142.93.101.158

基本信息:

城市(city): Frankfurt am Main

省份(region): Hesse

国家(country): Germany

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-08-19 20:03:11
attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-07-26 16:22:37
attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-17 03:40:14

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.101.2	attackspambots	Banned for a week because repeated abuses, for example SSH, but not only	2020-10-08 01:01:05
142.93.101.2	attack	Oct 7 11:36:29 root sshd[417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.2 user=root Oct 7 11:36:32 root sshd[417]: Failed password for root from 142.93.101.2 port 49244 ssh2 ...	2020-10-07 17:09:59
142.93.101.46	attack	TCP port : 11535	2020-09-21 20:15:34
142.93.101.46	attack	$f2bV_matches	2020-09-21 12:07:29
142.93.101.46	attack	Port scan denied	2020-09-21 03:58:10
142.93.101.46	attack	Sep 19 15:43:29 nextcloud sshd\[13636\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.46 user=root Sep 19 15:43:31 nextcloud sshd\[13636\]: Failed password for root from 142.93.101.46 port 40324 ssh2 Sep 19 15:59:11 nextcloud sshd\[30368\]: Invalid user user123 from 142.93.101.46 Sep 19 15:59:11 nextcloud sshd\[30368\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.46	2020-09-19 22:00:31
142.93.101.46	attackspam	11777/tcp 30023/tcp 23124/tcp... [2020-08-30/09-18]65pkt,22pt.(tcp)	2020-09-19 13:53:09
142.93.101.46	attackbotsspam	fail2ban detected bruce force on ssh iptables	2020-09-19 05:32:24
142.93.101.46	attack	Invalid user weblogic from 142.93.101.46 port 35024	2020-09-17 06:30:38
142.93.101.46	attackbotsspam	2020-09-14T14:37:49+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)	2020-09-15 00:50:55
142.93.101.46	attack	Sep 14 09:46:15 v22019038103785759 sshd\[8351\]: Invalid user vodafone from 142.93.101.46 port 51558 Sep 14 09:46:15 v22019038103785759 sshd\[8351\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.46 Sep 14 09:46:17 v22019038103785759 sshd\[8351\]: Failed password for invalid user vodafone from 142.93.101.46 port 51558 ssh2 Sep 14 09:55:29 v22019038103785759 sshd\[9157\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.46 user=root Sep 14 09:55:31 v22019038103785759 sshd\[9157\]: Failed password for root from 142.93.101.46 port 60406 ssh2 ...	2020-09-14 16:34:32
142.93.101.148	attack	detected by Fail2Ban	2020-09-12 23:39:39
142.93.101.148	attack	(sshd) Failed SSH login from 142.93.101.148 (DE/Germany/-): 5 in the last 3600 secs	2020-09-12 15:43:02
142.93.101.148	attack	Sep 12 00:25:35 sshgateway sshd\[10111\]: Invalid user oneadmin from 142.93.101.148 Sep 12 00:25:35 sshgateway sshd\[10111\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.148 Sep 12 00:25:37 sshgateway sshd\[10111\]: Failed password for invalid user oneadmin from 142.93.101.148 port 41276 ssh2	2020-09-12 07:29:58
142.93.101.21	attackspam	Sep 1 11:28:50 webhost01 sshd[2657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.21 Sep 1 11:28:51 webhost01 sshd[2657]: Failed password for invalid user amber from 142.93.101.21 port 40062 ssh2 ...	2020-09-01 12:29:27

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.101.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23081
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.101.158.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071601 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 17 03:40:09 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 158.101.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 158.101.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
34.76.47.142	attack	Unauthorized connection attempt detected from IP address 34.76.47.142 to port 3790 [T]	2020-07-20 22:34:31
165.22.104.67	attack	2020-07-20T12:40:19.547099abusebot-5.cloudsearch.cf sshd[24890]: Invalid user adrian from 165.22.104.67 port 52566 2020-07-20T12:40:19.552292abusebot-5.cloudsearch.cf sshd[24890]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.104.67 2020-07-20T12:40:19.547099abusebot-5.cloudsearch.cf sshd[24890]: Invalid user adrian from 165.22.104.67 port 52566 2020-07-20T12:40:21.142900abusebot-5.cloudsearch.cf sshd[24890]: Failed password for invalid user adrian from 165.22.104.67 port 52566 ssh2 2020-07-20T12:45:07.728020abusebot-5.cloudsearch.cf sshd[24964]: Invalid user hq from 165.22.104.67 port 38660 2020-07-20T12:45:07.733797abusebot-5.cloudsearch.cf sshd[24964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.104.67 2020-07-20T12:45:07.728020abusebot-5.cloudsearch.cf sshd[24964]: Invalid user hq from 165.22.104.67 port 38660 2020-07-20T12:45:09.194015abusebot-5.cloudsearch.cf sshd[24964]: Failed pa ...	2020-07-20 22:31:37
118.112.97.248	attackspam	Auto Detect Rule! proto TCP (SYN), 118.112.97.248:53699->gjan.info:1433, len 52	2020-07-20 22:49:51
168.243.231.82	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-07-20 22:35:29
106.12.113.223	attack	2020-07-20 12:13:23,445 fail2ban.actions [937]: NOTICE [sshd] Ban 106.12.113.223 2020-07-20 12:48:15,439 fail2ban.actions [937]: NOTICE [sshd] Ban 106.12.113.223 2020-07-20 13:21:06,395 fail2ban.actions [937]: NOTICE [sshd] Ban 106.12.113.223 2020-07-20 13:54:55,353 fail2ban.actions [937]: NOTICE [sshd] Ban 106.12.113.223 2020-07-20 14:30:04,315 fail2ban.actions [937]: NOTICE [sshd] Ban 106.12.113.223 ...	2020-07-20 22:57:35
95.37.11.182	attackbotsspam	firewall-block, port(s): 445/tcp	2020-07-20 22:53:39
167.114.88.38	attackbotsspam	Spammer	2020-07-20 23:10:37
152.32.167.105	attackspambots	Jul 20 14:19:16 Invalid user Robert from 152.32.167.105 port 34630	2020-07-20 23:11:05
106.13.233.32	attack	2020-07-20T12:25:00.751701abusebot.cloudsearch.cf sshd[27258]: Invalid user angel from 106.13.233.32 port 53488 2020-07-20T12:25:00.756733abusebot.cloudsearch.cf sshd[27258]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.233.32 2020-07-20T12:25:00.751701abusebot.cloudsearch.cf sshd[27258]: Invalid user angel from 106.13.233.32 port 53488 2020-07-20T12:25:02.186786abusebot.cloudsearch.cf sshd[27258]: Failed password for invalid user angel from 106.13.233.32 port 53488 ssh2 2020-07-20T12:30:03.422344abusebot.cloudsearch.cf sshd[27418]: Invalid user userdb from 106.13.233.32 port 55898 2020-07-20T12:30:03.427224abusebot.cloudsearch.cf sshd[27418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.233.32 2020-07-20T12:30:03.422344abusebot.cloudsearch.cf sshd[27418]: Invalid user userdb from 106.13.233.32 port 55898 2020-07-20T12:30:05.785617abusebot.cloudsearch.cf sshd[27418]: Failed password for ...	2020-07-20 22:57:13
206.189.98.225	attackspambots	Jul 20 14:30:09 rancher-0 sshd[477440]: Invalid user client from 206.189.98.225 port 50876 ...	2020-07-20 22:38:06
95.142.161.63	attackspam	(mod_security) mod_security (id:218420) triggered by 95.142.161.63 (FR/France/ekumen.nos-oignons.net): 5 in the last 3600 secs	2020-07-20 22:41:21
182.191.81.218	attack	Unauthorized connection attempt from IP address 182.191.81.218 on Port 445(SMB)	2020-07-20 22:29:20
51.178.144.21	attack	Jul 20 14:04:19 Invalid user service from 51.178.144.21 port 51036	2020-07-20 23:06:41
87.98.154.240	attackbotsspam	CMS (WordPress or Joomla) login attempt.	2020-07-20 22:46:34
218.92.0.220	attack	Jul 20 16:38:22 abendstille sshd\[4504\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.220 user=root Jul 20 16:38:24 abendstille sshd\[4504\]: Failed password for root from 218.92.0.220 port 61141 ssh2 Jul 20 16:38:33 abendstille sshd\[4764\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.220 user=root Jul 20 16:38:36 abendstille sshd\[4764\]: Failed password for root from 218.92.0.220 port 52391 ssh2 Jul 20 16:38:46 abendstille sshd\[4867\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.220 user=root ...	2020-07-20 22:54:10

最近上报的IP列表

111.199.29.101	92.53.65.144	91.147.206.59	49.4.51.224
177.3.174.103	98.34.107.37	24.164.229.186	161.52.177.96
107.232.144.225	91.177.116.173	23.16.119.188	191.94.198.92
2001:16b8:2e75:be00:fd62:8307:90fc:8d40	36.81.76.10	110.141.87.55	12.7.150.202
216.145.165.158	182.199.219.20	42.81.197.100	97.35.90.235