142.93.249.145

基本信息:

城市(city): North Bergen

省份(region): New Jersey

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.249.118	attack	Oct 6 15:45:52 Tower sshd[36555]: Connection from 142.93.249.118 port 44680 on 192.168.10.220 port 22 rdomain "" Oct 6 15:45:55 Tower sshd[36555]: Failed password for root from 142.93.249.118 port 44680 ssh2 Oct 6 15:45:55 Tower sshd[36555]: Received disconnect from 142.93.249.118 port 44680:11: Bye Bye [preauth] Oct 6 15:45:55 Tower sshd[36555]: Disconnected from authenticating user root 142.93.249.118 port 44680 [preauth]	2020-10-07 04:30:28
142.93.249.118	attackbotsspam	Oct 5 13:23:11 our-server-hostname sshd[32265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.249.118 user=r.r Oct 5 13:23:13 our-server-hostname sshd[32265]: Failed password for r.r from 142.93.249.118 port 42104 ssh2 Oct 5 13:36:50 our-server-hostname sshd[1601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.249.118 user=r.r Oct 5 13:36:52 our-server-hostname sshd[1601]: Failed password for r.r from 142.93.249.118 port 41912 ssh2 Oct 5 13:41:08 our-server-hostname sshd[2260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.249.118 user=r.r Oct 5 13:41:10 our-server-hostname sshd[2260]: Failed password for r.r from 142.93.249.118 port 49428 ssh2 Oct 5 13:45:12 our-server-hostname sshd[2814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.249.118 user=r.r Oct 5 13:45:1........ -------------------------------	2020-10-06 20:34:11
142.93.249.118	attackspam	Oct 5 13:23:11 our-server-hostname sshd[32265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.249.118 user=r.r Oct 5 13:23:13 our-server-hostname sshd[32265]: Failed password for r.r from 142.93.249.118 port 42104 ssh2 Oct 5 13:36:50 our-server-hostname sshd[1601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.249.118 user=r.r Oct 5 13:36:52 our-server-hostname sshd[1601]: Failed password for r.r from 142.93.249.118 port 41912 ssh2 Oct 5 13:41:08 our-server-hostname sshd[2260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.249.118 user=r.r Oct 5 13:41:10 our-server-hostname sshd[2260]: Failed password for r.r from 142.93.249.118 port 49428 ssh2 Oct 5 13:45:12 our-server-hostname sshd[2814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.249.118 user=r.r Oct 5 13:45:1........ -------------------------------	2020-10-06 12:15:43
142.93.249.29	attackbots	142.93.249.29 - - [25/May/2020:22:17:45 +0200] "GET /wp-login.php HTTP/1.1" 200 5865 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.249.29 - - [25/May/2020:22:17:47 +0200] "POST /wp-login.php HTTP/1.1" 200 6116 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.249.29 - - [25/May/2020:22:17:49 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-26 07:01:04
142.93.249.29	attack	xmlrpc attack	2020-05-13 20:40:53
142.93.249.29	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-05-02 23:46:12
142.93.249.29	attackbots	Automatic report - XMLRPC Attack	2020-05-02 12:40:51
142.93.249.69	attackspambots	" "	2019-12-14 02:52:56
142.93.249.69	attackbotsspam	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2019-12-13 07:49:53

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.249.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45984
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.93.249.145.			IN	A

;; AUTHORITY SECTION:
.			564	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022070200 1800 900 604800 86400

;; Query time: 50 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 02 17:15:03 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 145.249.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.249.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
46.151.73.21	attack	(PL/Poland/-) SMTP Bruteforcing attempts	2020-06-05 12:37:25
45.6.27.248	attackbots	(BR/Brazil/-) SMTP Bruteforcing attempts	2020-06-05 12:53:03
114.119.164.50	attackspam	Automatic report - Banned IP Access	2020-06-05 12:40:33
89.187.177.132	attackbots	(From milan.sunderland@outlook.com) ABOLISH REACTIVE DEPRESSION AND EMERGE FROM ITS DEEP, DARK, BLACK HOLE? • Do you feel this came from the beginnings of a dysfunctional family system? • Or did this come from the loss of a beloved job or loved one? • Or did this come from dire effects from the disease of Alcoholism? • Or did this come from the brainwashing attempts of a fearful and angry world, i.e. terroristic recruitment? Do you know that whatever caused this DEEP, DARK, BLACK HOLE OF DEPRESSION which may have come from a NERVOUS BREAKDOWN can cease its influence over your life? Yes, you do not have to live buried in negative thinking from the defeat from negative life experiences in your life. Please know that any tragic experiences from childhood to adulthood need no longer affect your chance to gain emotional wellbeing. Instead, now you have the opportunity to be HAPPY and in PEACEFUL CONTROL OF YOUR OWN DESTINY with only the memory of what once ailed you. Now is the time to overcome depression an	2020-06-05 12:31:39
115.159.214.247	attackspam	Jun 5 05:56:05 * sshd[28611]: Failed password for root from 115.159.214.247 port 39690 ssh2	2020-06-05 12:28:08
78.222.225.251	attackspam	[Fri Jun 05 10:58:09.712589 2020] [:error] [pid 10612:tid 140479439320832] [client 78.222.225.251:14311] [client 78.222.225.251] ModSecurity: Access denied with code 403 (phase 4). Pattern match "^5\\\\d{2}$" at RESPONSE_STATUS. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/RESPONSE-950-DATA-LEAKAGES.conf"] [line "118"] [id "950100"] [msg "The Application Returned a 500-Level Status Code"] [data "Matched Data: 503 found within RESPONSE_STATUS: 503"] [severity "ERROR"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-disclosure"] [tag "WASCTC/WASC-13"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.6"] [tag "paranoia-level/2"] [hostname "chekfast.zennolab.com"] [uri "/proxy.php"] [unique_id "XtnC0UwYYJZfsyrbdr9fFQAAAfA"], referer: RefererString ...	2020-06-05 12:36:52
122.51.254.201	attackspam	Jun 5 00:10:33 ny01 sshd[11623]: Failed password for root from 122.51.254.201 port 42894 ssh2 Jun 5 00:14:38 ny01 sshd[12125]: Failed password for root from 122.51.254.201 port 32886 ssh2	2020-06-05 12:31:05
152.136.213.72	attack	Jun 5 03:49:12 ip-172-31-61-156 sshd[19254]: Failed password for root from 152.136.213.72 port 35992 ssh2 Jun 5 03:53:48 ip-172-31-61-156 sshd[19475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.213.72 user=root Jun 5 03:53:49 ip-172-31-61-156 sshd[19475]: Failed password for root from 152.136.213.72 port 57980 ssh2 Jun 5 03:58:18 ip-172-31-61-156 sshd[19708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.213.72 user=root Jun 5 03:58:20 ip-172-31-61-156 sshd[19708]: Failed password for root from 152.136.213.72 port 51728 ssh2 ...	2020-06-05 12:28:45
45.7.227.6	attackbotsspam	(BR/Brazil/-) SMTP Bruteforcing attempts	2020-06-05 12:42:14
66.249.64.66	attack	Automatic report - Banned IP Access	2020-06-05 12:43:59
178.216.249.168	attackspam	odoo8 ...	2020-06-05 12:51:53
91.134.169.25	attack	91.134.169.25 - - [05/Jun/2020:05:57:59 +0200] "GET /wp-login.php HTTP/1.1" 200 6042 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.134.169.25 - - [05/Jun/2020:05:57:59 +0200] "POST /wp-login.php HTTP/1.1" 200 6293 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.134.169.25 - - [05/Jun/2020:05:58:00 +0200] "GET /wp-login.php HTTP/1.1" 200 6042 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-05 12:43:09
183.15.179.147	attackbotsspam	Jun 5 06:09:50 legacy sshd[17045]: Failed password for root from 183.15.179.147 port 60082 ssh2 Jun 5 06:13:42 legacy sshd[17153]: Failed password for root from 183.15.179.147 port 55226 ssh2 ...	2020-06-05 12:32:47
112.218.73.138	attackspambots	Unauthorized IMAP connection attempt	2020-06-05 12:29:06
218.17.162.119	attackbots	Jun 5 06:15:40 fhem-rasp sshd[20415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.17.162.119 user=root Jun 5 06:15:41 fhem-rasp sshd[20415]: Failed password for root from 218.17.162.119 port 36834 ssh2 ...	2020-06-05 12:19:51

最近上报的IP列表

180.76.187.18	146.70.123.180	115.150.114.13	113.14.131.97
147.182.128.252	152.242.54.209	121.230.41.53	56.127.4.3
153.176.0.60	154.89.5.113	156.96.151.132	167.56.135.55
171.104.244.118	186.176.212.214	157.245.11.190	166.215.55.208
157.245.108.28	171.110.82.70	172.241.192.240	180.76.173.216