142.93.139.55 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Netherlands

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Web App Attack	2019-12-31 17:19:24
attackbotsspam	400 BAD REQUEST	2019-12-31 00:05:12

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.139.232	attack	...	2020-02-02 04:06:41
142.93.139.240	attackbotsspam	scan z	2019-11-04 16:06:31
142.93.139.119	attackspam	fire	2019-08-09 13:37:11
142.93.139.5	attack	proto=tcp . spt=33582 . dpt=25 . (listed on Blocklist de Jun 21) (164)	2019-06-22 22:15:39

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.139.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32850
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.139.55.			IN	A

;; AUTHORITY SECTION:
.			366	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019123000 1800 900 604800 86400

;; Query time: 943 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 31 00:05:06 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

55.139.93.142.in-addr.arpa domain name pointer min-f5888d0bb-3-prod.binaryedge.ninja.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
55.139.93.142.in-addr.arpa	name = min-f5888d0bb-3-prod.binaryedge.ninja.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
124.118.129.5	attackbotsspam	Dec 16 14:51:11 web1 sshd\[32755\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.118.129.5 user=root Dec 16 14:51:13 web1 sshd\[32755\]: Failed password for root from 124.118.129.5 port 40512 ssh2 Dec 16 14:58:33 web1 sshd\[1097\]: Invalid user origins from 124.118.129.5 Dec 16 14:58:33 web1 sshd\[1097\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.118.129.5 Dec 16 14:58:35 web1 sshd\[1097\]: Failed password for invalid user origins from 124.118.129.5 port 37648 ssh2	2019-12-17 09:15:24
113.62.176.97	attack	Dec 16 20:04:53 plusreed sshd[17555]: Invalid user cocain from 113.62.176.97 ...	2019-12-17 09:10:28
218.92.0.145	attackbotsspam	Dec 17 05:57:05 sd-53420 sshd\[10268\]: User root from 218.92.0.145 not allowed because none of user's groups are listed in AllowGroups Dec 17 05:57:05 sd-53420 sshd\[10268\]: Failed none for invalid user root from 218.92.0.145 port 15784 ssh2 Dec 17 05:57:06 sd-53420 sshd\[10268\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.145 user=root Dec 17 05:57:08 sd-53420 sshd\[10268\]: Failed password for invalid user root from 218.92.0.145 port 15784 ssh2 Dec 17 05:57:12 sd-53420 sshd\[10268\]: Failed password for invalid user root from 218.92.0.145 port 15784 ssh2 ...	2019-12-17 13:05:26
219.93.20.155	attackbots	Dec 17 03:25:20 server sshd\[21919\]: Invalid user claire from 219.93.20.155 Dec 17 03:25:20 server sshd\[21919\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.93.20.155 Dec 17 03:25:22 server sshd\[21919\]: Failed password for invalid user claire from 219.93.20.155 port 44979 ssh2 Dec 17 03:44:32 server sshd\[27111\]: Invalid user execwom from 219.93.20.155 Dec 17 03:44:32 server sshd\[27111\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.93.20.155 ...	2019-12-17 09:20:03
138.197.143.221	attack	--- report --- Dec 17 01:59:40 sshd: Connection from 138.197.143.221 port 45186 Dec 17 01:59:40 sshd: Invalid user nasrak from 138.197.143.221 Dec 17 01:59:43 sshd: Failed password for invalid user nasrak from 138.197.143.221 port 45186 ssh2 Dec 17 01:59:43 sshd: Received disconnect from 138.197.143.221: 11: Bye Bye [preauth]	2019-12-17 13:15:40
51.68.123.192	attackspam	Dec 17 05:51:21 cvbnet sshd[21564]: Failed password for root from 51.68.123.192 port 40684 ssh2 ...	2019-12-17 13:12:44
185.209.0.92	attackspambots	Dec 17 01:35:24 vmd46246 kernel: [454305.888685] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:fb:88:28:99:3a:4d:23:91:08:00 SRC=185.209.0.92 DST=144.91.112.181 LEN=40 TOS=0x00 PREC=0x00 TTL=251 ID=11264 PROTO=TCP SPT=58216 DPT=8389 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 17 01:42:54 vmd46246 kernel: [454755.971001] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:fb:88:28:99:3a:4d:23:91:08:00 SRC=185.209.0.92 DST=144.91.112.181 LEN=40 TOS=0x00 PREC=0x00 TTL=251 ID=58873 PROTO=TCP SPT=58216 DPT=7000 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 17 01:42:57 vmd46246 kernel: [454758.924044] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:fb:88:28:99:3a:4d:23:91:08:00 SRC=185.209.0.92 DST=144.91.112.181 LEN=40 TOS=0x00 PREC=0x00 TTL=251 ID=12757 PROTO=TCP SPT=58216 DPT=3383 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-12-17 09:08:47
36.83.189.31	attackspam	Unauthorized connection attempt detected from IP address 36.83.189.31 to port 445	2019-12-17 08:58:57
78.139.216.116	attackbots	Dec 17 04:46:15 thevastnessof sshd[25353]: Failed password for invalid user kasi from 78.139.216.116 port 34376 ssh2 ...	2019-12-17 13:06:38
222.186.175.161	attackspam	Dec 17 06:00:55 srv-ubuntu-dev3 sshd[111307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.161 user=root Dec 17 06:00:56 srv-ubuntu-dev3 sshd[111307]: Failed password for root from 222.186.175.161 port 51782 ssh2 Dec 17 06:01:00 srv-ubuntu-dev3 sshd[111307]: Failed password for root from 222.186.175.161 port 51782 ssh2 Dec 17 06:00:55 srv-ubuntu-dev3 sshd[111307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.161 user=root Dec 17 06:00:56 srv-ubuntu-dev3 sshd[111307]: Failed password for root from 222.186.175.161 port 51782 ssh2 Dec 17 06:01:00 srv-ubuntu-dev3 sshd[111307]: Failed password for root from 222.186.175.161 port 51782 ssh2 Dec 17 06:00:55 srv-ubuntu-dev3 sshd[111307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.161 user=root Dec 17 06:00:56 srv-ubuntu-dev3 sshd[111307]: Failed password for root from 222.186.1 ...	2019-12-17 13:09:08
222.186.190.92	attack	Dec 17 02:06:08 mail sshd\[19103\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.92 user=root Dec 17 02:06:10 mail sshd\[19103\]: Failed password for root from 222.186.190.92 port 49574 ssh2 Dec 17 02:06:27 mail sshd\[19105\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.92 user=root ...	2019-12-17 09:13:06
128.199.207.45	attackbots	Dec 17 04:46:29 goofy sshd\[4849\]: Invalid user rpm from 128.199.207.45 Dec 17 04:46:29 goofy sshd\[4849\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.207.45 Dec 17 04:46:31 goofy sshd\[4849\]: Failed password for invalid user rpm from 128.199.207.45 port 43994 ssh2 Dec 17 04:59:29 goofy sshd\[5555\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.207.45 user=sshd Dec 17 04:59:31 goofy sshd\[5555\]: Failed password for sshd from 128.199.207.45 port 37092 ssh2	2019-12-17 13:11:54
128.199.39.187	attack	"Fail2Ban detected SSH brute force attempt"	2019-12-17 09:21:12
134.175.152.157	attack	Invalid user cokol from 134.175.152.157 port 43888	2019-12-17 09:01:04
222.185.235.186	attackbots	[Aegis] @ 2019-12-16 23:19:23 0000 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-12-17 09:06:28

最近上报的IP列表

111.90.150.98	197.84.204.170	223.206.245.40	24.215.214.206
208.110.237.143	156.52.82.87	32.213.82.157	209.39.142.238
223.149.255.14	189.225.174.19	23.119.100.2	136.251.36.6
190.227.140.118	89.81.8.150	15.135.173.46	28.107.93.217
220.176.196.163	22.63.197.131	166.234.186.95	218.241.203.45