142.93.101.158

基本信息:

城市(city): Frankfurt am Main

省份(region): Hesse

国家(country): Germany

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-08-19 20:03:11
attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-07-26 16:22:37
attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-17 03:40:14

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.101.2	attackspambots	Banned for a week because repeated abuses, for example SSH, but not only	2020-10-08 01:01:05
142.93.101.2	attack	Oct 7 11:36:29 root sshd[417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.2 user=root Oct 7 11:36:32 root sshd[417]: Failed password for root from 142.93.101.2 port 49244 ssh2 ...	2020-10-07 17:09:59
142.93.101.46	attack	TCP port : 11535	2020-09-21 20:15:34
142.93.101.46	attack	$f2bV_matches	2020-09-21 12:07:29
142.93.101.46	attack	Port scan denied	2020-09-21 03:58:10
142.93.101.46	attack	Sep 19 15:43:29 nextcloud sshd\[13636\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.46 user=root Sep 19 15:43:31 nextcloud sshd\[13636\]: Failed password for root from 142.93.101.46 port 40324 ssh2 Sep 19 15:59:11 nextcloud sshd\[30368\]: Invalid user user123 from 142.93.101.46 Sep 19 15:59:11 nextcloud sshd\[30368\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.46	2020-09-19 22:00:31
142.93.101.46	attackspam	11777/tcp 30023/tcp 23124/tcp... [2020-08-30/09-18]65pkt,22pt.(tcp)	2020-09-19 13:53:09
142.93.101.46	attackbotsspam	fail2ban detected bruce force on ssh iptables	2020-09-19 05:32:24
142.93.101.46	attack	Invalid user weblogic from 142.93.101.46 port 35024	2020-09-17 06:30:38
142.93.101.46	attackbotsspam	2020-09-14T14:37:49+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)	2020-09-15 00:50:55
142.93.101.46	attack	Sep 14 09:46:15 v22019038103785759 sshd\[8351\]: Invalid user vodafone from 142.93.101.46 port 51558 Sep 14 09:46:15 v22019038103785759 sshd\[8351\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.46 Sep 14 09:46:17 v22019038103785759 sshd\[8351\]: Failed password for invalid user vodafone from 142.93.101.46 port 51558 ssh2 Sep 14 09:55:29 v22019038103785759 sshd\[9157\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.46 user=root Sep 14 09:55:31 v22019038103785759 sshd\[9157\]: Failed password for root from 142.93.101.46 port 60406 ssh2 ...	2020-09-14 16:34:32
142.93.101.148	attack	detected by Fail2Ban	2020-09-12 23:39:39
142.93.101.148	attack	(sshd) Failed SSH login from 142.93.101.148 (DE/Germany/-): 5 in the last 3600 secs	2020-09-12 15:43:02
142.93.101.148	attack	Sep 12 00:25:35 sshgateway sshd\[10111\]: Invalid user oneadmin from 142.93.101.148 Sep 12 00:25:35 sshgateway sshd\[10111\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.148 Sep 12 00:25:37 sshgateway sshd\[10111\]: Failed password for invalid user oneadmin from 142.93.101.148 port 41276 ssh2	2020-09-12 07:29:58
142.93.101.21	attackspam	Sep 1 11:28:50 webhost01 sshd[2657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.21 Sep 1 11:28:51 webhost01 sshd[2657]: Failed password for invalid user amber from 142.93.101.21 port 40062 ssh2 ...	2020-09-01 12:29:27

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.101.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23081
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.101.158.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071601 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 17 03:40:09 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 158.101.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 158.101.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
139.59.17.118	attack	Automatic report - Banned IP Access	2019-08-05 15:27:44
114.38.108.188	attackbots	Honeypot attack, port: 23, PTR: 114-38-108-188.dynamic-ip.hinet.net.	2019-08-05 15:03:21
45.36.105.206	attackbotsspam	Aug 5 06:36:34 MK-Soft-VM3 sshd\[11756\]: Invalid user fbm from 45.36.105.206 port 42768 Aug 5 06:36:34 MK-Soft-VM3 sshd\[11756\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.36.105.206 Aug 5 06:36:36 MK-Soft-VM3 sshd\[11756\]: Failed password for invalid user fbm from 45.36.105.206 port 42768 ssh2 ...	2019-08-05 15:10:04
61.156.130.48	attackspam	port 23 attempt blocked	2019-08-05 15:34:31
80.52.199.93	attackbots	$f2bV_matches	2019-08-05 15:35:59
46.172.75.231	attackspambots	port 23 attempt blocked	2019-08-05 15:44:07
157.230.62.219	attackbotsspam	Aug 5 07:33:48 localhost sshd\[88232\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.62.219 user=root Aug 5 07:33:49 localhost sshd\[88232\]: Failed password for root from 157.230.62.219 port 38912 ssh2 Aug 5 07:38:26 localhost sshd\[88363\]: Invalid user bryon from 157.230.62.219 port 33054 Aug 5 07:38:26 localhost sshd\[88363\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.62.219 Aug 5 07:38:28 localhost sshd\[88363\]: Failed password for invalid user bryon from 157.230.62.219 port 33054 ssh2 ...	2019-08-05 15:49:45
90.45.177.225	attackbots	Aug 5 08:45:09 ubuntu-2gb-nbg1-dc3-1 sshd[20272]: Failed password for root from 90.45.177.225 port 45742 ssh2 Aug 5 08:51:31 ubuntu-2gb-nbg1-dc3-1 sshd[20755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.45.177.225 ...	2019-08-05 14:58:42
8.68.251.162	attackbotsspam	Autoban 8.68.251.162 VIRUS	2019-08-05 15:33:09
72.34.118.187	attack	port 23 attempt blocked	2019-08-05 15:32:30
92.63.194.52	attack	Portscan or hack attempt detected by psad/fwsnort WinRDP password Brute-Force	2019-08-05 15:23:15
113.234.149.155	attackspam	port 23 attempt blocked	2019-08-05 15:08:27
144.217.255.89	attackbotsspam	20 attempts against mh-misbehave-ban on ice.magehost.pro	2019-08-05 15:16:40
117.95.232.249	attackbotsspam	port 23 attempt blocked	2019-08-05 14:56:35
58.144.34.96	attackbotsspam	Aug 5 09:10:25 host sshd\[3051\]: Invalid user ftpuser from 58.144.34.96 port 39660 Aug 5 09:10:25 host sshd\[3051\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.144.34.96 ...	2019-08-05 15:31:56

最近上报的IP列表

111.199.29.101	92.53.65.144	91.147.206.59	49.4.51.224
177.3.174.103	98.34.107.37	24.164.229.186	161.52.177.96
107.232.144.225	91.177.116.173	23.16.119.188	191.94.198.92
2001:16b8:2e75:be00:fd62:8307:90fc:8d40	36.81.76.10	110.141.87.55	12.7.150.202
216.145.165.158	182.199.219.20	42.81.197.100	97.35.90.235