城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): DigitalOcean LLC
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): Data Center/Web Hosting/Transit
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attackspam | $f2bV_matches |
2020-09-09 23:48:56 |
| attack | SSH brute-force attempt |
2020-09-09 17:22:27 |
| attackbots | Fail2Ban |
2020-09-09 00:46:41 |
| attack | Sep 8 09:41:03 vpn01 sshd[19053]: Failed password for root from 142.93.195.249 port 34586 ssh2 Sep 8 09:41:13 vpn01 sshd[19066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.249 ... |
2020-09-08 16:15:06 |
| attackbotsspam | SSH-BruteForce |
2020-09-08 08:50:27 |
| attackspam | Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-09-07T17:47:16Z and 2020-09-07T17:48:54Z |
2020-09-08 02:08:56 |
| attack | Sep 7 11:10:44 ns1 sshd[39890]: Did not receive identification string from 142.93.195.249 port 37134 Sep 7 11:11:01 ns1 sshd[39903]: Unable to negotiate with 142.93.195.249 port 58228: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Sep 7 11:11:13 ns1 sshd[39905]: Unable to negotiate with 142.93.195.249 port 53052: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Sep 7 11:11:24 ns1 sshd[39907]: Unable to negotiate with 142.93.195.249 port 47216: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Sep 7 11:11:34 ns1 sshd[39909]: Unable to negotiate with 142.93.195.249 port 41672: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-e ... |
2020-09-07 17:33:47 |
| attackbots | Sep 4 12:09:33 marvibiene sshd[7134]: Failed password for root from 142.93.195.249 port 35784 ssh2 Sep 4 12:09:42 marvibiene sshd[7138]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.249 Sep 4 12:09:44 marvibiene sshd[7138]: Failed password for invalid user oracle from 142.93.195.249 port 60592 ssh2 |
2020-09-04 18:35:50 |
| attackbots | Sep 2 19:16:02 master sshd[23796]: Did not receive identification string from 142.93.195.249 Sep 2 19:16:23 master sshd[23797]: Failed password for root from 142.93.195.249 port 42000 ssh2 Sep 2 19:16:34 master sshd[23799]: Failed password for invalid user oracle from 142.93.195.249 port 35648 ssh2 Sep 2 19:16:43 master sshd[23801]: Failed password for root from 142.93.195.249 port 57486 ssh2 Sep 2 19:16:53 master sshd[23803]: Failed password for invalid user postgres from 142.93.195.249 port 51124 ssh2 Sep 2 19:17:02 master sshd[23805]: Failed password for root from 142.93.195.249 port 44798 ssh2 Sep 2 19:17:12 master sshd[23810]: Failed password for invalid user hadoop from 142.93.195.249 port 38392 ssh2 Sep 2 19:17:22 master sshd[23812]: Failed password for root from 142.93.195.249 port 60294 ssh2 Sep 2 19:17:31 master sshd[23814]: Failed password for git from 142.93.195.249 port 54458 ssh2 Sep 2 19:17:40 master sshd[23816]: Failed password for root from 142.93.195.249 port 47538 ssh2 |
2020-09-03 02:11:16 |
| attackbots | Auto Fail2Ban report, multiple SSH login attempts. |
2020-09-02 17:41:52 |
| attack | 2020-09-01 03:31:53.763995-0500 localhost sshd[64887]: Failed password for root from 142.93.195.249 port 58868 ssh2 |
2020-09-01 16:35:20 |
| attackspambots | 2020-08-30T10:49:44.318025afi-git.jinr.ru sshd[25864]: Invalid user oracle from 142.93.195.249 port 60862 2020-08-30T10:49:45.881210afi-git.jinr.ru sshd[25864]: Failed password for invalid user oracle from 142.93.195.249 port 60862 ssh2 2020-08-30T10:49:55.779373afi-git.jinr.ru sshd[25900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.249 user=root 2020-08-30T10:49:58.182279afi-git.jinr.ru sshd[25900]: Failed password for root from 142.93.195.249 port 60172 ssh2 2020-08-30T10:50:07.451162afi-git.jinr.ru sshd[26112]: Invalid user postgres from 142.93.195.249 port 58996 ... |
2020-08-30 16:42:34 |
| attackbotsspam | Aug 29 13:07:32 mail sshd\[44509\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.249 user=root ... |
2020-08-30 01:59:29 |
| attackbotsspam | 2020-08-28T22:43:59+0000 Failed SSH Authentication/Brute Force Attack. (Server 6) |
2020-08-29 07:08:15 |
| attack | Aug 28 19:50:38 vps sshd[21065]: Failed password for root from 142.93.195.249 port 60020 ssh2 Aug 28 19:50:47 vps sshd[21077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.249 Aug 28 19:50:49 vps sshd[21077]: Failed password for invalid user oracle from 142.93.195.249 port 57736 ssh2 ... |
2020-08-29 01:52:07 |
| attackbots | Aug 25 08:43:37 v26 sshd[21112]: Did not receive identification string from 142.93.195.249 port 51152 Aug 25 09:05:45 v26 sshd[24195]: Did not receive identification string from 142.93.195.249 port 53628 Aug 25 12:02:40 v26 sshd[16004]: Did not receive identification string from 142.93.195.249 port 44500 Aug 25 16:52:45 v26 sshd[3948]: Did not receive identification string from 142.93.195.249 port 58940 Aug 25 20:45:55 v26 sshd[7588]: Did not receive identification string from 142.93.195.249 port 37214 Aug 26 00:46:23 v26 sshd[13612]: Did not receive identification string from 142.93.195.249 port 52830 Aug 26 09:37:09 v26 sshd[2926]: Did not receive identification string from 142.93.195.249 port 51042 Aug 27 07:02:46 v26 sshd[27176]: Did not receive identification string from 142.93.195.249 port 53350 Aug 27 07:03:04 v26 sshd[27211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.249 user=r.r Aug 27 07:03:06 v26 sshd[........ ------------------------------- |
2020-08-28 13:23:42 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 142.93.195.157 | attack | Oct 6 16:46:11 IngegnereFirenze sshd[5993]: User root from 142.93.195.157 not allowed because not listed in AllowUsers ... |
2020-10-07 05:17:01 |
| 142.93.195.157 | attackbotsspam | Repeated brute force against a port |
2020-10-06 21:26:02 |
| 142.93.195.157 | attack | Oct 5 18:46:03 sachi sshd\[31984\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 user=root Oct 5 18:46:04 sachi sshd\[31984\]: Failed password for root from 142.93.195.157 port 53324 ssh2 Oct 5 18:49:58 sachi sshd\[32327\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 user=root Oct 5 18:49:59 sachi sshd\[32327\]: Failed password for root from 142.93.195.157 port 38726 ssh2 Oct 5 18:53:26 sachi sshd\[32599\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 user=root |
2020-10-06 13:07:51 |
| 142.93.195.157 | attackbots | 2020-09-26T18:35:19+0200 Failed SSH Authentication/Brute Force Attack. (Server 9) |
2020-09-27 00:54:11 |
| 142.93.195.157 | attackspam | (sshd) Failed SSH login from 142.93.195.157 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 26 03:04:05 optimus sshd[20599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 user=root Sep 26 03:04:07 optimus sshd[20599]: Failed password for root from 142.93.195.157 port 54994 ssh2 Sep 26 03:17:41 optimus sshd[26737]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 user=root Sep 26 03:17:43 optimus sshd[26737]: Failed password for root from 142.93.195.157 port 57090 ssh2 Sep 26 03:21:19 optimus sshd[28919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 user=root |
2020-09-26 16:44:26 |
| 142.93.195.157 | attackbotsspam | Sep 22 15:10:58 staging sshd[43343]: Invalid user download from 142.93.195.157 port 46336 Sep 22 15:10:58 staging sshd[43343]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 Sep 22 15:10:58 staging sshd[43343]: Invalid user download from 142.93.195.157 port 46336 Sep 22 15:11:00 staging sshd[43343]: Failed password for invalid user download from 142.93.195.157 port 46336 ssh2 ... |
2020-09-23 00:07:35 |
| 142.93.195.157 | attackspambots | Time: Tue Sep 22 00:21:34 2020 +0000 IP: 142.93.195.157 (US/United States/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 22 00:02:54 3 sshd[18335]: Invalid user guest from 142.93.195.157 port 43922 Sep 22 00:02:56 3 sshd[18335]: Failed password for invalid user guest from 142.93.195.157 port 43922 ssh2 Sep 22 00:18:12 3 sshd[22200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 user=root Sep 22 00:18:15 3 sshd[22200]: Failed password for root from 142.93.195.157 port 40852 ssh2 Sep 22 00:21:29 3 sshd[23084]: Invalid user nagios from 142.93.195.157 port 49008 |
2020-09-22 16:10:08 |
| 142.93.195.157 | attackspam | Sep 22 01:09:56 ns382633 sshd\[22640\]: Invalid user lorenzo from 142.93.195.157 port 58940 Sep 22 01:09:56 ns382633 sshd\[22640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 Sep 22 01:09:58 ns382633 sshd\[22640\]: Failed password for invalid user lorenzo from 142.93.195.157 port 58940 ssh2 Sep 22 01:16:13 ns382633 sshd\[24090\]: Invalid user gerald from 142.93.195.157 port 43644 Sep 22 01:16:13 ns382633 sshd\[24090\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 |
2020-09-22 08:12:57 |
| 142.93.195.157 | attackspam | Sep 18 06:28:29 master sshd[1401]: Failed password for root from 142.93.195.157 port 35516 ssh2 |
2020-09-18 20:26:15 |
| 142.93.195.157 | attack | Sep 18 00:05:55 firewall sshd[30914]: Failed password for root from 142.93.195.157 port 41982 ssh2 Sep 18 00:09:47 firewall sshd[30998]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 user=root Sep 18 00:09:50 firewall sshd[30998]: Failed password for root from 142.93.195.157 port 52610 ssh2 ... |
2020-09-18 12:45:07 |
| 142.93.195.157 | attackbots | 2 SSH login attempts. |
2020-09-18 02:59:57 |
| 142.93.195.15 | attackbotsspam | Sep 9 06:47:37 haigwepa sshd[30682]: Failed password for root from 142.93.195.15 port 34886 ssh2 ... |
2020-09-09 20:22:45 |
| 142.93.195.15 | attack | Sep 9 06:47:37 haigwepa sshd[30682]: Failed password for root from 142.93.195.15 port 34886 ssh2 ... |
2020-09-09 14:20:26 |
| 142.93.195.15 | attack | 2020-09-08T18:59:04+0200 Failed SSH Authentication/Brute Force Attack. (Server 9) |
2020-09-09 06:31:32 |
| 142.93.195.157 | attackbots | Aug 31 16:25:20 meumeu sshd[718297]: Invalid user lkj from 142.93.195.157 port 45962 Aug 31 16:25:20 meumeu sshd[718297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 Aug 31 16:25:20 meumeu sshd[718297]: Invalid user lkj from 142.93.195.157 port 45962 Aug 31 16:25:21 meumeu sshd[718297]: Failed password for invalid user lkj from 142.93.195.157 port 45962 ssh2 Aug 31 16:29:06 meumeu sshd[718442]: Invalid user florent from 142.93.195.157 port 53084 Aug 31 16:29:06 meumeu sshd[718442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 Aug 31 16:29:06 meumeu sshd[718442]: Invalid user florent from 142.93.195.157 port 53084 Aug 31 16:29:08 meumeu sshd[718442]: Failed password for invalid user florent from 142.93.195.157 port 53084 ssh2 Aug 31 16:32:56 meumeu sshd[718568]: Invalid user pokemon from 142.93.195.157 port 60198 ... |
2020-08-31 23:45:52 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.195.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1182
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.195.249. IN A
;; AUTHORITY SECTION:
. 600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020082800 1800 900 604800 86400
;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Aug 28 13:23:36 CST 2020
;; MSG SIZE rcvd: 118
Host 249.195.93.142.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 249.195.93.142.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 49.88.112.114 | attack | Sep 3 10:14:27 bouncer sshd\[19731\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Sep 3 10:14:29 bouncer sshd\[19731\]: Failed password for root from 49.88.112.114 port 38439 ssh2 Sep 3 10:14:31 bouncer sshd\[19731\]: Failed password for root from 49.88.112.114 port 38439 ssh2 ... |
2019-09-03 16:21:08 |
| 64.192.91.3 | attackspam | Automatic report - Banned IP Access |
2019-09-03 16:10:05 |
| 218.161.81.46 | attackbotsspam | Telnet Server BruteForce Attack |
2019-09-03 16:59:33 |
| 183.99.77.161 | attack | Sep 3 10:39:38 dedicated sshd[14503]: Invalid user juliano from 183.99.77.161 port 14929 |
2019-09-03 16:42:38 |
| 200.109.195.71 | attack | 445/tcp [2019-09-03]1pkt |
2019-09-03 16:22:24 |
| 191.53.59.55 | attackbotsspam | Excessive failed login attempts on port 25 |
2019-09-03 16:41:40 |
| 209.97.163.53 | attackbotsspam | Sep 2 22:44:13 php1 sshd\[28505\]: Invalid user apps from 209.97.163.53 Sep 2 22:44:13 php1 sshd\[28505\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.163.53 Sep 2 22:44:16 php1 sshd\[28505\]: Failed password for invalid user apps from 209.97.163.53 port 56706 ssh2 Sep 2 22:49:01 php1 sshd\[28923\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.163.53 user=www-data Sep 2 22:49:03 php1 sshd\[28923\]: Failed password for www-data from 209.97.163.53 port 33494 ssh2 |
2019-09-03 16:50:53 |
| 147.135.255.107 | attack | Sep 3 06:23:57 unicornsoft sshd\[16420\]: Invalid user tricia from 147.135.255.107 Sep 3 06:23:57 unicornsoft sshd\[16420\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.135.255.107 Sep 3 06:23:58 unicornsoft sshd\[16420\]: Failed password for invalid user tricia from 147.135.255.107 port 42616 ssh2 |
2019-09-03 16:11:30 |
| 114.67.66.199 | attackbots | Sep 3 08:10:56 *** sshd[1123]: User root from 114.67.66.199 not allowed because not listed in AllowUsers |
2019-09-03 16:39:15 |
| 83.19.158.250 | attackspam | Sep 3 10:11:19 rpi sshd[28519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.19.158.250 Sep 3 10:11:21 rpi sshd[28519]: Failed password for invalid user silby from 83.19.158.250 port 57406 ssh2 |
2019-09-03 16:23:14 |
| 182.219.172.224 | attackbotsspam | Sep 2 22:21:10 lcprod sshd\[4010\]: Invalid user asep from 182.219.172.224 Sep 2 22:21:10 lcprod sshd\[4010\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.219.172.224 Sep 2 22:21:13 lcprod sshd\[4010\]: Failed password for invalid user asep from 182.219.172.224 port 38940 ssh2 Sep 2 22:26:14 lcprod sshd\[4463\]: Invalid user databse from 182.219.172.224 Sep 2 22:26:14 lcprod sshd\[4463\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.219.172.224 |
2019-09-03 16:36:40 |
| 89.254.148.26 | attack | Sep 2 22:22:40 aiointranet sshd\[17893\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 user=root Sep 2 22:22:42 aiointranet sshd\[17893\]: Failed password for root from 89.254.148.26 port 42614 ssh2 Sep 2 22:26:37 aiointranet sshd\[18189\]: Invalid user hyperic from 89.254.148.26 Sep 2 22:26:37 aiointranet sshd\[18189\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 2 22:26:39 aiointranet sshd\[18189\]: Failed password for invalid user hyperic from 89.254.148.26 port 58074 ssh2 |
2019-09-03 16:38:23 |
| 187.201.4.72 | attackbots | 2019-09-03T08:06:24.416489hub.schaetter.us sshd\[29303\]: Invalid user huaqi from 187.201.4.72 2019-09-03T08:06:24.452234hub.schaetter.us sshd\[29303\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.201.4.72 2019-09-03T08:06:26.393033hub.schaetter.us sshd\[29303\]: Failed password for invalid user huaqi from 187.201.4.72 port 11580 ssh2 2019-09-03T08:10:37.282315hub.schaetter.us sshd\[29368\]: Invalid user admin from 187.201.4.72 2019-09-03T08:10:37.331727hub.schaetter.us sshd\[29368\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.201.4.72 ... |
2019-09-03 16:55:09 |
| 201.248.215.70 | attack | 445/tcp 445/tcp 445/tcp [2019-09-03]3pkt |
2019-09-03 16:40:30 |
| 157.230.172.28 | attackspambots | [ssh] SSH attack |
2019-09-03 16:10:58 |