142.93.249.145

基本信息:

城市(city): North Bergen

省份(region): New Jersey

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.249.118	attack	Oct 6 15:45:52 Tower sshd[36555]: Connection from 142.93.249.118 port 44680 on 192.168.10.220 port 22 rdomain "" Oct 6 15:45:55 Tower sshd[36555]: Failed password for root from 142.93.249.118 port 44680 ssh2 Oct 6 15:45:55 Tower sshd[36555]: Received disconnect from 142.93.249.118 port 44680:11: Bye Bye [preauth] Oct 6 15:45:55 Tower sshd[36555]: Disconnected from authenticating user root 142.93.249.118 port 44680 [preauth]	2020-10-07 04:30:28
142.93.249.118	attackbotsspam	Oct 5 13:23:11 our-server-hostname sshd[32265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.249.118 user=r.r Oct 5 13:23:13 our-server-hostname sshd[32265]: Failed password for r.r from 142.93.249.118 port 42104 ssh2 Oct 5 13:36:50 our-server-hostname sshd[1601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.249.118 user=r.r Oct 5 13:36:52 our-server-hostname sshd[1601]: Failed password for r.r from 142.93.249.118 port 41912 ssh2 Oct 5 13:41:08 our-server-hostname sshd[2260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.249.118 user=r.r Oct 5 13:41:10 our-server-hostname sshd[2260]: Failed password for r.r from 142.93.249.118 port 49428 ssh2 Oct 5 13:45:12 our-server-hostname sshd[2814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.249.118 user=r.r Oct 5 13:45:1........ -------------------------------	2020-10-06 20:34:11
142.93.249.118	attackspam	Oct 5 13:23:11 our-server-hostname sshd[32265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.249.118 user=r.r Oct 5 13:23:13 our-server-hostname sshd[32265]: Failed password for r.r from 142.93.249.118 port 42104 ssh2 Oct 5 13:36:50 our-server-hostname sshd[1601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.249.118 user=r.r Oct 5 13:36:52 our-server-hostname sshd[1601]: Failed password for r.r from 142.93.249.118 port 41912 ssh2 Oct 5 13:41:08 our-server-hostname sshd[2260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.249.118 user=r.r Oct 5 13:41:10 our-server-hostname sshd[2260]: Failed password for r.r from 142.93.249.118 port 49428 ssh2 Oct 5 13:45:12 our-server-hostname sshd[2814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.249.118 user=r.r Oct 5 13:45:1........ -------------------------------	2020-10-06 12:15:43
142.93.249.29	attackbots	142.93.249.29 - - [25/May/2020:22:17:45 +0200] "GET /wp-login.php HTTP/1.1" 200 5865 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.249.29 - - [25/May/2020:22:17:47 +0200] "POST /wp-login.php HTTP/1.1" 200 6116 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.249.29 - - [25/May/2020:22:17:49 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-26 07:01:04
142.93.249.29	attack	xmlrpc attack	2020-05-13 20:40:53
142.93.249.29	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-05-02 23:46:12
142.93.249.29	attackbots	Automatic report - XMLRPC Attack	2020-05-02 12:40:51
142.93.249.69	attackspambots	" "	2019-12-14 02:52:56
142.93.249.69	attackbotsspam	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2019-12-13 07:49:53

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.249.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45984
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.93.249.145.			IN	A

;; AUTHORITY SECTION:
.			564	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022070200 1800 900 604800 86400

;; Query time: 50 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 02 17:15:03 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 145.249.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.249.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
116.140.162.82	attackbots	Unauthorised access (Aug 29) SRC=116.140.162.82 LEN=40 TTL=49 ID=18933 TCP DPT=8080 WINDOW=27198 SYN Unauthorised access (Aug 29) SRC=116.140.162.82 LEN=40 TTL=49 ID=29457 TCP DPT=8080 WINDOW=3451 SYN	2019-08-30 11:43:24
128.199.108.108	attack	Aug 30 00:42:39 meumeu sshd[22429]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.108.108 Aug 30 00:42:41 meumeu sshd[22429]: Failed password for invalid user alumni from 128.199.108.108 port 42158 ssh2 Aug 30 00:47:09 meumeu sshd[23136]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.108.108 ...	2019-08-30 11:37:30
113.134.211.228	attack	Aug 29 17:12:18 plusreed sshd[16529]: Invalid user priya from 113.134.211.228 ...	2019-08-30 11:25:47
61.163.158.36	attackbots	Unauthorised access (Aug 29) SRC=61.163.158.36 LEN=40 TTL=49 ID=57204 TCP DPT=8080 WINDOW=18268 SYN Unauthorised access (Aug 29) SRC=61.163.158.36 LEN=40 TTL=49 ID=40360 TCP DPT=8080 WINDOW=46532 SYN	2019-08-30 11:18:31
198.37.152.11	attackbots	X-Originating-IP: [198.37.152.11] Received: from 10.217.150.13 (EHLO o103.em.updates.bbcamerica.com) (198.37.152.11) by mta4372.mail.ne1.yahoo.com with SMTPS; Wed, 28 Aug 2019 21:31:30 +0000 DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=updates.bbcamerica.com; h=content-transfer-encoding:content-type:from:mime-version:reply-to:subject:to; s=s1; bh=oS1t+u0qUI5W54zDWuyH+KBH+P4=; b=Y4OLx3OwfMHRoQKNsHB13PC B6/HudG0pCFbFIy3wG4n1FClldCjIBnULCQUVU0mZDK7oBEv7IXL9hMpQswuK107 QMVLvdvreOUZUMWhUpTRkDNgtN//g7t36usNGKX7xyiZ6ON7IZbRgzcj5thbaGvd Zvj9ZOkH5ymSSg+dIZN0= DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=sendgrid.info;	2019-08-30 11:28:57
198.108.66.254	attackspam	firewall-block, port(s): 2082/tcp	2019-08-30 11:26:07
114.67.80.39	attackspambots	"Fail2Ban detected SSH brute force attempt"	2019-08-30 11:19:20
211.106.110.49	attackspam	Invalid user raul from 211.106.110.49 port 47804	2019-08-30 11:15:15
185.209.0.83	attackspambots	Port scan on 16 port(s): 6000 6008 6016 6017 6020 6022 6028 6043 6048 6049 6162 6166 6169 6170 6172 6181	2019-08-30 11:30:31
181.176.221.221	attack	Aug 29 17:01:26 sachi sshd\[32235\]: Invalid user romeo from 181.176.221.221 Aug 29 17:01:26 sachi sshd\[32235\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.176.221.221 Aug 29 17:01:28 sachi sshd\[32235\]: Failed password for invalid user romeo from 181.176.221.221 port 60474 ssh2 Aug 29 17:06:24 sachi sshd\[32718\]: Invalid user tt from 181.176.221.221 Aug 29 17:06:24 sachi sshd\[32718\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.176.221.221	2019-08-30 11:35:08
185.211.245.170	attackbotsspam	Aug 30 04:38:10 mail postfix/smtpd\[20454\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 30 05:12:31 mail postfix/smtpd\[25160\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 30 05:42:36 mail postfix/smtpd\[25272\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 30 05:42:53 mail postfix/smtpd\[27295\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-08-30 12:02:29
191.241.166.23	attackspambots	Excessive failed login attempts on port 587	2019-08-30 11:54:54
106.241.16.119	attack	SSH Brute-Forcing (ownc)	2019-08-30 11:41:58
80.211.239.102	attackbotsspam	Aug 29 15:16:45 lcprod sshd\[26534\]: Invalid user nagios from 80.211.239.102 Aug 29 15:16:45 lcprod sshd\[26534\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.239.102 Aug 29 15:16:47 lcprod sshd\[26534\]: Failed password for invalid user nagios from 80.211.239.102 port 45966 ssh2 Aug 29 15:20:53 lcprod sshd\[26927\]: Invalid user honey from 80.211.239.102 Aug 29 15:20:53 lcprod sshd\[26927\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.239.102	2019-08-30 11:30:55
51.254.37.192	attack	Aug 30 04:31:02 mail sshd\[28139\]: Invalid user update from 51.254.37.192 Aug 30 04:31:02 mail sshd\[28139\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.37.192 Aug 30 04:31:03 mail sshd\[28139\]: Failed password for invalid user update from 51.254.37.192 port 44808 ssh2 ...	2019-08-30 11:24:04

最近上报的IP列表

180.76.187.18	146.70.123.180	115.150.114.13	113.14.131.97
147.182.128.252	152.242.54.209	121.230.41.53	56.127.4.3
153.176.0.60	154.89.5.113	156.96.151.132	167.56.135.55
171.104.244.118	186.176.212.214	157.245.11.190	166.215.55.208
157.245.108.28	171.110.82.70	172.241.192.240	180.76.173.216