198.143.155.142

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): SingleHop LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	[MK-VM6] Blocked by UFW	2020-04-03 15:38:06
attackbotsspam	" "	2020-01-04 00:04:59
attackspam	143/tcp 2222/tcp 81/tcp... [2019-09-15/11-01]9pkt,8pt.(tcp)	2019-11-01 13:21:56
attackbotsspam	[MySQL inject/portscan] tcp/3306 in spfbl.net:'listed' *(RWIN=1024)(10151156)	2019-10-16 00:29:06
attackbotsspam	111/tcp 1723/tcp 995/tcp... [2019-05-17/07-07]9pkt,9pt.(tcp)	2019-07-07 18:22:45

相同子网IP讨论:

IP	类型	评论内容	时间
198.143.155.139	attackbots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-10-11 04:23:59
198.143.155.139	attackbots	TCP port : 5986	2020-10-10 20:19:00
198.143.155.138	attackbots	TCP (SYN) 198.143.155.138:11549 -> port 12345, len 44	2020-09-27 02:49:06
198.143.155.138	attackspambots	Automatic report - Banned IP Access	2020-09-26 18:45:50
198.143.155.138	attack	Attempted to establish connection to non opened port 19	2020-08-08 04:22:07
198.143.155.138	attack	[Thu Jul 16 03:59:00 2020] - DDoS Attack From IP: 198.143.155.138 Port: 24914	2020-08-07 00:58:16
198.143.155.138	attackbotsspam	Unauthorized connection attempt detected from IP address 198.143.155.138 to port 110 [T]	2020-07-22 22:35:38
198.143.155.138	attackbotsspam	Unauthorized connection attempt detected from IP address 198.143.155.138 to port 7218	2020-07-15 03:55:51
198.143.155.138	attackbotsspam	Unauthorized connection attempt detected from IP address 198.143.155.138 to port 8080	2020-07-08 22:57:53
198.143.155.139	attackspambots	[Mon Jun 15 13:04:02 2020] - DDoS Attack From IP: 198.143.155.139 Port: 15826	2020-07-08 22:46:53
198.143.155.139	attackbots	" "	2020-06-24 23:34:13
198.143.155.139	attackbotsspam	5938/tcp 81/tcp 5560/tcp... [2020-04-23/06-19]17pkt,17pt.(tcp)	2020-06-20 06:11:48
198.143.155.138	attackbotsspam	3749/tcp 5269/tcp 111/tcp... [2020-04-22/06-19]32pkt,15pt.(tcp)	2020-06-20 05:20:18
198.143.155.141	attackspam	Jun 1 14:09:54 debian-2gb-nbg1-2 kernel: \[13272165.940419\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=198.143.155.141 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=238 ID=57160 PROTO=TCP SPT=32357 DPT=6001 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-01 20:26:55
198.143.155.140	attackbotsspam	Port scan: Attack repeated for 24 hours	2020-06-01 08:09:50

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 198.143.155.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62977
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;198.143.155.142.		IN	A

;; AUTHORITY SECTION:
.			1694	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon May 20 18:41:12 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

142.155.143.198.in-addr.arpa domain name pointer sh-phx-us-gp1-wk112.internet-census.org.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
142.155.143.198.in-addr.arpa	name = sh-phx-us-gp1-wk112.internet-census.org.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
222.186.190.92	attackbots	Nov 17 21:31:12 hanapaa sshd\[6728\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.92 user=root Nov 17 21:31:13 hanapaa sshd\[6728\]: Failed password for root from 222.186.190.92 port 37420 ssh2 Nov 17 21:31:29 hanapaa sshd\[6746\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.92 user=root Nov 17 21:31:30 hanapaa sshd\[6746\]: Failed password for root from 222.186.190.92 port 34866 ssh2 Nov 17 21:32:14 hanapaa sshd\[6807\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.92 user=root	2019-11-18 15:39:32
81.28.100.101	attack	Nov 18 07:30:46 exim[7206]: 2019-11-18 07:30:46 1iWaYe-0001sE-R5 H=rein.shrewdmhealth.com (rein.varzide.co) [81.28.100.101] F= rejected after DATA: This message scored 101.1 spam points.	2019-11-18 15:38:19
111.90.187.94	attackbots	Autoban 111.90.187.94 AUTH/CONNECT	2019-11-18 16:09:13
222.120.192.102	attackspambots	Nov 18 07:30:37 localhost sshd\[6059\]: Invalid user drive from 222.120.192.102 port 54208 Nov 18 07:30:37 localhost sshd\[6059\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.120.192.102 Nov 18 07:30:39 localhost sshd\[6059\]: Failed password for invalid user drive from 222.120.192.102 port 54208 ssh2	2019-11-18 15:35:46
201.150.2.110	attackspam	Unauthorized connection attempt from IP address 201.150.2.110 on Port 445(SMB)	2019-11-18 15:36:18
111.224.150.98	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/111.224.150.98/ CN - 1H : (821) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4134 IP : 111.224.150.98 CIDR : 111.224.0.0/14 PREFIX COUNT : 5430 UNIQUE IP COUNT : 106919680 ATTACKS DETECTED ASN4134 : 1H - 9 3H - 40 6H - 88 12H - 164 24H - 359 DateTime : 2019-11-18 07:29:59 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-18 15:52:51
112.217.215.213	attack	Autoban 112.217.215.213 AUTH/CONNECT	2019-11-18 15:56:53
112.133.248.120	attackspam	Autoban 112.133.248.120 AUTH/CONNECT	2019-11-18 16:02:10
23.101.188.161	attackbotsspam	18.11.2019 07:29:58 - RDP Login Fail Detected by https://www.elinox.de/RDP-Wächter	2019-11-18 16:00:55
109.245.241.89	attack	SpamReport	2019-11-18 15:45:44
111.91.76.242	attackspambots	Autoban 111.91.76.242 AUTH/CONNECT	2019-11-18 16:07:27
62.234.146.45	attackspam	Nov 18 07:31:13 * sshd[3744]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.146.45 Nov 18 07:31:15 * sshd[3744]: Failed password for invalid user asterisk from 62.234.146.45 port 43982 ssh2	2019-11-18 15:32:56
1.58.113.162	attackbots	Fail2Ban - FTP Abuse Attempt	2019-11-18 15:38:46
112.218.169.189	attackbots	Autoban 112.218.169.189 AUTH/CONNECT	2019-11-18 15:56:24
210.12.16.238	attackbots	Nov 18 08:30:52 vpn01 sshd[12889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.12.16.238 Nov 18 08:30:55 vpn01 sshd[12889]: Failed password for invalid user bo from 210.12.16.238 port 33869 ssh2 ...	2019-11-18 16:01:37

最近上报的IP列表

99.173.174.55	129.149.176.12	154.175.81.161	89.163.206.184
217.39.237.207	182.74.233.106	151.195.97.31	206.43.203.133
90.229.199.247	124.185.216.120	136.182.222.8	61.170.154.48
112.39.13.234	39.228.189.47	207.171.158.168	87.217.146.235
218.80.1.98	93.48.70.3	117.102.64.10	34.245.172.221