142.93.14.199 - IPInfo

基本信息:

城市(city): North Bergen

省份(region): New Jersey

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.14.123	attack	Malicious IP / Malware	2024-06-14 12:55:54
142.93.142.51	attackspam	SSH Bruteforce Attempt on Honeypot	2020-10-01 08:48:22
142.93.142.51	attack	Sep 30 15:24:37 vlre-nyc-1 sshd\[16561\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.142.51 user=root Sep 30 15:24:39 vlre-nyc-1 sshd\[16561\]: Failed password for root from 142.93.142.51 port 44634 ssh2 Sep 30 15:32:59 vlre-nyc-1 sshd\[16917\]: Invalid user server from 142.93.142.51 Sep 30 15:32:59 vlre-nyc-1 sshd\[16917\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.142.51 Sep 30 15:33:01 vlre-nyc-1 sshd\[16917\]: Failed password for invalid user server from 142.93.142.51 port 46860 ssh2 ...	2020-10-01 01:23:49
142.93.142.51	attackspambots	Sep 30 11:00:52 DAAP sshd[26619]: Invalid user test from 142.93.142.51 port 48914 Sep 30 11:00:52 DAAP sshd[26619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.142.51 Sep 30 11:00:52 DAAP sshd[26619]: Invalid user test from 142.93.142.51 port 48914 Sep 30 11:00:54 DAAP sshd[26619]: Failed password for invalid user test from 142.93.142.51 port 48914 ssh2 Sep 30 11:07:21 DAAP sshd[26802]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.142.51 user=root Sep 30 11:07:23 DAAP sshd[26802]: Failed password for root from 142.93.142.51 port 58030 ssh2 ...	2020-09-30 17:36:20
142.93.146.198	attack	firewall-block, port(s): 22/tcp	2020-09-01 06:45:18
142.93.149.57	attack	TCP (SYN) 142.93.149.57:39570 -> port 8080, len 44	2020-08-28 16:17:34
142.93.146.198	attackspambots	Aug 10 22:00:51 : SSH login attempts with invalid user	2020-08-13 08:40:12
142.93.149.57	attack	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: do-prod-us-north-clients-0106-9.do.binaryedge.ninja.	2020-08-11 08:50:11
142.93.143.85	attack	Trolling for resource vulnerabilities	2020-08-02 22:17:05
142.93.143.85	attackbots	142.93.143.85 - - [30/Jul/2020:12:29:59 +0200] "POST /xmlrpc.php HTTP/1.1" 403 21861 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.143.85 - - [30/Jul/2020:12:46:22 +0200] "POST /xmlrpc.php HTTP/1.1" 403 31 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-30 19:09:59
142.93.143.85	attack	142.93.143.85 - - [11/Jul/2020:15:50:31 +0200] "GET /wp-login.php HTTP/1.1" 200 6310 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.143.85 - - [11/Jul/2020:15:50:31 +0200] "POST /wp-login.php HTTP/1.1" 200 6561 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.143.85 - - [11/Jul/2020:15:50:32 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-07-11 22:01:26
142.93.143.85	attackspambots	142.93.143.85 has been banned for [WebApp Attack] ...	2020-07-05 16:37:18
142.93.148.12	attack	Automatic report - XMLRPC Attack	2020-06-24 06:23:24
142.93.140.242	attack	2020-06-17T00:03:36.067695mail.standpoint.com.ua sshd[31174]: Invalid user silvio from 142.93.140.242 port 43750 2020-06-17T00:03:36.070299mail.standpoint.com.ua sshd[31174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.140.242 2020-06-17T00:03:36.067695mail.standpoint.com.ua sshd[31174]: Invalid user silvio from 142.93.140.242 port 43750 2020-06-17T00:03:37.535152mail.standpoint.com.ua sshd[31174]: Failed password for invalid user silvio from 142.93.140.242 port 43750 ssh2 2020-06-17T00:06:56.112872mail.standpoint.com.ua sshd[31629]: Invalid user teamspeak3 from 142.93.140.242 port 45070 ...	2020-06-17 05:46:46
142.93.140.214	attackspambots	Jun 15 18:54:18 php1 sshd\[21780\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.140.214 user=root Jun 15 18:54:20 php1 sshd\[21780\]: Failed password for root from 142.93.140.214 port 35010 ssh2 Jun 15 18:57:30 php1 sshd\[21985\]: Invalid user lia from 142.93.140.214 Jun 15 18:57:30 php1 sshd\[21985\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.140.214 Jun 15 18:57:32 php1 sshd\[21985\]: Failed password for invalid user lia from 142.93.140.214 port 36260 ssh2	2020-06-16 13:11:36

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.14.199
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53494
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.14.199.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052100 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed May 22 01:53:11 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

199.14.93.142.in-addr.arpa domain name pointer 205644.cloudwaysapps.com.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
199.14.93.142.in-addr.arpa	name = 205644.cloudwaysapps.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
218.92.0.248	attackspambots	Jul 9 11:34:56 melroy-server sshd[24390]: Failed password for root from 218.92.0.248 port 44410 ssh2 Jul 9 11:35:02 melroy-server sshd[24390]: Failed password for root from 218.92.0.248 port 44410 ssh2 ...	2020-07-09 17:35:14
211.155.225.104	attackbotsspam	Jul 9 09:46:04 ms-srv sshd[4039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.155.225.104 Jul 9 09:46:05 ms-srv sshd[4039]: Failed password for invalid user Bertold from 211.155.225.104 port 51413 ssh2	2020-07-09 17:50:26
46.38.150.193	attackspam	Jul 9 11:34:11 srv01 postfix/smtpd\[2514\]: warning: unknown\[46.38.150.193\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 9 11:34:54 srv01 postfix/smtpd\[2514\]: warning: unknown\[46.38.150.193\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 9 11:35:36 srv01 postfix/smtpd\[17599\]: warning: unknown\[46.38.150.193\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 9 11:36:20 srv01 postfix/smtpd\[2514\]: warning: unknown\[46.38.150.193\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 9 11:37:06 srv01 postfix/smtpd\[2514\]: warning: unknown\[46.38.150.193\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-09 17:40:29
3.249.14.31	attack	09.07.2020 05:53:05 - Wordpress fail Detected by ELinOX-ALM	2020-07-09 17:22:11
185.63.253.157	attackspam	Automatic report - Banned IP Access	2020-07-09 17:34:12
89.248.172.123	attackspam	07/09/2020-04:44:35.678339 89.248.172.123 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-07-09 17:33:47
212.143.220.193	attackspam	1594266782 - 07/09/2020 05:53:02 Host: 212.143.220.193/212.143.220.193 Port: 23 TCP Blocked	2020-07-09 17:16:56
220.156.169.45	attackbots	Dovecot Invalid User Login Attempt.	2020-07-09 17:45:57
190.78.15.37	attackspam	Honeypot attack, port: 445, PTR: 190-78-15-37.dyn.dsl.cantv.net.	2020-07-09 17:47:49
103.81.92.230	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-07-09 17:21:47
222.186.180.41	attack	Jul 9 02:06:01 dignus sshd[24155]: error: maximum authentication attempts exceeded for root from 222.186.180.41 port 6434 ssh2 [preauth] Jul 9 02:06:06 dignus sshd[24194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.41 user=root Jul 9 02:06:08 dignus sshd[24194]: Failed password for root from 222.186.180.41 port 54978 ssh2 Jul 9 02:06:18 dignus sshd[24194]: Failed password for root from 222.186.180.41 port 54978 ssh2 Jul 9 02:06:21 dignus sshd[24194]: Failed password for root from 222.186.180.41 port 54978 ssh2 ...	2020-07-09 17:11:47
218.92.0.221	attackbots	Jul 9 11:34:08 piServer sshd[22424]: Failed password for root from 218.92.0.221 port 62257 ssh2 Jul 9 11:34:13 piServer sshd[22424]: Failed password for root from 218.92.0.221 port 62257 ssh2 Jul 9 11:34:16 piServer sshd[22424]: Failed password for root from 218.92.0.221 port 62257 ssh2 ...	2020-07-09 17:35:39
110.138.65.154	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-07-09 17:14:48
51.83.73.109	attack	2020-07-09T03:50:09.780165abusebot-5.cloudsearch.cf sshd[18780]: Invalid user paginas from 51.83.73.109 port 53684 2020-07-09T03:50:09.785304abusebot-5.cloudsearch.cf sshd[18780]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.ip-51-83-73.eu 2020-07-09T03:50:09.780165abusebot-5.cloudsearch.cf sshd[18780]: Invalid user paginas from 51.83.73.109 port 53684 2020-07-09T03:50:11.419441abusebot-5.cloudsearch.cf sshd[18780]: Failed password for invalid user paginas from 51.83.73.109 port 53684 ssh2 2020-07-09T03:53:09.477238abusebot-5.cloudsearch.cf sshd[18788]: Invalid user vnc from 51.83.73.109 port 52454 2020-07-09T03:53:09.483806abusebot-5.cloudsearch.cf sshd[18788]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.ip-51-83-73.eu 2020-07-09T03:53:09.477238abusebot-5.cloudsearch.cf sshd[18788]: Invalid user vnc from 51.83.73.109 port 52454 2020-07-09T03:53:11.463632abusebot-5.cloudsearch.cf sshd[18788]: ...	2020-07-09 17:10:28
106.13.167.94	attackspam	Jul 9 02:16:15 Tower sshd[24312]: Connection from 106.13.167.94 port 39116 on 192.168.10.220 port 22 rdomain "" Jul 9 02:16:17 Tower sshd[24312]: Invalid user deamon from 106.13.167.94 port 39116 Jul 9 02:16:17 Tower sshd[24312]: error: Could not get shadow information for NOUSER Jul 9 02:16:17 Tower sshd[24312]: Failed password for invalid user deamon from 106.13.167.94 port 39116 ssh2 Jul 9 02:16:17 Tower sshd[24312]: Received disconnect from 106.13.167.94 port 39116:11: Bye Bye [preauth] Jul 9 02:16:17 Tower sshd[24312]: Disconnected from invalid user deamon 106.13.167.94 port 39116 [preauth]	2020-07-09 17:39:30

最近上报的IP列表

66.96.235.199	87.248.211.105	181.94.160.66	12.133.88.183
125.106.227.132	53.90.213.221	43.252.113.65	36.105.185.228
79.37.17.49	174.254.45.134	184.7.231.244	74.99.75.255
169.146.191.214	209.187.0.186	82.99.204.103	61.8.39.41
37.114.56.165	70.147.222.68	176.126.42.246	188.93.110.51