139.180.130.146

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): Choopa LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Automatic report - XMLRPC Attack	2020-03-27 22:38:30

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.180.130.146
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10271
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.180.130.146.		IN	A

;; AUTHORITY SECTION:
.			144	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032700 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 27 22:38:25 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

146.130.180.139.in-addr.arpa domain name pointer 139.180.130.146.vultr.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
146.130.180.139.in-addr.arpa	name = 139.180.130.146.vultr.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
58.65.197.203	attack	20/2/28@08:24:08: FAIL: Alarm-Intrusion address from=58.65.197.203 20/2/28@08:24:08: FAIL: Alarm-Intrusion address from=58.65.197.203 ...	2020-02-29 05:42:07
31.41.113.113	attackspam	Feb 28 14:24:15 mail kernel: [1723113.699706] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=31.41.113.113 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=51679 PROTO=TCP SPT=56263 DPT=12786 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 28 14:24:15 mail kernel: [1723114.014993] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=31.41.113.113 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=59928 PROTO=TCP SPT=56263 DPT=81 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2020-02-29 05:40:09
39.135.1.160	attackbotsspam	Feb 28 22:38:51 h2177944 kernel: \[6123664.175578\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=39.135.1.160 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=51 ID=57964 DF PROTO=TCP SPT=52007 DPT=7001 WINDOW=65535 RES=0x00 SYN URGP=0 Feb 28 22:38:51 h2177944 kernel: \[6123664.175591\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=39.135.1.160 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=51 ID=57964 DF PROTO=TCP SPT=52007 DPT=7001 WINDOW=65535 RES=0x00 SYN URGP=0 Feb 28 22:38:53 h2177944 kernel: \[6123666.122779\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=39.135.1.160 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=51 ID=8520 DF PROTO=TCP SPT=10606 DPT=9200 WINDOW=65535 RES=0x00 SYN URGP=0 Feb 28 22:38:53 h2177944 kernel: \[6123666.122791\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=39.135.1.160 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=51 ID=8520 DF PROTO=TCP SPT=10606 DPT=9200 WINDOW=65535 RES=0x00 SYN URGP=0 Feb 28 22:38:55 h2177944 kernel: \[6123667.442763\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=39.135.1.160 DST=85.214.	2020-02-29 05:40:45
51.83.207.112	attack	Automatic report - XMLRPC Attack	2020-02-29 05:39:37
190.103.183.55	attack	Feb 28 22:24:47 ArkNodeAT sshd\[23429\]: Invalid user john from 190.103.183.55 Feb 28 22:24:47 ArkNodeAT sshd\[23429\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.103.183.55 Feb 28 22:24:49 ArkNodeAT sshd\[23429\]: Failed password for invalid user john from 190.103.183.55 port 56012 ssh2	2020-02-29 05:41:29
91.134.135.220	attack	SSH login attempts.	2020-02-29 05:15:00
114.143.25.156	attack	2020-02-28 10:42:48 H=(static-156.25.143.114-tataidc.co.in) [114.143.25.156]:60014 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/114.143.25.156) 2020-02-28 10:42:49 H=(static-156.25.143.114-tataidc.co.in) [114.143.25.156]:60014 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/114.143.25.156) 2020-02-28 10:42:49 H=(static-156.25.143.114-tataidc.co.in) [114.143.25.156]:60014 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/114.143.25.156) ...	2020-02-29 05:14:41
37.239.223.247	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 05:45:18
111.229.41.31	attack	$f2bV_matches	2020-02-29 05:18:59
110.50.85.90	attackbots	suspicious action Fri, 28 Feb 2020 10:24:51 -0300	2020-02-29 05:23:45
69.229.6.34	attack	Brute-force attempt banned	2020-02-29 05:22:22
61.145.213.172	attack	Feb 28 20:37:04 gw1 sshd[23246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.145.213.172 Feb 28 20:37:07 gw1 sshd[23246]: Failed password for invalid user admins from 61.145.213.172 port 60654 ssh2 ...	2020-02-29 05:34:12
94.158.36.183	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 56bb648babe700b0 \| WAF_Rule_ID: a75424b44a1e4f27881d03344a122815 \| WAF_Kind: firewall \| CF_Action: drop \| Country: UA \| CF_IPClass: unknown \| Protocol: HTTP/1.1 \| Method: GET \| Host: skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/67.0.3396.87 Safari/537.36 \| CF_DC: DME. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2020-02-29 05:07:33
213.226.3.100	attack	suspicious action Fri, 28 Feb 2020 10:24:44 -0300	2020-02-29 05:26:20
43.228.66.154	attackspambots	firewall-block, port(s): 445/tcp	2020-02-29 05:19:58

最近上报的IP列表

152.32.215.76	5.182.39.94	205.178.189.129	202.69.50.63
53.247.60.9	185.210.183.189	106.1.187.108	163.213.209.48
95.213.194.60	152.177.224.190	255.197.148.185	145.94.197.109
59.245.117.45	30.32.151.70	4.45.96.176	213.80.252.90
208.91.197.127	141.196.121.123	183.83.86.130	166.62.41.239