142.54.168.234

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
142.54.168.174	attackbotsspam	142.54.168.174 - - \[19/Nov/2019:07:05:28 +0000\] "POST /wp-login.php HTTP/1.1" 200 4358 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 142.54.168.174 - - \[19/Nov/2019:07:05:28 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2019-11-19 16:56:54
142.54.168.174	attack	142.54.168.174 - - [13/Oct/2019:13:51:35 +0200] "GET /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.54.168.174 - - [13/Oct/2019:13:51:36 +0200] "POST /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.54.168.174 - - [13/Oct/2019:13:51:36 +0200] "GET /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.54.168.174 - - [13/Oct/2019:13:51:37 +0200] "POST /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.54.168.174 - - [13/Oct/2019:13:51:37 +0200] "GET /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.54.168.174 - - [13/Oct/2019:13:51:38 +0200] "POST /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-10-13 23:42:01

类型

评论内容

时间

142.54.168.174

attackbotsspam

142.54.168.174 - - \[19/Nov/2019:07:05:28 +0000\] "POST /wp-login.php HTTP/1.1" 200 4358 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
142.54.168.174 - - \[19/Nov/2019:07:05:28 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
...

2019-11-19 16:56:54

142.54.168.174

attack

142.54.168.174 - - [13/Oct/2019:13:51:35 +0200] "GET /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
142.54.168.174 - - [13/Oct/2019:13:51:36 +0200] "POST /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
142.54.168.174 - - [13/Oct/2019:13:51:36 +0200] "GET /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
142.54.168.174 - - [13/Oct/2019:13:51:37 +0200] "POST /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
142.54.168.174 - - [13/Oct/2019:13:51:37 +0200] "GET /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
142.54.168.174 - - [13/Oct/2019:13:51:38 +0200] "POST /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...

2019-10-13 23:42:01

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.54.168.234
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7942
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.54.168.234.			IN	A

;; AUTHORITY SECTION:
.			423	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 09:41:42 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

234.168.54.142.in-addr.arpa domain name pointer triagecozy.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
234.168.54.142.in-addr.arpa	name = triagecozy.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
158.69.120.84	attackspambots	Muieblackcat Scanner Remote Code Injection Vulnerability, PTR: ns520627.ip-158-69-120.net.	2019-10-11 23:09:54
77.247.108.77	attack	10/11/2019-17:29:05.648718 77.247.108.77 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 74	2019-10-11 23:32:59
51.83.69.78	attackbotsspam	Oct 11 12:42:18 web8 sshd\[25716\]: Invalid user Docteur1@3 from 51.83.69.78 Oct 11 12:42:18 web8 sshd\[25716\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.69.78 Oct 11 12:42:21 web8 sshd\[25716\]: Failed password for invalid user Docteur1@3 from 51.83.69.78 port 50248 ssh2 Oct 11 12:46:30 web8 sshd\[27632\]: Invalid user Human2017 from 51.83.69.78 Oct 11 12:46:30 web8 sshd\[27632\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.69.78	2019-10-11 23:10:41
46.101.142.17	attackspam	Oct 9 08:04:18 rb06 sshd[5227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.142.17 user=r.r Oct 9 08:04:19 rb06 sshd[5227]: Failed password for r.r from 46.101.142.17 port 39902 ssh2 Oct 9 08:04:19 rb06 sshd[5227]: Received disconnect from 46.101.142.17: 11: Bye Bye [preauth] Oct 9 08:23:57 rb06 sshd[15483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.142.17 user=r.r Oct 9 08:24:00 rb06 sshd[15483]: Failed password for r.r from 46.101.142.17 port 54320 ssh2 Oct 9 08:24:00 rb06 sshd[15483]: Received disconnect from 46.101.142.17: 11: Bye Bye [preauth] Oct 9 08:27:37 rb06 sshd[15809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.142.17 user=r.r Oct 9 08:27:39 rb06 sshd[15809]: Failed password for r.r from 46.101.142.17 port 39172 ssh2 Oct 9 08:27:39 rb06 sshd[15809]: Received disconnect from 46.101.142.17: 11: ........ -------------------------------	2019-10-11 23:21:18
118.24.178.224	attackspambots	Oct 11 13:56:16 legacy sshd[1473]: Failed password for root from 118.24.178.224 port 39690 ssh2 Oct 11 14:00:39 legacy sshd[1602]: Failed password for root from 118.24.178.224 port 40292 ssh2 ...	2019-10-11 23:15:54
185.148.241.86	attackbots	[Fri Oct 11 00:58:09 2019 GMT] "Choice HOME Warranty" [URIBL_INV], Subject: Choice home warranty - protection, repair & more ..	2019-10-11 23:13:25
149.202.59.85	attackspam	2019-10-11T14:09:23.969982hub.schaetter.us sshd\[16877\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.ip-149-202-59.eu user=root 2019-10-11T14:09:25.662786hub.schaetter.us sshd\[16877\]: Failed password for root from 149.202.59.85 port 47209 ssh2 2019-10-11T14:13:21.621869hub.schaetter.us sshd\[16945\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.ip-149-202-59.eu user=root 2019-10-11T14:13:23.320386hub.schaetter.us sshd\[16945\]: Failed password for root from 149.202.59.85 port 38641 ssh2 2019-10-11T14:17:24.851560hub.schaetter.us sshd\[16986\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.ip-149-202-59.eu user=root ...	2019-10-11 23:47:18
222.186.169.192	attackspam	Oct 11 20:19:22 gw1 sshd[29161]: Failed password for root from 222.186.169.192 port 6440 ssh2 Oct 11 20:19:38 gw1 sshd[29161]: error: maximum authentication attempts exceeded for root from 222.186.169.192 port 6440 ssh2 [preauth] ...	2019-10-11 23:36:40
40.77.167.81	attackbots	Automatic report - Banned IP Access	2019-10-11 23:22:41
115.94.204.156	attack	Oct 11 02:49:21 auw2 sshd\[22092\]: Invalid user Pa\$\$word@1234 from 115.94.204.156 Oct 11 02:49:21 auw2 sshd\[22092\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.94.204.156 Oct 11 02:49:23 auw2 sshd\[22092\]: Failed password for invalid user Pa\$\$word@1234 from 115.94.204.156 port 40024 ssh2 Oct 11 02:54:15 auw2 sshd\[22507\]: Invalid user P@ssword01 from 115.94.204.156 Oct 11 02:54:15 auw2 sshd\[22507\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.94.204.156	2019-10-11 23:49:20
128.201.101.77	attack	Oct 11 17:12:45 localhost sshd\[22563\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.201.101.77 user=root Oct 11 17:12:47 localhost sshd\[22563\]: Failed password for root from 128.201.101.77 port 55732 ssh2 Oct 11 17:17:30 localhost sshd\[23558\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.201.101.77 user=root	2019-10-11 23:27:42
177.37.161.46	attack	Automatic report - Port Scan Attack	2019-10-11 23:42:54
31.0.221.234	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/31.0.221.234/ PL - 1H : (202) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : PL NAME ASN : ASN8374 IP : 31.0.221.234 CIDR : 31.0.0.0/15 PREFIX COUNT : 30 UNIQUE IP COUNT : 1321472 WYKRYTE ATAKI Z ASN8374 : 1H - 2 3H - 6 6H - 6 12H - 6 24H - 7 DateTime : 2019-10-11 13:58:56 INFO : SERVER - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery	2019-10-11 23:01:18
218.29.42.219	attack	Oct 11 16:00:18 bouncer sshd\[25728\]: Invalid user Star@2017 from 218.29.42.219 port 35639 Oct 11 16:00:18 bouncer sshd\[25728\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.29.42.219 Oct 11 16:00:21 bouncer sshd\[25728\]: Failed password for invalid user Star@2017 from 218.29.42.219 port 35639 ssh2 ...	2019-10-11 23:01:50
109.202.0.14	attack	Oct 11 05:39:49 web9 sshd\[5581\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.202.0.14 user=root Oct 11 05:39:51 web9 sshd\[5581\]: Failed password for root from 109.202.0.14 port 60298 ssh2 Oct 11 05:44:11 web9 sshd\[6179\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.202.0.14 user=root Oct 11 05:44:13 web9 sshd\[6179\]: Failed password for root from 109.202.0.14 port 41820 ssh2 Oct 11 05:48:21 web9 sshd\[6752\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.202.0.14 user=root	2019-10-11 23:50:32

最近上报的IP列表

142.54.164.106	142.54.170.130	142.54.171.186	142.54.173.170
142.54.177.226	142.54.166.42	142.54.176.242	142.54.178.147
142.54.177.26	142.54.176.98	142.54.178.202	118.96.92.254
142.54.179.133	142.54.180.10	142.54.181.114	142.54.183.74
142.54.182.139	142.54.183.82	142.54.179.72	142.54.179.98