城市(city): unknown
省份(region): unknown
国家(country): Germany
运营商(isp): DigitalOcean LLC
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): Data Center/Web Hosting/Transit
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 142.93.168.126 | attackspambots | [N10.H2.VM2] Port Scanner Detected Blocked by UFW |
2020-08-30 13:24:35 |
| 142.93.168.126 | attackbots | Port scan: Attack repeated for 24 hours |
2020-08-22 21:38:29 |
| 142.93.168.126 | attackbots | Port scan: Attack repeated for 24 hours |
2020-08-13 03:58:16 |
| 142.93.168.126 | attack | Port scan: Attack repeated for 24 hours |
2020-07-31 20:21:04 |
| 142.93.168.126 | attack | trying to access non-authorized port |
2020-05-28 05:35:41 |
| 142.93.168.126 | attackbots | Fail2Ban Ban Triggered |
2020-05-27 20:48:46 |
| 142.93.168.216 | attack | Honeypot attack, port: 5555, PTR: PTR record not found |
2020-05-07 12:59:51 |
| 142.93.168.126 | attack | 05/04/2020-21:10:47.895984 142.93.168.126 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-05-05 11:21:51 |
| 142.93.168.126 | attack | 12052/tcp 891/tcp 2587/tcp... [2020-04-13/05-03]67pkt,24pt.(tcp) |
2020-05-04 08:33:35 |
| 142.93.168.126 | attackbots | Port scan(s) denied |
2020-05-02 18:10:13 |
| 142.93.168.126 | attackspam | scans 2 times in preceeding hours on the ports (in chronological order) 32190 32190 |
2020-04-25 21:04:52 |
| 142.93.168.126 | attackbotsspam | ... |
2020-02-02 04:00:15 |
| 142.93.168.48 | attack | detected by Fail2Ban |
2019-10-02 19:10:38 |
| 142.93.168.48 | attackspam | 2019-08-18T18:07:19.968877WS-Zach sshd[18293]: User root from 142.93.168.48 not allowed because none of user's groups are listed in AllowGroups 2019-08-18T18:07:19.980143WS-Zach sshd[18293]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.168.48 user=root 2019-08-18T18:07:19.968877WS-Zach sshd[18293]: User root from 142.93.168.48 not allowed because none of user's groups are listed in AllowGroups 2019-08-18T18:07:22.068788WS-Zach sshd[18293]: Failed password for invalid user root from 142.93.168.48 port 38097 ssh2 2019-08-18T18:07:19.980143WS-Zach sshd[18293]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.168.48 user=root 2019-08-18T18:07:19.968877WS-Zach sshd[18293]: User root from 142.93.168.48 not allowed because none of user's groups are listed in AllowGroups 2019-08-18T18:07:22.068788WS-Zach sshd[18293]: Failed password for invalid user root from 142.93.168.48 port 38097 ssh2 2019-08-18T18:07:24.897184WS-Zac |
2019-08-19 10:55:15 |
| 142.93.168.48 | attackspambots | 2019-07-08T14:33:34.760666WS-Zach sshd[11201]: Invalid user 666666 from 142.93.168.48 port 32909 2019-07-08T14:33:34.762543WS-Zach sshd[11201]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.168.48 2019-07-08T14:33:34.760666WS-Zach sshd[11201]: Invalid user 666666 from 142.93.168.48 port 32909 2019-07-08T14:33:37.044152WS-Zach sshd[11201]: Failed password for invalid user 666666 from 142.93.168.48 port 32909 ssh2 2019-07-08T14:33:42.274202WS-Zach sshd[11274]: Invalid user 888888 from 142.93.168.48 port 35281 ... |
2019-07-09 09:29:51 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.168.231
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49822
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.168.231. IN A
;; AUTHORITY SECTION:
. 464 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019102400 1800 900 604800 86400
;; Query time: 151 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 24 16:31:09 CST 2019
;; MSG SIZE rcvd: 118231.168.93.142.in-addr.arpa domain name pointer 200086.cloudwaysapps.com.231.168.93.142.in-addr.arpa name = 200086.cloudwaysapps.com.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 160.16.147.188 | attackbots | CF RAY ID: 5baf089caf7f951b IP Class: noRecord URI: /xmlrpc.php |
2020-07-31 17:03:12 |
| 41.231.54.123 | attackspambots | Invalid user postgresql from 41.231.54.123 port 52242 |
2020-07-31 16:35:37 |
| 122.51.108.64 | attackbotsspam | Jul 31 04:46:58 v26 sshd[3680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.108.64 user=r.r Jul 31 04:47:01 v26 sshd[3680]: Failed password for r.r from 122.51.108.64 port 49772 ssh2 Jul 31 04:47:03 v26 sshd[3680]: Received disconnect from 122.51.108.64 port 49772:11: Bye Bye [preauth] Jul 31 04:47:03 v26 sshd[3680]: Disconnected from 122.51.108.64 port 49772 [preauth] Jul 31 04:57:11 v26 sshd[4631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.108.64 user=r.r Jul 31 04:57:13 v26 sshd[4631]: Failed password for r.r from 122.51.108.64 port 35712 ssh2 Jul 31 04:57:14 v26 sshd[4631]: Received disconnect from 122.51.108.64 port 35712:11: Bye Bye [preauth] Jul 31 04:57:14 v26 sshd[4631]: Disconnected from 122.51.108.64 port 35712 [preauth] Jul 31 05:06:50 v26 sshd[5614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.108.64 u........ ------------------------------- |
2020-07-31 16:22:27 |
| 118.24.8.99 | attack | fail2ban detected brute force on sshd |
2020-07-31 16:54:41 |
| 101.89.145.133 | attack | SSH Brute Force |
2020-07-31 16:28:07 |
| 218.92.0.251 | attackspambots | Jul 31 04:29:37 NPSTNNYC01T sshd[10121]: Failed password for root from 218.92.0.251 port 35594 ssh2 Jul 31 04:29:46 NPSTNNYC01T sshd[10121]: Failed password for root from 218.92.0.251 port 35594 ssh2 Jul 31 04:29:50 NPSTNNYC01T sshd[10121]: Failed password for root from 218.92.0.251 port 35594 ssh2 Jul 31 04:29:50 NPSTNNYC01T sshd[10121]: error: maximum authentication attempts exceeded for root from 218.92.0.251 port 35594 ssh2 [preauth] ... |
2020-07-31 16:32:49 |
| 81.68.74.171 | attackbots | fail2ban/Jul 31 08:10:43 h1962932 sshd[16829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.74.171 user=root Jul 31 08:10:46 h1962932 sshd[16829]: Failed password for root from 81.68.74.171 port 38324 ssh2 Jul 31 08:14:33 h1962932 sshd[16941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.74.171 user=root Jul 31 08:14:35 h1962932 sshd[16941]: Failed password for root from 81.68.74.171 port 54646 ssh2 Jul 31 08:18:20 h1962932 sshd[17065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.74.171 user=root Jul 31 08:18:22 h1962932 sshd[17065]: Failed password for root from 81.68.74.171 port 42734 ssh2 |
2020-07-31 16:23:56 |
| 216.244.66.226 | attack | login attempts |
2020-07-31 16:54:28 |
| 193.32.161.143 | attackspambots | 07/31/2020-04:21:25.296981 193.32.161.143 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2020-07-31 16:30:52 |
| 114.71.84.214 | attackspambots | Jul 31 01:00:19 mockhub sshd[19573]: Failed password for root from 114.71.84.214 port 54708 ssh2 ... |
2020-07-31 16:52:48 |
| 66.70.130.152 | attackspambots | Invalid user play from 66.70.130.152 port 56548 |
2020-07-31 16:39:57 |
| 51.38.238.205 | attack | SSH Brute Force |
2020-07-31 16:51:56 |
| 103.149.192.234 | attackbots | Unauthorized connection attempt detected from IP address 103.149.192.234 to port 443 |
2020-07-31 16:50:21 |
| 189.79.123.26 | attackbots | This client attempted to login to an administrator account on a Website, or abused from another resource. |
2020-07-31 17:02:55 |
| 106.13.137.83 | attackspam | Invalid user lilei from 106.13.137.83 port 40798 |
2020-07-31 16:40:25 |