142.93.203.239

基本信息:

城市(city): North Bergen

省份(region): New Jersey

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.203.168	attackspambots	142.93.203.168 - - [11/Jun/2020:08:51:59 +0200] "GET /wp-login.php HTTP/1.1" 200 5861 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.203.168 - - [11/Jun/2020:08:52:00 +0200] "POST /wp-login.php HTTP/1.1" 200 6166 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.203.168 - - [11/Jun/2020:08:52:02 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-11 16:13:57
142.93.203.168	attackspam	142.93.203.168 has been banned for [WebApp Attack] ...	2020-06-03 12:03:47
142.93.203.168	attackspambots	May 24 22:31:20 wordpress wordpress(www.ruhnke.cloud)[98824]: Blocked authentication attempt for admin from ::ffff:142.93.203.168	2020-05-25 05:28:38
142.93.203.168	attackspambots	Automatic report - XMLRPC Attack	2020-05-24 15:31:32
142.93.203.168	attackbots	142.93.203.168 - - \[10/May/2020:15:02:39 +0200\] "POST /wp-login.php HTTP/1.0" 200 6052 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 142.93.203.168 - - \[10/May/2020:15:02:41 +0200\] "POST /wp-login.php HTTP/1.0" 200 5872 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 142.93.203.168 - - \[10/May/2020:15:02:43 +0200\] "POST /wp-login.php HTTP/1.0" 200 5865 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-05-10 21:56:29
142.93.203.108	attackspam	Sep 7 05:19:59 xeon sshd[49331]: Invalid user web from 142.93.203.108	2019-09-07 12:33:29
142.93.203.108	attackspam	Aug 30 21:57:04 SilenceServices sshd[21823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.203.108 Aug 30 21:57:06 SilenceServices sshd[21823]: Failed password for invalid user farid from 142.93.203.108 port 52008 ssh2 Aug 30 22:01:13 SilenceServices sshd[24957]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.203.108	2019-08-31 04:02:57
142.93.203.108	attackbots	Aug 28 07:30:26 plex sshd[11387]: Invalid user ataque from 142.93.203.108 port 55922	2019-08-28 13:43:27
142.93.203.108	attack	Aug 22 12:31:34 tdfoods sshd\[26915\]: Invalid user reseller from 142.93.203.108 Aug 22 12:31:34 tdfoods sshd\[26915\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.203.108 Aug 22 12:31:36 tdfoods sshd\[26915\]: Failed password for invalid user reseller from 142.93.203.108 port 48002 ssh2 Aug 22 12:35:47 tdfoods sshd\[27287\]: Invalid user frappe from 142.93.203.108 Aug 22 12:35:47 tdfoods sshd\[27287\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.203.108	2019-08-23 06:52:35
142.93.203.108	attackbotsspam	Aug 16 16:47:46 web8 sshd\[26499\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.203.108 user=root Aug 16 16:47:48 web8 sshd\[26499\]: Failed password for root from 142.93.203.108 port 47294 ssh2 Aug 16 16:52:12 web8 sshd\[28613\]: Invalid user test from 142.93.203.108 Aug 16 16:52:12 web8 sshd\[28613\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.203.108 Aug 16 16:52:15 web8 sshd\[28613\]: Failed password for invalid user test from 142.93.203.108 port 39268 ssh2	2019-08-17 01:08:40
142.93.203.108	attackbotsspam	Aug 16 12:44:18 web8 sshd\[973\]: Invalid user julia from 142.93.203.108 Aug 16 12:44:18 web8 sshd\[973\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.203.108 Aug 16 12:44:20 web8 sshd\[973\]: Failed password for invalid user julia from 142.93.203.108 port 44798 ssh2 Aug 16 12:48:30 web8 sshd\[3286\]: Invalid user tex from 142.93.203.108 Aug 16 12:48:30 web8 sshd\[3286\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.203.108	2019-08-16 20:49:16
142.93.203.108	attackbots	Aug 15 17:35:52 areeb-Workstation sshd\[5879\]: Invalid user raluca from 142.93.203.108 Aug 15 17:35:52 areeb-Workstation sshd\[5879\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.203.108 Aug 15 17:35:55 areeb-Workstation sshd\[5879\]: Failed password for invalid user raluca from 142.93.203.108 port 33366 ssh2 ...	2019-08-15 22:37:37
142.93.203.108	attackbots	2019-08-07T21:24:10.892843abusebot-5.cloudsearch.cf sshd\[10597\]: Invalid user testftp from 142.93.203.108 port 37494	2019-08-08 05:37:38
142.93.203.108	attack	Jul 31 13:04:20 localhost sshd\[57973\]: Invalid user user from 142.93.203.108 port 58846 Jul 31 13:04:20 localhost sshd\[57973\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.203.108 ...	2019-07-31 20:05:02
142.93.203.108	attackspambots	Failed password for invalid user rainbow from 142.93.203.108 port 45518 ssh2 Invalid user donut from 142.93.203.108 port 41380 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.203.108 Failed password for invalid user donut from 142.93.203.108 port 41380 ssh2 Invalid user xmlrpc from 142.93.203.108 port 37342	2019-07-31 08:58:24

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.203.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19119
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.203.239.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019032901 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Mar 30 04:11:34 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 239.203.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 239.203.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
166.62.44.215	attackbotsspam	14.09.2019 08:53:17 - Wordpress fail Detected by ELinOX-ALM	2019-09-14 15:35:50
167.71.241.174	attackbots	ft-1848-basketball.de 167.71.241.174 \[14/Sep/2019:08:53:53 +0200\] "POST /wp-login.php HTTP/1.1" 200 2165 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ft-1848-basketball.de 167.71.241.174 \[14/Sep/2019:08:53:58 +0200\] "POST /wp-login.php HTTP/1.1" 200 2136 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-09-14 14:57:25
49.235.89.94	attackspambots	Port Scan: TCP/6379	2019-09-14 14:54:04
104.243.41.97	attackspambots	Sep 14 09:50:17 yabzik sshd[20023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.243.41.97 Sep 14 09:50:19 yabzik sshd[20023]: Failed password for invalid user pos from 104.243.41.97 port 59434 ssh2 Sep 14 09:53:45 yabzik sshd[21034]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.243.41.97	2019-09-14 15:08:02
2.92.203.123	attack	Sep 13 20:53:23 php1 sshd\[22054\]: Invalid user admin from 2.92.203.123 Sep 13 20:53:23 php1 sshd\[22054\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.92.203.123 Sep 13 20:53:26 php1 sshd\[22054\]: Failed password for invalid user admin from 2.92.203.123 port 47843 ssh2 Sep 13 20:53:27 php1 sshd\[22054\]: Failed password for invalid user admin from 2.92.203.123 port 47843 ssh2 Sep 13 20:53:29 php1 sshd\[22054\]: Failed password for invalid user admin from 2.92.203.123 port 47843 ssh2	2019-09-14 15:21:42
45.82.34.229	attackbots	Autoban 45.82.34.229 AUTH/CONNECT	2019-09-14 15:16:15
88.230.236.12	attackbots	Port Scan: TCP/445	2019-09-14 14:49:36
14.49.15.61	attackbots	Sep 14 10:06:57 site3 sshd\[30295\]: Invalid user test from 14.49.15.61 Sep 14 10:06:57 site3 sshd\[30295\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.49.15.61 Sep 14 10:06:59 site3 sshd\[30295\]: Failed password for invalid user test from 14.49.15.61 port 25848 ssh2 Sep 14 10:11:30 site3 sshd\[30388\]: Invalid user aster from 14.49.15.61 Sep 14 10:11:30 site3 sshd\[30388\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.49.15.61 ...	2019-09-14 15:27:00
76.170.7.245	attackbots	Port Scan: UDP/80	2019-09-14 14:50:10
103.35.198.219	attackspam	Sep 13 21:12:07 php1 sshd\[25118\]: Invalid user ubnt from 103.35.198.219 Sep 13 21:12:07 php1 sshd\[25118\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.35.198.219 Sep 13 21:12:10 php1 sshd\[25118\]: Failed password for invalid user ubnt from 103.35.198.219 port 14763 ssh2 Sep 13 21:21:28 php1 sshd\[26190\]: Invalid user adrian from 103.35.198.219 Sep 13 21:21:28 php1 sshd\[26190\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.35.198.219	2019-09-14 15:32:04
62.210.162.99	attack	\[2019-09-14 02:51:42\] SECURITY\[20693\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-14T02:51:42.351-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="0012342050256",SessionID="0x7f8a6c6094e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.162.99/5070",ACLName="no_extension_match" \[2019-09-14 02:51:58\] SECURITY\[20693\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-14T02:51:58.496-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="012342050256",SessionID="0x7f8a6c744968",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.162.99/5071",ACLName="no_extension_match" \[2019-09-14 02:53:53\] SECURITY\[20693\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-14T02:53:53.072-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00012342050256",SessionID="0x7f8a6c744968",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.162.99/5070",ACLName="no_extension	2019-09-14 14:59:32
116.228.147.46	attackspambots	Port Scan: UDP/37853	2019-09-14 14:43:29
49.88.112.117	attack	2019-09-14T13:53:44.916453enmeeting.mahidol.ac.th sshd\[14513\]: User root from 49.88.112.117 not allowed because not listed in AllowUsers 2019-09-14T13:53:45.298745enmeeting.mahidol.ac.th sshd\[14513\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.117 user=root 2019-09-14T13:53:47.525322enmeeting.mahidol.ac.th sshd\[14513\]: Failed password for invalid user root from 49.88.112.117 port 21239 ssh2 ...	2019-09-14 15:05:46
180.179.174.247	attackbots	Sep 14 09:05:03 core sshd[2421]: Failed password for root from 180.179.174.247 port 39961 ssh2 Sep 14 09:11:09 core sshd[9830]: Invalid user thulani from 180.179.174.247 port 32852 ...	2019-09-14 15:34:37
223.255.7.83	attack	Invalid user pa from 223.255.7.83 port 49554 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.255.7.83 Failed password for invalid user pa from 223.255.7.83 port 49554 ssh2 Invalid user sgt from 223.255.7.83 port 43581 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.255.7.83	2019-09-14 15:18:10

最近上报的IP列表

46.201.147.192	119.161.98.132	71.6.146.130	27.214.220.67
219.246.191.183	71.6.142.81	31.40.155.194	200.32.12.87
182.76.21.138	136.255.144.2	37.79.58.178	165.227.166.144
77.247.109.73	77.125.71.221	69.133.10.55	180.66.58.111
164.132.107.245	159.213.95.62	70.35.141.234	69.122.129.217