190.121.231.130

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Venezuela (Bolivarian Republic of)

运营商(isp): Mango Center C.A.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	TCP (SYN) 190.121.231.130:64311 -> port 445, len 52	2020-09-04 04:04:35
attack	TCP (SYN) 190.121.231.130:64311 -> port 445, len 52	2020-09-03 19:44:10

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 190.121.231.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47425
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;190.121.231.130.		IN	A

;; AUTHORITY SECTION:
.			549	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020090300 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 03 19:44:04 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 130.231.121.190.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 130.231.121.190.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
212.200.89.249	attackspambots	Jul 15 08:41:22 localhost sshd\[26911\]: Invalid user fog from 212.200.89.249 port 51873 Jul 15 08:41:22 localhost sshd\[26911\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.200.89.249 Jul 15 08:41:24 localhost sshd\[26911\]: Failed password for invalid user fog from 212.200.89.249 port 51873 ssh2 Jul 15 08:46:27 localhost sshd\[27077\]: Invalid user openerp from 212.200.89.249 port 51360 Jul 15 08:46:27 localhost sshd\[27077\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.200.89.249 ...	2019-07-15 22:03:01
165.227.44.244	attack	WP Authentication failure	2019-07-15 22:22:54
167.99.3.40	attackspam	Jul 15 14:47:02 v22019058497090703 sshd[17222]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.3.40 Jul 15 14:47:05 v22019058497090703 sshd[17222]: Failed password for invalid user dasusr1 from 167.99.3.40 port 51559 ssh2 Jul 15 14:51:32 v22019058497090703 sshd[17502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.3.40 ...	2019-07-15 21:52:51
170.0.128.10	attack	Invalid user teamspeak3 from 170.0.128.10 port 38227	2019-07-15 21:57:05
139.219.10.63	attackspambots	Jul 15 16:03:25 rpi sshd[12435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.10.63 Jul 15 16:03:26 rpi sshd[12435]: Failed password for invalid user l4d2server from 139.219.10.63 port 54358 ssh2	2019-07-15 22:25:35
159.89.8.230	attackspambots	Jul 15 15:19:37 cp sshd[29158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.8.230	2019-07-15 22:40:37
183.2.137.119	attackbotsspam	Unauthorised access (Jul 15) SRC=183.2.137.119 LEN=40 TTL=240 ID=33200 TCP DPT=445 WINDOW=1024 SYN	2019-07-15 22:30:11
157.230.163.6	attackspam	Fail2Ban Ban Triggered	2019-07-15 22:11:36
46.94.39.225	attackbotsspam	ssh failed login	2019-07-15 21:58:04
122.199.225.53	attackbots	Jul 15 04:33:19 home sshd[13562]: Invalid user web from 122.199.225.53 port 41146 Jul 15 04:33:19 home sshd[13562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.225.53 Jul 15 04:33:19 home sshd[13562]: Invalid user web from 122.199.225.53 port 41146 Jul 15 04:33:22 home sshd[13562]: Failed password for invalid user web from 122.199.225.53 port 41146 ssh2 Jul 15 04:43:34 home sshd[13709]: Invalid user proftpd from 122.199.225.53 port 60930 Jul 15 04:43:34 home sshd[13709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.225.53 Jul 15 04:43:34 home sshd[13709]: Invalid user proftpd from 122.199.225.53 port 60930 Jul 15 04:43:36 home sshd[13709]: Failed password for invalid user proftpd from 122.199.225.53 port 60930 ssh2 Jul 15 04:49:19 home sshd[13832]: Invalid user dimitri from 122.199.225.53 port 59786 Jul 15 04:49:19 home sshd[13832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh r	2019-07-15 21:53:42
54.37.66.73	attack	Automatic report - Banned IP Access	2019-07-15 22:18:01
27.254.136.29	attackbotsspam	Jul 15 09:24:27 v22019058497090703 sshd[29194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.136.29 Jul 15 09:24:29 v22019058497090703 sshd[29194]: Failed password for invalid user admin from 27.254.136.29 port 53218 ssh2 Jul 15 09:30:32 v22019058497090703 sshd[29612]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.136.29 ...	2019-07-15 22:19:09
52.66.187.171	attack	52.66.187.171 - - [15/Jul/2019:14:35:47 +0200] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.66.187.171 - - [15/Jul/2019:14:35:47 +0200] "POST /wp-login.php HTTP/1.1" 200 1651 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.66.187.171 - - [15/Jul/2019:14:35:48 +0200] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.66.187.171 - - [15/Jul/2019:14:35:48 +0200] "POST /wp-login.php HTTP/1.1" 200 1629 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.66.187.171 - - [15/Jul/2019:14:35:49 +0200] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.66.187.171 - - [15/Jul/2019:14:35:49 +0200] "POST /wp-login.php HTTP/1.1" 200 1626 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-07-15 21:48:48
59.4.8.206	attackspam	Automatic report - Port Scan Attack	2019-07-15 21:44:32
139.99.9.2	attack	190 attacks over the last 10 minutes. Below is a sample of these recent attacks: July 15, 2019 1:21am 139.99.9.2 (Singapore) Blocked for Newspaper Premium Theme <= 6.7.1 - Privilege Escalation July 15, 2019 1:21am 139.99.9.2 (Singapore) Blocked for Yellow Pencil Visual Theme Customizer <= 7.1.9 Arbitrary Options Update in query string: yp_remote_get=test July 15, 2019 1:21am 139.99.9.2 (Singapore) Blocked for Yellow Pencil Visual Theme Customizer <= 7.1.9 Arbitrary Options Update in query string: yp_remote_get=test July 15, 2019 1:21am 139.99.9.2 (Singapore) Blocked for WP GDPR Compliance <= 1.4.2 - Update Any Option / Call Any Action in POST body: action=wpgdprc_process_action	2019-07-15 22:00:37

最近上报的IP列表

123.77.216.159	155.145.121.29	234.145.10.158	33.166.167.120
155.47.146.211	83.86.184.191	73.134.188.26	85.106.190.46
220.134.158.14	192.241.225.51	190.217.116.251	190.114.246.149
157.35.239.64	188.166.60.28	63.118.233.236	4.2.204.235
176.181.188.188	123.178.96.172	121.114.80.62	67.209.32.126