城市(city): North Bergen
省份(region): New Jersey
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): DigitalOcean, LLC
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 142.93.14.123 | attack | Malicious IP / Malware |
2024-06-14 12:55:54 |
| 142.93.142.51 | attackspam | SSH Bruteforce Attempt on Honeypot |
2020-10-01 08:48:22 |
| 142.93.142.51 | attack | Sep 30 15:24:37 vlre-nyc-1 sshd\[16561\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.142.51 user=root Sep 30 15:24:39 vlre-nyc-1 sshd\[16561\]: Failed password for root from 142.93.142.51 port 44634 ssh2 Sep 30 15:32:59 vlre-nyc-1 sshd\[16917\]: Invalid user server from 142.93.142.51 Sep 30 15:32:59 vlre-nyc-1 sshd\[16917\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.142.51 Sep 30 15:33:01 vlre-nyc-1 sshd\[16917\]: Failed password for invalid user server from 142.93.142.51 port 46860 ssh2 ... |
2020-10-01 01:23:49 |
| 142.93.142.51 | attackspambots | Sep 30 11:00:52 DAAP sshd[26619]: Invalid user test from 142.93.142.51 port 48914 Sep 30 11:00:52 DAAP sshd[26619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.142.51 Sep 30 11:00:52 DAAP sshd[26619]: Invalid user test from 142.93.142.51 port 48914 Sep 30 11:00:54 DAAP sshd[26619]: Failed password for invalid user test from 142.93.142.51 port 48914 ssh2 Sep 30 11:07:21 DAAP sshd[26802]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.142.51 user=root Sep 30 11:07:23 DAAP sshd[26802]: Failed password for root from 142.93.142.51 port 58030 ssh2 ... |
2020-09-30 17:36:20 |
| 142.93.146.198 | attack | firewall-block, port(s): 22/tcp |
2020-09-01 06:45:18 |
| 142.93.149.57 | attack |
|
2020-08-28 16:17:34 |
| 142.93.146.198 | attackspambots | Aug 10 22:00:51 : SSH login attempts with invalid user |
2020-08-13 08:40:12 |
| 142.93.149.57 | attack | SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: do-prod-us-north-clients-0106-9.do.binaryedge.ninja. |
2020-08-11 08:50:11 |
| 142.93.143.85 | attack | Trolling for resource vulnerabilities |
2020-08-02 22:17:05 |
| 142.93.143.85 | attackbots | 142.93.143.85 - - [30/Jul/2020:12:29:59 +0200] "POST /xmlrpc.php HTTP/1.1" 403 21861 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.143.85 - - [30/Jul/2020:12:46:22 +0200] "POST /xmlrpc.php HTTP/1.1" 403 31 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-07-30 19:09:59 |
| 142.93.143.85 | attack | 142.93.143.85 - - [11/Jul/2020:15:50:31 +0200] "GET /wp-login.php HTTP/1.1" 200 6310 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.143.85 - - [11/Jul/2020:15:50:31 +0200] "POST /wp-login.php HTTP/1.1" 200 6561 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.143.85 - - [11/Jul/2020:15:50:32 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-07-11 22:01:26 |
| 142.93.143.85 | attackspambots | 142.93.143.85 has been banned for [WebApp Attack] ... |
2020-07-05 16:37:18 |
| 142.93.148.12 | attack | Automatic report - XMLRPC Attack |
2020-06-24 06:23:24 |
| 142.93.140.242 | attack | 2020-06-17T00:03:36.067695mail.standpoint.com.ua sshd[31174]: Invalid user silvio from 142.93.140.242 port 43750 2020-06-17T00:03:36.070299mail.standpoint.com.ua sshd[31174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.140.242 2020-06-17T00:03:36.067695mail.standpoint.com.ua sshd[31174]: Invalid user silvio from 142.93.140.242 port 43750 2020-06-17T00:03:37.535152mail.standpoint.com.ua sshd[31174]: Failed password for invalid user silvio from 142.93.140.242 port 43750 ssh2 2020-06-17T00:06:56.112872mail.standpoint.com.ua sshd[31629]: Invalid user teamspeak3 from 142.93.140.242 port 45070 ... |
2020-06-17 05:46:46 |
| 142.93.140.214 | attackspambots | Jun 15 18:54:18 php1 sshd\[21780\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.140.214 user=root Jun 15 18:54:20 php1 sshd\[21780\]: Failed password for root from 142.93.140.214 port 35010 ssh2 Jun 15 18:57:30 php1 sshd\[21985\]: Invalid user lia from 142.93.140.214 Jun 15 18:57:30 php1 sshd\[21985\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.140.214 Jun 15 18:57:32 php1 sshd\[21985\]: Failed password for invalid user lia from 142.93.140.214 port 36260 ssh2 |
2020-06-16 13:11:36 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.14.199
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53494
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.14.199. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019052100 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed May 22 01:53:11 CST 2019
;; MSG SIZE rcvd: 117
199.14.93.142.in-addr.arpa domain name pointer 205644.cloudwaysapps.com.
Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
199.14.93.142.in-addr.arpa name = 205644.cloudwaysapps.com.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 218.92.0.248 | attackspambots | Jul 9 11:34:56 melroy-server sshd[24390]: Failed password for root from 218.92.0.248 port 44410 ssh2 Jul 9 11:35:02 melroy-server sshd[24390]: Failed password for root from 218.92.0.248 port 44410 ssh2 ... |
2020-07-09 17:35:14 |
| 211.155.225.104 | attackbotsspam | Jul 9 09:46:04 ms-srv sshd[4039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.155.225.104 Jul 9 09:46:05 ms-srv sshd[4039]: Failed password for invalid user Bertold from 211.155.225.104 port 51413 ssh2 |
2020-07-09 17:50:26 |
| 46.38.150.193 | attackspam | Jul 9 11:34:11 srv01 postfix/smtpd\[2514\]: warning: unknown\[46.38.150.193\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 9 11:34:54 srv01 postfix/smtpd\[2514\]: warning: unknown\[46.38.150.193\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 9 11:35:36 srv01 postfix/smtpd\[17599\]: warning: unknown\[46.38.150.193\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 9 11:36:20 srv01 postfix/smtpd\[2514\]: warning: unknown\[46.38.150.193\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 9 11:37:06 srv01 postfix/smtpd\[2514\]: warning: unknown\[46.38.150.193\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-07-09 17:40:29 |
| 3.249.14.31 | attack | 09.07.2020 05:53:05 - Wordpress fail Detected by ELinOX-ALM |
2020-07-09 17:22:11 |
| 185.63.253.157 | attackspam | Automatic report - Banned IP Access |
2020-07-09 17:34:12 |
| 89.248.172.123 | attackspam | 07/09/2020-04:44:35.678339 89.248.172.123 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2020-07-09 17:33:47 |
| 212.143.220.193 | attackspam | 1594266782 - 07/09/2020 05:53:02 Host: 212.143.220.193/212.143.220.193 Port: 23 TCP Blocked |
2020-07-09 17:16:56 |
| 220.156.169.45 | attackbots | Dovecot Invalid User Login Attempt. |
2020-07-09 17:45:57 |
| 190.78.15.37 | attackspam | Honeypot attack, port: 445, PTR: 190-78-15-37.dyn.dsl.cantv.net. |
2020-07-09 17:47:49 |
| 103.81.92.230 | attack | Honeypot attack, port: 445, PTR: PTR record not found |
2020-07-09 17:21:47 |
| 222.186.180.41 | attack | Jul 9 02:06:01 dignus sshd[24155]: error: maximum authentication attempts exceeded for root from 222.186.180.41 port 6434 ssh2 [preauth] Jul 9 02:06:06 dignus sshd[24194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.41 user=root Jul 9 02:06:08 dignus sshd[24194]: Failed password for root from 222.186.180.41 port 54978 ssh2 Jul 9 02:06:18 dignus sshd[24194]: Failed password for root from 222.186.180.41 port 54978 ssh2 Jul 9 02:06:21 dignus sshd[24194]: Failed password for root from 222.186.180.41 port 54978 ssh2 ... |
2020-07-09 17:11:47 |
| 218.92.0.221 | attackbots | Jul 9 11:34:08 piServer sshd[22424]: Failed password for root from 218.92.0.221 port 62257 ssh2 Jul 9 11:34:13 piServer sshd[22424]: Failed password for root from 218.92.0.221 port 62257 ssh2 Jul 9 11:34:16 piServer sshd[22424]: Failed password for root from 218.92.0.221 port 62257 ssh2 ... |
2020-07-09 17:35:39 |
| 110.138.65.154 | attackspam | Honeypot attack, port: 445, PTR: PTR record not found |
2020-07-09 17:14:48 |
| 51.83.73.109 | attack | 2020-07-09T03:50:09.780165abusebot-5.cloudsearch.cf sshd[18780]: Invalid user paginas from 51.83.73.109 port 53684 2020-07-09T03:50:09.785304abusebot-5.cloudsearch.cf sshd[18780]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.ip-51-83-73.eu 2020-07-09T03:50:09.780165abusebot-5.cloudsearch.cf sshd[18780]: Invalid user paginas from 51.83.73.109 port 53684 2020-07-09T03:50:11.419441abusebot-5.cloudsearch.cf sshd[18780]: Failed password for invalid user paginas from 51.83.73.109 port 53684 ssh2 2020-07-09T03:53:09.477238abusebot-5.cloudsearch.cf sshd[18788]: Invalid user vnc from 51.83.73.109 port 52454 2020-07-09T03:53:09.483806abusebot-5.cloudsearch.cf sshd[18788]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.ip-51-83-73.eu 2020-07-09T03:53:09.477238abusebot-5.cloudsearch.cf sshd[18788]: Invalid user vnc from 51.83.73.109 port 52454 2020-07-09T03:53:11.463632abusebot-5.cloudsearch.cf sshd[18788]: ... |
2020-07-09 17:10:28 |
| 106.13.167.94 | attackspam | Jul 9 02:16:15 Tower sshd[24312]: Connection from 106.13.167.94 port 39116 on 192.168.10.220 port 22 rdomain "" Jul 9 02:16:17 Tower sshd[24312]: Invalid user deamon from 106.13.167.94 port 39116 Jul 9 02:16:17 Tower sshd[24312]: error: Could not get shadow information for NOUSER Jul 9 02:16:17 Tower sshd[24312]: Failed password for invalid user deamon from 106.13.167.94 port 39116 ssh2 Jul 9 02:16:17 Tower sshd[24312]: Received disconnect from 106.13.167.94 port 39116:11: Bye Bye [preauth] Jul 9 02:16:17 Tower sshd[24312]: Disconnected from invalid user deamon 106.13.167.94 port 39116 [preauth] |
2020-07-09 17:39:30 |