198.143.155.142

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): SingleHop LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	[MK-VM6] Blocked by UFW	2020-04-03 15:38:06
attackbotsspam	" "	2020-01-04 00:04:59
attackspam	143/tcp 2222/tcp 81/tcp... [2019-09-15/11-01]9pkt,8pt.(tcp)	2019-11-01 13:21:56
attackbotsspam	[MySQL inject/portscan] tcp/3306 in spfbl.net:'listed' *(RWIN=1024)(10151156)	2019-10-16 00:29:06
attackbotsspam	111/tcp 1723/tcp 995/tcp... [2019-05-17/07-07]9pkt,9pt.(tcp)	2019-07-07 18:22:45

相同子网IP讨论:

IP	类型	评论内容	时间
198.143.155.139	attackbots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-10-11 04:23:59
198.143.155.139	attackbots	TCP port : 5986	2020-10-10 20:19:00
198.143.155.138	attackbots	TCP (SYN) 198.143.155.138:11549 -> port 12345, len 44	2020-09-27 02:49:06
198.143.155.138	attackspambots	Automatic report - Banned IP Access	2020-09-26 18:45:50
198.143.155.138	attack	Attempted to establish connection to non opened port 19	2020-08-08 04:22:07
198.143.155.138	attack	[Thu Jul 16 03:59:00 2020] - DDoS Attack From IP: 198.143.155.138 Port: 24914	2020-08-07 00:58:16
198.143.155.138	attackbotsspam	Unauthorized connection attempt detected from IP address 198.143.155.138 to port 110 [T]	2020-07-22 22:35:38
198.143.155.138	attackbotsspam	Unauthorized connection attempt detected from IP address 198.143.155.138 to port 7218	2020-07-15 03:55:51
198.143.155.138	attackbotsspam	Unauthorized connection attempt detected from IP address 198.143.155.138 to port 8080	2020-07-08 22:57:53
198.143.155.139	attackspambots	[Mon Jun 15 13:04:02 2020] - DDoS Attack From IP: 198.143.155.139 Port: 15826	2020-07-08 22:46:53
198.143.155.139	attackbots	" "	2020-06-24 23:34:13
198.143.155.139	attackbotsspam	5938/tcp 81/tcp 5560/tcp... [2020-04-23/06-19]17pkt,17pt.(tcp)	2020-06-20 06:11:48
198.143.155.138	attackbotsspam	3749/tcp 5269/tcp 111/tcp... [2020-04-22/06-19]32pkt,15pt.(tcp)	2020-06-20 05:20:18
198.143.155.141	attackspam	Jun 1 14:09:54 debian-2gb-nbg1-2 kernel: \[13272165.940419\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=198.143.155.141 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=238 ID=57160 PROTO=TCP SPT=32357 DPT=6001 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-01 20:26:55
198.143.155.140	attackbotsspam	Port scan: Attack repeated for 24 hours	2020-06-01 08:09:50

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 198.143.155.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62977
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;198.143.155.142.		IN	A

;; AUTHORITY SECTION:
.			1694	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon May 20 18:41:12 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

142.155.143.198.in-addr.arpa domain name pointer sh-phx-us-gp1-wk112.internet-census.org.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
142.155.143.198.in-addr.arpa	name = sh-phx-us-gp1-wk112.internet-census.org.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
185.189.115.26	attackbots	fell into ViewStateTrap:vaduz	2019-12-10 23:25:59
94.23.13.147	attackbots	Dec 10 16:07:06 sd-53420 sshd\[10279\]: User root from 94.23.13.147 not allowed because none of user's groups are listed in AllowGroups Dec 10 16:07:06 sd-53420 sshd\[10279\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.13.147 user=root Dec 10 16:07:08 sd-53420 sshd\[10279\]: Failed password for invalid user root from 94.23.13.147 port 41452 ssh2 Dec 10 16:13:46 sd-53420 sshd\[11386\]: Invalid user sapena from 94.23.13.147 Dec 10 16:13:46 sd-53420 sshd\[11386\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.13.147 ...	2019-12-10 23:23:30
45.55.136.206	attackbotsspam	$f2bV_matches	2019-12-10 23:30:25
125.71.129.7	attackspam	port scan and connect, tcp 1433 (ms-sql-s)	2019-12-10 23:22:10
192.99.7.175	attackbots	Dec 10 15:52:46 localhost postfix/smtpd\[7970\]: warning: ns508073.ip-192-99-7.net\[192.99.7.175\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 10 15:52:53 localhost postfix/smtpd\[9382\]: warning: ns508073.ip-192-99-7.net\[192.99.7.175\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 10 15:53:04 localhost postfix/smtpd\[7970\]: warning: ns508073.ip-192-99-7.net\[192.99.7.175\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 10 15:53:29 localhost postfix/smtpd\[7970\]: warning: ns508073.ip-192-99-7.net\[192.99.7.175\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 10 15:53:36 localhost postfix/smtpd\[7970\]: warning: ns508073.ip-192-99-7.net\[192.99.7.175\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-12-11 00:00:52
207.96.90.42	attackspambots	proto=tcp . spt=34039 . dpt=25 . (Listed on MailSpike (spam wave plus L3-L5) also unsubscore and rbldns-ru) (786)	2019-12-10 23:50:46
46.44.243.62	attackbots	proto=tcp . spt=49646 . dpt=25 . (Found on Dark List de Dec 10) (789)	2019-12-10 23:41:13
121.164.156.107	attackbots	Dec 10 05:06:47 wbs sshd\[5298\]: Invalid user www from 121.164.156.107 Dec 10 05:06:47 wbs sshd\[5298\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.164.156.107 Dec 10 05:06:49 wbs sshd\[5298\]: Failed password for invalid user www from 121.164.156.107 port 49408 ssh2 Dec 10 05:13:19 wbs sshd\[6054\]: Invalid user oracle from 121.164.156.107 Dec 10 05:13:19 wbs sshd\[6054\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.164.156.107	2019-12-10 23:29:47
156.67.250.205	attackspambots	Dec 10 16:26:25 ns381471 sshd[13800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.67.250.205 Dec 10 16:26:27 ns381471 sshd[13800]: Failed password for invalid user lindeman from 156.67.250.205 port 39830 ssh2	2019-12-11 00:00:05
94.23.4.68	attack	F2B jail: sshd. Time: 2019-12-10 16:41:22, Reported by: VKReport	2019-12-10 23:53:19
95.71.125.50	attackspambots	proto=tcp . spt=37553 . dpt=25 . (Found on Dark List de Dec 10) (790)	2019-12-10 23:34:12
167.172.170.133	attack	Dec 10 16:47:31 vpn01 sshd[17206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.170.133 Dec 10 16:47:33 vpn01 sshd[17206]: Failed password for invalid user sueanett from 167.172.170.133 port 55796 ssh2 ...	2019-12-10 23:55:59
183.27.179.186	attackspambots	SIP/5060 Probe, BF, Hack -	2019-12-10 23:21:32
190.115.255.78	attack	Brute-force attempt banned	2019-12-10 23:30:48
162.144.102.72	attackbotsspam	Dec 10 15:53:43 grey postfix/smtpd\[26739\]: NOQUEUE: reject: RCPT from leto.zen-wala.com\[162.144.102.72\]: 554 5.7.1 Service unavailable\; Client host \[162.144.102.72\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?162.144.102.72\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-10 23:52:36

最近上报的IP列表

99.173.174.55	129.149.176.12	154.175.81.161	89.163.206.184
217.39.237.207	182.74.233.106	151.195.97.31	206.43.203.133
90.229.199.247	124.185.216.120	136.182.222.8	61.170.154.48
112.39.13.234	39.228.189.47	207.171.158.168	87.217.146.235
218.80.1.98	93.48.70.3	117.102.64.10	34.245.172.221