172.94.53.139 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): France

运营商(isp): Secure Internet LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	$f2bV_matches	2020-05-02 18:38:12
attackbots	Sep 25 10:59:50 www4 sshd\[63352\]: Invalid user ny from 172.94.53.139 Sep 25 10:59:50 www4 sshd\[63352\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.94.53.139 Sep 25 10:59:52 www4 sshd\[63352\]: Failed password for invalid user ny from 172.94.53.139 port 35632 ssh2 ...	2019-09-25 17:58:47

类型

评论内容

时间

attack

$f2bV_matches

2020-05-02 18:38:12

attackbots

Sep 25 10:59:50 www4 sshd\[63352\]: Invalid user ny from 172.94.53.139
Sep 25 10:59:50 www4 sshd\[63352\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.94.53.139
Sep 25 10:59:52 www4 sshd\[63352\]: Failed password for invalid user ny from 172.94.53.139 port 35632 ssh2
...

2019-09-25 17:58:47

相同子网IP讨论:

IP	类型	评论内容	时间
172.94.53.203	attackbots	Tor exit node	2020-05-28 07:15:54
172.94.53.140	attackbots	SSH bruteforce	2020-05-05 05:50:15
172.94.53.133	attackbots	Apr 19 05:30:54 ns382633 sshd\[13938\]: Invalid user git from 172.94.53.133 port 49630 Apr 19 05:30:54 ns382633 sshd\[13938\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.94.53.133 Apr 19 05:30:56 ns382633 sshd\[13938\]: Failed password for invalid user git from 172.94.53.133 port 49630 ssh2 Apr 19 05:50:54 ns382633 sshd\[18085\]: Invalid user ftpuser from 172.94.53.133 port 58265 Apr 19 05:50:54 ns382633 sshd\[18085\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.94.53.133	2020-04-19 17:07:31
172.94.53.131	attackbotsspam	Apr 10 12:55:22 taivassalofi sshd[115317]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.94.53.131 Apr 10 12:55:24 taivassalofi sshd[115317]: Failed password for invalid user miusuario from 172.94.53.131 port 58857 ssh2 ...	2020-04-10 19:16:56
172.94.53.144	attackbots	DATE:2020-02-21 22:31:43,IP:172.94.53.144,MATCHES:10,PORT:ssh	2020-02-22 06:02:54
172.94.53.141	attack	Automatic report - SSH Brute-Force Attack	2020-02-18 21:50:15
172.94.53.154	attackbots	frenzy	2020-02-17 09:45:11
172.94.53.136	attack	Feb 15 06:18:05 firewall sshd[23982]: Invalid user robertson from 172.94.53.136 Feb 15 06:18:06 firewall sshd[23982]: Failed password for invalid user robertson from 172.94.53.136 port 55096 ssh2 Feb 15 06:24:11 firewall sshd[24265]: Invalid user okuda from 172.94.53.136 ...	2020-02-15 18:10:15
172.94.53.146	attackspambots	Automatic report - SSH Brute-Force Attack	2020-02-12 00:58:55
172.94.53.149	attackbotsspam	Jan 20 07:13:48 vtv3 sshd[2773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.94.53.149 Jan 20 07:13:50 vtv3 sshd[2773]: Failed password for invalid user amax from 172.94.53.149 port 59924 ssh2 Jan 20 07:20:07 vtv3 sshd[5682]: Failed password for root from 172.94.53.149 port 46116 ssh2 Jan 20 07:31:59 vtv3 sshd[11716]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.94.53.149 Jan 20 07:32:01 vtv3 sshd[11716]: Failed password for invalid user IEUser from 172.94.53.149 port 46748 ssh2 Jan 20 07:38:00 vtv3 sshd[14445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.94.53.149 Jan 20 07:49:47 vtv3 sshd[20007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.94.53.149 Jan 20 07:49:48 vtv3 sshd[20007]: Failed password for invalid user upload from 172.94.53.149 port 33585 ssh2 Jan 20 07:55:46 vtv3 sshd[23161]: pam_unix(sshd:auth): authe	2020-01-20 15:31:24
172.94.53.130	attackspambots	Unauthorized connection attempt detected from IP address 172.94.53.130 to port 2220 [J]	2020-01-07 17:25:28
172.94.53.141	attackbots	SSH bruteforce	2019-12-25 14:15:18
172.94.53.145	attack	Nov 27 12:49:21 sachi sshd\[4523\]: Invalid user robert from 172.94.53.145 Nov 27 12:49:21 sachi sshd\[4523\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.94.53.145 Nov 27 12:49:23 sachi sshd\[4523\]: Failed password for invalid user robert from 172.94.53.145 port 57519 ssh2 Nov 27 12:58:45 sachi sshd\[5266\]: Invalid user admin from 172.94.53.145 Nov 27 12:58:45 sachi sshd\[5266\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.94.53.145	2019-11-28 07:52:02
172.94.53.132	attackbots	Nov 23 20:08:39 hpm sshd\[7677\]: Invalid user server from 172.94.53.132 Nov 23 20:08:39 hpm sshd\[7677\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.94.53.132 Nov 23 20:08:42 hpm sshd\[7677\]: Failed password for invalid user server from 172.94.53.132 port 37753 ssh2 Nov 23 20:16:42 hpm sshd\[8409\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.94.53.132 user=root Nov 23 20:16:44 hpm sshd\[8409\]: Failed password for root from 172.94.53.132 port 56199 ssh2	2019-11-24 22:27:45
172.94.53.137	attack	Nov 22 06:41:52 tdfoods sshd\[8513\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.94.53.137 user=root Nov 22 06:41:54 tdfoods sshd\[8513\]: Failed password for root from 172.94.53.137 port 48860 ssh2 Nov 22 06:49:14 tdfoods sshd\[9118\]: Invalid user endy from 172.94.53.137 Nov 22 06:49:14 tdfoods sshd\[9118\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.94.53.137 Nov 22 06:49:16 tdfoods sshd\[9118\]: Failed password for invalid user endy from 172.94.53.137 port 38463 ssh2	2019-11-23 06:32:50

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 172.94.53.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21607
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;172.94.53.139.			IN	A

;; AUTHORITY SECTION:
.			538	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092500 1800 900 604800 86400

;; Query time: 129 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 25 17:58:44 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 139.53.94.172.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.53.94.172.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
193.32.160.155	attackbots	$f2bV_matches	2019-10-21 23:19:10
185.216.140.180	attackspambots	10/21/2019-11:03:55.487296 185.216.140.180 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-10-21 23:14:54
145.239.83.89	attack	Automatic report - Banned IP Access	2019-10-21 23:26:57
91.121.2.33	attack	Oct 21 15:51:04 ncomp sshd[636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.2.33 user=root Oct 21 15:51:06 ncomp sshd[636]: Failed password for root from 91.121.2.33 port 36546 ssh2 Oct 21 15:58:14 ncomp sshd[720]: Invalid user telnet from 91.121.2.33	2019-10-21 23:07:04
66.70.189.209	attackspam	Oct 21 10:45:15 xtremcommunity sshd\[746923\]: Invalid user mice123 from 66.70.189.209 port 48347 Oct 21 10:45:15 xtremcommunity sshd\[746923\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.189.209 Oct 21 10:45:17 xtremcommunity sshd\[746923\]: Failed password for invalid user mice123 from 66.70.189.209 port 48347 ssh2 Oct 21 10:49:22 xtremcommunity sshd\[746975\]: Invalid user Cent0s1234 from 66.70.189.209 port 39674 Oct 21 10:49:22 xtremcommunity sshd\[746975\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.189.209 ...	2019-10-21 23:09:12
27.128.224.5	attackbotsspam	Oct 21 18:31:56 lcl-usvr-02 sshd[25907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.128.224.5 user=root Oct 21 18:31:57 lcl-usvr-02 sshd[25907]: Failed password for root from 27.128.224.5 port 48120 ssh2 Oct 21 18:36:51 lcl-usvr-02 sshd[27042]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.128.224.5 user=root Oct 21 18:36:53 lcl-usvr-02 sshd[27042]: Failed password for root from 27.128.224.5 port 56124 ssh2 Oct 21 18:41:52 lcl-usvr-02 sshd[28294]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.128.224.5 user=root Oct 21 18:41:53 lcl-usvr-02 sshd[28294]: Failed password for root from 27.128.224.5 port 35902 ssh2 ...	2019-10-21 23:25:05
80.211.145.6	attack	RDP_Brute_Force	2019-10-21 23:39:50
123.52.16.178	attack	Port 1433 Scan	2019-10-21 23:18:27
218.246.5.116	attackbotsspam	Oct 21 13:41:50 lnxded64 sshd[3390]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.246.5.116	2019-10-21 23:29:16
118.127.10.152	attackbots	SSH brutforce	2019-10-21 22:59:53
193.70.1.220	attackspam	$f2bV_matches	2019-10-21 23:30:30
106.12.199.98	attack	Oct 21 15:52:02 MK-Soft-VM4 sshd[20706]: Failed password for root from 106.12.199.98 port 51204 ssh2 Oct 21 15:57:10 MK-Soft-VM4 sshd[23509]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.98 ...	2019-10-21 23:05:39
81.22.45.190	attackbotsspam	Oct 21 16:53:06 mc1 kernel: \[2955940.227352\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.190 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=1500 PROTO=TCP SPT=56783 DPT=20918 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 21 16:56:20 mc1 kernel: \[2956133.652398\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.190 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=28451 PROTO=TCP SPT=56783 DPT=20938 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 21 16:57:39 mc1 kernel: \[2956213.267212\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.190 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=32980 PROTO=TCP SPT=56783 DPT=20833 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-21 23:06:49
89.248.174.193	attackspambots	ET DROP Dshield Block Listed Source group 1 - port: 7071 proto: TCP cat: Misc Attack	2019-10-21 23:27:17
222.186.175.154	attack	2019-10-21T22:40:19.668551enmeeting.mahidol.ac.th sshd\[27940\]: User root from 222.186.175.154 not allowed because not listed in AllowUsers 2019-10-21T22:40:20.976029enmeeting.mahidol.ac.th sshd\[27940\]: Failed none for invalid user root from 222.186.175.154 port 9264 ssh2 2019-10-21T22:40:22.391468enmeeting.mahidol.ac.th sshd\[27940\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.154 user=root ...	2019-10-21 23:42:20

最近上报的IP列表

157.160.190.233	183.181.90.101	50.93.120.19	157.245.227.235
194.226.171.105	198.214.255.112	45.148.10.70	170.18.248.219
180.3.178.167	106.12.109.88	49.149.4.178	85.17.127.150
123.16.252.238	113.109.52.91	27.13.7.34	18.189.185.197
106.12.90.45	36.103.228.252	96.9.67.30	163.172.16.25