142.93.101.158

基本信息:

城市(city): Frankfurt am Main

省份(region): Hesse

国家(country): Germany

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-08-19 20:03:11
attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-07-26 16:22:37
attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-17 03:40:14

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.101.2	attackspambots	Banned for a week because repeated abuses, for example SSH, but not only	2020-10-08 01:01:05
142.93.101.2	attack	Oct 7 11:36:29 root sshd[417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.2 user=root Oct 7 11:36:32 root sshd[417]: Failed password for root from 142.93.101.2 port 49244 ssh2 ...	2020-10-07 17:09:59
142.93.101.46	attack	TCP port : 11535	2020-09-21 20:15:34
142.93.101.46	attack	$f2bV_matches	2020-09-21 12:07:29
142.93.101.46	attack	Port scan denied	2020-09-21 03:58:10
142.93.101.46	attack	Sep 19 15:43:29 nextcloud sshd\[13636\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.46 user=root Sep 19 15:43:31 nextcloud sshd\[13636\]: Failed password for root from 142.93.101.46 port 40324 ssh2 Sep 19 15:59:11 nextcloud sshd\[30368\]: Invalid user user123 from 142.93.101.46 Sep 19 15:59:11 nextcloud sshd\[30368\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.46	2020-09-19 22:00:31
142.93.101.46	attackspam	11777/tcp 30023/tcp 23124/tcp... [2020-08-30/09-18]65pkt,22pt.(tcp)	2020-09-19 13:53:09
142.93.101.46	attackbotsspam	fail2ban detected bruce force on ssh iptables	2020-09-19 05:32:24
142.93.101.46	attack	Invalid user weblogic from 142.93.101.46 port 35024	2020-09-17 06:30:38
142.93.101.46	attackbotsspam	2020-09-14T14:37:49+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)	2020-09-15 00:50:55
142.93.101.46	attack	Sep 14 09:46:15 v22019038103785759 sshd\[8351\]: Invalid user vodafone from 142.93.101.46 port 51558 Sep 14 09:46:15 v22019038103785759 sshd\[8351\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.46 Sep 14 09:46:17 v22019038103785759 sshd\[8351\]: Failed password for invalid user vodafone from 142.93.101.46 port 51558 ssh2 Sep 14 09:55:29 v22019038103785759 sshd\[9157\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.46 user=root Sep 14 09:55:31 v22019038103785759 sshd\[9157\]: Failed password for root from 142.93.101.46 port 60406 ssh2 ...	2020-09-14 16:34:32
142.93.101.148	attack	detected by Fail2Ban	2020-09-12 23:39:39
142.93.101.148	attack	(sshd) Failed SSH login from 142.93.101.148 (DE/Germany/-): 5 in the last 3600 secs	2020-09-12 15:43:02
142.93.101.148	attack	Sep 12 00:25:35 sshgateway sshd\[10111\]: Invalid user oneadmin from 142.93.101.148 Sep 12 00:25:35 sshgateway sshd\[10111\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.148 Sep 12 00:25:37 sshgateway sshd\[10111\]: Failed password for invalid user oneadmin from 142.93.101.148 port 41276 ssh2	2020-09-12 07:29:58
142.93.101.21	attackspam	Sep 1 11:28:50 webhost01 sshd[2657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.101.21 Sep 1 11:28:51 webhost01 sshd[2657]: Failed password for invalid user amber from 142.93.101.21 port 40062 ssh2 ...	2020-09-01 12:29:27

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.101.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23081
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.101.158.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071601 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 17 03:40:09 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 158.101.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 158.101.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
106.11.30.5	attackbotsspam	ICMP MH Probe, Scan /Distributed -	2020-05-26 22:07:09
103.53.194.82	attack	ICMP MH Probe, Scan /Distributed -	2020-05-26 22:21:02
159.89.157.75	attack	2020-05-26T13:43:56.161531shield sshd\[16716\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.157.75 user=root 2020-05-26T13:43:58.258578shield sshd\[16716\]: Failed password for root from 159.89.157.75 port 33000 ssh2 2020-05-26T13:47:55.495392shield sshd\[17466\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.157.75 user=root 2020-05-26T13:47:57.070890shield sshd\[17466\]: Failed password for root from 159.89.157.75 port 37384 ssh2 2020-05-26T13:51:53.672073shield sshd\[18529\]: Invalid user oliver from 159.89.157.75 port 41764	2020-05-26 22:22:12
195.54.160.213	attackbotsspam	05/26/2020-09:31:10.239118 195.54.160.213 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-05-26 22:11:56
195.54.160.210	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-05-26 22:18:30
122.117.173.179	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-05-26 22:10:38
178.33.67.12	attackbots	May 26 10:38:51 root sshd[5277]: Invalid user ross from 178.33.67.12 ...	2020-05-26 21:55:03
195.54.160.130	attackbotsspam	misc attack from 195.54.160.130 : 43126 to SIP & RDP Ports	2020-05-26 22:25:56
181.15.216.21	attackspambots	May 26 10:43:18 hosting sshd[26879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=host21.181-15-216.telecom.net.ar user=root May 26 10:43:20 hosting sshd[26879]: Failed password for root from 181.15.216.21 port 39460 ssh2 ...	2020-05-26 22:14:39
116.114.95.166	attackspam	[MK-VM4] Blocked by UFW	2020-05-26 22:09:11
107.155.21.91	attack	ICMP MH Probe, Scan /Distributed -	2020-05-26 22:02:33
122.51.186.145	attackbotsspam	May 26 23:35:04 localhost sshd[2859345]: Invalid user yousuf from 122.51.186.145 port 55756 ...	2020-05-26 22:35:16
45.14.150.103	attackspambots	2020-05-26T15:35:02.559761 sshd[21735]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.103 user=root 2020-05-26T15:35:04.682362 sshd[21735]: Failed password for root from 45.14.150.103 port 46272 ssh2 2020-05-26T15:43:16.303705 sshd[21896]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.103 user=root 2020-05-26T15:43:18.576609 sshd[21896]: Failed password for root from 45.14.150.103 port 37114 ssh2 ...	2020-05-26 22:04:15
129.226.138.179	attackspambots	May 26 11:26:46 rotator sshd\[19856\]: Invalid user ngatwiri from 129.226.138.179May 26 11:26:48 rotator sshd\[19856\]: Failed password for invalid user ngatwiri from 129.226.138.179 port 36466 ssh2May 26 11:29:53 rotator sshd\[19891\]: Failed password for root from 129.226.138.179 port 41330 ssh2May 26 11:32:46 rotator sshd\[20671\]: Invalid user owner from 129.226.138.179May 26 11:32:48 rotator sshd\[20671\]: Failed password for invalid user owner from 129.226.138.179 port 46198 ssh2May 26 11:35:46 rotator sshd\[21444\]: Failed password for root from 129.226.138.179 port 51060 ssh2 ...	2020-05-26 22:02:08
111.38.70.13	attack	Unauthorized connection attempt detected from IP address 111.38.70.13 to port 6000	2020-05-26 22:24:05

最近上报的IP列表

111.199.29.101	92.53.65.144	91.147.206.59	49.4.51.224
177.3.174.103	98.34.107.37	24.164.229.186	161.52.177.96
107.232.144.225	91.177.116.173	23.16.119.188	191.94.198.92
2001:16b8:2e75:be00:fd62:8307:90fc:8d40	36.81.76.10	110.141.87.55	12.7.150.202
216.145.165.158	182.199.219.20	42.81.197.100	97.35.90.235