5.101.138.142 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United Kingdom

运营商(isp): UK Dedicated Servers Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Jan 25 16:52:50 mail sshd\[3471\]: Invalid user ubuntu from 5.101.138.142 Jan 25 16:52:59 mail sshd\[3478\]: Invalid user app from 5.101.138.142 Jan 25 16:53:11 mail sshd\[3498\]: Invalid user deploy from 5.101.138.142 Jan 25 16:53:23 mail sshd\[3500\]: Invalid user deployer from 5.101.138.142 Jan 25 16:53:36 mail sshd\[3503\]: Invalid user deploy from 5.101.138.142 ...	2020-01-26 01:53:12
attackbotsspam	2020-01-23T16:17:12.918677shield sshd\[26862\]: Invalid user postgres from 5.101.138.142 port 35124 2020-01-23T16:17:12.927456shield sshd\[26862\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.101.138.142 2020-01-23T16:17:14.790481shield sshd\[26862\]: Failed password for invalid user postgres from 5.101.138.142 port 35124 ssh2 2020-01-23T16:20:17.210108shield sshd\[28320\]: Invalid user postgres from 5.101.138.142 port 46174 2020-01-23T16:20:17.214790shield sshd\[28320\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.101.138.142	2020-01-24 03:03:13
attackspam	SSH authentication failure x 6 reported by Fail2Ban ...	2019-10-19 15:55:28

类型

评论内容

时间

attackbots

Jan 25 16:52:50 mail sshd\[3471\]: Invalid user ubuntu from 5.101.138.142
Jan 25 16:52:59 mail sshd\[3478\]: Invalid user app from 5.101.138.142
Jan 25 16:53:11 mail sshd\[3498\]: Invalid user deploy from 5.101.138.142
Jan 25 16:53:23 mail sshd\[3500\]: Invalid user deployer from 5.101.138.142
Jan 25 16:53:36 mail sshd\[3503\]: Invalid user deploy from 5.101.138.142
...

2020-01-26 01:53:12

attackbotsspam

2020-01-23T16:17:12.918677shield sshd\[26862\]: Invalid user postgres from 5.101.138.142 port 35124
2020-01-23T16:17:12.927456shield sshd\[26862\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.101.138.142
2020-01-23T16:17:14.790481shield sshd\[26862\]: Failed password for invalid user postgres from 5.101.138.142 port 35124 ssh2
2020-01-23T16:20:17.210108shield sshd\[28320\]: Invalid user postgres from 5.101.138.142 port 46174
2020-01-23T16:20:17.214790shield sshd\[28320\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.101.138.142

2020-01-24 03:03:13

attackspam

SSH authentication failure x 6 reported by Fail2Ban
...

2019-10-19 15:55:28

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.101.138.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45805
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.101.138.142.			IN	A

;; AUTHORITY SECTION:
.			591	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101900 1800 900 604800 86400

;; Query time: 204 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 19 15:55:22 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

142.138.101.5.in-addr.arpa domain name pointer no.rdns.ukservers.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
142.138.101.5.in-addr.arpa	name = no.rdns.ukservers.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
54.37.136.87	attackbots	Jan 1 16:38:15 localhost sshd\[8437\]: Invalid user supani from 54.37.136.87 port 44284 Jan 1 16:38:15 localhost sshd\[8437\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.136.87 Jan 1 16:38:17 localhost sshd\[8437\]: Failed password for invalid user supani from 54.37.136.87 port 44284 ssh2	2020-01-01 23:49:58
139.217.218.255	attackbots	Jan 1 08:51:50 dallas01 sshd[9308]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.218.255 Jan 1 08:51:52 dallas01 sshd[9308]: Failed password for invalid user puta from 139.217.218.255 port 56354 ssh2 Jan 1 08:57:41 dallas01 sshd[13741]: Failed password for daemon from 139.217.218.255 port 55612 ssh2	2020-01-01 23:48:01
222.186.180.130	attackspambots	Jan 1 16:30:44 MK-Soft-VM4 sshd[1477]: Failed password for root from 222.186.180.130 port 52133 ssh2 Jan 1 16:30:49 MK-Soft-VM4 sshd[1477]: Failed password for root from 222.186.180.130 port 52133 ssh2 ...	2020-01-01 23:31:44
202.129.210.59	attack	2020-01-01T15:53:28.442134centos sshd\[8772\]: Invalid user tay from 202.129.210.59 port 33164 2020-01-01T15:53:28.447992centos sshd\[8772\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.129.210.59 2020-01-01T15:53:30.871683centos sshd\[8772\]: Failed password for invalid user tay from 202.129.210.59 port 33164 ssh2	2020-01-01 23:45:31
45.136.109.122	attack	Triggered: repeated knocking on closed ports.	2020-01-01 23:30:28
46.38.144.117	attackbots	Too many connections or unauthorized access detected from Yankee banned ip	2020-01-01 23:29:12
197.116.30.133	attackbotsspam	Jan 1 15:53:49 grey postfix/smtpd\[24668\]: NOQUEUE: reject: RCPT from unknown\[197.116.30.133\]: 554 5.7.1 Service unavailable\; Client host \[197.116.30.133\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[197.116.30.133\]\; from=\ to=\ proto=ESMTP helo=\<\[197.116.30.133\]\> ...	2020-01-01 23:32:08
222.186.30.187	attack	Jan 1 10:54:07 linuxvps sshd\[58149\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.187 user=root Jan 1 10:54:09 linuxvps sshd\[58149\]: Failed password for root from 222.186.30.187 port 31865 ssh2 Jan 1 10:57:20 linuxvps sshd\[60284\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.187 user=root Jan 1 10:57:21 linuxvps sshd\[60284\]: Failed password for root from 222.186.30.187 port 52873 ssh2 Jan 1 10:57:23 linuxvps sshd\[60284\]: Failed password for root from 222.186.30.187 port 52873 ssh2	2020-01-01 23:59:20
198.211.120.59	attack	01/01/2020-16:47:03.015180 198.211.120.59 Protocol: 17 ET INFO Session Traversal Utilities for NAT (STUN Binding Response)	2020-01-02 00:00:40
194.96.86.30	attack	Jan 1 21:53:05 webhost01 sshd[1207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.96.86.30 ...	2020-01-01 23:58:32
54.162.224.134	attackspam	Unauthorized connection attempt detected from IP address 54.162.224.134 to port 8090	2020-01-02 00:01:28
84.76.125.85	attackbots	Repeated failed SSH attempt	2020-01-01 23:27:49
222.186.180.147	attack	Jan 1 16:30:17 vmanager6029 sshd\[3320\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.147 user=root Jan 1 16:30:18 vmanager6029 sshd\[3320\]: Failed password for root from 222.186.180.147 port 17134 ssh2 Jan 1 16:30:21 vmanager6029 sshd\[3320\]: Failed password for root from 222.186.180.147 port 17134 ssh2	2020-01-01 23:38:48
157.245.156.186	attack	Jan 1 21:52:59 webhost01 sshd[1194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.156.186 Jan 1 21:53:01 webhost01 sshd[1194]: Failed password for invalid user admin from 157.245.156.186 port 62945 ssh2 ...	2020-01-02 00:00:59
194.219.215.129	attack	Jan 1 15:53:09 grey postfix/smtpd\[23591\]: NOQUEUE: reject: RCPT from 194.219.215.129.dsl.dyn.forthnet.gr\[194.219.215.129\]: 554 5.7.1 Service unavailable\; Client host \[194.219.215.129\] blocked using dul.dnsbl.sorbs.net\; Dynamic IP Addresses See: http://www.sorbs.net/lookup.shtml\?194.219.215.129\; from=\ to=\ proto=ESMTP helo=\<194.219.215.129.dsl.dyn.forthnet.gr\> ...	2020-01-01 23:54:48

最近上报的IP列表

5.164.200.165	116.80.253.93	185.76.64.183	177.8.255.105
115.120.8.184	80.29.125.130	178.143.172.162	14.161.23.168
125.161.106.243	5.140.129.27	176.107.130.111	182.76.74.86
162.248.245.73	146.158.240.204	125.212.201.6	5.196.132.117
154.126.210.29	189.69.95.219	154.16.214.112	35.166.96.12