79.139.54.130 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 79.139.54.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4337
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;79.139.54.130.			IN	A

;; AUTHORITY SECTION:
.			211	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022010801 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 09 10:38:31 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 130.54.139.79.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 130.54.139.79.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
1.173.47.129	attackspambots	Honeypot attack, port: 5555, PTR: 1-173-47-129.dynamic-ip.hinet.net.	2020-09-07 06:23:05
222.186.175.212	attackbots	2020-09-07T00:15:27.198267amanda2.illicoweb.com sshd\[46089\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.212 user=root 2020-09-07T00:15:29.134072amanda2.illicoweb.com sshd\[46089\]: Failed password for root from 222.186.175.212 port 11252 ssh2 2020-09-07T00:15:32.022055amanda2.illicoweb.com sshd\[46089\]: Failed password for root from 222.186.175.212 port 11252 ssh2 2020-09-07T00:15:35.324642amanda2.illicoweb.com sshd\[46089\]: Failed password for root from 222.186.175.212 port 11252 ssh2 2020-09-07T00:15:38.709373amanda2.illicoweb.com sshd\[46089\]: Failed password for root from 222.186.175.212 port 11252 ssh2 ...	2020-09-07 06:19:02
36.79.219.209	attack	TCP (SYN) 36.79.219.209:20401 -> port 445, len 52	2020-09-07 06:17:57
114.199.123.211	attackspambots	Port Scan detected from 114.199.123.211 (ID/Indonesia/Jakarta/Jakarta/-). 4 hits in the last 65 seconds	2020-09-07 05:55:51
140.143.210.92	attackspambots	Sep 6 23:33:34 gw1 sshd[17184]: Failed password for root from 140.143.210.92 port 55852 ssh2 ...	2020-09-07 06:00:54
113.230.211.180	attackbotsspam	Telnet Server BruteForce Attack	2020-09-07 06:25:34
141.98.10.210	attackbotsspam	no	2020-09-07 06:24:08
122.14.220.129	attackspambots	Sep 6 19:17:25 vmd17057 sshd[5814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.14.220.129 Sep 6 19:17:27 vmd17057 sshd[5814]: Failed password for invalid user tiger from 122.14.220.129 port 41842 ssh2 ...	2020-09-07 05:56:34
45.129.33.6	attackspambots	TCP (SYN) 45.129.33.6:58891 -> port 31297, len 44	2020-09-07 06:07:21
190.145.33.211	attackspambots	Sep 6 23:02:29 server sshd[18551]: Failed password for invalid user debian-spamd from 190.145.33.211 port 60122 ssh2 Sep 6 23:06:25 server sshd[24707]: Failed password for root from 190.145.33.211 port 37650 ssh2 Sep 6 23:10:20 server sshd[30617]: Failed password for root from 190.145.33.211 port 43412 ssh2	2020-09-07 06:24:43
173.252.95.35	attack	[Sun Sep 06 23:53:54.625273 2020] [:error] [pid 31435:tid 140397542881024] [client 173.252.95.35:42156] [client 173.252.95.35] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/depan/service-worker-v4.js"] [unique_id "X1UUIqKFltyTD6lc4lcewAAAOwQ"], referer: https://karangploso.jatim.bmkg.go.id/depan/service-worker-v4.js ...	2020-09-07 05:53:17
106.12.59.23	attackbots	SSH BruteForce Attack	2020-09-07 05:49:38
188.163.89.75	attack	188.163.89.75 - - [06/Sep/2020:22:49:52 +0100] "POST /wp-login.php HTTP/1.1" 200 1882 "https://leerichard.co.uk/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.143 Safari/537.36" 188.163.89.75 - - [06/Sep/2020:22:50:02 +0100] "POST /wp-login.php HTTP/1.1" 200 1882 "https://leerichard.co.uk/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.143 Safari/537.36" 188.163.89.75 - - [06/Sep/2020:22:52:02 +0100] "POST /wp-login.php HTTP/1.1" 200 1882 "https://leerichard.co.uk/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.143 Safari/537.36" ...	2020-09-07 05:52:41
222.186.180.6	attackspam	Sep 6 23:20:30 ns308116 sshd[13865]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.6 user=root Sep 6 23:20:32 ns308116 sshd[13865]: Failed password for root from 222.186.180.6 port 16762 ssh2 Sep 6 23:20:36 ns308116 sshd[13865]: Failed password for root from 222.186.180.6 port 16762 ssh2 Sep 6 23:20:39 ns308116 sshd[13865]: Failed password for root from 222.186.180.6 port 16762 ssh2 Sep 6 23:20:42 ns308116 sshd[13865]: Failed password for root from 222.186.180.6 port 16762 ssh2 ...	2020-09-07 06:24:29
61.145.178.134	attack	Sep 6 20:57:30 vpn01 sshd[18753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.145.178.134 Sep 6 20:57:32 vpn01 sshd[18753]: Failed password for invalid user 12qw from 61.145.178.134 port 51860 ssh2 ...	2020-09-07 06:13:38

最近上报的IP列表

85.117.214.17	87.237.233.151	202.8.121.228	187.199.132.195
52.74.123.100	21.61.154.103	76.126.108.108	94.243.166.55
64.233.173.186	101.111.65.128	84.43.65.158	149.154.175.100
86.243.57.117	92.223.124.189	216.58.205.129	104.18.35.184
202.118.163.68	141.240.182.50	126.247.6.54	103.59.142.145