142.4.213.149 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
142.4.213.28	attackspambots	142.4.213.28 - - [16/Sep/2020:06:24:32 +0100] "POST /wp-login.php HTTP/1.1" 200 1861 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [16/Sep/2020:06:24:33 +0100] "POST /wp-login.php HTTP/1.1" 200 1839 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [16/Sep/2020:06:24:34 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-16 21:21:48
142.4.213.28	attackbots	142.4.213.28 - - [16/Sep/2020:06:24:32 +0100] "POST /wp-login.php HTTP/1.1" 200 1861 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [16/Sep/2020:06:24:33 +0100] "POST /wp-login.php HTTP/1.1" 200 1839 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [16/Sep/2020:06:24:34 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-16 13:52:12
142.4.213.28	attack	Attempt to hack Wordpress Login, XMLRPC or other login	2020-09-16 05:38:24
142.4.213.28	attackbots	142.4.213.28 - - [03/Sep/2020:12:20:42 +0000] "POST /wp-login.php HTTP/1.1" 200 2077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.4.213.28 - - [03/Sep/2020:12:20:44 +0000] "POST /wp-login.php HTTP/1.1" 200 2055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.4.213.28 - - [03/Sep/2020:12:20:46 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.4.213.28 - - [03/Sep/2020:12:20:49 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.4.213.28 - - [03/Sep/2020:12:20:50 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-09-03 20:35:15
142.4.213.28	attackspam	142.4.213.28 - - [03/Sep/2020:05:10:37 +0100] "POST /wp-login.php HTTP/1.1" 200 4400 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [03/Sep/2020:05:10:38 +0100] "POST /wp-login.php HTTP/1.1" 200 4400 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [03/Sep/2020:05:10:40 +0100] "POST /wp-login.php HTTP/1.1" 200 4400 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-03 12:20:28
142.4.213.28	attackspambots	142.4.213.28 - - [02/Sep/2020:22:25:28 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [02/Sep/2020:22:25:29 +0200] "POST /wp-login.php HTTP/1.1" 200 1819 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [02/Sep/2020:22:25:30 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [02/Sep/2020:22:25:31 +0200] "POST /wp-login.php HTTP/1.1" 200 1796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [02/Sep/2020:22:25:31 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [02/Sep/2020:22:25:32 +0200] "POST /wp-login.php HTTP/1.1" 200 1797 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/6 ...	2020-09-03 04:39:06
142.4.213.12	attack	142.4.213.12 - - [30/Aug/2020:13:35:03 +0200] "POST //xmlrpc.php HTTP/1.1" 403 1031 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" 142.4.213.12 - - [30/Aug/2020:13:35:03 +0200] "POST //xmlrpc.php HTTP/1.1" 403 1031 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" ...	2020-08-30 19:50:04
142.4.213.28	attackbots	142.4.213.28 - - [29/Aug/2020:01:57:44 +0200] "POST /xmlrpc.php HTTP/1.1" 403 613 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [29/Aug/2020:01:58:58 +0200] "POST /xmlrpc.php HTTP/1.1" 403 461 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-29 08:05:32
142.4.213.28	attackbotsspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-08-29 00:29:32
142.4.213.12	attackbots	Automatic report - XMLRPC Attack	2020-08-27 20:09:58
142.4.213.28	attackspam	142.4.213.28 - - [17/Aug/2020:05:57:36 +0200] "GET /wp-login.php HTTP/1.1" 200 8775 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [17/Aug/2020:05:57:38 +0200] "POST /wp-login.php HTTP/1.1" 200 9026 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [17/Aug/2020:05:57:39 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-17 16:02:02
142.4.213.28	attackbotsspam	142.4.213.28 - - [09/Aug/2020:00:41:47 +0100] "POST /wp-login.php HTTP/1.1" 200 2018 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [09/Aug/2020:00:41:49 +0100] "POST /wp-login.php HTTP/1.1" 200 1976 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [09/Aug/2020:00:41:50 +0100] "POST /wp-login.php HTTP/1.1" 200 2018 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-09 07:54:27
142.4.213.28	attackspambots	142.4.213.28 - - [06/Aug/2020:16:11:16 +0200] "GET /wp-login.php HTTP/1.1" 200 6310 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [06/Aug/2020:16:11:18 +0200] "POST /wp-login.php HTTP/1.1" 200 6561 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [06/Aug/2020:16:11:19 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-06 22:24:54
142.4.213.28	attackbots	142.4.213.28 - - [06/Aug/2020:07:15:57 +0100] "POST /wp-login.php HTTP/1.1" 200 1969 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [06/Aug/2020:07:15:59 +0100] "POST /wp-login.php HTTP/1.1" 200 1977 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [06/Aug/2020:07:15:59 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-06 16:21:11
142.4.213.48	attackspambots	www.handydirektreparatur.de 142.4.213.48 \[17/Aug/2019:10:55:04 +0200\] "POST /wp-login.php HTTP/1.1" 200 5665 "-" "Mozilla/5.0 \(Windows NT 6.1\; WOW64\; rv:61.0.1\) Gecko/20120101 Firefox/61.0.1" www.handydirektreparatur.de 142.4.213.48 \[17/Aug/2019:10:55:04 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4114 "-" "Mozilla/5.0 \(Windows NT 6.1\; WOW64\; rv:61.0.1\) Gecko/20120101 Firefox/61.0.1"	2019-08-17 20:34:35

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.4.213.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20356
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.4.213.149.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021901 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 02:39:01 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

149.213.4.142.in-addr.arpa domain name pointer ns504789.ip-142-4-213.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
149.213.4.142.in-addr.arpa	name = ns504789.ip-142-4-213.net.

Authoritative answers can be found from:

IP	类型	评论内容	时间
115.42.177.43	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-10 19:52:58
68.183.31.138	attackbotsspam	Jan 10 01:18:25 eddieflores sshd\[2683\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.31.138 user=root Jan 10 01:18:27 eddieflores sshd\[2683\]: Failed password for root from 68.183.31.138 port 43102 ssh2 Jan 10 01:20:48 eddieflores sshd\[2893\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.31.138 user=root Jan 10 01:20:51 eddieflores sshd\[2893\]: Failed password for root from 68.183.31.138 port 39940 ssh2 Jan 10 01:23:17 eddieflores sshd\[3119\]: Invalid user 6888 from 68.183.31.138	2020-01-10 19:42:31
91.185.193.101	attack	T: f2b ssh aggressive 3x	2020-01-10 19:44:38
137.59.15.210	attackbots	Unauthorized connection attempt from IP address 137.59.15.210 on Port 445(SMB)	2020-01-10 19:37:27
217.58.108.66	attackbotsspam	Jan 10 09:35:35 server sshd\[29380\]: Invalid user e from 217.58.108.66 Jan 10 09:35:35 server sshd\[29380\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host66-108-static.58-217-b.business.telecomitalia.it Jan 10 09:35:37 server sshd\[29380\]: Failed password for invalid user e from 217.58.108.66 port 47202 ssh2 Jan 10 14:12:45 server sshd\[845\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host66-108-static.58-217-b.business.telecomitalia.it user=root Jan 10 14:12:47 server sshd\[845\]: Failed password for root from 217.58.108.66 port 40064 ssh2 ...	2020-01-10 20:05:10
61.148.10.162	attackbots	1433/tcp 1433/tcp 1433/tcp... [2019-11-10/2020-01-08]31pkt,1pt.(tcp)	2020-01-10 20:05:53
218.92.0.191	attackbotsspam	01/10/2020-06:23:52.575686 218.92.0.191 Protocol: 6 ET SCAN Potential SSH Scan	2020-01-10 19:25:55
219.139.128.59	attackspambots	" "	2020-01-10 19:29:09
93.152.159.11	attackspambots	Jan 10 10:46:50 odroid64 sshd\[20160\]: Invalid user zf from 93.152.159.11 Jan 10 10:46:50 odroid64 sshd\[20160\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.152.159.11 ...	2020-01-10 19:31:34
203.172.66.227	attackbotsspam	$f2bV_matches	2020-01-10 19:33:36
79.6.229.236	attack	Unauthorized connection attempt detected from IP address 79.6.229.236 to port 81	2020-01-10 19:45:10
81.227.17.83	attackbots	(imapd) Failed IMAP login from 81.227.17.83 (SE/Sweden/81-227-17-83-no2800.tbcn.telia.com): 1 in the last 3600 secs	2020-01-10 20:04:50
111.68.98.152	attackspam	<6 unauthorized SSH connections	2020-01-10 19:52:13
109.107.178.203	attackbotsspam	1433/tcp 445/tcp... [2019-11-12/2020-01-10]5pkt,2pt.(tcp)	2020-01-10 19:46:23
95.9.61.234	attackbotsspam	37215/tcp 23/tcp 23/tcp [2019-12-22/2020-01-10]3pkt	2020-01-10 19:41:40

最近上报的IP列表

210.194.86.188	220.78.242.128	135.28.234.146	192.162.239.192
194.75.3.37	170.39.86.25	187.189.24.204	197.78.104.250
223.126.42.55	242.89.178.204	136.197.200.187	14.90.116.9
249.201.3.204	135.219.224.54	208.251.207.224	184.217.126.245
172.47.20.29	101.224.70.167	96.243.168.243	243.128.55.238

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表