城市(city): North Bergen
省份(region): New Jersey
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): DigitalOcean, LLC
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 142.93.14.123 | attack | Malicious IP / Malware |
2024-06-14 12:55:54 |
| 142.93.142.51 | attackspam | SSH Bruteforce Attempt on Honeypot |
2020-10-01 08:48:22 |
| 142.93.142.51 | attack | Sep 30 15:24:37 vlre-nyc-1 sshd\[16561\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.142.51 user=root Sep 30 15:24:39 vlre-nyc-1 sshd\[16561\]: Failed password for root from 142.93.142.51 port 44634 ssh2 Sep 30 15:32:59 vlre-nyc-1 sshd\[16917\]: Invalid user server from 142.93.142.51 Sep 30 15:32:59 vlre-nyc-1 sshd\[16917\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.142.51 Sep 30 15:33:01 vlre-nyc-1 sshd\[16917\]: Failed password for invalid user server from 142.93.142.51 port 46860 ssh2 ... |
2020-10-01 01:23:49 |
| 142.93.142.51 | attackspambots | Sep 30 11:00:52 DAAP sshd[26619]: Invalid user test from 142.93.142.51 port 48914 Sep 30 11:00:52 DAAP sshd[26619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.142.51 Sep 30 11:00:52 DAAP sshd[26619]: Invalid user test from 142.93.142.51 port 48914 Sep 30 11:00:54 DAAP sshd[26619]: Failed password for invalid user test from 142.93.142.51 port 48914 ssh2 Sep 30 11:07:21 DAAP sshd[26802]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.142.51 user=root Sep 30 11:07:23 DAAP sshd[26802]: Failed password for root from 142.93.142.51 port 58030 ssh2 ... |
2020-09-30 17:36:20 |
| 142.93.146.198 | attack | firewall-block, port(s): 22/tcp |
2020-09-01 06:45:18 |
| 142.93.149.57 | attack |
|
2020-08-28 16:17:34 |
| 142.93.146.198 | attackspambots | Aug 10 22:00:51 : SSH login attempts with invalid user |
2020-08-13 08:40:12 |
| 142.93.149.57 | attack | SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: do-prod-us-north-clients-0106-9.do.binaryedge.ninja. |
2020-08-11 08:50:11 |
| 142.93.143.85 | attack | Trolling for resource vulnerabilities |
2020-08-02 22:17:05 |
| 142.93.143.85 | attackbots | 142.93.143.85 - - [30/Jul/2020:12:29:59 +0200] "POST /xmlrpc.php HTTP/1.1" 403 21861 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.143.85 - - [30/Jul/2020:12:46:22 +0200] "POST /xmlrpc.php HTTP/1.1" 403 31 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-07-30 19:09:59 |
| 142.93.143.85 | attack | 142.93.143.85 - - [11/Jul/2020:15:50:31 +0200] "GET /wp-login.php HTTP/1.1" 200 6310 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.143.85 - - [11/Jul/2020:15:50:31 +0200] "POST /wp-login.php HTTP/1.1" 200 6561 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.143.85 - - [11/Jul/2020:15:50:32 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-07-11 22:01:26 |
| 142.93.143.85 | attackspambots | 142.93.143.85 has been banned for [WebApp Attack] ... |
2020-07-05 16:37:18 |
| 142.93.148.12 | attack | Automatic report - XMLRPC Attack |
2020-06-24 06:23:24 |
| 142.93.140.242 | attack | 2020-06-17T00:03:36.067695mail.standpoint.com.ua sshd[31174]: Invalid user silvio from 142.93.140.242 port 43750 2020-06-17T00:03:36.070299mail.standpoint.com.ua sshd[31174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.140.242 2020-06-17T00:03:36.067695mail.standpoint.com.ua sshd[31174]: Invalid user silvio from 142.93.140.242 port 43750 2020-06-17T00:03:37.535152mail.standpoint.com.ua sshd[31174]: Failed password for invalid user silvio from 142.93.140.242 port 43750 ssh2 2020-06-17T00:06:56.112872mail.standpoint.com.ua sshd[31629]: Invalid user teamspeak3 from 142.93.140.242 port 45070 ... |
2020-06-17 05:46:46 |
| 142.93.140.214 | attackspambots | Jun 15 18:54:18 php1 sshd\[21780\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.140.214 user=root Jun 15 18:54:20 php1 sshd\[21780\]: Failed password for root from 142.93.140.214 port 35010 ssh2 Jun 15 18:57:30 php1 sshd\[21985\]: Invalid user lia from 142.93.140.214 Jun 15 18:57:30 php1 sshd\[21985\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.140.214 Jun 15 18:57:32 php1 sshd\[21985\]: Failed password for invalid user lia from 142.93.140.214 port 36260 ssh2 |
2020-06-16 13:11:36 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.14.199
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53494
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.14.199. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019052100 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed May 22 01:53:11 CST 2019
;; MSG SIZE rcvd: 117
199.14.93.142.in-addr.arpa domain name pointer 205644.cloudwaysapps.com.
Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
199.14.93.142.in-addr.arpa name = 205644.cloudwaysapps.com.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 202.137.134.61 | attack | (imapd) Failed IMAP login from 202.137.134.61 (LA/Laos/-): 1 in the last 3600 secs |
2020-06-18 00:51:50 |
| 36.156.158.207 | attack | Jun 17 16:19:14 jumpserver sshd[115692]: Invalid user cent from 36.156.158.207 port 56415 Jun 17 16:19:17 jumpserver sshd[115692]: Failed password for invalid user cent from 36.156.158.207 port 56415 ssh2 Jun 17 16:22:16 jumpserver sshd[115731]: Invalid user dwi from 36.156.158.207 port 42716 ... |
2020-06-18 00:58:26 |
| 222.186.42.155 | attack | 17.06.2020 16:40:01 SSH access blocked by firewall |
2020-06-18 00:41:52 |
| 218.92.0.215 | attackbots | Jun 17 16:46:37 rush sshd[23608]: Failed password for root from 218.92.0.215 port 26480 ssh2 Jun 17 16:46:56 rush sshd[23610]: Failed password for root from 218.92.0.215 port 34353 ssh2 ... |
2020-06-18 00:47:46 |
| 94.142.244.16 | attackbotsspam | Jun 17 18:22:18 mellenthin sshd[27774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.142.244.16 user=root Jun 17 18:22:20 mellenthin sshd[27774]: Failed password for invalid user root from 94.142.244.16 port 47696 ssh2 |
2020-06-18 00:55:18 |
| 35.224.121.138 | attack | Jun 17 18:17:55 OPSO sshd\[11325\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.224.121.138 user=root Jun 17 18:17:57 OPSO sshd\[11325\]: Failed password for root from 35.224.121.138 port 57250 ssh2 Jun 17 18:21:13 OPSO sshd\[12058\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.224.121.138 user=root Jun 17 18:21:15 OPSO sshd\[12058\]: Failed password for root from 35.224.121.138 port 57776 ssh2 Jun 17 18:24:45 OPSO sshd\[12397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.224.121.138 user=root |
2020-06-18 00:26:50 |
| 106.13.179.45 | attackspam | SSH bruteforce |
2020-06-18 00:16:42 |
| 106.225.152.206 | attackspam | Jun 17 18:22:24 pornomens sshd\[29407\]: Invalid user markku from 106.225.152.206 port 50832 Jun 17 18:22:24 pornomens sshd\[29407\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.225.152.206 Jun 17 18:22:26 pornomens sshd\[29407\]: Failed password for invalid user markku from 106.225.152.206 port 50832 ssh2 ... |
2020-06-18 00:49:43 |
| 154.85.35.253 | attackspam | Jun 17 18:09:38 ns382633 sshd\[18073\]: Invalid user user from 154.85.35.253 port 46880 Jun 17 18:09:38 ns382633 sshd\[18073\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.85.35.253 Jun 17 18:09:40 ns382633 sshd\[18073\]: Failed password for invalid user user from 154.85.35.253 port 46880 ssh2 Jun 17 18:22:35 ns382633 sshd\[20633\]: Invalid user admin from 154.85.35.253 port 39590 Jun 17 18:22:35 ns382633 sshd\[20633\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.85.35.253 |
2020-06-18 00:38:33 |
| 200.123.119.163 | attackbots | Jun 17 18:22:23 ncomp sshd[15674]: Invalid user mother from 200.123.119.163 Jun 17 18:22:23 ncomp sshd[15674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.123.119.163 Jun 17 18:22:23 ncomp sshd[15674]: Invalid user mother from 200.123.119.163 Jun 17 18:22:25 ncomp sshd[15674]: Failed password for invalid user mother from 200.123.119.163 port 22811 ssh2 |
2020-06-18 00:52:21 |
| 129.211.55.6 | attackspambots | Jun 17 18:29:39 srv sshd[22374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.55.6 |
2020-06-18 00:32:54 |
| 189.4.3.172 | attackspambots | Jun 17 16:17:37 rush sshd[23000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.4.3.172 Jun 17 16:17:38 rush sshd[23000]: Failed password for invalid user test from 189.4.3.172 port 16487 ssh2 Jun 17 16:22:43 rush sshd[23104]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.4.3.172 ... |
2020-06-18 00:30:32 |
| 81.16.251.244 | attackspam | Unauthorized connection attempt from IP address 81.16.251.244 on Port 445(SMB) |
2020-06-18 00:15:43 |
| 106.12.18.125 | attackbotsspam | 06/17/2020-11:34:29.835847 106.12.18.125 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-06-18 00:09:38 |
| 75.119.216.13 | attackspambots | CMS (WordPress or Joomla) login attempt. |
2020-06-18 00:46:59 |