142.93.157.67 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	fire	2019-08-09 13:29:17

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.157.249	attack	Scanning	2020-03-22 18:51:33
142.93.157.155	attackbots	Automatic report - Banned IP Access	2019-10-17 05:38:31
142.93.157.155	attackbotsspam	fail2ban honeypot	2019-10-10 19:29:53

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.157.67
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64555
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.157.67.			IN	A

;; AUTHORITY SECTION:
.			1021	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051504 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu May 16 06:03:48 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 67.157.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 67.157.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
54.37.68.66	attack	$f2bV_matches	2019-09-03 07:33:19
115.47.160.19	attack	Sep 2 19:06:48 xtremcommunity sshd\[12004\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.47.160.19 user=root Sep 2 19:06:50 xtremcommunity sshd\[12004\]: Failed password for root from 115.47.160.19 port 55588 ssh2 Sep 2 19:12:55 xtremcommunity sshd\[12247\]: Invalid user calice from 115.47.160.19 port 59460 Sep 2 19:12:55 xtremcommunity sshd\[12247\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.47.160.19 Sep 2 19:12:57 xtremcommunity sshd\[12247\]: Failed password for invalid user calice from 115.47.160.19 port 59460 ssh2 ...	2019-09-03 07:16:56
106.75.114.3	attack	Sep 2 13:05:25 kapalua sshd\[11216\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.114.3 user=root Sep 2 13:05:27 kapalua sshd\[11216\]: Failed password for root from 106.75.114.3 port 41158 ssh2 Sep 2 13:09:55 kapalua sshd\[11783\]: Invalid user kathi from 106.75.114.3 Sep 2 13:09:55 kapalua sshd\[11783\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.114.3 Sep 2 13:09:57 kapalua sshd\[11783\]: Failed password for invalid user kathi from 106.75.114.3 port 56684 ssh2	2019-09-03 07:13:13
138.68.212.91	attack	Honeypot hit.	2019-09-03 07:31:58
107.175.56.203	attackspambots	Sep 2 16:52:25 hcbbdb sshd\[11190\]: Invalid user mc from 107.175.56.203 Sep 2 16:52:25 hcbbdb sshd\[11190\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.175.56.203 Sep 2 16:52:27 hcbbdb sshd\[11190\]: Failed password for invalid user mc from 107.175.56.203 port 35852 ssh2 Sep 2 16:56:49 hcbbdb sshd\[11705\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.175.56.203 user=backup Sep 2 16:56:51 hcbbdb sshd\[11705\]: Failed password for backup from 107.175.56.203 port 58058 ssh2	2019-09-03 07:07:36
187.107.136.134	attackbotsspam	Sep 3 01:08:00 mail postfix/smtpd\[2998\]: warning: unknown\[187.107.136.134\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 3 01:08:00 mail postfix/smtpd\[11455\]: warning: unknown\[187.107.136.134\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 3 01:08:00 mail postfix/smtpd\[4994\]: warning: unknown\[187.107.136.134\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 3 01:08:00 mail postfix/smtpd\[4995\]: warning: unknown\[187.107.136.134\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-09-03 07:20:59
223.25.101.76	attackspam	Sep 2 18:00:15 aat-srv002 sshd[26935]: Failed password for root from 223.25.101.76 port 33934 ssh2 Sep 2 18:05:00 aat-srv002 sshd[27049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.25.101.76 Sep 2 18:05:02 aat-srv002 sshd[27049]: Failed password for invalid user ftpadmin from 223.25.101.76 port 48708 ssh2 ...	2019-09-03 07:17:23
157.230.7.0	attack	Sep 2 21:41:01 bouncer sshd\[16636\]: Invalid user ftp from 157.230.7.0 port 50358 Sep 2 21:41:01 bouncer sshd\[16636\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.7.0 Sep 2 21:41:04 bouncer sshd\[16636\]: Failed password for invalid user ftp from 157.230.7.0 port 50358 ssh2 ...	2019-09-03 06:58:53
148.247.102.222	attack	Sep 3 00:58:45 mail sshd\[9519\]: Failed password for invalid user radis from 148.247.102.222 port 32948 ssh2 Sep 3 01:03:17 mail sshd\[10869\]: Invalid user kuaisuweb from 148.247.102.222 port 49612 Sep 3 01:03:17 mail sshd\[10869\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.247.102.222 Sep 3 01:03:19 mail sshd\[10869\]: Failed password for invalid user kuaisuweb from 148.247.102.222 port 49612 ssh2 Sep 3 01:07:46 mail sshd\[11506\]: Invalid user rosemary from 148.247.102.222 port 38032	2019-09-03 07:21:49
200.77.186.205	attackspam	Mail sent to address hacked/leaked from Last.fm	2019-09-03 07:18:05
98.2.231.48	attack	Sep 2 13:22:03 lcprod sshd\[15494\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.2.231.48 user=games Sep 2 13:22:06 lcprod sshd\[15494\]: Failed password for games from 98.2.231.48 port 37513 ssh2 Sep 2 13:26:10 lcprod sshd\[15868\]: Invalid user stan from 98.2.231.48 Sep 2 13:26:10 lcprod sshd\[15868\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.2.231.48 Sep 2 13:26:12 lcprod sshd\[15868\]: Failed password for invalid user stan from 98.2.231.48 port 60061 ssh2	2019-09-03 07:34:31
91.191.223.207	attack	Sep 3 01:09:21 mail postfix/smtpd\[2998\]: warning: unknown\[91.191.223.207\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 3 01:09:23 mail postfix/smtpd\[4995\]: warning: unknown\[91.191.223.207\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 3 01:09:25 mail postfix/smtpd\[4997\]: warning: unknown\[91.191.223.207\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-09-03 07:25:25
52.42.7.30	attackspambots	52.42.7.30 - - [03/Sep/2019:01:09:21 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.42.7.30 - - [03/Sep/2019:01:09:21 +0200] "POST /wp-login.php HTTP/1.1" 200 1704 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.42.7.30 - - [03/Sep/2019:01:09:22 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.42.7.30 - - [03/Sep/2019:01:09:23 +0200] "POST /wp-login.php HTTP/1.1" 200 1684 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.42.7.30 - - [03/Sep/2019:01:09:23 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 52.42.7.30 - - [03/Sep/2019:01:09:24 +0200] "POST /wp-login.php HTTP/1.1" 200 1688 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-09-03 07:41:13
91.121.205.83	attack	Sep 3 01:09:14 [host] sshd[21560]: Invalid user admin from 91.121.205.83 Sep 3 01:09:14 [host] sshd[21560]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.205.83 Sep 3 01:09:17 [host] sshd[21560]: Failed password for invalid user admin from 91.121.205.83 port 48898 ssh2	2019-09-03 07:38:28
192.241.211.215	attackspam	Sep 2 13:19:55 php2 sshd\[11865\]: Invalid user scaner from 192.241.211.215 Sep 2 13:19:55 php2 sshd\[11865\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.211.215 Sep 2 13:19:57 php2 sshd\[11865\]: Failed password for invalid user scaner from 192.241.211.215 port 39498 ssh2 Sep 2 13:25:16 php2 sshd\[12742\]: Invalid user tania from 192.241.211.215 Sep 2 13:25:16 php2 sshd\[12742\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.211.215	2019-09-03 07:31:39

最近上报的IP列表

238.177.221.247	144.252.146.160	156.43.219.17	83.30.99.10
108.192.48.32	182.37.75.105	101.78.22.14	89.25.128.123
222.128.11.26	203.115.13.34	103.3.253.54	89.248.174.219
189.127.0.98	68.234.126.246	190.145.132.250	112.218.231.43
186.75.190.4	174.138.48.36	181.105.43.230	8.190.21.197