142.157.190.23

基本信息:

城市(city): Montreal

省份(region): Quebec

国家(country): Canada

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.157.190.23
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16348
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.157.190.23.			IN	A

;; AUTHORITY SECTION:
.			303	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030402 1800 900 604800 86400

;; Query time: 34 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 05 04:52:57 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 23.190.157.142.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 23.190.157.142.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
185.209.0.91	attack	Jan 25 06:36:07 debian-2gb-nbg1-2 kernel: \[2189842.486446\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.209.0.91 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=40758 PROTO=TCP SPT=57162 DPT=5599 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-25 13:36:15
36.68.55.67	attackspam	unauthorized connection attempt	2020-01-25 13:54:08
213.32.75.112	attackbots	Jan 24 19:39:56 eddieflores sshd\[1964\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.75.112 user=root Jan 24 19:39:58 eddieflores sshd\[1964\]: Failed password for root from 213.32.75.112 port 36124 ssh2 Jan 24 19:43:02 eddieflores sshd\[2437\]: Invalid user odoo11 from 213.32.75.112 Jan 24 19:43:02 eddieflores sshd\[2437\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.75.112 Jan 24 19:43:05 eddieflores sshd\[2437\]: Failed password for invalid user odoo11 from 213.32.75.112 port 38610 ssh2	2020-01-25 13:56:00
27.191.209.93	attack	$f2bV_matches	2020-01-25 13:32:40
106.12.189.2	attack	Unauthorized connection attempt detected from IP address 106.12.189.2 to port 2220 [J]	2020-01-25 13:48:20
201.159.152.8	attack	slow and persistent scanner	2020-01-25 13:29:54
148.70.210.77	attackbotsspam	Unauthorized connection attempt detected from IP address 148.70.210.77 to port 2220 [J]	2020-01-25 13:56:25
185.176.27.122	attackbotsspam	01/25/2020-00:37:27.904229 185.176.27.122 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-01-25 13:48:43
122.152.215.13	attack	Jan 25 05:38:49 game-panel sshd[29928]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.152.215.13 Jan 25 05:38:51 game-panel sshd[29928]: Failed password for invalid user bots from 122.152.215.13 port 57626 ssh2 Jan 25 05:42:22 game-panel sshd[30146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.152.215.13	2020-01-25 14:02:18
210.242.249.129	attack	Unauthorized connection attempt detected from IP address 210.242.249.129 to port 23 [J]	2020-01-25 14:11:11
5.54.223.67	attackspam	MIRAI HOST Fri Jan 24 21:55:46 2020 - Child process 3508 handling connection Fri Jan 24 21:55:46 2020 - New connection from: 5.54.223.67:36723 Fri Jan 24 21:55:46 2020 - Sending data to client: [Login: ] Fri Jan 24 21:55:46 2020 - Got data: administrator Fri Jan 24 21:55:47 2020 - Sending data to client: [Password: ] Fri Jan 24 21:55:47 2020 - Got data: 1234 Fri Jan 24 21:55:49 2020 - Child 3509 granting shell Fri Jan 24 21:55:49 2020 - Child 3508 exiting Fri Jan 24 21:55:49 2020 - Sending data to client: [Logged in] Fri Jan 24 21:55:49 2020 - Sending data to client: [Welcome to MX990 Embedded Linux] Fri Jan 24 21:55:49 2020 - Sending data to client: [[root@dvrdvs /]# ] Fri Jan 24 21:55:50 2020 - Got data: enable system shell sh Fri Jan 24 21:55:50 2020 - Sending data to client: [Command not found] Fri Jan 24 21:55:50 2020 - Sending data to client: [[root@dvrdvs /]# ] Fri Jan 24 21:55:50 2020 - Got data: cat /proc/mounts; /bin/busybox MRECX Fri Jan 24 21:55:50 2020 - Sending data to client	2020-01-25 14:09:57
35.201.243.170	attack	Unauthorized connection attempt detected from IP address 35.201.243.170 to port 2220 [J]	2020-01-25 13:43:58
123.21.103.157	attack	Jan 25 04:55:55 localhost sshd\[16741\]: Invalid user admin from 123.21.103.157 port 39018 Jan 25 04:55:55 localhost sshd\[16741\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.21.103.157 Jan 25 04:55:57 localhost sshd\[16741\]: Failed password for invalid user admin from 123.21.103.157 port 39018 ssh2 ...	2020-01-25 14:12:34
104.131.14.14	attackspam	Unauthorized connection attempt detected from IP address 104.131.14.14 to port 2220 [J]	2020-01-25 14:02:46
37.187.54.45	attackbots	Jan 25 06:50:56 OPSO sshd\[27245\]: Invalid user alex from 37.187.54.45 port 34904 Jan 25 06:50:56 OPSO sshd\[27245\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.54.45 Jan 25 06:50:58 OPSO sshd\[27245\]: Failed password for invalid user alex from 37.187.54.45 port 34904 ssh2 Jan 25 06:53:18 OPSO sshd\[27875\]: Invalid user redis from 37.187.54.45 port 57140 Jan 25 06:53:18 OPSO sshd\[27875\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.54.45	2020-01-25 14:03:13

最近上报的IP列表

4.35.140.20	66.251.159.234	80.134.137.219	141.226.232.13
2.31.201.57	54.198.76.105	13.234.87.61	173.181.85.75
151.70.27.215	77.12.132.43	190.159.40.222	134.187.3.35
201.179.12.121	218.112.235.152	180.164.51.39	32.40.49.234
206.189.35.138	184.217.73.207	116.30.178.27	117.122.211.82