139.180.175.154

基本信息:

城市(city): Sydney

省份(region): New South Wales

国家(country): Australia

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
139.180.175.134	attackbotsspam	139.180.175.134 - - [05/Oct/2020:07:11:06 +0100] "POST /wp-login.php HTTP/1.1" 200 2548 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.180.175.134 - - [05/Oct/2020:07:11:09 +0100] "POST /wp-login.php HTTP/1.1" 200 2517 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.180.175.134 - - [05/Oct/2020:07:11:11 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-06 02:28:11
139.180.175.134	attack	139.180.175.134 - - [05/Oct/2020:07:11:06 +0100] "POST /wp-login.php HTTP/1.1" 200 2548 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.180.175.134 - - [05/Oct/2020:07:11:09 +0100] "POST /wp-login.php HTTP/1.1" 200 2517 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.180.175.134 - - [05/Oct/2020:07:11:11 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-05 18:15:32
139.180.175.134	attackbotsspam	139.180.175.134 - - [04/Oct/2020:21:18:18 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "http://b-kits.com/wp-login.php" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.180.175.134 - - [04/Oct/2020:23:25:30 +0200] "GET /wp-login.php HTTP/1.1" 200 8558 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.180.175.134 - - [04/Oct/2020:23:25:32 +0200] "POST /wp-login.php HTTP/1.1" 200 8875 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-05 06:02:28
139.180.175.134	attackbotsspam	139.180.175.134 - - [04/Oct/2020:15:32:06 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.180.175.134 - - [04/Oct/2020:15:32:08 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.180.175.134 - - [04/Oct/2020:15:32:10 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-04 22:01:11
139.180.175.134	attackspambots	139.180.175.134 - - [04/Oct/2020:05:11:04 +0200] "GET /wp-login.php HTTP/1.1" 200 9061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.180.175.134 - - [04/Oct/2020:05:11:07 +0200] "POST /wp-login.php HTTP/1.1" 200 9312 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.180.175.134 - - [04/Oct/2020:05:11:09 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-04 13:47:13
139.180.175.134	attack	Automatic report generated by Wazuh	2020-09-25 08:46:01

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.180.175.154
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11285
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.180.175.154.		IN	A

;; AUTHORITY SECTION:
.			526	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:13:08 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

154.175.180.139.in-addr.arpa domain name pointer 139.180.175.154.vultr.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
154.175.180.139.in-addr.arpa	name = 139.180.175.154.vultr.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
39.38.76.215	attackspambots	Wordpress attack	2020-08-21 17:13:58
103.239.84.11	attack	Invalid user st from 103.239.84.11 port 57072	2020-08-21 17:11:01
118.24.149.173	attackspam	$f2bV_matches	2020-08-21 16:59:46
122.51.176.55	attackbots	Invalid user ale from 122.51.176.55 port 57666	2020-08-21 16:50:17
112.70.191.130	attackbots	Invalid user pi from 112.70.191.130 port 34262	2020-08-21 17:14:46
202.168.205.181	attackspambots	sshd jail - ssh hack attempt	2020-08-21 17:00:58
123.13.210.89	attack	Aug 21 13:23:02 itv-usvr-02 sshd[10094]: Invalid user demo from 123.13.210.89 port 62413 Aug 21 13:23:02 itv-usvr-02 sshd[10094]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.13.210.89 Aug 21 13:23:02 itv-usvr-02 sshd[10094]: Invalid user demo from 123.13.210.89 port 62413 Aug 21 13:23:03 itv-usvr-02 sshd[10094]: Failed password for invalid user demo from 123.13.210.89 port 62413 ssh2 Aug 21 13:28:41 itv-usvr-02 sshd[10276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.13.210.89 user=root Aug 21 13:28:43 itv-usvr-02 sshd[10276]: Failed password for root from 123.13.210.89 port 36891 ssh2	2020-08-21 16:57:58
62.4.30.238	attackbotsspam	<6 unauthorized SSH connections	2020-08-21 17:11:26
42.118.242.189	attackspam	Aug 21 11:48:28 hosting sshd[24604]: Invalid user daniel from 42.118.242.189 port 54004 ...	2020-08-21 16:53:23
138.197.152.148	attack	SIP/5060 Probe, BF, Hack -	2020-08-21 16:54:01
171.241.69.227	attackbotsspam	1597981972 - 08/21/2020 05:52:52 Host: 171.241.69.227/171.241.69.227 Port: 445 TCP Blocked	2020-08-21 17:26:40
51.15.214.80	attack	Aug 21 11:07:31 vps647732 sshd[26956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.214.80 Aug 21 11:07:33 vps647732 sshd[26956]: Failed password for invalid user ubnt from 51.15.214.80 port 48854 ssh2 ...	2020-08-21 17:08:25
220.249.114.237	attackspambots	2020-08-21T04:06:07.6235731495-001 sshd[29040]: Invalid user amit from 220.249.114.237 port 36542 2020-08-21T04:06:09.5326191495-001 sshd[29040]: Failed password for invalid user amit from 220.249.114.237 port 36542 ssh2 2020-08-21T04:09:50.8134591495-001 sshd[29217]: Invalid user erik from 220.249.114.237 port 50254 2020-08-21T04:09:50.8167261495-001 sshd[29217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.249.114.237 2020-08-21T04:09:50.8134591495-001 sshd[29217]: Invalid user erik from 220.249.114.237 port 50254 2020-08-21T04:09:52.3362341495-001 sshd[29217]: Failed password for invalid user erik from 220.249.114.237 port 50254 ssh2 ...	2020-08-21 16:54:20
87.202.51.135	attackspam	Lines containing failures of 87.202.51.135 Aug 20 02:37:50 penfold sshd[28035]: Invalid user al from 87.202.51.135 port 37918 Aug 20 02:37:50 penfold sshd[28035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.202.51.135 Aug 20 02:37:51 penfold sshd[28035]: Failed password for invalid user al from 87.202.51.135 port 37918 ssh2 Aug 20 02:37:52 penfold sshd[28035]: Received disconnect from 87.202.51.135 port 37918:11: Bye Bye [preauth] Aug 20 02:37:52 penfold sshd[28035]: Disconnected from invalid user al 87.202.51.135 port 37918 [preauth] Aug 20 02:51:01 penfold sshd[29256]: Invalid user ftp from 87.202.51.135 port 60390 Aug 20 02:51:01 penfold sshd[29256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.202.51.135 Aug 20 02:51:03 penfold sshd[29256]: Failed password for invalid user ftp from 87.202.51.135 port 60390 ssh2 Aug 20 02:51:04 penfold sshd[29256]: Received disconnect from 8........ ------------------------------	2020-08-21 17:08:01
106.13.35.232	attackbots	Aug 21 08:22:32 ip-172-31-16-56 sshd\[6125\]: Invalid user txd from 106.13.35.232\ Aug 21 08:22:33 ip-172-31-16-56 sshd\[6125\]: Failed password for invalid user txd from 106.13.35.232 port 44254 ssh2\ Aug 21 08:24:58 ip-172-31-16-56 sshd\[6135\]: Invalid user smy from 106.13.35.232\ Aug 21 08:25:00 ip-172-31-16-56 sshd\[6135\]: Failed password for invalid user smy from 106.13.35.232 port 42980 ssh2\ Aug 21 08:27:21 ip-172-31-16-56 sshd\[6171\]: Failed password for root from 106.13.35.232 port 41712 ssh2\	2020-08-21 17:07:41

最近上报的IP列表

139.180.174.89	139.180.178.115	139.180.178.146	139.180.178.99
139.180.178.185	139.180.179.161	139.180.179.199	118.238.205.182
139.180.180.159	139.180.180.194	139.180.181.132	139.180.180.8
139.180.180.219	139.180.181.195	139.180.182.19	139.180.182.42
139.180.184.102	139.180.184.133	139.180.184.170	118.238.21.201