98.10.142.117 - IPInfo

基本信息:

城市(city): Fancher

省份(region): New York

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 98.10.142.117
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32972
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;98.10.142.117.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021002 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 11 10:39:10 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

117.142.10.98.in-addr.arpa domain name pointer syn-098-010-142-117.res.spectrum.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
117.142.10.98.in-addr.arpa	name = syn-098-010-142-117.res.spectrum.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
203.152.166.183	attackbots	Feb 4 07:16:51 web02 sshd[24109]: Did not receive identification string from 203.152.166.183 Feb 4 08:57:18 web02 sshd[25363]: Invalid user plexuser from 203.152.166.183 Feb 4 08:57:18 web02 sshd[25363]: Connection closed by 203.152.166.183 [preauth] Feb 4 08:57:20 web02 sshd[25365]: Invalid user pi from 203.152.166.183 Feb 4 08:57:20 web02 sshd[25365]: Connection closed by 203.152.166.183 [preauth] Feb 4 08:57:21 web02 sshd[25367]: Invalid user pi from 203.152.166.183 Feb 4 08:57:21 web02 sshd[25367]: Connection closed by 203.152.166.183 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=203.152.166.183	2020-02-06 08:36:28
46.5.231.65	spam	E-mail spammer	2020-02-06 08:44:50
79.157.89.58	spam	e-mail spammer	2020-02-06 08:47:17
197.39.113.39	attack	2020-02-0523:22:571izT4S-0002AZ-Up\<=verena@rs-solution.chH=\(localhost\)[37.114.162.168]:59291P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2237id=BEBB0D5E5581AF1CC0C58C34C0A54DC1@rs-solution.chT="Youhappentobelookingfortruelove\?\,Anna"for15776692738@163.comfast_boy_with_fast_toys74@yahoo.com2020-02-0523:23:191izT4p-0002BP-9R\<=verena@rs-solution.chH=\(localhost\)[197.39.113.39]:54109P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2242id=3C398FDCD7032D9E42470EB6425352BD@rs-solution.chT="Youhappentobesearchingforreallove\?\,Anna"forjake.lovitt95@gmail.comclarencejrsmith@gmail.com2020-02-0523:21:341izT32-00026S-QK\<=verena@rs-solution.chH=\(localhost\)[190.182.179.12]:37377P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2194id=ACA91F4C4793BD0ED2D79E26D26001D1@rs-solution.chT="Onlyneedatinybitofyourattention\,Anna"forscottnyoung@gmail.commarcusshlb@gmail.com2020-02-0	2020-02-06 08:46:20
81.22.45.182	attackspambots	Feb 6 01:19:32 mail kernel: [357831.266667] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=81.22.45.182 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=40878 PROTO=TCP SPT=50336 DPT=10137 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2020-02-06 08:29:58
198.71.231.10	attackbots	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-02-06 08:33:35
185.176.27.178	attack	Feb 6 00:55:07 h2177944 kernel: \[4144994.221284\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.178 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=55983 PROTO=TCP SPT=57576 DPT=58602 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 6 00:55:07 h2177944 kernel: \[4144994.221301\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.178 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=55983 PROTO=TCP SPT=57576 DPT=58602 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 6 00:55:11 h2177944 kernel: \[4144998.982945\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.178 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=17895 PROTO=TCP SPT=57576 DPT=28924 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 6 00:55:11 h2177944 kernel: \[4144998.982959\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.178 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=17895 PROTO=TCP SPT=57576 DPT=28924 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 6 00:55:28 h2177944 kernel: \[4145015.419643\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.178 DST=85.	2020-02-06 08:29:17
51.91.77.104	attackspambots	Feb 5 13:44:43 web9 sshd\[15499\]: Invalid user gxq from 51.91.77.104 Feb 5 13:44:43 web9 sshd\[15499\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.77.104 Feb 5 13:44:45 web9 sshd\[15499\]: Failed password for invalid user gxq from 51.91.77.104 port 54982 ssh2 Feb 5 13:47:34 web9 sshd\[15883\]: Invalid user ntr from 51.91.77.104 Feb 5 13:47:34 web9 sshd\[15883\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.77.104	2020-02-06 08:58:20
163.172.45.60	attackbotsspam	163.172.45.60 - - \[06/Feb/2020:01:26:27 +0100\] "POST /wp-login.php HTTP/1.0" 200 7672 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 163.172.45.60 - - \[06/Feb/2020:01:26:28 +0100\] "POST /wp-login.php HTTP/1.0" 200 7502 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 163.172.45.60 - - \[06/Feb/2020:01:26:34 +0100\] "POST /wp-login.php HTTP/1.0" 200 7496 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-02-06 08:28:32
35.182.38.96	attackbots	serveres are UTC Lines containing failures of 35.182.38.96 Feb 3 17:42:33 tux2 sshd[25279]: Failed password for r.r from 35.182.38.96 port 34390 ssh2 Feb 3 17:42:33 tux2 sshd[25279]: Received disconnect from 35.182.38.96 port 34390:11: Bye Bye [preauth] Feb 3 17:42:33 tux2 sshd[25279]: Disconnected from authenticating user r.r 35.182.38.96 port 34390 [preauth] Feb 3 17:46:43 tux2 sshd[25511]: Invalid user romani from 35.182.38.96 port 43524 Feb 3 17:46:43 tux2 sshd[25511]: Failed password for invalid user romani from 35.182.38.96 port 43524 ssh2 Feb 3 17:46:43 tux2 sshd[25511]: Received disconnect from 35.182.38.96 port 43524:11: Bye Bye [preauth] Feb 3 17:46:43 tux2 sshd[25511]: Disconnected from invalid user romani 35.182.38.96 port 43524 [preauth] Feb 3 17:51:58 tux2 sshd[25806]: Invalid user spider from 35.182.38.96 port 45746 Feb 3 17:51:58 tux2 sshd[25806]: Failed password for invalid user spider from 35.182.38.96 port 45746 ssh2 Feb 3 17:51:58 tux2 sshd........ ------------------------------	2020-02-06 08:20:58
43.228.125.7	attack	2020-02-06T01:30:20.461641 sshd[18345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.228.125.7 user=root 2020-02-06T01:30:23.037602 sshd[18345]: Failed password for root from 43.228.125.7 port 40374 ssh2 2020-02-06T01:33:50.516789 sshd[18445]: Invalid user ming from 43.228.125.7 port 42540 2020-02-06T01:33:50.531042 sshd[18445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.228.125.7 2020-02-06T01:33:50.516789 sshd[18445]: Invalid user ming from 43.228.125.7 port 42540 2020-02-06T01:33:52.268782 sshd[18445]: Failed password for invalid user ming from 43.228.125.7 port 42540 ssh2 ...	2020-02-06 08:50:23
222.186.180.41	attackbotsspam	Feb 6 01:17:08 vps691689 sshd[6391]: Failed password for root from 222.186.180.41 port 63082 ssh2 Feb 6 01:17:21 vps691689 sshd[6391]: error: maximum authentication attempts exceeded for root from 222.186.180.41 port 63082 ssh2 [preauth] ...	2020-02-06 08:24:28
117.34.200.242	attackbots	Feb 5 23:23:39 dcd-gentoo sshd[17178]: User root from 117.34.200.242 not allowed because none of user's groups are listed in AllowGroups Feb 5 23:23:41 dcd-gentoo sshd[17183]: User root from 117.34.200.242 not allowed because none of user's groups are listed in AllowGroups Feb 5 23:23:42 dcd-gentoo sshd[17187]: User root from 117.34.200.242 not allowed because none of user's groups are listed in AllowGroups ...	2020-02-06 08:34:46
106.13.141.135	attackbots	Unauthorized connection attempt detected from IP address 106.13.141.135 to port 2220 [J]	2020-02-06 08:25:47
15.188.204.51	attackspambots	Unauthorized connection attempt detected from IP address 15.188.204.51 to port 2220 [J]	2020-02-06 08:31:15

最近上报的IP列表

29.241.130.142	224.105.153.86	64.241.7.1	222.57.81.55
241.128.187.161	62.107.20.33	94.74.207.219	193.174.99.52
85.78.79.34	74.24.135.201	163.218.179.123	54.80.37.74
89.234.167.96	58.158.201.238	14.39.46.176	216.80.40.180
205.225.39.66	66.26.11.154	202.166.103.159	42.37.174.127