139.180.175.154

基本信息:

城市(city): Sydney

省份(region): New South Wales

国家(country): Australia

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
139.180.175.134	attackbotsspam	139.180.175.134 - - [05/Oct/2020:07:11:06 +0100] "POST /wp-login.php HTTP/1.1" 200 2548 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.180.175.134 - - [05/Oct/2020:07:11:09 +0100] "POST /wp-login.php HTTP/1.1" 200 2517 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.180.175.134 - - [05/Oct/2020:07:11:11 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-06 02:28:11
139.180.175.134	attack	139.180.175.134 - - [05/Oct/2020:07:11:06 +0100] "POST /wp-login.php HTTP/1.1" 200 2548 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.180.175.134 - - [05/Oct/2020:07:11:09 +0100] "POST /wp-login.php HTTP/1.1" 200 2517 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.180.175.134 - - [05/Oct/2020:07:11:11 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-05 18:15:32
139.180.175.134	attackbotsspam	139.180.175.134 - - [04/Oct/2020:21:18:18 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "http://b-kits.com/wp-login.php" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.180.175.134 - - [04/Oct/2020:23:25:30 +0200] "GET /wp-login.php HTTP/1.1" 200 8558 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.180.175.134 - - [04/Oct/2020:23:25:32 +0200] "POST /wp-login.php HTTP/1.1" 200 8875 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-05 06:02:28
139.180.175.134	attackbotsspam	139.180.175.134 - - [04/Oct/2020:15:32:06 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.180.175.134 - - [04/Oct/2020:15:32:08 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.180.175.134 - - [04/Oct/2020:15:32:10 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-04 22:01:11
139.180.175.134	attackspambots	139.180.175.134 - - [04/Oct/2020:05:11:04 +0200] "GET /wp-login.php HTTP/1.1" 200 9061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.180.175.134 - - [04/Oct/2020:05:11:07 +0200] "POST /wp-login.php HTTP/1.1" 200 9312 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.180.175.134 - - [04/Oct/2020:05:11:09 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-04 13:47:13
139.180.175.134	attack	Automatic report generated by Wazuh	2020-09-25 08:46:01

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.180.175.154
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11285
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.180.175.154.		IN	A

;; AUTHORITY SECTION:
.			526	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:13:08 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

154.175.180.139.in-addr.arpa domain name pointer 139.180.175.154.vultr.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
154.175.180.139.in-addr.arpa	name = 139.180.175.154.vultr.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
213.202.100.79	attack	Automatic report - Banned IP Access	2019-08-07 08:39:07
81.22.45.146	attack	Aug 7 02:22:30 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.146 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=21409 PROTO=TCP SPT=56288 DPT=3389 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-08-07 09:05:49
222.120.123.74	attack	23/tcp 23/tcp [2019-07-30/08-06]2pkt	2019-08-07 08:58:33
118.25.177.241	attack	Aug 7 04:40:20 itv-usvr-01 sshd[5943]: Invalid user promo from 118.25.177.241 Aug 7 04:40:20 itv-usvr-01 sshd[5943]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.177.241 Aug 7 04:40:20 itv-usvr-01 sshd[5943]: Invalid user promo from 118.25.177.241 Aug 7 04:40:22 itv-usvr-01 sshd[5943]: Failed password for invalid user promo from 118.25.177.241 port 37695 ssh2 Aug 7 04:43:26 itv-usvr-01 sshd[6062]: Invalid user dmarc from 118.25.177.241	2019-08-07 08:56:23
209.97.169.136	attack	Aug 7 03:14:15 server sshd\[32027\]: Invalid user police from 209.97.169.136 port 56810 Aug 7 03:14:15 server sshd\[32027\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.169.136 Aug 7 03:14:18 server sshd\[32027\]: Failed password for invalid user police from 209.97.169.136 port 56810 ssh2 Aug 7 03:19:30 server sshd\[16067\]: Invalid user aurora from 209.97.169.136 port 55144 Aug 7 03:19:30 server sshd\[16067\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.169.136	2019-08-07 08:36:45
2804:7f2:2a8f:d2ed:bd4d:a08:1b0a:1c8a	attackspambots	Sniffing for wp-login	2019-08-07 08:36:14
165.22.72.226	attackbotsspam	Aug 7 01:24:42 [munged] sshd[27389]: Invalid user lab from 165.22.72.226 port 35278 Aug 7 01:24:42 [munged] sshd[27389]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.72.226	2019-08-07 09:07:17
176.31.252.148	attackbotsspam	Aug 7 01:06:24 lnxmail61 sshd[11846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.252.148	2019-08-07 08:53:59
77.221.146.10	attackbotsspam	Automatic report - Banned IP Access	2019-08-07 08:57:14
198.211.118.157	attack	Automatic report - Banned IP Access	2019-08-07 08:20:57
114.33.56.46	attackspambots	DATE:2019-08-06 23:45:13, IP:114.33.56.46, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2019-08-07 08:19:49
111.230.247.243	attackspam	Aug 6 17:43:38 spiceship sshd\[45232\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.247.243 user=root ...	2019-08-07 08:46:48
142.44.161.65	attackspambots	Aug 7 02:57:07 localhost sshd\[22340\]: Invalid user cmte from 142.44.161.65 port 48750 Aug 7 02:57:07 localhost sshd\[22340\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.161.65 Aug 7 02:57:09 localhost sshd\[22340\]: Failed password for invalid user cmte from 142.44.161.65 port 48750 ssh2	2019-08-07 09:04:49
83.221.202.243	attackspam	Trying to log into mailserver (postfix/smtp) using multiple names and passwords	2019-08-07 08:20:18
178.237.0.229	attack	Aug 7 01:34:48 mail sshd\[11315\]: Failed password for invalid user hadoop from 178.237.0.229 port 60810 ssh2 Aug 7 01:51:50 mail sshd\[11531\]: Invalid user adolf from 178.237.0.229 port 36084 Aug 7 01:51:50 mail sshd\[11531\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.237.0.229 ...	2019-08-07 08:52:43

最近上报的IP列表

139.180.174.89	139.180.178.115	139.180.178.146	139.180.178.99
139.180.178.185	139.180.179.161	139.180.179.199	118.238.205.182
139.180.180.159	139.180.180.194	139.180.181.132	139.180.180.8
139.180.180.219	139.180.181.195	139.180.182.19	139.180.182.42
139.180.184.102	139.180.184.133	139.180.184.170	118.238.21.201