107.155.12.138

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Zenlayer Inc

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	2020-06-19T14:06:06.032546vt2.awoom.xyz sshd[6653]: Invalid user ftpuser from 107.155.12.138 port 51338 2020-06-19T14:06:06.036741vt2.awoom.xyz sshd[6653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.155.12.138 2020-06-19T14:06:06.032546vt2.awoom.xyz sshd[6653]: Invalid user ftpuser from 107.155.12.138 port 51338 2020-06-19T14:06:08.115395vt2.awoom.xyz sshd[6653]: Failed password for invalid user ftpuser from 107.155.12.138 port 51338 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=107.155.12.138	2020-06-20 03:40:15

类型

评论内容

时间

attack

2020-06-19T14:06:06.032546vt2.awoom.xyz sshd[6653]: Invalid user ftpuser from 107.155.12.138 port 51338
2020-06-19T14:06:06.036741vt2.awoom.xyz sshd[6653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.155.12.138
2020-06-19T14:06:06.032546vt2.awoom.xyz sshd[6653]: Invalid user ftpuser from 107.155.12.138 port 51338
2020-06-19T14:06:08.115395vt2.awoom.xyz sshd[6653]: Failed password for invalid user ftpuser from 107.155.12.138 port 51338 ssh2


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=107.155.12.138

2020-06-20 03:40:15

相同子网IP讨论:

IP	类型	评论内容	时间
107.155.12.140	attackspam	Jul 12 22:52:05 abendstille sshd\[6311\]: Invalid user ubuntu from 107.155.12.140 Jul 12 22:52:05 abendstille sshd\[6311\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.155.12.140 Jul 12 22:52:07 abendstille sshd\[6311\]: Failed password for invalid user ubuntu from 107.155.12.140 port 42104 ssh2 Jul 12 22:55:28 abendstille sshd\[9877\]: Invalid user matrix from 107.155.12.140 Jul 12 22:55:28 abendstille sshd\[9877\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.155.12.140 ...	2020-07-13 04:56:13
107.155.12.140	attackbots	leo_www	2020-06-22 16:16:56
107.155.12.140	attackbotsspam	Unauthorized access or intrusion attempt detected from Thor banned IP	2020-06-19 04:11:56
107.155.12.140	attackspam	Jun 18 06:58:30 DAAP sshd[21093]: Invalid user webnet from 107.155.12.140 port 43114 Jun 18 06:58:30 DAAP sshd[21093]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.155.12.140 Jun 18 06:58:30 DAAP sshd[21093]: Invalid user webnet from 107.155.12.140 port 43114 Jun 18 06:58:32 DAAP sshd[21093]: Failed password for invalid user webnet from 107.155.12.140 port 43114 ssh2 Jun 18 07:02:12 DAAP sshd[21151]: Invalid user friends from 107.155.12.140 port 43262 ...	2020-06-18 15:45:03
107.155.12.140	attack	SSH brute-force: detected 6 distinct username(s) / 14 distinct password(s) within a 24-hour window.	2020-06-13 15:16:45

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 107.155.12.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62506
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;107.155.12.138.			IN	A

;; AUTHORITY SECTION:
.			336	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061901 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 20 03:40:12 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 138.12.155.107.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.12.155.107.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
177.36.51.47	attack	23/tcp [2020-02-17]1pkt	2020-02-18 00:23:02
110.49.71.246	attackspam	Feb 17 14:37:35 sshd\[14435\]: Invalid user git from 110.49.71.246Feb 17 14:37:37 sshd\[14435\]: Failed password for invalid user git from 110.49.71.246 port 52194 ssh2 ...	2020-02-18 00:24:34
176.113.115.252	attackbotsspam	02/17/2020-11:19:18.643201 176.113.115.252 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-02-18 00:19:56
159.65.152.201	attackbots	Feb 17 15:51:50 dedicated sshd[29220]: Invalid user ams from 159.65.152.201 port 55628	2020-02-18 00:41:32
222.186.175.182	attackspam	Feb 17 17:04:47 SilenceServices sshd[20243]: Failed password for root from 222.186.175.182 port 11512 ssh2 Feb 17 17:04:50 SilenceServices sshd[20243]: Failed password for root from 222.186.175.182 port 11512 ssh2 Feb 17 17:05:01 SilenceServices sshd[20243]: Failed password for root from 222.186.175.182 port 11512 ssh2 Feb 17 17:05:01 SilenceServices sshd[20243]: error: maximum authentication attempts exceeded for root from 222.186.175.182 port 11512 ssh2 [preauth]	2020-02-18 00:09:39
171.235.123.82	attackspam	5555/tcp [2020-02-17]1pkt	2020-02-18 00:14:30
213.57.155.138	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-18 00:47:53
89.44.177.15	attackbotsspam	8080/tcp [2020-02-17]1pkt	2020-02-18 00:38:27
54.69.218.79	attack	ET SCAN Zmap User-Agent (zgrab)	2020-02-18 00:35:09
46.242.61.184	attackspambots	Unauthorized connection attempt from IP address 46.242.61.184 on Port 445(SMB)	2020-02-18 00:35:33
94.156.137.117	attackspam	23/tcp [2020-02-17]1pkt	2020-02-18 00:30:32
80.82.77.33	attackspambots	02/17/2020-10:00:23.261179 80.82.77.33 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-02-18 00:06:49
68.183.19.26	attackbots	SSH login attempts.	2020-02-18 00:16:59
115.134.128.90	attackbotsspam	sshd jail - ssh hack attempt	2020-02-18 00:16:35
195.222.48.151	attackbots	Automatic report - Banned IP Access	2020-02-18 00:40:58

最近上报的IP列表

95.207.64.68	237.51.28.184	155.175.213.41	59.127.110.233
171.235.253.154	92.53.96.23	212.8.51.143	70.75.102.158
220.250.48.128	118.68.94.115	161.50.252.142	54.187.217.172
111.229.67.3	190.115.152.137	188.127.231.169	175.176.192.12
171.118.164.250	49.82.192.227	79.181.104.188	212.117.98.242