142.4.3.21 - IPInfo

基本信息:

城市(city): Provo

省份(region): Utah

国家(country): United States

运营商(isp): Unified Layer

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	...	2020-02-02 04:29:58
attackbotsspam	Automatic report - SSH Brute-Force Attack	2019-10-28 03:18:38

相同子网IP讨论:

IP	类型	评论内容	时间
142.4.3.153	attackbots	Malicious File Detected	2019-11-28 21:28:30
142.4.31.86	attack	Nov 14 23:48:07 wbs sshd\[10832\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142-4-31-86.unifiedlayer.com user=root Nov 14 23:48:09 wbs sshd\[10832\]: Failed password for root from 142.4.31.86 port 49736 ssh2 Nov 14 23:51:50 wbs sshd\[11152\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142-4-31-86.unifiedlayer.com user=root Nov 14 23:51:52 wbs sshd\[11152\]: Failed password for root from 142.4.31.86 port 58794 ssh2 Nov 14 23:55:37 wbs sshd\[11467\]: Invalid user ailton from 142.4.31.86	2019-11-15 18:10:31
142.4.31.86	attackbots	$f2bV_matches	2019-11-09 08:20:52
142.4.31.86	attack	Nov 5 10:33:09 icinga sshd[15973]: Failed password for root from 142.4.31.86 port 40270 ssh2 ...	2019-11-05 18:21:07
142.4.31.86	attackbotsspam	SSH/22 MH Probe, BF, Hack -	2019-11-04 20:53:30

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.4.3.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18276
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.4.3.21.			IN	A

;; AUTHORITY SECTION:
.			225	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102701 1800 900 604800 86400

;; Query time: 132 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 28 03:18:36 CST 2019
;; MSG SIZE  rcvd: 114

HOST信息:

21.3.4.142.in-addr.arpa domain name pointer server.signupchild.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
21.3.4.142.in-addr.arpa	name = server.signupchild.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
165.22.215.185	attack	Unauthorized connection attempt detected from IP address 165.22.215.185 to port 2220 [J]	2020-02-05 15:52:58
54.148.226.208	attack	02/05/2020-08:43:32.223742 54.148.226.208 Protocol: 6 SURICATA TLS invalid record/traffic	2020-02-05 15:48:08
218.234.198.105	attackbots	Unauthorized connection attempt detected from IP address 218.234.198.105 to port 2220 [J]	2020-02-05 16:01:01
121.206.84.102	attackspam	Unauthorized connection attempt detected from IP address 121.206.84.102 to port 23 [J]	2020-02-05 16:13:13
2.233.119.49	attackspambots	2020-2-5 8:47:22 AM: failed ssh attempt	2020-02-05 15:59:53
113.188.157.87	attackbots	Feb 5 05:51:57 grey postfix/smtpd\[15223\]: NOQUEUE: reject: RCPT from unknown\[113.188.157.87\]: 554 5.7.1 Service unavailable\; Client host \[113.188.157.87\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=113.188.157.87\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-05 15:41:55
177.126.141.171	attackbots	Unauthorized connection attempt detected from IP address 177.126.141.171 to port 5555 [J]	2020-02-05 16:07:01
201.192.136.240	attackbotsspam	Unauthorized connection attempt detected from IP address 201.192.136.240 to port 23 [J]	2020-02-05 15:50:39
168.70.93.65	attack	Unauthorized connection attempt detected from IP address 168.70.93.65 to port 5555 [J]	2020-02-05 16:09:41
180.190.245.198	attackspambots	Unauthorized connection attempt detected from IP address 180.190.245.198 to port 80 [J]	2020-02-05 15:52:22
185.172.35.84	attackbots	Unauthorized connection attempt detected from IP address 185.172.35.84 to port 23 [J]	2020-02-05 16:05:24
92.118.37.86	attack	firewall-block, port(s): 3490/tcp, 3922/tcp, 3983/tcp, 4002/tcp, 4197/tcp, 4342/tcp	2020-02-05 15:34:26
134.209.148.107	attack	Feb 5 08:23:23 legacy sshd[26454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.148.107 Feb 5 08:23:25 legacy sshd[26454]: Failed password for invalid user fieldserver from 134.209.148.107 port 33188 ssh2 Feb 5 08:27:22 legacy sshd[26729]: Failed password for root from 134.209.148.107 port 35040 ssh2 ...	2020-02-05 15:41:17
181.122.239.166	attackspambots	Unauthorized connection attempt detected from IP address 181.122.239.166 to port 80 [J]	2020-02-05 15:52:00
140.143.208.92	attackbotsspam	Unauthorized connection attempt detected from IP address 140.143.208.92 to port 2220 [J]	2020-02-05 15:53:49

最近上报的IP列表

172.74.109.100	217.68.215.46	218.178.32.20	217.68.215.45
70.75.157.189	45.50.233.33	217.165.79.210	217.68.215.43
154.16.150.159	217.68.215.5	56.3.167.181	162.171.102.102
93.92.200.201	213.198.224.188	216.53.209.154	196.194.54.126
217.68.215.42	204.156.65.243	120.139.198.229	68.236.168.107