142.93.3.219 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	/new_license.php.suspected?check=1	2019-06-21 21:39:37

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.38.61	attack	2020-10-04T22:17:03.096869ollin.zadara.org sshd[228319]: User root from 142.93.38.61 not allowed because not listed in AllowUsers 2020-10-04T22:17:04.630811ollin.zadara.org sshd[228319]: Failed password for invalid user root from 142.93.38.61 port 35560 ssh2 ...	2020-10-05 03:31:22
142.93.38.61	attackspam	Oct 4 05:53:17 serwer sshd\[12235\]: Invalid user carlos from 142.93.38.61 port 35074 Oct 4 05:53:17 serwer sshd\[12235\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.38.61 Oct 4 05:53:19 serwer sshd\[12235\]: Failed password for invalid user carlos from 142.93.38.61 port 35074 ssh2 ...	2020-10-04 19:18:49
142.93.34.237	attackbots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-10-01 18:50:53
142.93.37.178	attackbotsspam	Scan or attack attempt on email service.	2020-09-26 03:20:11
142.93.37.178	attack	Scan or attack attempt on email service.	2020-09-25 19:11:06
142.93.35.169	attack	142.93.35.169 - - [23/Sep/2020:12:34:19 +0100] "POST /wp-login.php HTTP/1.1" 200 2354 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.35.169 - - [23/Sep/2020:12:34:20 +0100] "POST /wp-login.php HTTP/1.1" 200 2394 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.35.169 - - [23/Sep/2020:12:34:20 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-23 20:23:00
142.93.35.169	attackbots	142.93.35.169 - - [23/Sep/2020:03:20:18 +0200] "POST /xmlrpc.php HTTP/1.1" 403 613 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.35.169 - - [23/Sep/2020:03:34:25 +0200] "POST /xmlrpc.php HTTP/1.1" 403 613 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-23 12:46:31
142.93.35.169	attackspambots	Automatic report - XMLRPC Attack	2020-09-23 04:31:15
142.93.35.169	attackbotsspam	Automatic report - XMLRPC Attack	2020-09-21 00:35:31
142.93.34.237	attack	scans 2 times in preceeding hours on the ports (in chronological order) 2812 2812	2020-09-20 22:48:04
142.93.35.169	attackbotsspam	CMS (WordPress or Joomla) login attempt.	2020-09-20 16:28:10
142.93.34.237	attackbotsspam	(sshd) Failed SSH login from 142.93.34.237 (GB/United Kingdom/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 20 02:32:21 optimus sshd[18174]: Invalid user postgres from 142.93.34.237 Sep 20 02:32:21 optimus sshd[18174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.34.237 Sep 20 02:32:23 optimus sshd[18174]: Failed password for invalid user postgres from 142.93.34.237 port 53744 ssh2 Sep 20 02:34:07 optimus sshd[19447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.34.237 user=root Sep 20 02:34:09 optimus sshd[19447]: Failed password for root from 142.93.34.237 port 47652 ssh2	2020-09-20 14:39:11
142.93.34.237	attackbots	[ssh] SSH attack	2020-09-20 06:38:03
142.93.35.169	attackbotsspam	xmlrpc attack	2020-09-12 02:21:01
142.93.35.169	attackspam	xmlrpc attack	2020-09-11 18:13:57

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.3.219
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29315
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.3.219.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062100 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jun 21 21:39:28 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 219.3.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 219.3.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
98.111.207.60	attackbotsspam	Dec 16 09:47:32 web8 sshd\[8414\]: Invalid user dump from 98.111.207.60 Dec 16 09:47:32 web8 sshd\[8414\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.111.207.60 Dec 16 09:47:34 web8 sshd\[8414\]: Failed password for invalid user dump from 98.111.207.60 port 38976 ssh2 Dec 16 09:52:39 web8 sshd\[10692\]: Invalid user brouste from 98.111.207.60 Dec 16 09:52:39 web8 sshd\[10692\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.111.207.60	2019-12-16 20:56:05
74.141.132.233	attackbotsspam	--- report --- Dec 16 07:51:27 sshd: Connection from 74.141.132.233 port 49440 Dec 16 07:51:27 sshd: Invalid user telos from 74.141.132.233 Dec 16 07:51:30 sshd: Failed password for invalid user telos from 74.141.132.233 port 49440 ssh2 Dec 16 07:51:30 sshd: Received disconnect from 74.141.132.233: 11: Bye Bye [preauth]	2019-12-16 21:08:29
106.12.113.223	attackspam	Dec 16 13:17:27 server sshd\[25611\]: Invalid user redmine from 106.12.113.223 Dec 16 13:17:27 server sshd\[25611\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.113.223 Dec 16 13:17:29 server sshd\[25611\]: Failed password for invalid user redmine from 106.12.113.223 port 39842 ssh2 Dec 16 13:33:48 server sshd\[30617\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.113.223 user=root Dec 16 13:33:50 server sshd\[30617\]: Failed password for root from 106.12.113.223 port 33410 ssh2 ...	2019-12-16 21:15:28
172.105.17.188	spam	Interac Transfer Scamming (www.billing-adjustment.ca)	2019-12-16 20:51:24
42.242.227.6	attackspam	Scanning	2019-12-16 21:04:59
176.204.66.226	attackspambots	Dec 16 07:23:44 srv206 sshd[4422]: Invalid user backuppc from 176.204.66.226 Dec 16 07:23:45 srv206 sshd[4422]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.204.66.226 Dec 16 07:23:44 srv206 sshd[4422]: Invalid user backuppc from 176.204.66.226 Dec 16 07:23:47 srv206 sshd[4422]: Failed password for invalid user backuppc from 176.204.66.226 port 41253 ssh2 ...	2019-12-16 21:18:05
185.143.223.104	attackbots	Dec 16 13:37:02 debian-2gb-nbg1-2 kernel: \[152607.583672\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.143.223.104 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=61375 PROTO=TCP SPT=53015 DPT=800 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-16 20:53:09
74.105.47.41	attackspambots	Dec 16 12:55:54 server sshd\[19129\]: Invalid user test from 74.105.47.41 Dec 16 12:55:54 server sshd\[19129\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=pool-74-105-47-41.nwrknj.fios.verizon.net Dec 16 12:55:57 server sshd\[19129\]: Failed password for invalid user test from 74.105.47.41 port 55628 ssh2 Dec 16 13:22:37 server sshd\[27296\]: Invalid user rpc from 74.105.47.41 Dec 16 13:22:37 server sshd\[27296\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=pool-74-105-47-41.nwrknj.fios.verizon.net ...	2019-12-16 20:50:09
73.19.194.3	attackbots	Dec 16 13:03:02 sauna sshd[178037]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=73.19.194.3 Dec 16 13:03:04 sauna sshd[178037]: Failed password for invalid user provasi from 73.19.194.3 port 50804 ssh2 ...	2019-12-16 20:47:58
41.34.197.106	attackbots	invalid user	2019-12-16 20:59:28
49.67.144.154	attackbotsspam	Scanning	2019-12-16 20:44:28
167.99.234.170	attackspambots	Dec 16 12:53:31 srv01 sshd[9177]: Invalid user admin from 167.99.234.170 port 50246 Dec 16 12:53:31 srv01 sshd[9177]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.234.170 Dec 16 12:53:31 srv01 sshd[9177]: Invalid user admin from 167.99.234.170 port 50246 Dec 16 12:53:33 srv01 sshd[9177]: Failed password for invalid user admin from 167.99.234.170 port 50246 ssh2 Dec 16 12:58:38 srv01 sshd[9485]: Invalid user treharne from 167.99.234.170 port 56924 ...	2019-12-16 21:11:36
106.13.44.100	attack	Invalid user backup from 106.13.44.100 port 49146	2019-12-16 21:15:13
51.38.126.92	attackbotsspam	Dec 15 20:18:38 sachi sshd\[3288\]: Invalid user server from 51.38.126.92 Dec 15 20:18:38 sachi sshd\[3288\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.ip-51-38-126.eu Dec 15 20:18:40 sachi sshd\[3288\]: Failed password for invalid user server from 51.38.126.92 port 35482 ssh2 Dec 15 20:23:56 sachi sshd\[3707\]: Invalid user server from 51.38.126.92 Dec 15 20:23:56 sachi sshd\[3707\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.ip-51-38-126.eu	2019-12-16 21:09:17
49.247.214.67	attackspambots	Dec 16 13:55:31 ns3042688 sshd\[15208\]: Invalid user quercia from 49.247.214.67 Dec 16 13:55:31 ns3042688 sshd\[15208\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.214.67 Dec 16 13:55:33 ns3042688 sshd\[15208\]: Failed password for invalid user quercia from 49.247.214.67 port 41780 ssh2 Dec 16 14:05:14 ns3042688 sshd\[31172\]: Invalid user skavhaug from 49.247.214.67 Dec 16 14:05:14 ns3042688 sshd\[31172\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.214.67 ...	2019-12-16 21:17:06

最近上报的IP列表

220.118.124.195	118.96.241.198	175.175.136.255	114.156.2.98
60.209.18.160	46.105.156.149	182.32.170.156	1.1.134.194
41.46.87.228	201.77.171.204	177.8.155.38	217.125.101.178
68.183.60.93	123.178.134.34	61.93.126.108	37.114.164.217
180.253.98.107	101.99.13.137	221.203.125.212	220.245.192.195