142.93.157.249

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Scanning	2020-03-22 18:51:33

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.157.155	attackbots	Automatic report - Banned IP Access	2019-10-17 05:38:31
142.93.157.155	attackbotsspam	fail2ban honeypot	2019-10-10 19:29:53
142.93.157.67	attack	fire	2019-08-09 13:29:17

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.157.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17408
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.157.249.			IN	A

;; AUTHORITY SECTION:
.			208	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032200 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 22 18:51:29 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 249.157.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 249.157.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
197.220.21.126	attackspambots	Nov 24 00:20:24 ms-srv sshd[55027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.220.21.126 Nov 24 00:20:26 ms-srv sshd[55027]: Failed password for invalid user admin from 197.220.21.126 port 48038 ssh2	2020-03-10 09:20:48
82.178.237.178	attack	1583812575 - 03/10/2020 04:56:15 Host: 82.178.237.178/82.178.237.178 Port: 445 TCP Blocked	2020-03-10 12:16:16
45.32.32.166	attackbots	Fail2Ban - SSH Bruteforce Attempt	2020-03-10 12:05:20
111.225.223.45	attack	Dec 9 18:09:29 woltan sshd[26029]: Failed password for root from 111.225.223.45 port 39792 ssh2	2020-03-10 09:25:13
74.208.120.26	attack	[2020-03-10 00:06:39] NOTICE[1148] chan_sip.c: Registration from '100 ' failed for '74.208.120.26:5060' - Wrong password [2020-03-10 00:06:39] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-03-10T00:06:39.096-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="100",SessionID="0x7fd82c40d3d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/74.208.120.26/5060",Challenge="21e1de2f",ReceivedChallenge="21e1de2f",ReceivedHash="7513370d5aa4e77433123e4d5b31fd25" [2020-03-10 00:14:07] NOTICE[1148] chan_sip.c: Registration from '24 ' failed for '74.208.120.26:5060' - Wrong password [2020-03-10 00:14:07] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-03-10T00:14:07.152-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="24",SessionID="0x7fd82c530768",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/74.208.120.26/5 ...	2020-03-10 12:20:45
135.12.138.248	attack	[TueMar1004:56:21.1631272020][:error][pid20954:tid47374133778176][client135.12.138.248:52634][client135.12.138.248]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"402"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0detected\(DisableifyouwanttoallowMSIE6\)"][severity"WARNING"][hostname"cser.ch"][uri"/adminer.php"][unique_id"XmcP5WJqTb4YbB46iP9mOgAAAYg"][TueMar1004:56:23.5960912020][:error][pid20821:tid47374235875072][client135.12.138.248:52650][client135.12.138.248]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"402"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0detected\(Di	2020-03-10 12:09:23
197.219.116.48	attack	Dec 9 07:07:16 ms-srv sshd[2699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.219.116.48 Dec 9 07:07:17 ms-srv sshd[2699]: Failed password for invalid user admin from 197.219.116.48 port 54120 ssh2	2020-03-10 09:24:22
128.199.242.16	attackbotsspam	Wordpress attack	2020-03-10 12:26:49
111.229.125.124	attackspambots	Jan 18 09:54:17 woltan sshd[20270]: Failed password for invalid user user from 111.229.125.124 port 55164 ssh2	2020-03-10 09:21:33
222.186.175.220	attack	2020-03-10T05:18:17.098264vps773228.ovh.net sshd[2759]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.220 user=root 2020-03-10T05:18:19.392716vps773228.ovh.net sshd[2759]: Failed password for root from 222.186.175.220 port 35656 ssh2 2020-03-10T05:18:22.677019vps773228.ovh.net sshd[2759]: Failed password for root from 222.186.175.220 port 35656 ssh2 2020-03-10T05:18:17.098264vps773228.ovh.net sshd[2759]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.220 user=root 2020-03-10T05:18:19.392716vps773228.ovh.net sshd[2759]: Failed password for root from 222.186.175.220 port 35656 ssh2 2020-03-10T05:18:22.677019vps773228.ovh.net sshd[2759]: Failed password for root from 222.186.175.220 port 35656 ssh2 2020-03-10T05:18:17.098264vps773228.ovh.net sshd[2759]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.220 user=root 2020-03-10T05:1 ...	2020-03-10 12:30:56
5.135.101.228	attackspambots	2020-03-10T04:16:32.288481homeassistant sshd[25750]: Invalid user vagrant from 5.135.101.228 port 55542 2020-03-10T04:16:32.297246homeassistant sshd[25750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.101.228 ...	2020-03-10 12:28:43
197.220.22.104	attackspam	Apr 3 15:06:57 ms-srv sshd[13601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.220.22.104 Apr 3 15:07:00 ms-srv sshd[13601]: Failed password for invalid user admin from 197.220.22.104 port 59826 ssh2	2020-03-10 09:20:31
93.124.26.194	attackbots	20/3/9@23:56:09: FAIL: Alarm-Network address from=93.124.26.194 20/3/9@23:56:10: FAIL: Alarm-Network address from=93.124.26.194 ...	2020-03-10 12:21:05
51.68.174.177	attack	Mar 10 04:08:26 hcbbdb sshd\[29609\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.ip-51-68-174.eu user=root Mar 10 04:08:28 hcbbdb sshd\[29609\]: Failed password for root from 51.68.174.177 port 44938 ssh2 Mar 10 04:12:45 hcbbdb sshd\[30070\]: Invalid user eisp from 51.68.174.177 Mar 10 04:12:45 hcbbdb sshd\[30070\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.ip-51-68-174.eu Mar 10 04:12:47 hcbbdb sshd\[30070\]: Failed password for invalid user eisp from 51.68.174.177 port 34708 ssh2	2020-03-10 12:29:30
191.55.244.40	attackbots	Mar 10 04:56:30 vpn01 sshd[14476]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.55.244.40 Mar 10 04:56:33 vpn01 sshd[14476]: Failed password for invalid user desktop from 191.55.244.40 port 47916 ssh2 ...	2020-03-10 12:05:00

最近上报的IP列表

54.104.160.40	252.47.0.251	245.60.43.137	68.219.51.26
129.188.152.100	58.186.103.111	221.74.45.8	119.164.174.99
81.214.211.158	248.178.217.252	190.148.244.247	102.106.17.176
51.178.82.80	122.51.241.12	45.228.147.236	189.205.184.230
91.90.15.27	115.231.17.132	111.67.194.84	120.92.35.5