2.143.130.116 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Spain

运营商(isp): Telefonica de Espana Sau

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Automatic report - Port Scan Attack	2019-12-22 22:31:56

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.143.130.116
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6560
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.143.130.116.			IN	A

;; AUTHORITY SECTION:
.			429	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122200 1800 900 604800 86400

;; Query time: 111 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 22 22:31:52 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

116.130.143.2.in-addr.arpa domain name pointer 116.red-2-143-130.dynamicip.rima-tde.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
116.130.143.2.in-addr.arpa	name = 116.red-2-143-130.dynamicip.rima-tde.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
64.190.202.174	attack	Lines containing failures of 64.190.202.174 Jan 10 16:52:24 kmh-vmh-001-fsn05 sshd[6945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.190.202.174 user=r.r Jan 10 16:52:26 kmh-vmh-001-fsn05 sshd[6945]: Failed password for r.r from 64.190.202.174 port 40164 ssh2 Jan 10 16:52:26 kmh-vmh-001-fsn05 sshd[6945]: Received disconnect from 64.190.202.174 port 40164:11: Bye Bye [preauth] Jan 10 16:52:26 kmh-vmh-001-fsn05 sshd[6945]: Disconnected from authenticating user r.r 64.190.202.174 port 40164 [preauth] Jan 10 17:05:50 kmh-vmh-001-fsn05 sshd[9233]: Invalid user nicoro from 64.190.202.174 port 36526 Jan 10 17:05:50 kmh-vmh-001-fsn05 sshd[9233]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.190.202.174 Jan 10 17:05:52 kmh-vmh-001-fsn05 sshd[9233]: Failed password for invalid user nicoro from 64.190.202.174 port 36526 ssh2 Jan 10 17:05:54 kmh-vmh-001-fsn05 sshd[9233]: Received disconnec........ ------------------------------	2020-01-11 18:48:41
54.39.44.47	attack	Jan 11 06:43:34 XXX sshd[48846]: Invalid user xbk from 54.39.44.47 port 41652	2020-01-11 18:40:18
120.92.153.47	attackspambots	2020-01-11T09:19:33.424145www postfix/smtpd[32490]: warning: unknown[120.92.153.47]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-01-11T09:19:44.222746www postfix/smtpd[32490]: warning: unknown[120.92.153.47]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-01-11T09:19:59.056039www postfix/smtpd[32490]: warning: unknown[120.92.153.47]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-01-11 18:51:37
84.1.30.70	attackbotsspam	Jan 11 07:17:31 ovpn sshd\[10354\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.1.30.70 user=root Jan 11 07:17:33 ovpn sshd\[10354\]: Failed password for root from 84.1.30.70 port 38416 ssh2 Jan 11 07:27:12 ovpn sshd\[12727\]: Invalid user www from 84.1.30.70 Jan 11 07:27:12 ovpn sshd\[12727\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.1.30.70 Jan 11 07:27:14 ovpn sshd\[12727\]: Failed password for invalid user www from 84.1.30.70 port 56672 ssh2	2020-01-11 18:57:28
142.93.39.29	attackspam	$f2bV_matches	2020-01-11 18:29:21
1.83.158.220	attackspambots	unauthorized connection attempt	2020-01-11 18:32:07
178.62.19.13	attackspambots	Jan 11 10:56:53 ovpn sshd\[15103\]: Invalid user specialk from 178.62.19.13 Jan 11 10:56:53 ovpn sshd\[15103\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.19.13 Jan 11 10:56:56 ovpn sshd\[15103\]: Failed password for invalid user specialk from 178.62.19.13 port 51640 ssh2 Jan 11 10:59:00 ovpn sshd\[15611\]: Invalid user nhe from 178.62.19.13 Jan 11 10:59:00 ovpn sshd\[15611\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.19.13	2020-01-11 18:41:34
117.4.163.246	attackspambots	Unauthorized connection attempt detected from IP address 117.4.163.246 to port 445	2020-01-11 18:51:03
41.93.32.88	attackspam	$f2bV_matches	2020-01-11 18:57:49
80.82.78.20	attackbotsspam	firewall-block, port(s): 39919/tcp, 44881/tcp, 60604/tcp, 60606/tcp	2020-01-11 18:43:27
106.12.222.252	attackbotsspam	Jan 11 06:46:29 localhost sshd\[11516\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.222.252 user=root Jan 11 06:46:30 localhost sshd\[11516\]: Failed password for root from 106.12.222.252 port 46826 ssh2 Jan 11 06:52:54 localhost sshd\[11820\]: Invalid user siegmar from 106.12.222.252 Jan 11 06:52:54 localhost sshd\[11820\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.222.252 Jan 11 06:52:56 localhost sshd\[11820\]: Failed password for invalid user siegmar from 106.12.222.252 port 46586 ssh2 ...	2020-01-11 18:28:14
165.49.37.139	attackspambots	Automatic report - Port Scan Attack	2020-01-11 19:09:31
80.173.177.76	attack	Lines containing failures of 80.173.177.76 Jan 8 21:27:50 nextcloud sshd[12151]: Invalid user test from 80.173.177.76 port 48024 Jan 8 21:27:50 nextcloud sshd[12151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.173.177.76 Jan 8 21:27:52 nextcloud sshd[12151]: Failed password for invalid user test from 80.173.177.76 port 48024 ssh2 Jan 8 21:27:52 nextcloud sshd[12151]: Received disconnect from 80.173.177.76 port 48024:11: Bye Bye [preauth] Jan 8 21:27:52 nextcloud sshd[12151]: Disconnected from invalid user test 80.173.177.76 port 48024 [preauth] Jan 8 22:01:32 nextcloud sshd[16556]: Invalid user nyj from 80.173.177.76 port 45502 Jan 8 22:01:32 nextcloud sshd[16556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.173.177.76 Jan 8 22:01:34 nextcloud sshd[16556]: Failed password for invalid user nyj from 80.173.177.76 port 45502 ssh2 Jan 8 22:01:34 nextcloud sshd[16556]: Rece........ ------------------------------	2020-01-11 18:58:58
195.112.197.19	attack	email spam	2020-01-11 18:28:36
117.208.175.62	attackspam	1578726097 - 01/11/2020 08:01:37 Host: 117.208.175.62/117.208.175.62 Port: 445 TCP Blocked	2020-01-11 19:03:41

最近上报的IP列表

103.60.27.168	142.54.166.178	95.78.183.156	58.147.183.105
106.243.2.244	202.78.201.157	45.238.24.38	192.161.121.66
181.129.129.74	27.72.80.126	1.55.187.141	36.228.196.1
8.2.142.48	5.114.39.245	30.58.162.178	123.83.137.62
101.231.126.114	41.232.158.44	32.14.186.3	23.228.67.242