138.43.1.130 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Africa

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
138.43.149.49	attackspam	Brute force 51 attempts	2020-08-27 12:57:07
138.43.134.27	attackbotsspam	WordPress login Brute force / Web App Attack on client site.	2019-08-12 17:44:59
138.43.134.27	attackbotsspam	138.43.134.27 - - [07/Jul/2019:15:33:03 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.43.134.27 - - [07/Jul/2019:15:33:11 +0200] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.43.134.27 - - [07/Jul/2019:15:34:15 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.43.134.27 - - [07/Jul/2019:15:34:33 +0200] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.43.134.27 - - [07/Jul/2019:15:35:12 +0200] "POST /wp-login.php HTTP/1.1" 200 1396 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.43.134.27 - - [07/Jul/2019:15:35:16 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-07-08 02:43:48

类型

评论内容

时间

138.43.149.49

attackspam

Brute force 51 attempts

2020-08-27 12:57:07

138.43.134.27

attackbotsspam

WordPress login Brute force / Web App Attack on client site.

2019-08-12 17:44:59

138.43.134.27

attackbotsspam

138.43.134.27 - - [07/Jul/2019:15:33:03 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
138.43.134.27 - - [07/Jul/2019:15:33:11 +0200] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
138.43.134.27 - - [07/Jul/2019:15:34:15 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
138.43.134.27 - - [07/Jul/2019:15:34:33 +0200] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
138.43.134.27 - - [07/Jul/2019:15:35:12 +0200] "POST /wp-login.php HTTP/1.1" 200 1396 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
138.43.134.27 - - [07/Jul/2019:15:35:16 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...

2019-07-08 02:43:48

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.43.1.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44389
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.43.1.130.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022801 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 01 05:33:30 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

Host 130.1.43.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 130.1.43.138.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
101.32.26.159	attackspam	2020-09-21T06:38:47.986929centos sshd[3215]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.32.26.159 2020-09-21T06:38:47.980304centos sshd[3215]: Invalid user admin from 101.32.26.159 port 33402 2020-09-21T06:38:50.104264centos sshd[3215]: Failed password for invalid user admin from 101.32.26.159 port 33402 ssh2 ...	2020-09-21 13:35:08
140.120.15.176	attackspam	Sep 21 02:28:46 our-server-hostname sshd[11960]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.120.15.176 user=r.r Sep 21 02:28:48 our-server-hostname sshd[11960]: Failed password for r.r from 140.120.15.176 port 48384 ssh2 Sep 21 02:45:30 our-server-hostname sshd[14328]: Invalid user ftpuser from 140.120.15.176 Sep 21 02:45:30 our-server-hostname sshd[14328]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.120.15.176 Sep 21 02:45:32 our-server-hostname sshd[14328]: Failed password for invalid user ftpuser from 140.120.15.176 port 35942 ssh2 Sep 21 02:49:29 our-server-hostname sshd[14820]: Invalid user admin from 140.120.15.176 Sep 21 02:49:29 our-server-hostname sshd[14820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.120.15.176 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=140.120.15.176	2020-09-21 13:28:04
110.85.88.235	attackspam	Sep 20 20:02:54 root sshd[7119]: Invalid user pi from 110.85.88.235 ...	2020-09-21 13:15:43
212.64.72.184	attackspambots	Sep 21 02:15:57 onepixel sshd[1424138]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.72.184 Sep 21 02:15:57 onepixel sshd[1424138]: Invalid user admin7 from 212.64.72.184 port 48758 Sep 21 02:15:59 onepixel sshd[1424138]: Failed password for invalid user admin7 from 212.64.72.184 port 48758 ssh2 Sep 21 02:22:10 onepixel sshd[1425028]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.72.184 user=root Sep 21 02:22:12 onepixel sshd[1425028]: Failed password for root from 212.64.72.184 port 60346 ssh2	2020-09-21 13:28:56
179.125.216.137	attackbotsspam	Sep 20 20:02:38 root sshd[6910]: Invalid user user from 179.125.216.137 ...	2020-09-21 13:19:19
159.89.94.13	attackspambots	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-09-21 13:30:10
208.187.244.197	attack	2020-09-20 12:00:28.069140-0500 localhost smtpd[52512]: NOQUEUE: reject: RCPT from unknown[208.187.244.197]: 554 5.7.1 Service unavailable; Client host [208.187.244.197] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=	2020-09-21 12:59:46
39.101.65.35	attack	Trolling for resource vulnerabilities	2020-09-21 13:07:41
222.186.30.35	attackspam	2020-09-21T07:24[Censored Hostname] sshd[21802]: Failed password for root from 222.186.30.35 port 52000 ssh2 2020-09-21T07:25[Censored Hostname] sshd[21802]: Failed password for root from 222.186.30.35 port 52000 ssh2 2020-09-21T07:25[Censored Hostname] sshd[21802]: Failed password for root from 222.186.30.35 port 52000 ssh2[...]	2020-09-21 13:27:48
58.152.206.121	attackspam	Sep 21 02:09:03 vps639187 sshd\[5992\]: Invalid user admin from 58.152.206.121 port 41315 Sep 21 02:09:04 vps639187 sshd\[5992\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.152.206.121 Sep 21 02:09:06 vps639187 sshd\[5992\]: Failed password for invalid user admin from 58.152.206.121 port 41315 ssh2 ...	2020-09-21 13:03:30
91.134.231.81	attack	2020-09-20 14:29:47.280093-0500 localhost smtpd[65370]: NOQUEUE: reject: RCPT from unknown[91.134.231.81]: 450 4.7.25 Client host rejected: cannot find your hostname, [91.134.231.81]; from= to= proto=ESMTP helo=	2020-09-21 13:01:08
103.246.240.30	attack	Invalid user tsukamoto from 103.246.240.30 port 46454	2020-09-21 13:25:32
122.51.251.253	attack	SSH Brute-Force reported by Fail2Ban	2020-09-21 13:08:27
106.124.130.114	attack	SSH brute-force attempt	2020-09-21 13:16:29
81.25.72.56	attackbotsspam	2020-09-20T17:03:05Z - RDP login failed multiple times. (81.25.72.56)	2020-09-21 13:06:34

最近上报的IP列表

85.170.152.79	82.231.48.120	160.129.186.186	236.244.161.87
146.125.236.30	7.11.100.15	180.77.186.174	8.26.54.22
244.250.113.11	69.60.24.7	92.28.87.3	29.138.185.247
61.46.119.218	191.25.53.74	140.214.218.182	249.148.23.149
99.37.71.81	72.137.119.196	200.98.181.157	144.248.179.61