142.93.149.234

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.149.57	attack	TCP (SYN) 142.93.149.57:39570 -> port 8080, len 44	2020-08-28 16:17:34
142.93.149.57	attack	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: do-prod-us-north-clients-0106-9.do.binaryedge.ninja.	2020-08-11 08:50:11
142.93.149.226	attackspambots	Unauthorised access (Mar 5) SRC=142.93.149.226 LEN=40 TTL=48 ID=9153 TCP DPT=8080 WINDOW=17229 SYN Unauthorised access (Mar 4) SRC=142.93.149.226 LEN=40 TTL=48 ID=10114 TCP DPT=8080 WINDOW=17229 SYN Unauthorised access (Mar 3) SRC=142.93.149.226 LEN=40 TTL=48 ID=15698 TCP DPT=8080 WINDOW=4314 SYN	2020-03-06 01:41:55
142.93.149.226	attack	Unauthorized connection attempt detected from IP address 142.93.149.226 to port 23 [J]	2020-03-02 17:39:50
142.93.149.34	attackbots	WordPress login Brute force / Web App Attack on client site.	2019-10-17 19:19:24
142.93.149.34	attackbots	142.93.149.34 - - [02/Oct/2019:18:41:06 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.149.34 - - [02/Oct/2019:18:41:08 +0200] "POST /wp-login.php HTTP/1.1" 200 1704 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.149.34 - - [02/Oct/2019:18:41:09 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.149.34 - - [02/Oct/2019:18:41:10 +0200] "POST /wp-login.php HTTP/1.1" 200 1684 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.149.34 - - [02/Oct/2019:18:41:13 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.149.34 - - [02/Oct/2019:18:41:13 +0200] "POST /wp-login.php HTTP/1.1" 200 1688 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-10-03 04:18:13
142.93.149.34	attackspambots	ft-1848-basketball.de 142.93.149.34 \[27/Sep/2019:05:51:28 +0200\] "POST /wp-login.php HTTP/1.1" 200 2165 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ft-1848-basketball.de 142.93.149.34 \[27/Sep/2019:05:51:29 +0200\] "POST /wp-login.php HTTP/1.1" 200 2136 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-09-27 15:47:00

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.149.234
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20189
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.93.149.234.			IN	A

;; AUTHORITY SECTION:
.			412	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 29 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 14:05:23 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

234.149.93.142.in-addr.arpa domain name pointer xsda19007.xpress.com.mx.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
234.149.93.142.in-addr.arpa	name = xsda19007.xpress.com.mx.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
49.234.96.24	attackbots	(sshd) Failed SSH login from 49.234.96.24 (US/United States/-): 5 in the last 3600 secs	2020-05-25 04:42:31
206.81.14.48	attackspam	May 24 22:29:15 PorscheCustomer sshd[23535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.14.48 May 24 22:29:17 PorscheCustomer sshd[23535]: Failed password for invalid user ctaggart from 206.81.14.48 port 57980 ssh2 May 24 22:32:20 PorscheCustomer sshd[23657]: Failed password for root from 206.81.14.48 port 59152 ssh2 ...	2020-05-25 04:36:09
82.131.160.225	attackspam	Wordpress_xmlrpc_attack	2020-05-25 04:45:03
219.78.231.131	attackbots	(sshd) Failed SSH login from 219.78.231.131 (HK/Hong Kong/n219078231131.netvigator.com): 5 in the last 3600 secs	2020-05-25 04:31:44
174.138.48.152	attackspambots	May 24 22:25:39 electroncash sshd[25064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.48.152 user=root May 24 22:25:41 electroncash sshd[25064]: Failed password for root from 174.138.48.152 port 51024 ssh2 May 24 22:28:53 electroncash sshd[25967]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.48.152 user=root May 24 22:28:55 electroncash sshd[25967]: Failed password for root from 174.138.48.152 port 39728 ssh2 May 24 22:32:13 electroncash sshd[26889]: Invalid user admin from 174.138.48.152 port 56676 ...	2020-05-25 04:40:15
167.172.36.114	attackspambots	167.172.36.114 - - [24/May/2020:21:57:57 +0200] "\x16\x03\x01\x00u\x01\x00\x00q\x03\x03\xA0L\x94\xD2\x1Aw\x08\x0Cc\x06\xD7\x8DQ\x94m\x90 x\xA7\xC8\x22\xC64[L3yv\x1A\x8D\xCFD\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0" 400 166 "-" "-"	2020-05-25 04:38:52
103.7.37.144	attackspam	Honeypot hit.	2020-05-25 04:25:20
211.97.81.137	attackbotsspam	2020-05-24T19:23:02.700403abusebot.cloudsearch.cf sshd[2781]: Invalid user dominic from 211.97.81.137 port 46342 2020-05-24T19:23:02.705085abusebot.cloudsearch.cf sshd[2781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.97.81.137 2020-05-24T19:23:02.700403abusebot.cloudsearch.cf sshd[2781]: Invalid user dominic from 211.97.81.137 port 46342 2020-05-24T19:23:04.856084abusebot.cloudsearch.cf sshd[2781]: Failed password for invalid user dominic from 211.97.81.137 port 46342 ssh2 2020-05-24T19:26:39.638431abusebot.cloudsearch.cf sshd[3040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.97.81.137 user=root 2020-05-24T19:26:41.578910abusebot.cloudsearch.cf sshd[3040]: Failed password for root from 211.97.81.137 port 37458 ssh2 2020-05-24T19:30:09.959214abusebot.cloudsearch.cf sshd[3265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.97.81.137 user=root ...	2020-05-25 04:32:31
35.223.122.181	attack	From: "Survival Tools" Unsolicited bulk spam - (EHLO mailspamprotection.com) (212.237.17.126) Aruba S.p.a. – repeat IP Header mailspamprotection.com = 35.223.122.181 Google Spam link softengins.com = repeat IP 212.237.13.213 Aruba S.p.a. – phishing redirect: a) www.orbity3.com = 34.107.192.170 Google b) gatoptrax.com = 3.212.128.84, 52.7.49.177, 54.236.164.154 Amazon c) www.am892trk.com = 34.107.146.178 Google d) eaglex700.superdigideal.com = 206.189.173.239 DigitalOcean Spam link i.imgur.com = 151.101.120.193 Fastly Sender domain softengins.com = 212.237.13.213 Aruba S.p.a.	2020-05-25 04:28:46
159.89.231.2	attack	"fail2ban match"	2020-05-25 04:37:45
119.27.190.236	attack	May 24 17:28:22 vps46666688 sshd[1968]: Failed password for root from 119.27.190.236 port 52308 ssh2 May 24 17:32:11 vps46666688 sshd[2140]: Failed password for root from 119.27.190.236 port 33308 ssh2 ...	2020-05-25 04:41:02
51.15.125.53	attack	2020-05-24T20:09:00.302698centos sshd[29384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.125.53 2020-05-24T20:09:00.292701centos sshd[29384]: Invalid user miket from 51.15.125.53 port 38340 2020-05-24T20:09:02.646553centos sshd[29384]: Failed password for invalid user miket from 51.15.125.53 port 38340 ssh2 ...	2020-05-25 04:23:26
188.166.232.29	attack	May 25 06:06:10 NG-HHDC-SVS-001 sshd[5647]: Invalid user jira from 188.166.232.29 ...	2020-05-25 04:19:46
94.191.99.243	attack	May 24 15:38:26 Tower sshd[42253]: Connection from 94.191.99.243 port 44984 on 192.168.10.220 port 22 rdomain "" May 24 15:38:29 Tower sshd[42253]: Invalid user geometry from 94.191.99.243 port 44984 May 24 15:38:29 Tower sshd[42253]: error: Could not get shadow information for NOUSER May 24 15:38:29 Tower sshd[42253]: Failed password for invalid user geometry from 94.191.99.243 port 44984 ssh2 May 24 15:38:29 Tower sshd[42253]: Received disconnect from 94.191.99.243 port 44984:11: Bye Bye [preauth] May 24 15:38:29 Tower sshd[42253]: Disconnected from invalid user geometry 94.191.99.243 port 44984 [preauth]	2020-05-25 04:28:06
87.251.74.208	attackbots	05/24/2020-16:32:18.386821 87.251.74.208 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-05-25 04:38:12

最近上报的IP列表

142.93.152.102	142.93.152.210	142.93.146.250	142.93.154.40
142.93.154.44	142.93.155.209	142.93.156.33	142.93.158.91
142.93.162.127	142.93.156.252	142.93.164.250	142.93.155.72
142.93.168.33	142.93.173.234	142.93.171.248	142.93.172.202
142.93.179.26	142.93.180.197	142.93.18.119	142.93.181.14

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表