142.93.249.145

基本信息:

城市(city): North Bergen

省份(region): New Jersey

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.249.118	attack	Oct 6 15:45:52 Tower sshd[36555]: Connection from 142.93.249.118 port 44680 on 192.168.10.220 port 22 rdomain "" Oct 6 15:45:55 Tower sshd[36555]: Failed password for root from 142.93.249.118 port 44680 ssh2 Oct 6 15:45:55 Tower sshd[36555]: Received disconnect from 142.93.249.118 port 44680:11: Bye Bye [preauth] Oct 6 15:45:55 Tower sshd[36555]: Disconnected from authenticating user root 142.93.249.118 port 44680 [preauth]	2020-10-07 04:30:28
142.93.249.118	attackbotsspam	Oct 5 13:23:11 our-server-hostname sshd[32265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.249.118 user=r.r Oct 5 13:23:13 our-server-hostname sshd[32265]: Failed password for r.r from 142.93.249.118 port 42104 ssh2 Oct 5 13:36:50 our-server-hostname sshd[1601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.249.118 user=r.r Oct 5 13:36:52 our-server-hostname sshd[1601]: Failed password for r.r from 142.93.249.118 port 41912 ssh2 Oct 5 13:41:08 our-server-hostname sshd[2260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.249.118 user=r.r Oct 5 13:41:10 our-server-hostname sshd[2260]: Failed password for r.r from 142.93.249.118 port 49428 ssh2 Oct 5 13:45:12 our-server-hostname sshd[2814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.249.118 user=r.r Oct 5 13:45:1........ -------------------------------	2020-10-06 20:34:11
142.93.249.118	attackspam	Oct 5 13:23:11 our-server-hostname sshd[32265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.249.118 user=r.r Oct 5 13:23:13 our-server-hostname sshd[32265]: Failed password for r.r from 142.93.249.118 port 42104 ssh2 Oct 5 13:36:50 our-server-hostname sshd[1601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.249.118 user=r.r Oct 5 13:36:52 our-server-hostname sshd[1601]: Failed password for r.r from 142.93.249.118 port 41912 ssh2 Oct 5 13:41:08 our-server-hostname sshd[2260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.249.118 user=r.r Oct 5 13:41:10 our-server-hostname sshd[2260]: Failed password for r.r from 142.93.249.118 port 49428 ssh2 Oct 5 13:45:12 our-server-hostname sshd[2814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.249.118 user=r.r Oct 5 13:45:1........ -------------------------------	2020-10-06 12:15:43
142.93.249.29	attackbots	142.93.249.29 - - [25/May/2020:22:17:45 +0200] "GET /wp-login.php HTTP/1.1" 200 5865 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.249.29 - - [25/May/2020:22:17:47 +0200] "POST /wp-login.php HTTP/1.1" 200 6116 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.249.29 - - [25/May/2020:22:17:49 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-26 07:01:04
142.93.249.29	attack	xmlrpc attack	2020-05-13 20:40:53
142.93.249.29	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-05-02 23:46:12
142.93.249.29	attackbots	Automatic report - XMLRPC Attack	2020-05-02 12:40:51
142.93.249.69	attackspambots	" "	2019-12-14 02:52:56
142.93.249.69	attackbotsspam	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2019-12-13 07:49:53

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.249.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45984
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.93.249.145.			IN	A

;; AUTHORITY SECTION:
.			564	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022070200 1800 900 604800 86400

;; Query time: 50 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 02 17:15:03 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 145.249.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.249.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
64.225.116.59	attackbots	$f2bV_matches	2020-09-30 05:21:45
161.35.236.158	attack	Port scan detected on ports: 4443[TCP], 4443[TCP], 4443[TCP]	2020-09-30 05:09:51
185.186.240.174	attackbots	2020-09-29T11:58:15.887806cyberdyne sshd[369230]: Invalid user games from 185.186.240.174 port 41712 2020-09-29T11:58:15.894251cyberdyne sshd[369230]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.186.240.174 2020-09-29T11:58:15.887806cyberdyne sshd[369230]: Invalid user games from 185.186.240.174 port 41712 2020-09-29T11:58:18.497284cyberdyne sshd[369230]: Failed password for invalid user games from 185.186.240.174 port 41712 ssh2 ...	2020-09-30 05:30:43
110.54.232.151	attackspambots	malicious Brute-Force reported by https://www.patrick-binder.de ...	2020-09-30 05:15:04
119.123.177.156	attackspambots	Invalid user user1 from 119.123.177.156 port 61896	2020-09-30 05:26:30
1.186.57.150	attackbots	Sep 29 22:41:45 sip sshd[13030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.186.57.150 Sep 29 22:41:46 sip sshd[13030]: Failed password for invalid user test2000 from 1.186.57.150 port 38892 ssh2 Sep 29 22:47:18 sip sshd[14526]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.186.57.150	2020-09-30 05:40:28
178.128.226.161	attackbotsspam	178.128.226.161 - - [29/Sep/2020:17:33:37 +0100] "POST /wp-login.php HTTP/1.1" 200 2340 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.128.226.161 - - [29/Sep/2020:17:33:39 +0100] "POST /wp-login.php HTTP/1.1" 200 2319 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.128.226.161 - - [29/Sep/2020:17:33:40 +0100] "POST /wp-login.php HTTP/1.1" 200 2367 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-30 05:37:34
206.189.162.99	attackbots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-09-29T18:55:23Z and 2020-09-29T19:00:37Z	2020-09-30 05:39:57
129.211.10.111	attack	Sep 29 22:35:29 h2829583 sshd[28088]: Failed password for root from 129.211.10.111 port 50730 ssh2	2020-09-30 05:19:07
123.1.154.200	attack	2020-09-29 15:48:30,201 fail2ban.actions: WARNING [ssh] Ban 123.1.154.200	2020-09-30 05:19:54
123.31.26.144	attackbotsspam	Invalid user backup from 123.31.26.144 port 20882	2020-09-30 05:20:39
117.131.29.87	attackbots	Sep 29 11:33:59 mavik sshd[23696]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.131.29.87 user=root Sep 29 11:34:01 mavik sshd[23696]: Failed password for root from 117.131.29.87 port 49718 ssh2 Sep 29 11:35:09 mavik sshd[23755]: Invalid user postgres from 117.131.29.87 Sep 29 11:35:09 mavik sshd[23755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.131.29.87 Sep 29 11:35:11 mavik sshd[23755]: Failed password for invalid user postgres from 117.131.29.87 port 33170 ssh2 ...	2020-09-30 05:22:45
106.53.192.15	attackbotsspam	Sep 29 22:56:09 ovpn sshd\[23287\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.192.15 user=root Sep 29 22:56:11 ovpn sshd\[23287\]: Failed password for root from 106.53.192.15 port 35992 ssh2 Sep 29 23:13:02 ovpn sshd\[27478\]: Invalid user majordomo from 106.53.192.15 Sep 29 23:13:02 ovpn sshd\[27478\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.192.15 Sep 29 23:13:04 ovpn sshd\[27478\]: Failed password for invalid user majordomo from 106.53.192.15 port 54052 ssh2	2020-09-30 05:15:33
156.96.118.58	attackbotsspam	Sep 23 11:29:56 mail postfix/smtpd[12822]: warning: unknown[156.96.118.58]: SASL LOGIN authentication failed: authentication failure	2020-09-30 05:31:45
122.51.101.136	attackspam	Found on Alienvault / proto=6 . srcport=46378 . dstport=30199 . (3311)	2020-09-30 05:33:32

最近上报的IP列表

180.76.187.18	146.70.123.180	115.150.114.13	113.14.131.97
147.182.128.252	152.242.54.209	121.230.41.53	56.127.4.3
153.176.0.60	154.89.5.113	156.96.151.132	167.56.135.55
171.104.244.118	186.176.212.214	157.245.11.190	166.215.55.208
157.245.108.28	171.110.82.70	172.241.192.240	180.76.173.216