61 sshd[9093]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.93.200.118	2020-06-11 20:29:01
121.58.211.162	attack	(sshd) Failed SSH login from 121.58.211.162 (PH/Philippines/162.211.58.121.-rev.convergeict.com): 5 in the last 3600 secs	2020-06-11 19:52:32
36.74.75.31	attackbotsspam	2020-06-11 07:12:47.182485-0500 localhost sshd[4108]: Failed password for root from 36.74.75.31 port 43391 ssh2	2020-06-11 20:20:37
84.52.82.124	attack	Jun 11 14:11:32 localhost sshd\[25646\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.52.82.124 user=root Jun 11 14:11:34 localhost sshd\[25646\]: Failed password for root from 84.52.82.124 port 57932 ssh2 Jun 11 14:14:53 localhost sshd\[25746\]: Invalid user admin from 84.52.82.124 Jun 11 14:14:53 localhost sshd\[25746\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.52.82.124 Jun 11 14:14:55 localhost sshd\[25746\]: Failed password for invalid user admin from 84.52.82.124 port 59206 ssh2 ...	2020-06-11 20:22:02
49.230.62.24	attack	Jun 10 23:47:55 Tower sshd[32007]: Connection from 49.230.62.24 port 54275 on 192.168.10.220 port 22 rdomain "" Jun 10 23:47:56 Tower sshd[32007]: Invalid user administrator from 49.230.62.24 port 54275 Jun 10 23:47:57 Tower sshd[32007]: error: Could not get shadow information for NOUSER Jun 10 23:47:57 Tower sshd[32007]: Failed password for invalid user administrator from 49.230.62.24 port 54275 ssh2 Jun 10 23:47:57 Tower sshd[32007]: Connection closed by invalid user administrator 49.230.62.24 port 54275 [preauth]	2020-06-11 20:06:53
157.230.190.1	attackbots	2020-06-11T05:34:23.815460shield sshd\[14936\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.190.1 user=root 2020-06-11T05:34:26.288572shield sshd\[14936\]: Failed password for root from 157.230.190.1 port 50008 ssh2 2020-06-11T05:37:49.870593shield sshd\[15012\]: Invalid user vsftpd from 157.230.190.1 port 51166 2020-06-11T05:37:49.874545shield sshd\[15012\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.190.1 2020-06-11T05:37:51.961103shield sshd\[15012\]: Failed password for invalid user vsftpd from 157.230.190.1 port 51166 ssh2	2020-06-11 20:10:42
194.152.206.93	attackspam	Jun 11 11:40:19 localhost sshd\[18103\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.152.206.93 user=root Jun 11 11:40:21 localhost sshd\[18103\]: Failed password for root from 194.152.206.93 port 53631 ssh2 Jun 11 11:47:02 localhost sshd\[18197\]: Invalid user khwanjung from 194.152.206.93 port 52271 ...	2020-06-11 20:00:34
72.27.26.194	attackbots	Unauthorized connection attempt from IP address 72.27.26.194 on Port 445(SMB)	2020-06-11 20:22:57
138.197.150.154	attackbots	138.197.150.154 - - [11/Jun/2020:14:14:57 +0200] "GET /wp-login.php HTTP/1.1" 200 6183 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.150.154 - - [11/Jun/2020:14:15:00 +0200] "POST /wp-login.php HTTP/1.1" 200 6434 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.150.154 - - [11/Jun/2020:14:15:02 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-11 20:21:33

最近上报的IP列表

24.23.99.244	150.243.165.209	134.9.145.209	235.39.33.218
166.214.45.143	227.86.138.226	172.211.141.160	4.214.179.170
67.156.95.19	79.132.94.28	76.54.113.205	186.208.33.24
3.230.173.227	166.98.121.122	154.86.58.63	173.218.164.130
202.147.89.71	200.241.182.27	194.84.29.175	65.81.137.229