18.130.139.154

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Amazon Data Services UK

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Wordpress XMLRPC attack	2019-06-23 02:20:06

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 18.130.139.154
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44116
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;18.130.139.154.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062202 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jun 23 02:19:56 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

154.139.130.18.in-addr.arpa domain name pointer ec2-18-130-139-154.eu-west-2.compute.amazonaws.com.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
154.139.130.18.in-addr.arpa	name = ec2-18-130-139-154.eu-west-2.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
114.67.88.76	attack	Aug 23 00:10:19 ajax sshd[27400]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.88.76 Aug 23 00:10:21 ajax sshd[27400]: Failed password for invalid user steven from 114.67.88.76 port 43838 ssh2	2020-08-23 07:16:41
190.111.26.81	attackbotsspam	SMB Server BruteForce Attack	2020-08-23 07:05:18
222.186.175.202	attackspambots	2020-08-22T23:00:14.912343shield sshd\[16209\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root 2020-08-22T23:00:17.499217shield sshd\[16209\]: Failed password for root from 222.186.175.202 port 27782 ssh2 2020-08-22T23:00:20.540415shield sshd\[16209\]: Failed password for root from 222.186.175.202 port 27782 ssh2 2020-08-22T23:00:23.998038shield sshd\[16209\]: Failed password for root from 222.186.175.202 port 27782 ssh2 2020-08-22T23:00:27.681874shield sshd\[16209\]: Failed password for root from 222.186.175.202 port 27782 ssh2	2020-08-23 07:03:04
51.79.145.158	attackspambots	2020-08-23T00:32:27.504355ks3355764 sshd[21723]: Invalid user arkserver from 51.79.145.158 port 54294 2020-08-23T00:32:29.591126ks3355764 sshd[21723]: Failed password for invalid user arkserver from 51.79.145.158 port 54294 ssh2 ...	2020-08-23 07:00:13
119.45.119.141	attack	Aug 22 23:08:58 rancher-0 sshd[1221164]: Invalid user doc from 119.45.119.141 port 47072 ...	2020-08-23 06:58:54
192.35.168.22	attackbots	Unauthorized connection attempt from IP address 192.35.168.22 on Port 110(POP3)	2020-08-23 07:00:55
103.228.19.2	attackspam	Port Scan ...	2020-08-23 06:47:50
152.242.53.90	attackbots	2020-08-22T22:31:35.709678mail.broermann.family sshd[1791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.242.53.90 2020-08-22T22:31:35.470032mail.broermann.family sshd[1791]: Invalid user ubnt from 152.242.53.90 port 41261 2020-08-22T22:31:37.870976mail.broermann.family sshd[1791]: Failed password for invalid user ubnt from 152.242.53.90 port 41261 ssh2 2020-08-22T22:31:40.171981mail.broermann.family sshd[1794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.242.53.90 user=root 2020-08-22T22:31:42.689189mail.broermann.family sshd[1794]: Failed password for root from 152.242.53.90 port 41262 ssh2 ...	2020-08-23 07:16:27
59.124.6.166	attack	2020-08-22T22:04:57.230644shield sshd\[1442\]: Invalid user sistema from 59.124.6.166 port 60062 2020-08-22T22:04:57.253630shield sshd\[1442\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.124.6.166 2020-08-22T22:04:59.138304shield sshd\[1442\]: Failed password for invalid user sistema from 59.124.6.166 port 60062 ssh2 2020-08-22T22:06:03.170253shield sshd\[1782\]: Invalid user test from 59.124.6.166 port 39700 2020-08-22T22:06:03.181516shield sshd\[1782\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.124.6.166	2020-08-23 07:09:35
99.185.76.161	attackspam	Aug 22 22:22:48 ns382633 sshd\[26967\]: Invalid user scp from 99.185.76.161 port 32910 Aug 22 22:22:48 ns382633 sshd\[26967\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=99.185.76.161 Aug 22 22:22:49 ns382633 sshd\[26967\]: Failed password for invalid user scp from 99.185.76.161 port 32910 ssh2 Aug 22 22:31:45 ns382633 sshd\[28610\]: Invalid user nicole from 99.185.76.161 port 44816 Aug 22 22:31:45 ns382633 sshd\[28610\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=99.185.76.161	2020-08-23 07:11:50
106.53.24.141	attack	Aug 23 01:34:52 lukav-desktop sshd\[2042\]: Invalid user virtuoso from 106.53.24.141 Aug 23 01:34:52 lukav-desktop sshd\[2042\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.24.141 Aug 23 01:34:54 lukav-desktop sshd\[2042\]: Failed password for invalid user virtuoso from 106.53.24.141 port 58228 ssh2 Aug 23 01:36:09 lukav-desktop sshd\[2589\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.24.141 user=root Aug 23 01:36:11 lukav-desktop sshd\[2589\]: Failed password for root from 106.53.24.141 port 49334 ssh2	2020-08-23 06:44:07
186.178.6.42	attackbots	Unauthorized connection attempt from IP address 186.178.6.42 on Port 445(SMB)	2020-08-23 07:12:40
218.92.0.249	attackspam	2020-08-23T00:56:19.488553centos sshd[8863]: Failed password for root from 218.92.0.249 port 4819 ssh2 2020-08-23T00:56:22.984380centos sshd[8863]: Failed password for root from 218.92.0.249 port 4819 ssh2 2020-08-23T00:56:26.010690centos sshd[8863]: Failed password for root from 218.92.0.249 port 4819 ssh2 ...	2020-08-23 06:58:34
65.49.10.98	attackbotsspam	Unauthorized connection attempt from IP address 65.49.10.98 on Port 445(SMB)	2020-08-23 07:08:13
50.63.161.42	attackbotsspam	50.63.161.42 - - [22/Aug/2020:22:16:15 +0100] "POST /wp-login.php HTTP/1.1" 200 2448 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 50.63.161.42 - - [22/Aug/2020:22:16:22 +0100] "POST /wp-login.php HTTP/1.1" 200 2428 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 50.63.161.42 - - [22/Aug/2020:22:16:25 +0100] "POST /wp-login.php HTTP/1.1" 200 2428 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-23 07:04:20

最近上报的IP列表

61.203.109.91	194.8.144.222	178.34.58.225	36.238.33.167
112.106.68.49	118.168.78.134	117.94.117.50	167.100.110.23
114.96.45.106	45.115.171.188	198.27.86.7	189.127.34.5
60.212.102.150	218.28.59.130	1.169.195.63	176.112.172.203
141.212.123.31	123.125.125.248	191.53.220.196	167.100.103.160