142.93.101.13 - IPInfo

基本信息:

城市(city): Frankfurt am Main

省份(region): Hesse

国家(country): Germany

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	2019-08-22 06:05:03,234 fail2ban.actions [878]: NOTICE [sshd] Ban 142.93.101.13 2019-08-22 15:20:27,195 fail2ban.actions [878]: NOTICE [sshd] Ban 142.93.101.13 2019-08-22 22:52:22,120 fail2ban.actions [878]: NOTICE [sshd] Ban 142.93.101.13 ...	2019-10-03 14:06:53
attackspam	Triggered by Fail2Ban at Ares web server	2019-09-01 02:28:23
attackspambots	Total attacks: 4	2019-08-31 11:10:03
attackspambots	Aug 30 19:03:03 dev0-dcde-rnet sshd[27751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.13 Aug 30 19:03:05 dev0-dcde-rnet sshd[27751]: Failed password for invalid user test from 142.93.101.13 port 39958 ssh2 Aug 30 19:08:02 dev0-dcde-rnet sshd[27784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.13	2019-08-31 01:48:41
attack	Aug 29 12:09:19 frobozz sshd\[3391\]: Invalid user test from 142.93.101.13 port 46026 Aug 29 12:14:42 frobozz sshd\[3425\]: Invalid user uplink from 142.93.101.13 port 33104 Aug 29 12:21:32 frobozz sshd\[3467\]: Invalid user test from 142.93.101.13 port 48426 ...	2019-08-30 00:34:58
attackspambots	Aug 24 23:23:09 novum-srv2 sshd[19384]: Invalid user dggim from 142.93.101.13 port 50274 Aug 24 23:27:43 novum-srv2 sshd[19612]: Invalid user doodz from 142.93.101.13 port 37362 Aug 24 23:33:17 novum-srv2 sshd[19757]: Invalid user jason from 142.93.101.13 port 52672 ...	2019-08-25 05:35:50
attackbotsspam	Aug 24 04:38:48 server sshd\[1765\]: Invalid user oracle from 142.93.101.13 port 55866 Aug 24 04:38:48 server sshd\[1765\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.13 Aug 24 04:38:49 server sshd\[1765\]: Failed password for invalid user oracle from 142.93.101.13 port 55866 ssh2 Aug 24 04:43:57 server sshd\[16948\]: Invalid user bns from 142.93.101.13 port 42944 Aug 24 04:43:57 server sshd\[16948\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.13	2019-08-24 10:08:37
attackspam	Aug 21 04:30:19 host sshd\[7281\]: Invalid user invitado from 142.93.101.13 port 36192 Aug 21 04:30:19 host sshd\[7281\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.13 ...	2019-08-21 11:23:09
attackbotsspam	Invalid user nagios from 142.93.101.13 port 55760	2019-07-28 08:12:48
attackbotsspam	Jul 26 16:17:28 debian sshd\[22745\]: Invalid user qhsupport from 142.93.101.13 port 33200 Jul 26 16:17:28 debian sshd\[22745\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.13 Jul 26 16:17:29 debian sshd\[22745\]: Failed password for invalid user qhsupport from 142.93.101.13 port 33200 ssh2 ...	2019-07-27 05:19:47
attackspam	Invalid user user from 142.93.101.13 port 60234	2019-07-25 07:26:30
attackbotsspam	Invalid user user from 142.93.101.13 port 60234	2019-07-24 02:36:44
attackspambots	SSH Brute-Force reported by Fail2Ban	2019-07-23 08:49:20
attackspam	Invalid user spider from 142.93.101.13 port 39670	2019-07-16 05:59:56
attackbots	SSH Bruteforce Attack	2019-07-15 10:52:40
attack	Jul 14 18:48:29 XXX sshd[49759]: Invalid user beginner from 142.93.101.13 port 50732	2019-07-15 03:07:19
attack	Invalid user usuario from 142.93.101.13 port 45656	2019-07-13 13:39:42
attackbotsspam	Apr 18 08:30:37 server sshd\[140831\]: Invalid user master from 142.93.101.13 Apr 18 08:30:37 server sshd\[140831\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.13 Apr 18 08:30:39 server sshd\[140831\]: Failed password for invalid user master from 142.93.101.13 port 44546 ssh2 ...	2019-07-12 05:14:13
attackbots	$f2bV_matches	2019-07-04 03:34:30
attack	01.07.2019 23:30:32 SSH access blocked by firewall	2019-07-02 07:32:36
attackspam	Jul 1 18:24:58 rpi sshd[4618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.13 Jul 1 18:25:00 rpi sshd[4618]: Failed password for invalid user ubuntu from 142.93.101.13 port 50194 ssh2	2019-07-02 00:44:40
attackspam	30.06.2019 12:49:36 SSH access blocked by firewall	2019-06-30 20:53:01
attackbots	Jun 29 21:05:40 ncomp sshd[9622]: Invalid user phion from 142.93.101.13 Jun 29 21:05:40 ncomp sshd[9622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.13 Jun 29 21:05:40 ncomp sshd[9622]: Invalid user phion from 142.93.101.13 Jun 29 21:05:42 ncomp sshd[9622]: Failed password for invalid user phion from 142.93.101.13 port 42662 ssh2	2019-06-30 03:14:10
attackbotsspam	Jun 27 05:54:25 amit sshd\[14116\]: Invalid user hadoop from 142.93.101.13 Jun 27 05:54:25 amit sshd\[14116\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.13 Jun 27 05:54:27 amit sshd\[14116\]: Failed password for invalid user hadoop from 142.93.101.13 port 56632 ssh2 ...	2019-06-27 12:03:13
attack	SSH Brute-Force reported by Fail2Ban	2019-06-27 10:25:28

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.101.2	attackspambots	Banned for a week because repeated abuses, for example SSH, but not only	2020-10-08 01:01:05
142.93.101.2	attack	Oct 7 11:36:29 root sshd[417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.2 user=root Oct 7 11:36:32 root sshd[417]: Failed password for root from 142.93.101.2 port 49244 ssh2 ...	2020-10-07 17:09:59
142.93.101.46	attack	TCP port : 11535	2020-09-21 20:15:34
142.93.101.46	attack	$f2bV_matches	2020-09-21 12:07:29
142.93.101.46	attack	Port scan denied	2020-09-21 03:58:10
142.93.101.46	attack	Sep 19 15:43:29 nextcloud sshd\[13636\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.46 user=root Sep 19 15:43:31 nextcloud sshd\[13636\]: Failed password for root from 142.93.101.46 port 40324 ssh2 Sep 19 15:59:11 nextcloud sshd\[30368\]: Invalid user user123 from 142.93.101.46 Sep 19 15:59:11 nextcloud sshd\[30368\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.46	2020-09-19 22:00:31
142.93.101.46	attackspam	11777/tcp 30023/tcp 23124/tcp... [2020-08-30/09-18]65pkt,22pt.(tcp)	2020-09-19 13:53:09
142.93.101.46	attackbotsspam	fail2ban detected bruce force on ssh iptables	2020-09-19 05:32:24
142.93.101.46	attack	Invalid user weblogic from 142.93.101.46 port 35024	2020-09-17 06:30:38
142.93.101.46	attackbotsspam	2020-09-14T14:37:49+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)	2020-09-15 00:50:55
142.93.101.46	attack	Sep 14 09:46:15 v22019038103785759 sshd\[8351\]: Invalid user vodafone from 142.93.101.46 port 51558 Sep 14 09:46:15 v22019038103785759 sshd\[8351\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.46 Sep 14 09:46:17 v22019038103785759 sshd\[8351\]: Failed password for invalid user vodafone from 142.93.101.46 port 51558 ssh2 Sep 14 09:55:29 v22019038103785759 sshd\[9157\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.46 user=root Sep 14 09:55:31 v22019038103785759 sshd\[9157\]: Failed password for root from 142.93.101.46 port 60406 ssh2 ...	2020-09-14 16:34:32
142.93.101.148	attack	detected by Fail2Ban	2020-09-12 23:39:39
142.93.101.148	attack	(sshd) Failed SSH login from 142.93.101.148 (DE/Germany/-): 5 in the last 3600 secs	2020-09-12 15:43:02
142.93.101.148	attack	Sep 12 00:25:35 sshgateway sshd\[10111\]: Invalid user oneadmin from 142.93.101.148 Sep 12 00:25:35 sshgateway sshd\[10111\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.148 Sep 12 00:25:37 sshgateway sshd\[10111\]: Failed password for invalid user oneadmin from 142.93.101.148 port 41276 ssh2	2020-09-12 07:29:58
142.93.101.21	attackspam	Sep 1 11:28:50 webhost01 sshd[2657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.21 Sep 1 11:28:51 webhost01 sshd[2657]: Failed password for invalid user amber from 142.93.101.21 port 40062 ssh2 ...	2020-09-01 12:29:27

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.101.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57217
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.101.13.			IN	A

;; AUTHORITY SECTION:
.			1893	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041800 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 19 00:56:55 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 13.101.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 13.101.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
139.155.130.130	attack	SSH Brute-Forcing (ownc)	2019-08-19 16:56:05
58.65.201.243	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2019-08-19 16:16:03
36.66.124.137	attack	Aug 19 10:59:06 server sshd\[22624\]: Invalid user mukki from 36.66.124.137 port 5959 Aug 19 10:59:06 server sshd\[22624\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.66.124.137 Aug 19 10:59:08 server sshd\[22624\]: Failed password for invalid user mukki from 36.66.124.137 port 5959 ssh2 Aug 19 11:05:35 server sshd\[8218\]: Invalid user carl from 36.66.124.137 port 34517 Aug 19 11:05:35 server sshd\[8218\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.66.124.137	2019-08-19 16:23:22
81.26.66.36	attackspambots	Aug 19 09:40:58 [munged] sshd[27420]: Invalid user rr from 81.26.66.36 port 54690 Aug 19 09:40:58 [munged] sshd[27420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.26.66.36	2019-08-19 17:02:27
119.29.133.210	attack	Aug 18 22:06:21 hanapaa sshd\[14088\]: Invalid user pm from 119.29.133.210 Aug 18 22:06:21 hanapaa sshd\[14088\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.133.210 Aug 18 22:06:24 hanapaa sshd\[14088\]: Failed password for invalid user pm from 119.29.133.210 port 56662 ssh2 Aug 18 22:08:58 hanapaa sshd\[14327\]: Invalid user coco from 119.29.133.210 Aug 18 22:08:58 hanapaa sshd\[14327\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.133.210	2019-08-19 16:25:39
89.109.5.110	attackbots	Automatic report - Port Scan Attack	2019-08-19 17:06:42
192.81.215.176	attackbotsspam	Aug 18 22:40:23 web1 sshd\[16560\]: Invalid user gm from 192.81.215.176 Aug 18 22:40:23 web1 sshd\[16560\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.81.215.176 Aug 18 22:40:26 web1 sshd\[16560\]: Failed password for invalid user gm from 192.81.215.176 port 35936 ssh2 Aug 18 22:44:30 web1 sshd\[17073\]: Invalid user agarwal from 192.81.215.176 Aug 18 22:44:30 web1 sshd\[17073\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.81.215.176	2019-08-19 16:55:24
178.62.234.122	attack	Aug 19 10:24:18 vps691689 sshd[15564]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.234.122 Aug 19 10:24:21 vps691689 sshd[15564]: Failed password for invalid user thiago from 178.62.234.122 port 53848 ssh2 ...	2019-08-19 16:41:04
165.227.26.69	attack	Aug 19 10:33:18 vps647732 sshd[26020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.26.69 Aug 19 10:33:20 vps647732 sshd[26020]: Failed password for invalid user student3 from 165.227.26.69 port 38864 ssh2 ...	2019-08-19 16:35:38
134.209.108.13	attackbots	Aug 19 11:06:15 www5 sshd\[62741\]: Invalid user susie from 134.209.108.13 Aug 19 11:06:15 www5 sshd\[62741\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.108.13 Aug 19 11:06:16 www5 sshd\[62741\]: Failed password for invalid user susie from 134.209.108.13 port 36334 ssh2 ...	2019-08-19 16:21:08
185.254.122.36	attackbotsspam	Port scan on 6 port(s): 20286 20741 20987 21737 22103 25047	2019-08-19 16:52:20
106.12.185.58	attackbots	Aug 19 10:49:37 eventyay sshd[14630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.185.58 Aug 19 10:49:40 eventyay sshd[14630]: Failed password for invalid user infoserv from 106.12.185.58 port 49726 ssh2 Aug 19 10:54:03 eventyay sshd[14795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.185.58 ...	2019-08-19 16:56:31
18.136.25.145	attackbotsspam	Aug 19 08:15:34 hb sshd\[5320\]: Invalid user ansible from 18.136.25.145 Aug 19 08:15:34 hb sshd\[5320\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-18-136-25-145.ap-southeast-1.compute.amazonaws.com Aug 19 08:15:37 hb sshd\[5320\]: Failed password for invalid user ansible from 18.136.25.145 port 49890 ssh2 Aug 19 08:20:32 hb sshd\[5743\]: Invalid user sui from 18.136.25.145 Aug 19 08:20:32 hb sshd\[5743\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-18-136-25-145.ap-southeast-1.compute.amazonaws.com	2019-08-19 16:29:10
162.221.190.146	attackbots	Sql/code injection probe	2019-08-19 16:55:45
157.230.230.84	attackspambots	Aug 19 09:41:13 nextcloud sshd\[21896\]: Invalid user lilli from 157.230.230.84 Aug 19 09:41:13 nextcloud sshd\[21896\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.230.84 Aug 19 09:41:14 nextcloud sshd\[21896\]: Failed password for invalid user lilli from 157.230.230.84 port 33426 ssh2 ...	2019-08-19 16:41:59

最近上报的IP列表

180.117.99.108	88.125.234.71	185.109.61.223	103.119.54.164
82.102.24.167	185.108.197.143	185.107.173.17	65.193.121.246
3.4.5.6	185.100.217.240	193.70.115.178	95.125.34.32
183.80.46.168	190.233.72.200	89.120.226.182	117.5.115.82
183.42.42.22	213.157.33.86	189.79.18.55	189.232.61.44