147.139.132.238

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): Alibaba.com LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Invalid user sshvpn from 147.139.132.238 port 38648	2020-02-28 09:23:35

相同子网IP讨论:

IP	类型	评论内容	时间
147.139.132.12	attackbotsspam	Jul 27 13:35:52 myhostname sshd[19591]: Invalid user user from 147.139.132.12 Jul 27 13:35:52 myhostname sshd[19591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.12 Jul 27 13:35:54 myhostname sshd[19591]: Failed password for invalid user user from 147.139.132.12 port 42814 ssh2 Jul 27 13:35:54 myhostname sshd[19591]: Received disconnect from 147.139.132.12 port 42814:11: Bye Bye [preauth] Jul 27 13:35:54 myhostname sshd[19591]: Disconnected from 147.139.132.12 port 42814 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=147.139.132.12	2020-07-28 02:53:01
147.139.132.146	attackspambots	SSH login attempts brute force.	2020-02-24 03:14:59
147.139.132.146	attackbots	Feb 2 14:38:40 sd-53420 sshd\[23527\]: Invalid user support from 147.139.132.146 Feb 2 14:38:40 sd-53420 sshd\[23527\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 Feb 2 14:38:42 sd-53420 sshd\[23527\]: Failed password for invalid user support from 147.139.132.146 port 36490 ssh2 Feb 2 14:41:21 sd-53420 sshd\[23941\]: Invalid user 1qaz@WSX from 147.139.132.146 Feb 2 14:41:21 sd-53420 sshd\[23941\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 ...	2020-02-02 21:59:37
147.139.132.146	attack	Jan 21 09:55:36 v22018076590370373 sshd[22185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 ...	2020-02-02 00:28:29
147.139.132.146	attack	Unauthorized connection attempt detected from IP address 147.139.132.146 to port 2220 [J]	2020-01-21 20:22:04
147.139.132.146	attack	Jan 14 18:09:24 firewall sshd[16186]: Invalid user webadmin from 147.139.132.146 Jan 14 18:09:25 firewall sshd[16186]: Failed password for invalid user webadmin from 147.139.132.146 port 45546 ssh2 Jan 14 18:16:40 firewall sshd[16356]: Invalid user sapdb from 147.139.132.146 ...	2020-01-15 06:14:31
147.139.132.146	attackbots	Jan 5 19:40:36 vps46666688 sshd[27454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 Jan 5 19:40:38 vps46666688 sshd[27454]: Failed password for invalid user sysadmin from 147.139.132.146 port 49658 ssh2 ...	2020-01-06 07:01:17
147.139.132.146	attackbotsspam	Jan 1 23:39:49 server sshd[37817]: Failed password for invalid user pracownik from 147.139.132.146 port 38630 ssh2 Jan 1 23:46:22 server sshd[38176]: Failed password for invalid user oracle from 147.139.132.146 port 50114 ssh2 Jan 1 23:50:46 server sshd[38423]: Failed password for root from 147.139.132.146 port 51552 ssh2	2020-01-02 09:22:28
147.139.132.146	attack	$f2bV_matches	2019-12-30 05:44:38
147.139.132.146	attack	Dec 29 13:52:50 server sshd\[9298\]: Invalid user menashi from 147.139.132.146 Dec 29 13:52:50 server sshd\[9298\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 Dec 29 13:52:53 server sshd\[9298\]: Failed password for invalid user menashi from 147.139.132.146 port 33044 ssh2 Dec 29 14:05:18 server sshd\[12226\]: Invalid user ach from 147.139.132.146 Dec 29 14:05:18 server sshd\[12226\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 ...	2019-12-29 22:41:10
147.139.132.146	attackspam	Dec 8 15:45:05 firewall sshd[22286]: Invalid user suer from 147.139.132.146 Dec 8 15:45:07 firewall sshd[22286]: Failed password for invalid user suer from 147.139.132.146 port 44958 ssh2 Dec 8 15:53:11 firewall sshd[22493]: Invalid user ftp from 147.139.132.146 ...	2019-12-09 05:57:36
147.139.132.146	attackbots	Dec 6 06:30:31 eddieflores sshd\[13356\]: Invalid user Sporting2016 from 147.139.132.146 Dec 6 06:30:31 eddieflores sshd\[13356\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 Dec 6 06:30:33 eddieflores sshd\[13356\]: Failed password for invalid user Sporting2016 from 147.139.132.146 port 45514 ssh2 Dec 6 06:39:51 eddieflores sshd\[14217\]: Invalid user test222 from 147.139.132.146 Dec 6 06:39:51 eddieflores sshd\[14217\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146	2019-12-07 01:25:45
147.139.132.146	attackspam	Invalid user jaquier from 147.139.132.146 port 57298	2019-11-29 21:19:06
147.139.132.146	attack	Nov 25 01:08:13 Aberdeen-m4-Access auth.info sshd[5160]: Invalid user samsudin from 147.139.132.146 port 34206 Nov 25 01:08:13 Aberdeen-m4-Access auth.info sshd[5160]: Failed password for invalid user samsudin from 147.139.132.146 port 34206 ssh2 Nov 25 01:08:13 Aberdeen-m4-Access auth.notice sshguard[12566]: Attack from "147.139.132.146" on service 100 whostnameh danger 10. Nov 25 01:08:13 Aberdeen-m4-Access auth.notice sshguard[12566]: Attack from "147.139.132.146" on service 100 whostnameh danger 10. Nov 25 01:08:13 Aberdeen-m4-Access auth.info sshd[5160]: Received disconnect from 147.139.132.146 port 34206:11: Bye Bye [preauth] Nov 25 01:08:13 Aberdeen-m4-Access auth.info sshd[5160]: Disconnected from 147.139.132.146 port 34206 [preauth] Nov 25 01:08:14 Aberdeen-m4-Access auth.notice sshguard[12566]: Attack from "147.139.132.146" on service 100 whostnameh danger 10. Nov 25 01:08:14 Aberdeen-m4-Access auth.warn sshguard[12566]: Blocking "147.139.132.146/32" for 240 se........ ------------------------------	2019-11-25 17:23:26
147.139.132.146	attackspam	Nov 20 08:23:46 web1 sshd\[14839\]: Invalid user odroid from 147.139.132.146 Nov 20 08:23:46 web1 sshd\[14839\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 Nov 20 08:23:48 web1 sshd\[14839\]: Failed password for invalid user odroid from 147.139.132.146 port 54626 ssh2 Nov 20 08:30:34 web1 sshd\[15408\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 user=root Nov 20 08:30:36 web1 sshd\[15408\]: Failed password for root from 147.139.132.146 port 33688 ssh2	2019-11-21 06:34:45

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 147.139.132.238
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2124
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;147.139.132.238.		IN	A

;; AUTHORITY SECTION:
.			499	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022701 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 28 09:23:32 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 238.132.139.147.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 238.132.139.147.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
182.48.114.11	attack	Unauthorised access (Nov 9) SRC=182.48.114.11 LEN=40 TTL=236 ID=46275 TCP DPT=1433 WINDOW=1024 SYN Unauthorised access (Nov 5) SRC=182.48.114.11 LEN=40 TTL=236 ID=630 TCP DPT=1433 WINDOW=1024 SYN	2019-11-09 08:23:22
201.48.4.15	attack	2019-11-08T23:38:05.911289abusebot-3.cloudsearch.cf sshd\[11946\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.48.4.15 user=root	2019-11-09 08:07:09
49.88.112.72	attack	Nov 9 01:54:33 sauna sshd[66783]: Failed password for root from 49.88.112.72 port 13981 ssh2 ...	2019-11-09 08:06:37
202.112.180.22	attackbots	Nov 8 22:57:20 vtv3 sshd\[26318\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.112.180.22 user=root Nov 8 22:57:22 vtv3 sshd\[26318\]: Failed password for root from 202.112.180.22 port 58812 ssh2 Nov 8 23:01:39 vtv3 sshd\[28548\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.112.180.22 user=root Nov 8 23:01:41 vtv3 sshd\[28548\]: Failed password for root from 202.112.180.22 port 40050 ssh2 Nov 8 23:06:00 vtv3 sshd\[30783\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.112.180.22 user=root Nov 8 23:18:19 vtv3 sshd\[4432\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.112.180.22 user=root Nov 8 23:18:22 vtv3 sshd\[4432\]: Failed password for root from 202.112.180.22 port 49886 ssh2 Nov 8 23:22:35 vtv3 sshd\[6497\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rho	2019-11-09 08:47:49
188.166.46.206	attack	Automatic report - Banned IP Access	2019-11-09 08:20:14
51.15.23.2	attackspambots	scan r	2019-11-09 08:21:23
84.244.180.7	attackspam	2019-11-09T01:14:28.121213mail01 postfix/smtpd[28566]: warning: opzetborstelshop.nl[84.244.180.7]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-09T01:18:41.202742mail01 postfix/smtpd[7800]: warning: opzetborstelshop.nl[84.244.180.7]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-09T01:19:20.157403mail01 postfix/smtpd[28566]: warning: opzetborstelshop.nl[84.244.180.7]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-09 08:39:41
106.12.187.146	attackspambots	Nov 9 00:20:33 [host] sshd[25576]: Invalid user admin from 106.12.187.146 Nov 9 00:20:33 [host] sshd[25576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.187.146 Nov 9 00:20:35 [host] sshd[25576]: Failed password for invalid user admin from 106.12.187.146 port 28168 ssh2	2019-11-09 08:09:47
178.237.0.229	attackbots	Nov 9 01:16:20 vps647732 sshd[8193]: Failed password for backup from 178.237.0.229 port 59096 ssh2 ...	2019-11-09 08:25:35
1.214.241.18	attack	Nov 9 01:21:16 vps647732 sshd[8264]: Failed password for root from 1.214.241.18 port 60700 ssh2 Nov 9 01:25:48 vps647732 sshd[8313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.214.241.18 ...	2019-11-09 08:35:14
74.141.132.233	attack	Nov 8 13:01:34 hpm sshd\[9795\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=cpe-74-141-132-233.kya.res.rr.com user=root Nov 8 13:01:36 hpm sshd\[9795\]: Failed password for root from 74.141.132.233 port 56728 ssh2 Nov 8 13:05:37 hpm sshd\[10116\]: Invalid user fs5 from 74.141.132.233 Nov 8 13:05:38 hpm sshd\[10116\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=cpe-74-141-132-233.kya.res.rr.com Nov 8 13:05:39 hpm sshd\[10116\]: Failed password for invalid user fs5 from 74.141.132.233 port 38168 ssh2	2019-11-09 08:44:12
181.49.117.130	attack	Nov 9 05:32:28 gw1 sshd[27980]: Failed password for root from 181.49.117.130 port 46322 ssh2 ...	2019-11-09 08:43:03
51.83.78.56	attackbotsspam	Nov 9 00:52:33 vps691689 sshd[21878]: Failed password for root from 51.83.78.56 port 54944 ssh2 Nov 9 00:56:03 vps691689 sshd[21983]: Failed password for root from 51.83.78.56 port 36066 ssh2 ...	2019-11-09 08:12:40
142.4.31.86	attackbots	$f2bV_matches	2019-11-09 08:20:52
95.178.241.222	attackspambots	Telnetd brute force attack detected by fail2ban	2019-11-09 08:28:51

最近上报的IP列表

87.179.138.176	224.0.133.26	33.229.61.242	47.172.126.193
182.88.124.132	174.27.152.105	206.89.36.12	116.1.180.22
55.6.13.228	60.133.52.171	33.166.81.104	33.161.62.106
115.29.246.243	153.135.141.183	252.125.255.40	153.246.155.78
0.10.149.81	202.33.104.159	32.249.47.31	41.42.129.80