城市(city): North Bergen
省份(region): New Jersey
国家(country): United States
运营商(isp): DigitalOcean LLC
主机名(hostname): unknown
机构(organization): DigitalOcean, LLC
使用类型(Usage Type): Data Center/Web Hosting/Transit
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attackbots | Apr 30 06:11:09 server sshd\[138845\]: Invalid user admin1 from 142.93.11.10 Apr 30 06:11:09 server sshd\[138845\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.11.10 Apr 30 06:11:11 server sshd\[138845\]: Failed password for invalid user admin1 from 142.93.11.10 port 52156 ssh2 ... |
2019-07-12 05:09:54 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 142.93.115.218 | spambotsattackproxy | DDOS |
2023-02-25 22:15:30 |
| 142.93.118.252 | attack | 2020-10-13T17:20:07.902067abusebot-4.cloudsearch.cf sshd[7326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.118.252 user=root 2020-10-13T17:20:09.819878abusebot-4.cloudsearch.cf sshd[7326]: Failed password for root from 142.93.118.252 port 51186 ssh2 2020-10-13T17:25:25.711646abusebot-4.cloudsearch.cf sshd[7384]: Invalid user eliane from 142.93.118.252 port 33466 2020-10-13T17:25:25.728566abusebot-4.cloudsearch.cf sshd[7384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.118.252 2020-10-13T17:25:25.711646abusebot-4.cloudsearch.cf sshd[7384]: Invalid user eliane from 142.93.118.252 port 33466 2020-10-13T17:25:27.967571abusebot-4.cloudsearch.cf sshd[7384]: Failed password for invalid user eliane from 142.93.118.252 port 33466 ssh2 2020-10-13T17:28:29.714658abusebot-4.cloudsearch.cf sshd[7506]: Invalid user ando from 142.93.118.252 port 59804 ... |
2020-10-14 04:43:29 |
| 142.93.118.252 | attackbotsspam | Oct 13 11:48:49 ip-172-31-42-142 sshd\[2817\]: Failed password for root from 142.93.118.252 port 35510 ssh2\ Oct 13 11:53:48 ip-172-31-42-142 sshd\[2880\]: Invalid user abc123 from 142.93.118.252\ Oct 13 11:53:51 ip-172-31-42-142 sshd\[2880\]: Failed password for invalid user abc123 from 142.93.118.252 port 41950 ssh2\ Oct 13 11:55:28 ip-172-31-42-142 sshd\[2893\]: Invalid user ilya from 142.93.118.252\ Oct 13 11:55:30 ip-172-31-42-142 sshd\[2893\]: Failed password for invalid user ilya from 142.93.118.252 port 43804 ssh2\ |
2020-10-13 20:13:43 |
| 142.93.115.12 | attackspam | Sep 28 18:23:10 sip sshd[1760635]: Invalid user ec2-user from 142.93.115.12 port 46152 Sep 28 18:23:11 sip sshd[1760635]: Failed password for invalid user ec2-user from 142.93.115.12 port 46152 ssh2 Sep 28 18:30:43 sip sshd[1760661]: Invalid user kafka from 142.93.115.12 port 54806 ... |
2020-09-29 05:21:36 |
| 142.93.115.12 | attack | Time: Sun Sep 27 09:24:29 2020 +0000 IP: 142.93.115.12 (US/United States/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 27 09:11:46 3 sshd[16544]: Invalid user dbuser from 142.93.115.12 port 34274 Sep 27 09:11:48 3 sshd[16544]: Failed password for invalid user dbuser from 142.93.115.12 port 34274 ssh2 Sep 27 09:14:37 3 sshd[24114]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.115.12 user=root Sep 27 09:14:39 3 sshd[24114]: Failed password for root from 142.93.115.12 port 46776 ssh2 Sep 27 09:24:25 3 sshd[17199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.115.12 user=root |
2020-09-28 21:40:34 |
| 142.93.115.12 | attack | Sep 28 06:34:49 icinga sshd[51961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.115.12 Sep 28 06:34:51 icinga sshd[51961]: Failed password for invalid user user from 142.93.115.12 port 39448 ssh2 Sep 28 06:43:59 icinga sshd[65058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.115.12 ... |
2020-09-28 13:47:50 |
| 142.93.115.12 | attackbots | Invalid user prueba from 142.93.115.12 port 59366 |
2020-09-28 03:21:28 |
| 142.93.115.12 | attack | Bruteforce detected by fail2ban |
2020-09-27 19:31:13 |
| 142.93.115.12 | attack | Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=root |
2020-09-25 04:36:22 |
| 142.93.118.252 | attackspam | Sep 22 16:51:09 vps639187 sshd\[30772\]: Invalid user office from 142.93.118.252 port 57616 Sep 22 16:51:09 vps639187 sshd\[30772\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.118.252 Sep 22 16:51:11 vps639187 sshd\[30772\]: Failed password for invalid user office from 142.93.118.252 port 57616 ssh2 ... |
2020-09-23 00:21:49 |
| 142.93.118.252 | attack | Sep 22 13:00:23 lunarastro sshd[22244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.118.252 Sep 22 13:00:25 lunarastro sshd[22244]: Failed password for invalid user liwei from 142.93.118.252 port 34628 ssh2 |
2020-09-22 16:23:15 |
| 142.93.118.252 | attack | SSH Brute-force |
2020-09-22 08:25:55 |
| 142.93.112.41 | attackspambots | 2916/tcp 26695/tcp 31248/tcp... [2020-06-30/08-30]163pkt,61pt.(tcp) |
2020-08-31 18:02:05 |
| 142.93.111.202 | attackspambots | Unauthorized connection attempt detected from IP address 142.93.111.202 to port 10001 [T] |
2020-08-29 21:52:36 |
| 142.93.118.252 | attackbots | 2020-08-28T04:38:18.520419shield sshd\[1428\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.118.252 user=root 2020-08-28T04:38:20.489603shield sshd\[1428\]: Failed password for root from 142.93.118.252 port 57866 ssh2 2020-08-28T04:42:16.430313shield sshd\[1752\]: Invalid user pjv from 142.93.118.252 port 39446 2020-08-28T04:42:16.455090shield sshd\[1752\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.118.252 2020-08-28T04:42:18.097824shield sshd\[1752\]: Failed password for invalid user pjv from 142.93.118.252 port 39446 ssh2 |
2020-08-28 12:53:56 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.11.10
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15945
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.11.10. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019041902 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Apr 20 08:50:01 +08 2019
;; MSG SIZE rcvd: 116
Host 10.11.93.142.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 67.207.67.3
Address: 67.207.67.3#53
** server can't find 10.11.93.142.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 200.246.192.234 | attackbotsspam | Unauthorized connection attempt from IP address 200.246.192.234 on Port 445(SMB) |
2020-06-01 18:52:26 |
| 37.49.230.7 | attackbotsspam | Brute Force attack - banned by Fail2Ban |
2020-06-01 18:51:33 |
| 159.89.47.131 | attackbots | 159.89.47.131 - - [01/Jun/2020:07:51:48 +0200] "POST /xmlrpc.php HTTP/1.1" 403 31 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.47.131 - - [01/Jun/2020:08:02:56 +0200] "POST /xmlrpc.php HTTP/1.1" 403 613 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-06-01 19:11:21 |
| 68.183.169.251 | attackspam | Jun 1 13:06:51 vps647732 sshd[20284]: Failed password for root from 68.183.169.251 port 56324 ssh2 ... |
2020-06-01 19:09:58 |
| 184.105.139.67 | attackspambots | 873/tcp 2323/tcp 50070/tcp... [2020-04-01/06-01]154pkt,10pt.(tcp),2pt.(udp) |
2020-06-01 19:12:57 |
| 87.251.74.137 | attackbotsspam | Jun 1 11:40:26 debian-2gb-nbg1-2 kernel: \[13263198.954615\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=87.251.74.137 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=44983 PROTO=TCP SPT=55536 DPT=4422 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-06-01 18:38:25 |
| 58.251.37.197 | attackspam | Jun 1 12:29:32 home sshd[31148]: Failed password for root from 58.251.37.197 port 4830 ssh2 Jun 1 12:33:08 home sshd[31477]: Failed password for root from 58.251.37.197 port 30104 ssh2 ... |
2020-06-01 18:37:54 |
| 89.248.169.12 | attackbots | Multiport scan 14 ports : 110(x4) 554(x4) 587(x4) 993(x4) 995(x4) 2000(x3) 3306(x3) 5672(x3) 5800(x4) 5900(x3) 5901(x4) 5985(x4) 7779(x4) 8443(x4) |
2020-06-01 19:09:39 |
| 176.114.199.56 | attackspambots | Jun 1 10:36:22 web8 sshd\[30714\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.114.199.56 user=root Jun 1 10:36:23 web8 sshd\[30714\]: Failed password for root from 176.114.199.56 port 59154 ssh2 Jun 1 10:42:53 web8 sshd\[1628\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.114.199.56 user=root Jun 1 10:42:55 web8 sshd\[1628\]: Failed password for root from 176.114.199.56 port 37626 ssh2 Jun 1 10:46:18 web8 sshd\[3674\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.114.199.56 user=root |
2020-06-01 18:53:20 |
| 177.21.120.102 | attackspam | email spam |
2020-06-01 18:50:05 |
| 187.189.27.101 | attack | $f2bV_matches |
2020-06-01 18:55:52 |
| 14.29.35.47 | attackspam | 2020-06-01T05:42:48.4873301240 sshd\[30992\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.35.47 user=root 2020-06-01T05:42:50.7011281240 sshd\[30992\]: Failed password for root from 14.29.35.47 port 35056 ssh2 2020-06-01T05:46:13.9996021240 sshd\[31170\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.35.47 user=root ... |
2020-06-01 18:45:50 |
| 182.122.69.130 | attackbots | Jun 1 05:57:59 home sshd[24528]: Failed password for root from 182.122.69.130 port 52766 ssh2 Jun 1 06:01:04 home sshd[24809]: Failed password for root from 182.122.69.130 port 33798 ssh2 ... |
2020-06-01 19:01:04 |
| 113.160.4.134 | attackbotsspam | Unauthorized connection attempt from IP address 113.160.4.134 on Port 445(SMB) |
2020-06-01 18:41:02 |
| 51.79.55.141 | attack | leo_www |
2020-06-01 18:40:45 |