147.139.132.52

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): Alibaba.com LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Aug 2 01:15:14 srv206 sshd[31818]: Invalid user sphinx from 147.139.132.52 Aug 2 01:15:14 srv206 sshd[31818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.52 Aug 2 01:15:14 srv206 sshd[31818]: Invalid user sphinx from 147.139.132.52 Aug 2 01:15:15 srv206 sshd[31818]: Failed password for invalid user sphinx from 147.139.132.52 port 50966 ssh2 ...	2019-08-02 14:35:47

类型

评论内容

时间

attackspambots

Aug  2 01:15:14 srv206 sshd[31818]: Invalid user sphinx from 147.139.132.52
Aug  2 01:15:14 srv206 sshd[31818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.52
Aug  2 01:15:14 srv206 sshd[31818]: Invalid user sphinx from 147.139.132.52
Aug  2 01:15:15 srv206 sshd[31818]: Failed password for invalid user sphinx from 147.139.132.52 port 50966 ssh2
...

2019-08-02 14:35:47

相同子网IP讨论:

IP	类型	评论内容	时间
147.139.132.12	attackbotsspam	Jul 27 13:35:52 myhostname sshd[19591]: Invalid user user from 147.139.132.12 Jul 27 13:35:52 myhostname sshd[19591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.12 Jul 27 13:35:54 myhostname sshd[19591]: Failed password for invalid user user from 147.139.132.12 port 42814 ssh2 Jul 27 13:35:54 myhostname sshd[19591]: Received disconnect from 147.139.132.12 port 42814:11: Bye Bye [preauth] Jul 27 13:35:54 myhostname sshd[19591]: Disconnected from 147.139.132.12 port 42814 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=147.139.132.12	2020-07-28 02:53:01
147.139.132.238	attackspam	Invalid user sshvpn from 147.139.132.238 port 38648	2020-02-28 09:23:35
147.139.132.146	attackspambots	SSH login attempts brute force.	2020-02-24 03:14:59
147.139.132.146	attackbots	Feb 2 14:38:40 sd-53420 sshd\[23527\]: Invalid user support from 147.139.132.146 Feb 2 14:38:40 sd-53420 sshd\[23527\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 Feb 2 14:38:42 sd-53420 sshd\[23527\]: Failed password for invalid user support from 147.139.132.146 port 36490 ssh2 Feb 2 14:41:21 sd-53420 sshd\[23941\]: Invalid user 1qaz@WSX from 147.139.132.146 Feb 2 14:41:21 sd-53420 sshd\[23941\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 ...	2020-02-02 21:59:37
147.139.132.146	attack	Jan 21 09:55:36 v22018076590370373 sshd[22185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 ...	2020-02-02 00:28:29
147.139.132.146	attack	Unauthorized connection attempt detected from IP address 147.139.132.146 to port 2220 [J]	2020-01-21 20:22:04
147.139.132.146	attack	Jan 14 18:09:24 firewall sshd[16186]: Invalid user webadmin from 147.139.132.146 Jan 14 18:09:25 firewall sshd[16186]: Failed password for invalid user webadmin from 147.139.132.146 port 45546 ssh2 Jan 14 18:16:40 firewall sshd[16356]: Invalid user sapdb from 147.139.132.146 ...	2020-01-15 06:14:31
147.139.132.146	attackbots	Jan 5 19:40:36 vps46666688 sshd[27454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 Jan 5 19:40:38 vps46666688 sshd[27454]: Failed password for invalid user sysadmin from 147.139.132.146 port 49658 ssh2 ...	2020-01-06 07:01:17
147.139.132.146	attackbotsspam	Jan 1 23:39:49 server sshd[37817]: Failed password for invalid user pracownik from 147.139.132.146 port 38630 ssh2 Jan 1 23:46:22 server sshd[38176]: Failed password for invalid user oracle from 147.139.132.146 port 50114 ssh2 Jan 1 23:50:46 server sshd[38423]: Failed password for root from 147.139.132.146 port 51552 ssh2	2020-01-02 09:22:28
147.139.132.146	attack	$f2bV_matches	2019-12-30 05:44:38
147.139.132.146	attack	Dec 29 13:52:50 server sshd\[9298\]: Invalid user menashi from 147.139.132.146 Dec 29 13:52:50 server sshd\[9298\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 Dec 29 13:52:53 server sshd\[9298\]: Failed password for invalid user menashi from 147.139.132.146 port 33044 ssh2 Dec 29 14:05:18 server sshd\[12226\]: Invalid user ach from 147.139.132.146 Dec 29 14:05:18 server sshd\[12226\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 ...	2019-12-29 22:41:10
147.139.132.146	attackspam	Dec 8 15:45:05 firewall sshd[22286]: Invalid user suer from 147.139.132.146 Dec 8 15:45:07 firewall sshd[22286]: Failed password for invalid user suer from 147.139.132.146 port 44958 ssh2 Dec 8 15:53:11 firewall sshd[22493]: Invalid user ftp from 147.139.132.146 ...	2019-12-09 05:57:36
147.139.132.146	attackbots	Dec 6 06:30:31 eddieflores sshd\[13356\]: Invalid user Sporting2016 from 147.139.132.146 Dec 6 06:30:31 eddieflores sshd\[13356\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146 Dec 6 06:30:33 eddieflores sshd\[13356\]: Failed password for invalid user Sporting2016 from 147.139.132.146 port 45514 ssh2 Dec 6 06:39:51 eddieflores sshd\[14217\]: Invalid user test222 from 147.139.132.146 Dec 6 06:39:51 eddieflores sshd\[14217\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.139.132.146	2019-12-07 01:25:45
147.139.132.146	attackspam	Invalid user jaquier from 147.139.132.146 port 57298	2019-11-29 21:19:06
147.139.132.146	attack	Nov 25 01:08:13 Aberdeen-m4-Access auth.info sshd[5160]: Invalid user samsudin from 147.139.132.146 port 34206 Nov 25 01:08:13 Aberdeen-m4-Access auth.info sshd[5160]: Failed password for invalid user samsudin from 147.139.132.146 port 34206 ssh2 Nov 25 01:08:13 Aberdeen-m4-Access auth.notice sshguard[12566]: Attack from "147.139.132.146" on service 100 whostnameh danger 10. Nov 25 01:08:13 Aberdeen-m4-Access auth.notice sshguard[12566]: Attack from "147.139.132.146" on service 100 whostnameh danger 10. Nov 25 01:08:13 Aberdeen-m4-Access auth.info sshd[5160]: Received disconnect from 147.139.132.146 port 34206:11: Bye Bye [preauth] Nov 25 01:08:13 Aberdeen-m4-Access auth.info sshd[5160]: Disconnected from 147.139.132.146 port 34206 [preauth] Nov 25 01:08:14 Aberdeen-m4-Access auth.notice sshguard[12566]: Attack from "147.139.132.146" on service 100 whostnameh danger 10. Nov 25 01:08:14 Aberdeen-m4-Access auth.warn sshguard[12566]: Blocking "147.139.132.146/32" for 240 se........ ------------------------------	2019-11-25 17:23:26

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 147.139.132.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17704
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;147.139.132.52.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080200 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 02 14:35:40 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 52.132.139.147.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 52.132.139.147.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.173.142	attackbotsspam	2020-03-19T16:33:00.595694homeassistant sshd[16069]: Failed none for root from 222.186.173.142 port 45308 ssh2 2020-03-19T16:33:00.839216homeassistant sshd[16069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.142 user=root ...	2020-03-20 00:41:17
178.87.163.133	attackbotsspam	1584622907 - 03/19/2020 14:01:47 Host: 178.87.163.133/178.87.163.133 Port: 445 TCP Blocked	2020-03-19 23:43:10
42.112.47.217	attackspambots	Unauthorized connection attempt from IP address 42.112.47.217 on Port 445(SMB)	2020-03-20 00:15:55
191.54.220.245	attack	trying to access non-authorized port	2020-03-20 00:14:31
51.89.68.141	attack	Mar 19 16:51:28 sip sshd[7379]: Failed password for root from 51.89.68.141 port 55988 ssh2 Mar 19 17:03:09 sip sshd[10337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.89.68.141 Mar 19 17:03:11 sip sshd[10337]: Failed password for invalid user globalflash from 51.89.68.141 port 60896 ssh2	2020-03-20 00:31:43
139.198.255.62	attackspam	Feb 13 12:54:40 pi sshd[23724]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.255.62 Feb 13 12:54:43 pi sshd[23724]: Failed password for invalid user saundercook from 139.198.255.62 port 45022 ssh2	2020-03-20 00:29:27
91.216.61.197	attack	Unauthorized connection attempt from IP address 91.216.61.197 on Port 445(SMB)	2020-03-20 00:01:08
27.78.14.83	attackbots	Mar 19 16:54:04 icinga sshd[22524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.78.14.83 Mar 19 16:54:07 icinga sshd[22524]: Failed password for invalid user admin from 27.78.14.83 port 39392 ssh2 Mar 19 16:54:17 icinga sshd[22538]: Failed password for root from 27.78.14.83 port 57822 ssh2 ...	2020-03-19 23:54:41
196.1.197.138	attackbotsspam	Unauthorized connection attempt from IP address 196.1.197.138 on Port 445(SMB)	2020-03-19 23:41:07
118.89.27.248	attackspam	2020-03-19T13:58:25.884409vps751288.ovh.net sshd\[24087\]: Invalid user zhusengbin from 118.89.27.248 port 46592 2020-03-19T13:58:25.894480vps751288.ovh.net sshd\[24087\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.27.248 2020-03-19T13:58:27.437716vps751288.ovh.net sshd\[24087\]: Failed password for invalid user zhusengbin from 118.89.27.248 port 46592 ssh2 2020-03-19T14:01:38.495166vps751288.ovh.net sshd\[24113\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.27.248 user=root 2020-03-19T14:01:41.199887vps751288.ovh.net sshd\[24113\]: Failed password for root from 118.89.27.248 port 35070 ssh2	2020-03-19 23:56:56
51.68.44.158	attackspam	Mar 19 16:32:42 amit sshd\[24311\]: Invalid user Administrator from 51.68.44.158 Mar 19 16:32:42 amit sshd\[24311\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.44.158 Mar 19 16:32:44 amit sshd\[24311\]: Failed password for invalid user Administrator from 51.68.44.158 port 46144 ssh2 ...	2020-03-20 00:37:44
200.194.40.157	attackspambots	Automatic report - Port Scan Attack	2020-03-20 00:16:40
95.9.232.100	attackbotsspam	Unauthorized connection attempt from IP address 95.9.232.100 on Port 445(SMB)	2020-03-19 23:42:16
139.59.43.6	attack	Mar 19 16:28:01 ewelt sshd[3899]: Invalid user alexis from 139.59.43.6 port 36598 Mar 19 16:28:01 ewelt sshd[3899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.43.6 Mar 19 16:28:01 ewelt sshd[3899]: Invalid user alexis from 139.59.43.6 port 36598 Mar 19 16:28:03 ewelt sshd[3899]: Failed password for invalid user alexis from 139.59.43.6 port 36598 ssh2 ...	2020-03-20 00:35:15
216.158.219.229	attackbotsspam	Chat Spam	2020-03-19 23:55:10

最近上报的IP列表

104.163.48.225	228.93.56.77	198.108.66.41	143.137.127.46
85.206.38.111	185.106.29.70	117.2.133.106	13.230.189.119
81.17.143.10	45.82.33.61	125.124.167.213	81.30.208.30
87.244.116.238	187.162.51.224	103.93.96.26	149.140.193.138
41.169.151.90	202.91.89.164	190.225.135.187	2400:8901::f03c:91ff:fe41:5944