142.93.3.9 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Automatic report - Banned IP Access	2020-08-23 18:29:58

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.38.61	attack	2020-10-04T22:17:03.096869ollin.zadara.org sshd[228319]: User root from 142.93.38.61 not allowed because not listed in AllowUsers 2020-10-04T22:17:04.630811ollin.zadara.org sshd[228319]: Failed password for invalid user root from 142.93.38.61 port 35560 ssh2 ...	2020-10-05 03:31:22
142.93.38.61	attackspam	Oct 4 05:53:17 serwer sshd\[12235\]: Invalid user carlos from 142.93.38.61 port 35074 Oct 4 05:53:17 serwer sshd\[12235\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.38.61 Oct 4 05:53:19 serwer sshd\[12235\]: Failed password for invalid user carlos from 142.93.38.61 port 35074 ssh2 ...	2020-10-04 19:18:49
142.93.34.237	attackbots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-10-01 18:50:53
142.93.37.178	attackbotsspam	Scan or attack attempt on email service.	2020-09-26 03:20:11
142.93.37.178	attack	Scan or attack attempt on email service.	2020-09-25 19:11:06
142.93.35.169	attack	142.93.35.169 - - [23/Sep/2020:12:34:19 +0100] "POST /wp-login.php HTTP/1.1" 200 2354 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.35.169 - - [23/Sep/2020:12:34:20 +0100] "POST /wp-login.php HTTP/1.1" 200 2394 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.35.169 - - [23/Sep/2020:12:34:20 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-23 20:23:00
142.93.35.169	attackbots	142.93.35.169 - - [23/Sep/2020:03:20:18 +0200] "POST /xmlrpc.php HTTP/1.1" 403 613 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.35.169 - - [23/Sep/2020:03:34:25 +0200] "POST /xmlrpc.php HTTP/1.1" 403 613 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-23 12:46:31
142.93.35.169	attackspambots	Automatic report - XMLRPC Attack	2020-09-23 04:31:15
142.93.35.169	attackbotsspam	Automatic report - XMLRPC Attack	2020-09-21 00:35:31
142.93.34.237	attack	scans 2 times in preceeding hours on the ports (in chronological order) 2812 2812	2020-09-20 22:48:04
142.93.35.169	attackbotsspam	CMS (WordPress or Joomla) login attempt.	2020-09-20 16:28:10
142.93.34.237	attackbotsspam	(sshd) Failed SSH login from 142.93.34.237 (GB/United Kingdom/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 20 02:32:21 optimus sshd[18174]: Invalid user postgres from 142.93.34.237 Sep 20 02:32:21 optimus sshd[18174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.34.237 Sep 20 02:32:23 optimus sshd[18174]: Failed password for invalid user postgres from 142.93.34.237 port 53744 ssh2 Sep 20 02:34:07 optimus sshd[19447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.34.237 user=root Sep 20 02:34:09 optimus sshd[19447]: Failed password for root from 142.93.34.237 port 47652 ssh2	2020-09-20 14:39:11
142.93.34.237	attackbots	[ssh] SSH attack	2020-09-20 06:38:03
142.93.35.169	attackbotsspam	xmlrpc attack	2020-09-12 02:21:01
142.93.35.169	attackspam	xmlrpc attack	2020-09-11 18:13:57

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.3.9
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34596
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.3.9.			IN	A

;; AUTHORITY SECTION:
.			414	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082300 1800 900 604800 86400

;; Query time: 100 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Aug 23 18:29:54 CST 2020
;; MSG SIZE  rcvd: 114

HOST信息:

Host 9.3.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 9.3.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
150.129.60.229	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:05:45.	2019-09-28 04:33:32
192.236.147.184	attackbots	2019-09-27 06:48:56 H=(durham.ultracarss.best) [192.236.147.184]:40924 I=[192.147.25.65]:25 F=<1060-85-46293-291-betsey1=why.net@mail.ultracarss.best> rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-09-27 07:03:44 H=(durham.ultracarss.best) [192.236.147.184]:53673 I=[192.147.25.65]:25 F=<1060-85-349742-291-lorentzen=why.net@mail.ultracarss.best> rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-09-27 07:05:58 H=(durham.ultracarss.best) [192.236.147.184]:45015 I=[192.147.25.65]:25 F=<1060-85-638861-291-wjhawk=why.net@mail.ultracarss.best> rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) ...	2019-09-28 04:14:55
185.247.20.162	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:05:58.	2019-09-28 04:15:11
203.128.242.166	attackbots	Sep 27 15:16:51 web8 sshd\[13900\]: Invalid user atu from 203.128.242.166 Sep 27 15:16:51 web8 sshd\[13900\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.128.242.166 Sep 27 15:16:53 web8 sshd\[13900\]: Failed password for invalid user atu from 203.128.242.166 port 54167 ssh2 Sep 27 15:21:18 web8 sshd\[16000\]: Invalid user admin from 203.128.242.166 Sep 27 15:21:18 web8 sshd\[16000\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.128.242.166	2019-09-28 04:39:45
117.60.81.73	attack	firewall-block, port(s): 22/tcp	2019-09-28 04:51:39
177.75.49.36	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:05:49.	2019-09-28 04:28:09
176.59.138.227	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:05:48.	2019-09-28 04:29:35
117.196.2.204	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:05:32.	2019-09-28 04:49:33
176.36.208.138	attack	RDP Brute-Force (Grieskirchen RZ1)	2019-09-28 04:40:26
183.88.242.150	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:05:57.	2019-09-28 04:16:57
125.163.146.206	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:05:39.	2019-09-28 04:40:46
182.151.200.64	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:05:55.	2019-09-28 04:20:08
179.178.88.72	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:05:51.	2019-09-28 04:25:59
177.184.135.94	attackbotsspam	Unauthorized connection attempt from IP address 177.184.135.94 on Port 445(SMB)	2019-09-28 04:28:59
118.71.198.109	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:05:36.	2019-09-28 04:45:49

最近上报的IP列表

188.16.147.88	186.116.7.214	181.81.246.115	176.9.28.27
89.163.134.171	154.120.52.41	14.192.192.94	3.120.146.79
123.207.166.92	118.68.4.185	114.33.89.159	113.177.211.17
177.74.183.196	110.138.166.143	139.99.203.12	217.197.39.130
178.173.131.242	218.77.108.1	185.164.176.32	101.26.252.12