城市(city): Frankfurt am Main
省份(region): Hesse
国家(country): Germany
运营商(isp): DigitalOcean LLC
主机名(hostname): unknown
机构(organization): DigitalOcean, LLC
使用类型(Usage Type): Data Center/Web Hosting/Transit
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attackbots | 2019-08-22 06:05:03,234 fail2ban.actions [878]: NOTICE [sshd] Ban 142.93.101.13 2019-08-22 15:20:27,195 fail2ban.actions [878]: NOTICE [sshd] Ban 142.93.101.13 2019-08-22 22:52:22,120 fail2ban.actions [878]: NOTICE [sshd] Ban 142.93.101.13 ... |
2019-10-03 14:06:53 |
| attackspam | Triggered by Fail2Ban at Ares web server |
2019-09-01 02:28:23 |
| attackspambots | Total attacks: 4 |
2019-08-31 11:10:03 |
| attackspambots | Aug 30 19:03:03 dev0-dcde-rnet sshd[27751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.13 Aug 30 19:03:05 dev0-dcde-rnet sshd[27751]: Failed password for invalid user test from 142.93.101.13 port 39958 ssh2 Aug 30 19:08:02 dev0-dcde-rnet sshd[27784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.13 |
2019-08-31 01:48:41 |
| attack | Aug 29 12:09:19 frobozz sshd\[3391\]: Invalid user test from 142.93.101.13 port 46026 Aug 29 12:14:42 frobozz sshd\[3425\]: Invalid user uplink from 142.93.101.13 port 33104 Aug 29 12:21:32 frobozz sshd\[3467\]: Invalid user test from 142.93.101.13 port 48426 ... |
2019-08-30 00:34:58 |
| attackspambots | Aug 24 23:23:09 novum-srv2 sshd[19384]: Invalid user dggim from 142.93.101.13 port 50274 Aug 24 23:27:43 novum-srv2 sshd[19612]: Invalid user doodz from 142.93.101.13 port 37362 Aug 24 23:33:17 novum-srv2 sshd[19757]: Invalid user jason from 142.93.101.13 port 52672 ... |
2019-08-25 05:35:50 |
| attackbotsspam | Aug 24 04:38:48 server sshd\[1765\]: Invalid user oracle from 142.93.101.13 port 55866 Aug 24 04:38:48 server sshd\[1765\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.13 Aug 24 04:38:49 server sshd\[1765\]: Failed password for invalid user oracle from 142.93.101.13 port 55866 ssh2 Aug 24 04:43:57 server sshd\[16948\]: Invalid user bns from 142.93.101.13 port 42944 Aug 24 04:43:57 server sshd\[16948\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.13 |
2019-08-24 10:08:37 |
| attackspam | Aug 21 04:30:19 host sshd\[7281\]: Invalid user invitado from 142.93.101.13 port 36192 Aug 21 04:30:19 host sshd\[7281\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.13 ... |
2019-08-21 11:23:09 |
| attackbotsspam | Invalid user nagios from 142.93.101.13 port 55760 |
2019-07-28 08:12:48 |
| attackbotsspam | Jul 26 16:17:28 debian sshd\[22745\]: Invalid user qhsupport from 142.93.101.13 port 33200 Jul 26 16:17:28 debian sshd\[22745\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.13 Jul 26 16:17:29 debian sshd\[22745\]: Failed password for invalid user qhsupport from 142.93.101.13 port 33200 ssh2 ... |
2019-07-27 05:19:47 |
| attackspam | Invalid user user from 142.93.101.13 port 60234 |
2019-07-25 07:26:30 |
| attackbotsspam | Invalid user user from 142.93.101.13 port 60234 |
2019-07-24 02:36:44 |
| attackspambots | SSH Brute-Force reported by Fail2Ban |
2019-07-23 08:49:20 |
| attackspam | Invalid user spider from 142.93.101.13 port 39670 |
2019-07-16 05:59:56 |
| attackbots | SSH Bruteforce Attack |
2019-07-15 10:52:40 |
| attack | Jul 14 18:48:29 XXX sshd[49759]: Invalid user beginner from 142.93.101.13 port 50732 |
2019-07-15 03:07:19 |
| attack | Invalid user usuario from 142.93.101.13 port 45656 |
2019-07-13 13:39:42 |
| attackbotsspam | Apr 18 08:30:37 server sshd\[140831\]: Invalid user master from 142.93.101.13 Apr 18 08:30:37 server sshd\[140831\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.13 Apr 18 08:30:39 server sshd\[140831\]: Failed password for invalid user master from 142.93.101.13 port 44546 ssh2 ... |
2019-07-12 05:14:13 |
| attackbots | $f2bV_matches |
2019-07-04 03:34:30 |
| attack | 01.07.2019 23:30:32 SSH access blocked by firewall |
2019-07-02 07:32:36 |
| attackspam | Jul 1 18:24:58 rpi sshd[4618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.13 Jul 1 18:25:00 rpi sshd[4618]: Failed password for invalid user ubuntu from 142.93.101.13 port 50194 ssh2 |
2019-07-02 00:44:40 |
| attackspam | 30.06.2019 12:49:36 SSH access blocked by firewall |
2019-06-30 20:53:01 |
| attackbots | Jun 29 21:05:40 ncomp sshd[9622]: Invalid user phion from 142.93.101.13 Jun 29 21:05:40 ncomp sshd[9622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.13 Jun 29 21:05:40 ncomp sshd[9622]: Invalid user phion from 142.93.101.13 Jun 29 21:05:42 ncomp sshd[9622]: Failed password for invalid user phion from 142.93.101.13 port 42662 ssh2 |
2019-06-30 03:14:10 |
| attackbotsspam | Jun 27 05:54:25 amit sshd\[14116\]: Invalid user hadoop from 142.93.101.13 Jun 27 05:54:25 amit sshd\[14116\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.13 Jun 27 05:54:27 amit sshd\[14116\]: Failed password for invalid user hadoop from 142.93.101.13 port 56632 ssh2 ... |
2019-06-27 12:03:13 |
| attack | SSH Brute-Force reported by Fail2Ban |
2019-06-27 10:25:28 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 142.93.101.2 | attackspambots | Banned for a week because repeated abuses, for example SSH, but not only |
2020-10-08 01:01:05 |
| 142.93.101.2 | attack | Oct 7 11:36:29 root sshd[417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.2 user=root Oct 7 11:36:32 root sshd[417]: Failed password for root from 142.93.101.2 port 49244 ssh2 ... |
2020-10-07 17:09:59 |
| 142.93.101.46 | attack | TCP port : 11535 |
2020-09-21 20:15:34 |
| 142.93.101.46 | attack | $f2bV_matches |
2020-09-21 12:07:29 |
| 142.93.101.46 | attack | Port scan denied |
2020-09-21 03:58:10 |
| 142.93.101.46 | attack | Sep 19 15:43:29 nextcloud sshd\[13636\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.46 user=root Sep 19 15:43:31 nextcloud sshd\[13636\]: Failed password for root from 142.93.101.46 port 40324 ssh2 Sep 19 15:59:11 nextcloud sshd\[30368\]: Invalid user user123 from 142.93.101.46 Sep 19 15:59:11 nextcloud sshd\[30368\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.46 |
2020-09-19 22:00:31 |
| 142.93.101.46 | attackspam | 11777/tcp 30023/tcp 23124/tcp... [2020-08-30/09-18]65pkt,22pt.(tcp) |
2020-09-19 13:53:09 |
| 142.93.101.46 | attackbotsspam | fail2ban detected bruce force on ssh iptables |
2020-09-19 05:32:24 |
| 142.93.101.46 | attack | Invalid user weblogic from 142.93.101.46 port 35024 |
2020-09-17 06:30:38 |
| 142.93.101.46 | attackbotsspam | 2020-09-14T14:37:49+0000 Failed SSH Authentication/Brute Force Attack. (Server 6) |
2020-09-15 00:50:55 |
| 142.93.101.46 | attack | Sep 14 09:46:15 v22019038103785759 sshd\[8351\]: Invalid user vodafone from 142.93.101.46 port 51558 Sep 14 09:46:15 v22019038103785759 sshd\[8351\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.46 Sep 14 09:46:17 v22019038103785759 sshd\[8351\]: Failed password for invalid user vodafone from 142.93.101.46 port 51558 ssh2 Sep 14 09:55:29 v22019038103785759 sshd\[9157\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.46 user=root Sep 14 09:55:31 v22019038103785759 sshd\[9157\]: Failed password for root from 142.93.101.46 port 60406 ssh2 ... |
2020-09-14 16:34:32 |
| 142.93.101.148 | attack | detected by Fail2Ban |
2020-09-12 23:39:39 |
| 142.93.101.148 | attack | (sshd) Failed SSH login from 142.93.101.148 (DE/Germany/-): 5 in the last 3600 secs |
2020-09-12 15:43:02 |
| 142.93.101.148 | attack | Sep 12 00:25:35 sshgateway sshd\[10111\]: Invalid user oneadmin from 142.93.101.148 Sep 12 00:25:35 sshgateway sshd\[10111\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.148 Sep 12 00:25:37 sshgateway sshd\[10111\]: Failed password for invalid user oneadmin from 142.93.101.148 port 41276 ssh2 |
2020-09-12 07:29:58 |
| 142.93.101.21 | attackspam | Sep 1 11:28:50 webhost01 sshd[2657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.21 Sep 1 11:28:51 webhost01 sshd[2657]: Failed password for invalid user amber from 142.93.101.21 port 40062 ssh2 ... |
2020-09-01 12:29:27 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.101.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57217
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.101.13. IN A
;; AUTHORITY SECTION:
. 1893 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019041800 1800 900 604800 86400
;; Query time: 1 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 19 00:56:55 +08 2019
;; MSG SIZE rcvd: 117
Host 13.101.93.142.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 67.207.67.3
Address: 67.207.67.3#53
** server can't find 13.101.93.142.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 121.201.38.177 | attack | Too many connections or unauthorized access detected from Oscar banned ip |
2019-07-29 13:53:01 |
| 95.173.160.84 | attackbots | miraniessen.de 95.173.160.84 \[29/Jul/2019:01:16:37 +0200\] "POST /wp-login.php HTTP/1.1" 200 5972 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" miraniessen.de 95.173.160.84 \[29/Jul/2019:01:16:38 +0200\] "POST /wp-login.php HTTP/1.1" 200 5976 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2019-07-29 14:03:03 |
| 185.222.211.114 | attackspambots | Jul 29 07:37:21 lumpi kernel: INPUT:DROP:SPAMHAUS_DROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=185.222.211.114 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=54250 PROTO=TCP SPT=55828 DPT=8084 WINDOW=1024 RES=0x00 SYN URGP=0 ... |
2019-07-29 14:10:11 |
| 223.99.192.25 | attackbotsspam | Jul 29 03:42:52 localhost sshd\[1969\]: Invalid user honda from 223.99.192.25 port 16026 Jul 29 03:42:52 localhost sshd\[1969\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.99.192.25 Jul 29 03:42:54 localhost sshd\[1969\]: Failed password for invalid user honda from 223.99.192.25 port 16026 ssh2 |
2019-07-29 13:22:10 |
| 94.132.37.12 | attackspambots | SSH Brute-Force attacks |
2019-07-29 14:01:57 |
| 124.205.9.241 | attack | SSH authentication failure x 6 reported by Fail2Ban ... |
2019-07-29 13:50:02 |
| 77.68.72.182 | attackspambots | Jul 29 07:47:06 tux-35-217 sshd\[23257\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.68.72.182 user=root Jul 29 07:47:08 tux-35-217 sshd\[23257\]: Failed password for root from 77.68.72.182 port 49714 ssh2 Jul 29 07:51:18 tux-35-217 sshd\[23276\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.68.72.182 user=root Jul 29 07:51:20 tux-35-217 sshd\[23276\]: Failed password for root from 77.68.72.182 port 42856 ssh2 ... |
2019-07-29 14:13:08 |
| 191.53.57.217 | attackbots | failed_logins |
2019-07-29 13:26:15 |
| 95.58.194.148 | attackbotsspam | Automatic report - Banned IP Access |
2019-07-29 14:07:25 |
| 189.197.187.202 | attackspam | Jul 28 16:17:49 aat-srv002 sshd[21312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.197.187.202 Jul 28 16:17:51 aat-srv002 sshd[21312]: Failed password for invalid user admin from 189.197.187.202 port 49896 ssh2 Jul 28 16:18:09 aat-srv002 sshd[21320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.197.187.202 Jul 28 16:18:11 aat-srv002 sshd[21320]: Failed password for invalid user ubuntu from 189.197.187.202 port 49915 ssh2 ... |
2019-07-29 13:36:31 |
| 77.247.109.35 | attackspam | \[2019-07-29 01:17:09\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-29T01:17:09.810-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="900441519470519",SessionID="0x7ff4d0592ee8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.109.35/60593",ACLName="no_extension_match" \[2019-07-29 01:19:57\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-29T01:19:57.457-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011441519470519",SessionID="0x7ff4d0115ca8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.109.35/55062",ACLName="no_extension_match" \[2019-07-29 01:21:20\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-29T01:21:20.350-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441519470519",SessionID="0x7ff4d0115ca8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.109.35/62136",ACLName="no_ex |
2019-07-29 13:36:01 |
| 177.130.137.6 | attackspambots | Brute force attempt |
2019-07-29 14:24:59 |
| 66.249.64.133 | attackspambots | Automatic report - Banned IP Access |
2019-07-29 14:20:14 |
| 185.234.219.105 | attack | v+mailserver-auth-slow-bruteforce |
2019-07-29 13:58:06 |
| 103.81.85.184 | attackspambots | xmlrpc attack |
2019-07-29 13:50:25 |