142.93.98.244 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Brute forcing Wordpress login	2019-08-13 12:40:28
attackspambots	php WP PHPmyadamin ABUSE blocked for 12h	2019-07-10 19:23:04

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.98.45	attackbotsspam	...	2020-02-02 03:17:39
142.93.98.45	attackspambots	Dec 8 08:32:34 sachi sshd\[31856\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.98.45 user=root Dec 8 08:32:35 sachi sshd\[31856\]: Failed password for root from 142.93.98.45 port 53806 ssh2 Dec 8 08:38:18 sachi sshd\[32431\]: Invalid user hoge from 142.93.98.45 Dec 8 08:38:18 sachi sshd\[32431\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.98.45 Dec 8 08:38:20 sachi sshd\[32431\]: Failed password for invalid user hoge from 142.93.98.45 port 34950 ssh2	2019-12-09 02:38:54
142.93.98.232	attackspambots	Aug 12 08:22:26 xtremcommunity sshd\[8621\]: Invalid user netika from 142.93.98.232 port 35690 Aug 12 08:22:26 xtremcommunity sshd\[8621\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.98.232 Aug 12 08:22:28 xtremcommunity sshd\[8621\]: Failed password for invalid user netika from 142.93.98.232 port 35690 ssh2 Aug 12 08:26:32 xtremcommunity sshd\[8709\]: Invalid user wz from 142.93.98.232 port 57182 Aug 12 08:26:32 xtremcommunity sshd\[8709\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.98.232 ...	2019-08-12 20:30:53
142.93.98.26	attackbotsspam	Spam Timestamp : 03-Jul-19 13:43 _ BlockList Provider combined abuse _ (716)	2019-07-04 05:41:22

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.98.244
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45641
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.98.244.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019042101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 22 06:45:36 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 244.98.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 244.98.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
185.52.117.126	attack	Jan 4 06:51:24 legacy sshd[7048]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.52.117.126 Jan 4 06:51:26 legacy sshd[7048]: Failed password for invalid user user from 185.52.117.126 port 41138 ssh2 Jan 4 06:55:03 legacy sshd[7199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.52.117.126 ...	2020-01-04 15:35:29
106.13.124.124	attack	Jan 4 05:51:43 vps647732 sshd[16197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.124.124 Jan 4 05:51:45 vps647732 sshd[16197]: Failed password for invalid user ftpusr from 106.13.124.124 port 21583 ssh2 ...	2020-01-04 16:09:38
106.12.221.18	attackspambots	failed_logins	2020-01-04 15:51:28
169.158.177.138	attack	169.158.177.138 - - \[04/Jan/2020:05:52:13 +0100\] "POST /wp-login.php HTTP/1.0" 200 7427 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 169.158.177.138 - - \[04/Jan/2020:05:52:16 +0100\] "POST /wp-login.php HTTP/1.0" 200 7242 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 169.158.177.138 - - \[04/Jan/2020:05:52:19 +0100\] "POST /wp-login.php HTTP/1.0" 200 7239 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-01-04 15:52:52
185.46.229.141	attack	185.46.229.141 - - \[04/Jan/2020:05:52:27 +0100\] "POST /wp-login.php HTTP/1.0" 200 3080 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 185.46.229.141 - - \[04/Jan/2020:05:52:28 +0100\] "POST /wp-login.php HTTP/1.0" 200 3039 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 185.46.229.141 - - \[04/Jan/2020:05:52:29 +0100\] "POST /wp-login.php HTTP/1.0" 200 3048 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-01-04 15:47:36
164.177.42.33	attackspambots	Jan 4 05:52:41 cloud sshd[12050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=static-csq-cds-042033.business.bouyguestelecom.com ...	2020-01-04 15:41:20
192.144.164.167	attackspambots	Jan 4 06:58:00 ArkNodeAT sshd\[6051\]: Invalid user admin from 192.144.164.167 Jan 4 06:58:00 ArkNodeAT sshd\[6051\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.164.167 Jan 4 06:58:02 ArkNodeAT sshd\[6051\]: Failed password for invalid user admin from 192.144.164.167 port 58556 ssh2	2020-01-04 15:49:19
220.88.1.208	attackbotsspam	DATE:2020-01-04 08:01:19,IP:220.88.1.208,MATCHES:11,PORT:ssh	2020-01-04 15:42:43
221.2.172.11	attackbotsspam	Jan 4 07:29:14 localhost sshd\[3578\]: Invalid user manap from 221.2.172.11 port 41021 Jan 4 07:29:14 localhost sshd\[3578\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.2.172.11 Jan 4 07:29:16 localhost sshd\[3578\]: Failed password for invalid user manap from 221.2.172.11 port 41021 ssh2 Jan 4 07:34:48 localhost sshd\[3659\]: Invalid user user from 221.2.172.11 port 41712 Jan 4 07:34:48 localhost sshd\[3659\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.2.172.11 ...	2020-01-04 15:58:07
138.197.146.132	attack	Automatic report - XMLRPC Attack	2020-01-04 15:53:31
125.212.233.50	attackbots	Jan 4 08:06:36 plex sshd[1873]: Invalid user wang from 125.212.233.50 port 52090	2020-01-04 15:42:15
170.106.37.194	attackbots	firewall-block, port(s): 8001/tcp	2020-01-04 16:03:39
198.199.124.109	attackspam	Jan 4 08:28:31 ns381471 sshd[12990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.124.109 Jan 4 08:28:33 ns381471 sshd[12990]: Failed password for invalid user www from 198.199.124.109 port 43819 ssh2	2020-01-04 15:37:26
36.65.112.219	attackbots	Unauthorized connection attempt detected from IP address 36.65.112.219 to port 445	2020-01-04 16:12:34
119.185.18.191	attack	Jan 4 05:52:32 debian-2gb-nbg1-2 kernel: \[372878.167879\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=119.185.18.191 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=42 ID=6733 PROTO=TCP SPT=34478 DPT=23 WINDOW=50923 RES=0x00 SYN URGP=0	2020-01-04 15:46:26

最近上报的IP列表

112.161.29.48	5.196.162.103	221.125.165.144	221.178.127.89
198.108.66.24	162.243.151.176	107.170.202.111	60.29.163.114
120.25.60.70	77.201.57.107	220.181.51.109	91.234.246.13
88.149.164.161	145.255.28.2	217.130.82.14	5.160.130.2
113.88.167.4	51.173.77.192	197.83.209.141	45.124.15.48