142.93.161.55 - IPInfo

基本信息:

城市(city): Frankfurt am Main

省份(region): Hesse

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.161.89	attack	142.93.161.89 - - [16/Aug/2020:13:23:32 +0100] "POST /wp-login.php HTTP/1.1" 200 2261 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.161.89 - - [16/Aug/2020:13:23:37 +0100] "POST /wp-login.php HTTP/1.1" 200 2234 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.161.89 - - [16/Aug/2020:13:23:42 +0100] "POST /wp-login.php HTTP/1.1" 200 2190 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-16 23:37:41
142.93.161.89	attackbotsspam	142.93.161.89 - - [09/Aug/2020:22:08:17 +0200] "POST /xmlrpc.php HTTP/1.1" 403 613 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.161.89 - - [09/Aug/2020:22:23:39 +0200] "POST /xmlrpc.php HTTP/1.1" 403 461 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-10 07:01:18
142.93.161.89	attack	142.93.161.89 - - [09/Aug/2020:05:55:05 +0200] "GET /wp-login.php HTTP/1.1" 200 6310 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.161.89 - - [09/Aug/2020:05:55:07 +0200] "POST /wp-login.php HTTP/1.1" 200 6561 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.161.89 - - [09/Aug/2020:05:55:08 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-09 13:00:28
142.93.161.89	attackbots	Automatic report - XMLRPC Attack	2020-07-30 06:20:23
142.93.161.85	attack	Jul 8 14:17:51 debian-2gb-nbg1-2 kernel: \[16469269.799938\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=142.93.161.85 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=37106 PROTO=TCP SPT=45577 DPT=32295 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-08 20:40:21
142.93.161.85	attack	Fail2Ban Ban Triggered	2020-07-05 07:35:59
142.93.161.89	attack	142.93.161.89 - - - [30/Jun/2020:17:25:39 +0200] "GET /wp-login.php HTTP/1.1" 404 162 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" "-"	2020-07-01 20:17:41
142.93.161.89	attack	142.93.161.89 - - [09/Jun/2020:14:05:00 +0200] "POST /xmlrpc.php HTTP/1.1" 403 15310 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.161.89 - - [09/Jun/2020:14:05:22 +0200] "POST /xmlrpc.php HTTP/1.1" 403 15311 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-06-10 00:07:38
142.93.161.20	attackspambots	Hits on port : 7899	2020-02-11 21:59:45

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.161.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1984
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.161.55.			IN	A

;; AUTHORITY SECTION:
.			353	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020300 1800 900 604800 86400

;; Query time: 29 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 21:16:41 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 55.161.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 55.161.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
184.22.19.182	attackbotsspam	Unauthorized connection attempt from IP address 184.22.19.182 on Port 445(SMB)	2020-02-13 19:50:23
196.43.155.209	attackspam	Feb 13 09:17:22 plex sshd[28624]: Invalid user hdduser from 196.43.155.209 port 50024	2020-02-13 19:49:35
218.92.0.200	attackbots	Feb 13 12:39:40 silence02 sshd[19120]: Failed password for root from 218.92.0.200 port 14770 ssh2 Feb 13 12:41:43 silence02 sshd[19290]: Failed password for root from 218.92.0.200 port 56373 ssh2	2020-02-13 19:48:25
218.92.0.175	attackbots	Feb1312:53:43server6sshd[17158]:refusedconnectfrom218.92.0.175$218.92.0.175$Feb1312:53:46server6sshd[17161]:refusedconnectfrom218.92.0.175$218.92.0.175$Feb1312:53:52server6sshd[17213]:refusedconnectfrom218.92.0.175$218.92.0.175$Feb1313:08:02server6sshd[18471]:refusedconnectfrom218.92.0.175$218.92.0.175$Feb1313:08:08server6sshd[18478]:refusedconnectfrom218.92.0.175$218.92.0.175$	2020-02-13 20:18:24
190.47.129.213	attack	Fail2Ban - SSH Bruteforce Attempt	2020-02-13 20:10:19
1.55.219.156	attack	1581569165 - 02/13/2020 05:46:05 Host: 1.55.219.156/1.55.219.156 Port: 445 TCP Blocked	2020-02-13 20:31:29
49.233.138.118	attack	Feb 13 02:01:54 auw2 sshd\[430\]: Invalid user rozanne from 49.233.138.118 Feb 13 02:01:54 auw2 sshd\[430\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.138.118 Feb 13 02:01:56 auw2 sshd\[430\]: Failed password for invalid user rozanne from 49.233.138.118 port 51582 ssh2 Feb 13 02:05:54 auw2 sshd\[904\]: Invalid user admin01 from 49.233.138.118 Feb 13 02:05:54 auw2 sshd\[904\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.138.118	2020-02-13 20:17:39
148.70.23.131	attackspam	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-02-13 20:22:30
124.116.188.142	attackspambots	Feb 13 11:49:50 MK-Soft-VM8 sshd[18655]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.116.188.142 Feb 13 11:49:52 MK-Soft-VM8 sshd[18655]: Failed password for invalid user pazynich from 124.116.188.142 port 58889 ssh2 ...	2020-02-13 19:50:52
51.75.4.79	attack	Feb 13 07:52:34 SilenceServices sshd[12589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.4.79 Feb 13 07:52:37 SilenceServices sshd[12589]: Failed password for invalid user webadmin from 51.75.4.79 port 57078 ssh2 Feb 13 07:54:43 SilenceServices sshd[13818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.4.79	2020-02-13 20:14:28
106.12.98.12	attackspambots	Oct 4 22:22:56 yesfletchmain sshd\[26525\]: User root from 106.12.98.12 not allowed because not listed in AllowUsers Oct 4 22:22:56 yesfletchmain sshd\[26525\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.98.12 user=root Oct 4 22:22:57 yesfletchmain sshd\[26525\]: Failed password for invalid user root from 106.12.98.12 port 60510 ssh2 Oct 4 22:26:08 yesfletchmain sshd\[26561\]: User root from 106.12.98.12 not allowed because not listed in AllowUsers Oct 4 22:26:08 yesfletchmain sshd\[26561\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.98.12 user=root ...	2020-02-13 20:25:05
78.182.32.128	attackspambots	Automatic report - Port Scan Attack	2020-02-13 20:13:57
27.76.161.135	attack	1581590215 - 02/13/2020 11:36:55 Host: 27.76.161.135/27.76.161.135 Port: 445 TCP Blocked	2020-02-13 20:09:22
139.59.17.118	attackbots	Feb 13 11:06:30 localhost sshd\[1066\]: Invalid user zephyr from 139.59.17.118 port 35314 Feb 13 11:06:30 localhost sshd\[1066\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.17.118 Feb 13 11:06:32 localhost sshd\[1066\]: Failed password for invalid user zephyr from 139.59.17.118 port 35314 ssh2 ...	2020-02-13 20:01:23
32.220.54.46	attackspambots	Fail2Ban - SSH Bruteforce Attempt	2020-02-13 20:34:12

最近上报的IP列表

205.48.230.178	104.41.49.37	92.189.215.254	105.241.61.121
124.168.148.16	92.76.56.89	148.156.28.54	45.135.164.46
33.253.237.26	151.95.71.36	123.93.155.205	162.237.27.52
110.238.246.15	14.35.150.120	118.141.163.99	138.148.102.222
82.161.55.0	118.70.190.78	109.184.163.27	216.221.196.221