5.142.106.20 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Russian Federation

运营商(isp): OJSC North-West Telecom

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Port probing on unauthorized port 445	2020-08-05 03:44:45

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.142.106.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19178
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.142.106.20.			IN	A

;; AUTHORITY SECTION:
.			447	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020080401 1800 900 604800 86400

;; Query time: 37 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Aug 05 03:44:42 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

20.106.142.5.in-addr.arpa domain name pointer ip-020-106-142-5.pools.atnet.ru.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.106.142.5.in-addr.arpa	name = ip-020-106-142-5.pools.atnet.ru.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
187.92.96.242	attack	Aug 31 12:17:10 sachi sshd\[20296\]: Invalid user i from 187.92.96.242 Aug 31 12:17:10 sachi sshd\[20296\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.92.96.242 Aug 31 12:17:13 sachi sshd\[20296\]: Failed password for invalid user i from 187.92.96.242 port 45418 ssh2 Aug 31 12:23:16 sachi sshd\[20797\]: Invalid user git from 187.92.96.242 Aug 31 12:23:16 sachi sshd\[20797\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.92.96.242	2019-09-01 11:33:07
104.248.49.171	attackbotsspam	Sep 1 05:40:21 meumeu sshd[12185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 Sep 1 05:40:24 meumeu sshd[12185]: Failed password for invalid user darian from 104.248.49.171 port 53712 ssh2 Sep 1 05:44:20 meumeu sshd[12609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 ...	2019-09-01 11:55:27
188.165.238.65	attackspam	Invalid user alex from 188.165.238.65 port 43548	2019-09-01 11:08:54
42.112.185.242	attack	Aug 31 21:02:28 TORMINT sshd\[5182\]: Invalid user admin from 42.112.185.242 Aug 31 21:02:28 TORMINT sshd\[5182\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.185.242 Aug 31 21:02:30 TORMINT sshd\[5182\]: Failed password for invalid user admin from 42.112.185.242 port 40898 ssh2 ...	2019-09-01 11:12:00
190.7.128.74	attack	Aug 31 20:13:53 Tower sshd[22011]: Connection from 190.7.128.74 port 39324 on 192.168.10.220 port 22 Aug 31 20:13:53 Tower sshd[22011]: Invalid user bot from 190.7.128.74 port 39324 Aug 31 20:13:53 Tower sshd[22011]: error: Could not get shadow information for NOUSER Aug 31 20:13:53 Tower sshd[22011]: Failed password for invalid user bot from 190.7.128.74 port 39324 ssh2 Aug 31 20:13:53 Tower sshd[22011]: Received disconnect from 190.7.128.74 port 39324:11: Bye Bye [preauth] Aug 31 20:13:53 Tower sshd[22011]: Disconnected from invalid user bot 190.7.128.74 port 39324 [preauth]	2019-09-01 11:54:01
104.238.97.230	attackbotsspam	Looking for resource vulnerabilities	2019-09-01 11:35:43
140.224.111.187	attack	Lines containing failures of 140.224.111.187 Aug 31 23:37:11 home sshd[8263]: Invalid user admin from 140.224.111.187 port 55763 Aug 31 23:37:11 home sshd[8263]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.224.111.187 Aug 31 23:37:13 home sshd[8263]: Failed password for invalid user admin from 140.224.111.187 port 55763 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=140.224.111.187	2019-09-01 11:40:19
2.88.152.128	attackspam	namecheap spam	2019-09-01 11:17:44
51.68.47.45	attackbotsspam	Aug 31 11:43:36 auw2 sshd\[29630\]: Invalid user deploy from 51.68.47.45 Aug 31 11:43:36 auw2 sshd\[29630\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.ip-51-68-47.eu Aug 31 11:43:38 auw2 sshd\[29630\]: Failed password for invalid user deploy from 51.68.47.45 port 53616 ssh2 Aug 31 11:47:26 auw2 sshd\[29960\]: Invalid user cyrus from 51.68.47.45 Aug 31 11:47:26 auw2 sshd\[29960\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.ip-51-68-47.eu	2019-09-01 11:07:18
157.65.245.2	attack	Chat Spam	2019-09-01 11:51:54
49.50.64.213	attackspam	Sep 1 03:59:41 MainVPS sshd[6613]: Invalid user uftp from 49.50.64.213 port 41634 Sep 1 03:59:41 MainVPS sshd[6613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.50.64.213 Sep 1 03:59:41 MainVPS sshd[6613]: Invalid user uftp from 49.50.64.213 port 41634 Sep 1 03:59:43 MainVPS sshd[6613]: Failed password for invalid user uftp from 49.50.64.213 port 41634 ssh2 Sep 1 04:04:30 MainVPS sshd[6944]: Invalid user purchase from 49.50.64.213 port 57520 ...	2019-09-01 11:38:39
1.129.109.120	attack	Aug 31 21:44:48 web8 sshd\[19821\]: Invalid user jhon from 1.129.109.120 Aug 31 21:44:48 web8 sshd\[19821\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.129.109.120 Aug 31 21:44:50 web8 sshd\[19821\]: Failed password for invalid user jhon from 1.129.109.120 port 61885 ssh2 Aug 31 21:46:39 web8 sshd\[20802\]: Invalid user sampath from 1.129.109.120 Aug 31 21:46:39 web8 sshd\[20802\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.129.109.120	2019-09-01 11:40:48
188.166.31.205	attackspambots	Invalid user brenda from 188.166.31.205 port 53287	2019-09-01 11:55:03
164.132.24.138	attackbots	2019-09-01T00:18:31.393890wiz-ks3 sshd[4457]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.24.138 user=root 2019-09-01T00:18:33.203896wiz-ks3 sshd[4457]: Failed password for root from 164.132.24.138 port 36066 ssh2 2019-09-01T00:30:46.643845wiz-ks3 sshd[4485]: Invalid user spice from 164.132.24.138 port 34165 2019-09-01T00:30:46.645911wiz-ks3 sshd[4485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.24.138 2019-09-01T00:30:46.643845wiz-ks3 sshd[4485]: Invalid user spice from 164.132.24.138 port 34165 2019-09-01T00:30:48.355864wiz-ks3 sshd[4485]: Failed password for invalid user spice from 164.132.24.138 port 34165 ssh2 2019-09-01T00:39:52.907781wiz-ks3 sshd[4509]: Invalid user git from 164.132.24.138 port 57239 2019-09-01T00:39:52.909857wiz-ks3 sshd[4509]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.24.138 2019-09-01T00:39:52.907781wiz-ks3 sshd[4509]: Invali	2019-09-01 11:49:35
113.190.218.91	attackbots	"Fail2Ban detected SSH brute force attempt"	2019-09-01 11:09:52

最近上报的IP列表

176.152.104.234	74.237.131.194	106.180.135.183	237.76.248.161
211.105.26.80	200.185.1.108	206.5.137.228	106.102.19.219
95.169.13.22	188.166.246.9	134.122.53.154	44.80.39.133
176.96.138.175	84.78.91.2	209.127.18.229	179.156.3.30
187.160.77.247	174.106.33.85	9.122.66.219	91.76.9.71