147.139.132.12

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): Alibaba.com LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Jul 27 13:35:52 myhostname sshd[19591]: Invalid user user from 147.139.132.12 Jul 27 13:35:52 myhostname sshd[19591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.12 Jul 27 13:35:54 myhostname sshd[19591]: Failed password for invalid user user from 147.139.132.12 port 42814 ssh2 Jul 27 13:35:54 myhostname sshd[19591]: Received disconnect from 147.139.132.12 port 42814:11: Bye Bye [preauth] Jul 27 13:35:54 myhostname sshd[19591]: Disconnected from 147.139.132.12 port 42814 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=147.139.132.12	2020-07-28 02:53:01

类型

评论内容

时间

attackbotsspam

Jul 27 13:35:52 myhostname sshd[19591]: Invalid user user from 147.139.132.12
Jul 27 13:35:52 myhostname sshd[19591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.12
Jul 27 13:35:54 myhostname sshd[19591]: Failed password for invalid user user from 147.139.132.12 port 42814 ssh2
Jul 27 13:35:54 myhostname sshd[19591]: Received disconnect from 147.139.132.12 port 42814:11: Bye Bye [preauth]
Jul 27 13:35:54 myhostname sshd[19591]: Disconnected from 147.139.132.12 port 42814 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=147.139.132.12

2020-07-28 02:53:01

相同子网IP讨论:

IP	类型	评论内容	时间
147.139.132.238	attackspam	Invalid user sshvpn from 147.139.132.238 port 38648	2020-02-28 09:23:35
147.139.132.146	attackspambots	SSH login attempts brute force.	2020-02-24 03:14:59
147.139.132.146	attackbots	Feb 2 14:38:40 sd-53420 sshd\[23527\]: Invalid user support from 147.139.132.146 Feb 2 14:38:40 sd-53420 sshd\[23527\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 Feb 2 14:38:42 sd-53420 sshd\[23527\]: Failed password for invalid user support from 147.139.132.146 port 36490 ssh2 Feb 2 14:41:21 sd-53420 sshd\[23941\]: Invalid user 1qaz@WSX from 147.139.132.146 Feb 2 14:41:21 sd-53420 sshd\[23941\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 ...	2020-02-02 21:59:37
147.139.132.146	attack	Jan 21 09:55:36 v22018076590370373 sshd[22185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 ...	2020-02-02 00:28:29
147.139.132.146	attack	Unauthorized connection attempt detected from IP address 147.139.132.146 to port 2220 [J]	2020-01-21 20:22:04
147.139.132.146	attack	Jan 14 18:09:24 firewall sshd[16186]: Invalid user webadmin from 147.139.132.146 Jan 14 18:09:25 firewall sshd[16186]: Failed password for invalid user webadmin from 147.139.132.146 port 45546 ssh2 Jan 14 18:16:40 firewall sshd[16356]: Invalid user sapdb from 147.139.132.146 ...	2020-01-15 06:14:31
147.139.132.146	attackbots	Jan 5 19:40:36 vps46666688 sshd[27454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 Jan 5 19:40:38 vps46666688 sshd[27454]: Failed password for invalid user sysadmin from 147.139.132.146 port 49658 ssh2 ...	2020-01-06 07:01:17
147.139.132.146	attackbotsspam	Jan 1 23:39:49 server sshd[37817]: Failed password for invalid user pracownik from 147.139.132.146 port 38630 ssh2 Jan 1 23:46:22 server sshd[38176]: Failed password for invalid user oracle from 147.139.132.146 port 50114 ssh2 Jan 1 23:50:46 server sshd[38423]: Failed password for root from 147.139.132.146 port 51552 ssh2	2020-01-02 09:22:28
147.139.132.146	attack	$f2bV_matches	2019-12-30 05:44:38
147.139.132.146	attack	Dec 29 13:52:50 server sshd\[9298\]: Invalid user menashi from 147.139.132.146 Dec 29 13:52:50 server sshd\[9298\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 Dec 29 13:52:53 server sshd\[9298\]: Failed password for invalid user menashi from 147.139.132.146 port 33044 ssh2 Dec 29 14:05:18 server sshd\[12226\]: Invalid user ach from 147.139.132.146 Dec 29 14:05:18 server sshd\[12226\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 ...	2019-12-29 22:41:10
147.139.132.146	attackspam	Dec 8 15:45:05 firewall sshd[22286]: Invalid user suer from 147.139.132.146 Dec 8 15:45:07 firewall sshd[22286]: Failed password for invalid user suer from 147.139.132.146 port 44958 ssh2 Dec 8 15:53:11 firewall sshd[22493]: Invalid user ftp from 147.139.132.146 ...	2019-12-09 05:57:36
147.139.132.146	attackbots	Dec 6 06:30:31 eddieflores sshd\[13356\]: Invalid user Sporting2016 from 147.139.132.146 Dec 6 06:30:31 eddieflores sshd\[13356\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 Dec 6 06:30:33 eddieflores sshd\[13356\]: Failed password for invalid user Sporting2016 from 147.139.132.146 port 45514 ssh2 Dec 6 06:39:51 eddieflores sshd\[14217\]: Invalid user test222 from 147.139.132.146 Dec 6 06:39:51 eddieflores sshd\[14217\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146	2019-12-07 01:25:45
147.139.132.146	attackspam	Invalid user jaquier from 147.139.132.146 port 57298	2019-11-29 21:19:06
147.139.132.146	attack	Nov 25 01:08:13 Aberdeen-m4-Access auth.info sshd[5160]: Invalid user samsudin from 147.139.132.146 port 34206 Nov 25 01:08:13 Aberdeen-m4-Access auth.info sshd[5160]: Failed password for invalid user samsudin from 147.139.132.146 port 34206 ssh2 Nov 25 01:08:13 Aberdeen-m4-Access auth.notice sshguard[12566]: Attack from "147.139.132.146" on service 100 whostnameh danger 10. Nov 25 01:08:13 Aberdeen-m4-Access auth.notice sshguard[12566]: Attack from "147.139.132.146" on service 100 whostnameh danger 10. Nov 25 01:08:13 Aberdeen-m4-Access auth.info sshd[5160]: Received disconnect from 147.139.132.146 port 34206:11: Bye Bye [preauth] Nov 25 01:08:13 Aberdeen-m4-Access auth.info sshd[5160]: Disconnected from 147.139.132.146 port 34206 [preauth] Nov 25 01:08:14 Aberdeen-m4-Access auth.notice sshguard[12566]: Attack from "147.139.132.146" on service 100 whostnameh danger 10. Nov 25 01:08:14 Aberdeen-m4-Access auth.warn sshguard[12566]: Blocking "147.139.132.146/32" for 240 se........ ------------------------------	2019-11-25 17:23:26
147.139.132.146	attackspam	Nov 20 08:23:46 web1 sshd\[14839\]: Invalid user odroid from 147.139.132.146 Nov 20 08:23:46 web1 sshd\[14839\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 Nov 20 08:23:48 web1 sshd\[14839\]: Failed password for invalid user odroid from 147.139.132.146 port 54626 ssh2 Nov 20 08:30:34 web1 sshd\[15408\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 user=root Nov 20 08:30:36 web1 sshd\[15408\]: Failed password for root from 147.139.132.146 port 33688 ssh2	2019-11-21 06:34:45

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 147.139.132.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7682
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;147.139.132.12.			IN	A

;; AUTHORITY SECTION:
.			460	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072701 1800 900 604800 86400

;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jul 28 02:52:57 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 12.132.139.147.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 12.132.139.147.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
79.93.1.87	attack	blacklist username test Invalid user test from 79.93.1.87 port 56600	2019-08-03 11:33:00
134.209.155.239	attackspambots	Invalid user fake from 134.209.155.239 port 34816	2019-08-03 10:47:20
130.61.120.30	attackbots	8088/tcp [2019-08-02]1pkt	2019-08-03 11:02:38
112.43.106.240	attackspambots	3389/tcp [2019-08-02]1pkt	2019-08-03 11:12:25
119.97.150.16	attack	firewall-block, port(s): 445/tcp	2019-08-03 10:49:19
72.189.130.39	attackbotsspam	Aug 3 00:26:35 icinga sshd[27432]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=72.189.130.39 Aug 3 00:26:37 icinga sshd[27432]: Failed password for invalid user factorio from 72.189.130.39 port 43637 ssh2 ...	2019-08-03 10:44:44
122.121.97.191	attack	firewall-block, port(s): 23/tcp	2019-08-03 10:46:35
113.160.244.144	attackspam	SSH bruteforce (Triggered fail2ban)	2019-08-03 10:51:31
46.166.151.47	attackbotsspam	\[2019-08-02 22:25:59\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-02T22:25:59.205-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00246812111465",SessionID="0x7ff4d06383c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/51142",ACLName="no_extension_match" \[2019-08-02 22:32:18\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-02T22:32:18.125-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="3510046406820923",SessionID="0x7ff4d06383c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/49241",ACLName="no_extension_match" \[2019-08-02 22:34:04\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-02T22:34:04.647-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00346812410249",SessionID="0x7ff4d0348688",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/49895",ACLName="no_exte	2019-08-03 10:48:10
34.80.250.15	attack	Aug 3 05:38:31 srv-4 sshd\[4584\]: Invalid user magasin from 34.80.250.15 Aug 3 05:38:31 srv-4 sshd\[4584\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.80.250.15 Aug 3 05:38:33 srv-4 sshd\[4584\]: Failed password for invalid user magasin from 34.80.250.15 port 43332 ssh2 ...	2019-08-03 11:14:00
159.65.112.93	attackbotsspam	Aug 3 01:19:52 debian sshd\[3505\]: Invalid user test from 159.65.112.93 port 58390 Aug 3 01:19:52 debian sshd\[3505\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.112.93 ...	2019-08-03 10:42:30
23.129.64.157	attack	Aug 3 02:35:06 lnxweb61 sshd[17521]: Failed password for root from 23.129.64.157 port 53476 ssh2 Aug 3 02:35:09 lnxweb61 sshd[17521]: Failed password for root from 23.129.64.157 port 53476 ssh2 Aug 3 02:35:12 lnxweb61 sshd[17521]: Failed password for root from 23.129.64.157 port 53476 ssh2 Aug 3 02:35:15 lnxweb61 sshd[17521]: Failed password for root from 23.129.64.157 port 53476 ssh2	2019-08-03 10:54:16
112.85.42.195	attack	Aug 3 09:37:49 webhost01 sshd[878]: Failed password for root from 112.85.42.195 port 38332 ssh2 Aug 3 09:37:51 webhost01 sshd[878]: Failed password for root from 112.85.42.195 port 38332 ssh2 ...	2019-08-03 10:47:02
138.36.47.218	attack	libpam_shield report: forced login attempt	2019-08-03 11:26:18
218.150.220.226	attack	Aug 2 19:20:09 marvibiene sshd[7764]: Invalid user carlos2 from 218.150.220.226 port 40844 Aug 2 19:20:09 marvibiene sshd[7764]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.150.220.226 Aug 2 19:20:09 marvibiene sshd[7764]: Invalid user carlos2 from 218.150.220.226 port 40844 Aug 2 19:20:11 marvibiene sshd[7764]: Failed password for invalid user carlos2 from 218.150.220.226 port 40844 ssh2 ...	2019-08-03 11:07:52

最近上报的IP列表

172.52.191.236	230.85.202.43	90.31.149.53	126.102.219.93
246.133.134.113	54.196.250.245	3.85.189.128	34.214.106.141
38.82.232.45	245.161.148.19	74.52.203.148	113.168.132.134
35.199.67.17	6.240.76.138	200.35.2.171	45.90.57.225
190.199.142.68	165.3.91.27	95.158.50.201	77.63.120.240