147.139.132.238

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): Alibaba.com LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Invalid user sshvpn from 147.139.132.238 port 38648	2020-02-28 09:23:35

相同子网IP讨论:

IP	类型	评论内容	时间
147.139.132.12	attackbotsspam	Jul 27 13:35:52 myhostname sshd[19591]: Invalid user user from 147.139.132.12 Jul 27 13:35:52 myhostname sshd[19591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.12 Jul 27 13:35:54 myhostname sshd[19591]: Failed password for invalid user user from 147.139.132.12 port 42814 ssh2 Jul 27 13:35:54 myhostname sshd[19591]: Received disconnect from 147.139.132.12 port 42814:11: Bye Bye [preauth] Jul 27 13:35:54 myhostname sshd[19591]: Disconnected from 147.139.132.12 port 42814 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=147.139.132.12	2020-07-28 02:53:01
147.139.132.146	attackspambots	SSH login attempts brute force.	2020-02-24 03:14:59
147.139.132.146	attackbots	Feb 2 14:38:40 sd-53420 sshd\[23527\]: Invalid user support from 147.139.132.146 Feb 2 14:38:40 sd-53420 sshd\[23527\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 Feb 2 14:38:42 sd-53420 sshd\[23527\]: Failed password for invalid user support from 147.139.132.146 port 36490 ssh2 Feb 2 14:41:21 sd-53420 sshd\[23941\]: Invalid user 1qaz@WSX from 147.139.132.146 Feb 2 14:41:21 sd-53420 sshd\[23941\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 ...	2020-02-02 21:59:37
147.139.132.146	attack	Jan 21 09:55:36 v22018076590370373 sshd[22185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 ...	2020-02-02 00:28:29
147.139.132.146	attack	Unauthorized connection attempt detected from IP address 147.139.132.146 to port 2220 [J]	2020-01-21 20:22:04
147.139.132.146	attack	Jan 14 18:09:24 firewall sshd[16186]: Invalid user webadmin from 147.139.132.146 Jan 14 18:09:25 firewall sshd[16186]: Failed password for invalid user webadmin from 147.139.132.146 port 45546 ssh2 Jan 14 18:16:40 firewall sshd[16356]: Invalid user sapdb from 147.139.132.146 ...	2020-01-15 06:14:31
147.139.132.146	attackbots	Jan 5 19:40:36 vps46666688 sshd[27454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 Jan 5 19:40:38 vps46666688 sshd[27454]: Failed password for invalid user sysadmin from 147.139.132.146 port 49658 ssh2 ...	2020-01-06 07:01:17
147.139.132.146	attackbotsspam	Jan 1 23:39:49 server sshd[37817]: Failed password for invalid user pracownik from 147.139.132.146 port 38630 ssh2 Jan 1 23:46:22 server sshd[38176]: Failed password for invalid user oracle from 147.139.132.146 port 50114 ssh2 Jan 1 23:50:46 server sshd[38423]: Failed password for root from 147.139.132.146 port 51552 ssh2	2020-01-02 09:22:28
147.139.132.146	attack	$f2bV_matches	2019-12-30 05:44:38
147.139.132.146	attack	Dec 29 13:52:50 server sshd\[9298\]: Invalid user menashi from 147.139.132.146 Dec 29 13:52:50 server sshd\[9298\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 Dec 29 13:52:53 server sshd\[9298\]: Failed password for invalid user menashi from 147.139.132.146 port 33044 ssh2 Dec 29 14:05:18 server sshd\[12226\]: Invalid user ach from 147.139.132.146 Dec 29 14:05:18 server sshd\[12226\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 ...	2019-12-29 22:41:10
147.139.132.146	attackspam	Dec 8 15:45:05 firewall sshd[22286]: Invalid user suer from 147.139.132.146 Dec 8 15:45:07 firewall sshd[22286]: Failed password for invalid user suer from 147.139.132.146 port 44958 ssh2 Dec 8 15:53:11 firewall sshd[22493]: Invalid user ftp from 147.139.132.146 ...	2019-12-09 05:57:36
147.139.132.146	attackbots	Dec 6 06:30:31 eddieflores sshd\[13356\]: Invalid user Sporting2016 from 147.139.132.146 Dec 6 06:30:31 eddieflores sshd\[13356\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 Dec 6 06:30:33 eddieflores sshd\[13356\]: Failed password for invalid user Sporting2016 from 147.139.132.146 port 45514 ssh2 Dec 6 06:39:51 eddieflores sshd\[14217\]: Invalid user test222 from 147.139.132.146 Dec 6 06:39:51 eddieflores sshd\[14217\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146	2019-12-07 01:25:45
147.139.132.146	attackspam	Invalid user jaquier from 147.139.132.146 port 57298	2019-11-29 21:19:06
147.139.132.146	attack	Nov 25 01:08:13 Aberdeen-m4-Access auth.info sshd[5160]: Invalid user samsudin from 147.139.132.146 port 34206 Nov 25 01:08:13 Aberdeen-m4-Access auth.info sshd[5160]: Failed password for invalid user samsudin from 147.139.132.146 port 34206 ssh2 Nov 25 01:08:13 Aberdeen-m4-Access auth.notice sshguard[12566]: Attack from "147.139.132.146" on service 100 whostnameh danger 10. Nov 25 01:08:13 Aberdeen-m4-Access auth.notice sshguard[12566]: Attack from "147.139.132.146" on service 100 whostnameh danger 10. Nov 25 01:08:13 Aberdeen-m4-Access auth.info sshd[5160]: Received disconnect from 147.139.132.146 port 34206:11: Bye Bye [preauth] Nov 25 01:08:13 Aberdeen-m4-Access auth.info sshd[5160]: Disconnected from 147.139.132.146 port 34206 [preauth] Nov 25 01:08:14 Aberdeen-m4-Access auth.notice sshguard[12566]: Attack from "147.139.132.146" on service 100 whostnameh danger 10. Nov 25 01:08:14 Aberdeen-m4-Access auth.warn sshguard[12566]: Blocking "147.139.132.146/32" for 240 se........ ------------------------------	2019-11-25 17:23:26
147.139.132.146	attackspam	Nov 20 08:23:46 web1 sshd\[14839\]: Invalid user odroid from 147.139.132.146 Nov 20 08:23:46 web1 sshd\[14839\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 Nov 20 08:23:48 web1 sshd\[14839\]: Failed password for invalid user odroid from 147.139.132.146 port 54626 ssh2 Nov 20 08:30:34 web1 sshd\[15408\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 user=root Nov 20 08:30:36 web1 sshd\[15408\]: Failed password for root from 147.139.132.146 port 33688 ssh2	2019-11-21 06:34:45

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 147.139.132.238
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2124
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;147.139.132.238.		IN	A

;; AUTHORITY SECTION:
.			499	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022701 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 28 09:23:32 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 238.132.139.147.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 238.132.139.147.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
111.61.119.130	attack	Apr 20 11:05:25 rs-7 sshd[769]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.61.119.130 user=r.r Apr 20 11:05:27 rs-7 sshd[769]: Failed password for r.r from 111.61.119.130 port 41050 ssh2 Apr 20 11:05:28 rs-7 sshd[769]: Received disconnect from 111.61.119.130 port 41050:11: Bye Bye [preauth] Apr 20 11:05:28 rs-7 sshd[769]: Disconnected from 111.61.119.130 port 41050 [preauth] Apr 20 11:21:09 rs-7 sshd[4863]: Invalid user postgres from 111.61.119.130 port 55244 Apr 20 11:21:09 rs-7 sshd[4863]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.61.119.130 Apr 20 11:21:11 rs-7 sshd[4863]: Failed password for invalid user postgres from 111.61.119.130 port 55244 ssh2 Apr 20 11:21:11 rs-7 sshd[4863]: Received disconnect from 111.61.119.130 port 55244:11: Bye Bye [preauth] Apr 20 11:21:11 rs-7 sshd[4863]: Disconnected from 111.61.119.130 port 55244 [preauth] ........ ----------------------------------------------- https://www	2020-04-23 13:14:45
66.249.79.155	attackspam	Unauthorized connection attempt detected from IP address 66.249.79.155 to port 80	2020-04-23 13:16:59
14.143.64.114	attackbots	Apr 23 05:55:18 cloud sshd[23829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.143.64.114 Apr 23 05:55:20 cloud sshd[23829]: Failed password for invalid user adm from 14.143.64.114 port 53484 ssh2	2020-04-23 13:00:44
106.13.16.205	attack	Port scan(s) denied	2020-04-23 13:29:11
120.70.101.107	attackbots	SSH authentication failure x 6 reported by Fail2Ban ...	2020-04-23 12:57:40
78.25.22.178	attackspam	DATE:2020-04-23 05:54:56, IP:78.25.22.178, PORT:1433 MSSQL brute force auth on honeypot server (epe-honey1-hq)	2020-04-23 13:20:22
45.227.254.30	attackspambots	Port 443 (HTTPS) access denied	2020-04-23 13:13:54
14.241.107.2	attackspambots	04/22/2020-23:55:32.227305 14.241.107.2 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-04-23 12:51:44
134.209.220.69	attack	ssh brute force	2020-04-23 13:12:15
106.12.155.162	attackbotsspam	SSH Brute Force	2020-04-23 12:53:00
222.186.42.136	attack	$f2bV_matches	2020-04-23 13:03:04
45.55.193.62	attackspam	Invalid user test from 45.55.193.62 port 46466	2020-04-23 13:09:39
171.100.156.102	attack	(imapd) Failed IMAP login from 171.100.156.102 (TH/Thailand/171-100-156-102.static.asianet.co.th): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Apr 23 08:25:15 ir1 dovecot[264309]: imap-login: Disconnected (auth failed, 1 attempts in 19 secs): user=, method=PLAIN, rip=171.100.156.102, lip=5.63.12.44, TLS, session=	2020-04-23 12:58:47
167.172.103.30	attack	scanner	2020-04-23 13:23:19
51.83.41.120	attackspambots	Apr 23 07:02:07 v22018086721571380 sshd[20178]: Failed password for invalid user wi from 51.83.41.120 port 34958 ssh2	2020-04-23 13:03:56

最近上报的IP列表

87.179.138.176	224.0.133.26	33.229.61.242	47.172.126.193
182.88.124.132	174.27.152.105	206.89.36.12	116.1.180.22
55.6.13.228	60.133.52.171	33.166.81.104	33.161.62.106
115.29.246.243	153.135.141.183	252.125.255.40	153.246.155.78
0.10.149.81	202.33.104.159	32.249.47.31	41.42.129.80