40.131.137.130

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Windstream Communications LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Aug 4 04:01:43 MK-Soft-VM6 sshd\[1681\]: Invalid user pi from 40.131.137.130 port 60504 Aug 4 04:01:43 MK-Soft-VM6 sshd\[1681\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.131.137.130 Aug 4 04:01:44 MK-Soft-VM6 sshd\[1683\]: Invalid user pi from 40.131.137.130 port 60508 ...	2019-08-04 15:40:09

类型

评论内容

时间

attackbotsspam

Aug  4 04:01:43 MK-Soft-VM6 sshd\[1681\]: Invalid user pi from 40.131.137.130 port 60504
Aug  4 04:01:43 MK-Soft-VM6 sshd\[1681\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.131.137.130
Aug  4 04:01:44 MK-Soft-VM6 sshd\[1683\]: Invalid user pi from 40.131.137.130 port 60508
...

2019-08-04 15:40:09

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 40.131.137.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19655
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;40.131.137.130.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080400 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Aug 04 15:39:54 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

130.137.131.40.in-addr.arpa domain name pointer h130.137.131.40.static.ip.windstream.net.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
130.137.131.40.in-addr.arpa	name = h130.137.131.40.static.ip.windstream.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
61.221.64.6	attackbotsspam	2020-07-29 14:49:34,210 fail2ban.actions [18606]: NOTICE [sshd] Ban 61.221.64.6 2020-07-29 15:07:33,230 fail2ban.actions [18606]: NOTICE [sshd] Ban 61.221.64.6 2020-07-29 15:25:40,460 fail2ban.actions [18606]: NOTICE [sshd] Ban 61.221.64.6 2020-07-29 15:43:46,552 fail2ban.actions [18606]: NOTICE [sshd] Ban 61.221.64.6 2020-07-29 16:02:01,633 fail2ban.actions [18606]: NOTICE [sshd] Ban 61.221.64.6 ...	2020-09-05 00:30:01
49.37.10.201	attackbotsspam	Sep 2 18:52:07 apex-mail dovecot-auth: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty= ruser= rhost=49.37.10.201 Sep 2 18:52:10 apex-mail dovecot-auth: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty= ruser= rhost=49.37.10.201 Sep 2 18:52:14 apex-mail dovecot-auth: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty= ruser= rhost=49.37.10.201 Sep 2 18:52:18 apex-mail dovecot-auth: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty= ruser= rhost=49.37.10.201 Sep 2 18:52:22 apex-mail dovecot-auth: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty= ruser= rhost=49.37.10.201 Sep 2 18:52:26 apex-mail dovecot-auth: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty= ruser= rhost=49.37.10.201 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=49.37.10.201	2020-09-05 00:45:37
112.213.119.67	attack	TCP (SYN) 112.213.119.67:50485 -> port 445, len 52	2020-09-05 01:04:23
94.253.211.89	attack	Sep 3 18:47:05 mellenthin postfix/smtpd[20751]: NOQUEUE: reject: RCPT from cpe-94-253-211-89.st2.cable.xnet.hr[94.253.211.89]: 554 5.7.1 Service unavailable; Client host [94.253.211.89] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/94.253.211.89; from= to= proto=ESMTP helo=	2020-09-05 00:16:58
106.13.226.112	attack	Sep 4 09:39:44 h2646465 sshd[28981]: Invalid user 01 from 106.13.226.112 Sep 4 09:39:44 h2646465 sshd[28981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.112 Sep 4 09:39:44 h2646465 sshd[28981]: Invalid user 01 from 106.13.226.112 Sep 4 09:39:45 h2646465 sshd[28981]: Failed password for invalid user 01 from 106.13.226.112 port 40028 ssh2 Sep 4 09:45:29 h2646465 sshd[30266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.112 user=root Sep 4 09:45:32 h2646465 sshd[30266]: Failed password for root from 106.13.226.112 port 57834 ssh2 Sep 4 09:46:23 h2646465 sshd[30320]: Invalid user administrator from 106.13.226.112 Sep 4 09:46:23 h2646465 sshd[30320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.226.112 Sep 4 09:46:23 h2646465 sshd[30320]: Invalid user administrator from 106.13.226.112 Sep 4 09:46:24 h2646465 sshd[30320]: Failed password for inval	2020-09-05 00:20:12
176.194.188.66	attack	445/tcp [2020-09-03]1pkt	2020-09-05 00:24:12
218.92.0.145	attackbotsspam	Fail2Ban Ban Triggered (2)	2020-09-05 00:14:26
188.146.184.107	spambotsattack	ip nieznany	2020-09-05 00:23:38
74.120.14.33	attack	Automatic report - Banned IP Access	2020-09-05 00:58:48
192.42.116.25	attack	Sep 4 17:06:41 neko-world sshd[16536]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.42.116.25 user=root Sep 4 17:06:44 neko-world sshd[16536]: Failed password for invalid user root from 192.42.116.25 port 52900 ssh2	2020-09-05 00:36:23
183.166.148.81	attackbots	Sep 3 19:30:44 srv01 postfix/smtpd\[27726\]: warning: unknown\[183.166.148.81\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 3 19:34:10 srv01 postfix/smtpd\[27616\]: warning: unknown\[183.166.148.81\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 3 19:37:35 srv01 postfix/smtpd\[30120\]: warning: unknown\[183.166.148.81\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 3 19:37:47 srv01 postfix/smtpd\[30120\]: warning: unknown\[183.166.148.81\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 3 19:44:27 srv01 postfix/smtpd\[32742\]: warning: unknown\[183.166.148.81\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-05 00:40:51
124.207.165.138	attack	Sep 4 17:45:50 vps sshd[424]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.207.165.138 Sep 4 17:45:52 vps sshd[424]: Failed password for invalid user nsp from 124.207.165.138 port 57838 ssh2 Sep 4 17:54:51 vps sshd[855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.207.165.138 ...	2020-09-05 00:25:03
167.114.237.46	attack	Invalid user admin5 from 167.114.237.46 port 34614	2020-09-05 00:37:06
138.68.95.204	attackspam	Sep 4 17:26:21 vmd26974 sshd[2500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.95.204 Sep 4 17:26:23 vmd26974 sshd[2500]: Failed password for invalid user chen from 138.68.95.204 port 36988 ssh2 ...	2020-09-05 01:03:47
51.77.135.89	attackbotsspam	2020-09-04T18:23:25+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-09-05 00:49:22

最近上报的IP列表

94.49.215.255	190.240.95.158	62.234.68.215	138.242.6.49
45.78.156.55	112.121.178.47	52.88.32.242	69.130.134.186
34.94.151.252	101.128.236.8	45.199.189.122	113.107.234.222
66.249.64.216	61.228.171.205	196.75.153.248	177.35.97.228
80.24.155.224	184.82.153.167	86.34.182.50	175.141.245.33