城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): DigitalOcean LLC
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): Data Center/Web Hosting/Transit
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attackspam | $f2bV_matches |
2020-09-09 23:48:56 |
| attack | SSH brute-force attempt |
2020-09-09 17:22:27 |
| attackbots | Fail2Ban |
2020-09-09 00:46:41 |
| attack | Sep 8 09:41:03 vpn01 sshd[19053]: Failed password for root from 142.93.195.249 port 34586 ssh2 Sep 8 09:41:13 vpn01 sshd[19066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.249 ... |
2020-09-08 16:15:06 |
| attackbotsspam | SSH-BruteForce |
2020-09-08 08:50:27 |
| attackspam | Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-09-07T17:47:16Z and 2020-09-07T17:48:54Z |
2020-09-08 02:08:56 |
| attack | Sep 7 11:10:44 ns1 sshd[39890]: Did not receive identification string from 142.93.195.249 port 37134 Sep 7 11:11:01 ns1 sshd[39903]: Unable to negotiate with 142.93.195.249 port 58228: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Sep 7 11:11:13 ns1 sshd[39905]: Unable to negotiate with 142.93.195.249 port 53052: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Sep 7 11:11:24 ns1 sshd[39907]: Unable to negotiate with 142.93.195.249 port 47216: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Sep 7 11:11:34 ns1 sshd[39909]: Unable to negotiate with 142.93.195.249 port 41672: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-e ... |
2020-09-07 17:33:47 |
| attackbots | Sep 4 12:09:33 marvibiene sshd[7134]: Failed password for root from 142.93.195.249 port 35784 ssh2 Sep 4 12:09:42 marvibiene sshd[7138]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.249 Sep 4 12:09:44 marvibiene sshd[7138]: Failed password for invalid user oracle from 142.93.195.249 port 60592 ssh2 |
2020-09-04 18:35:50 |
| attackbots | Sep 2 19:16:02 master sshd[23796]: Did not receive identification string from 142.93.195.249 Sep 2 19:16:23 master sshd[23797]: Failed password for root from 142.93.195.249 port 42000 ssh2 Sep 2 19:16:34 master sshd[23799]: Failed password for invalid user oracle from 142.93.195.249 port 35648 ssh2 Sep 2 19:16:43 master sshd[23801]: Failed password for root from 142.93.195.249 port 57486 ssh2 Sep 2 19:16:53 master sshd[23803]: Failed password for invalid user postgres from 142.93.195.249 port 51124 ssh2 Sep 2 19:17:02 master sshd[23805]: Failed password for root from 142.93.195.249 port 44798 ssh2 Sep 2 19:17:12 master sshd[23810]: Failed password for invalid user hadoop from 142.93.195.249 port 38392 ssh2 Sep 2 19:17:22 master sshd[23812]: Failed password for root from 142.93.195.249 port 60294 ssh2 Sep 2 19:17:31 master sshd[23814]: Failed password for git from 142.93.195.249 port 54458 ssh2 Sep 2 19:17:40 master sshd[23816]: Failed password for root from 142.93.195.249 port 47538 ssh2 |
2020-09-03 02:11:16 |
| attackbots | Auto Fail2Ban report, multiple SSH login attempts. |
2020-09-02 17:41:52 |
| attack | 2020-09-01 03:31:53.763995-0500 localhost sshd[64887]: Failed password for root from 142.93.195.249 port 58868 ssh2 |
2020-09-01 16:35:20 |
| attackspambots | 2020-08-30T10:49:44.318025afi-git.jinr.ru sshd[25864]: Invalid user oracle from 142.93.195.249 port 60862 2020-08-30T10:49:45.881210afi-git.jinr.ru sshd[25864]: Failed password for invalid user oracle from 142.93.195.249 port 60862 ssh2 2020-08-30T10:49:55.779373afi-git.jinr.ru sshd[25900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.249 user=root 2020-08-30T10:49:58.182279afi-git.jinr.ru sshd[25900]: Failed password for root from 142.93.195.249 port 60172 ssh2 2020-08-30T10:50:07.451162afi-git.jinr.ru sshd[26112]: Invalid user postgres from 142.93.195.249 port 58996 ... |
2020-08-30 16:42:34 |
| attackbotsspam | Aug 29 13:07:32 mail sshd\[44509\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.249 user=root ... |
2020-08-30 01:59:29 |
| attackbotsspam | 2020-08-28T22:43:59+0000 Failed SSH Authentication/Brute Force Attack. (Server 6) |
2020-08-29 07:08:15 |
| attack | Aug 28 19:50:38 vps sshd[21065]: Failed password for root from 142.93.195.249 port 60020 ssh2 Aug 28 19:50:47 vps sshd[21077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.249 Aug 28 19:50:49 vps sshd[21077]: Failed password for invalid user oracle from 142.93.195.249 port 57736 ssh2 ... |
2020-08-29 01:52:07 |
| attackbots | Aug 25 08:43:37 v26 sshd[21112]: Did not receive identification string from 142.93.195.249 port 51152 Aug 25 09:05:45 v26 sshd[24195]: Did not receive identification string from 142.93.195.249 port 53628 Aug 25 12:02:40 v26 sshd[16004]: Did not receive identification string from 142.93.195.249 port 44500 Aug 25 16:52:45 v26 sshd[3948]: Did not receive identification string from 142.93.195.249 port 58940 Aug 25 20:45:55 v26 sshd[7588]: Did not receive identification string from 142.93.195.249 port 37214 Aug 26 00:46:23 v26 sshd[13612]: Did not receive identification string from 142.93.195.249 port 52830 Aug 26 09:37:09 v26 sshd[2926]: Did not receive identification string from 142.93.195.249 port 51042 Aug 27 07:02:46 v26 sshd[27176]: Did not receive identification string from 142.93.195.249 port 53350 Aug 27 07:03:04 v26 sshd[27211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.249 user=r.r Aug 27 07:03:06 v26 sshd[........ ------------------------------- |
2020-08-28 13:23:42 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 142.93.195.157 | attack | Oct 6 16:46:11 IngegnereFirenze sshd[5993]: User root from 142.93.195.157 not allowed because not listed in AllowUsers ... |
2020-10-07 05:17:01 |
| 142.93.195.157 | attackbotsspam | Repeated brute force against a port |
2020-10-06 21:26:02 |
| 142.93.195.157 | attack | Oct 5 18:46:03 sachi sshd\[31984\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 user=root Oct 5 18:46:04 sachi sshd\[31984\]: Failed password for root from 142.93.195.157 port 53324 ssh2 Oct 5 18:49:58 sachi sshd\[32327\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 user=root Oct 5 18:49:59 sachi sshd\[32327\]: Failed password for root from 142.93.195.157 port 38726 ssh2 Oct 5 18:53:26 sachi sshd\[32599\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 user=root |
2020-10-06 13:07:51 |
| 142.93.195.157 | attackbots | 2020-09-26T18:35:19+0200 Failed SSH Authentication/Brute Force Attack. (Server 9) |
2020-09-27 00:54:11 |
| 142.93.195.157 | attackspam | (sshd) Failed SSH login from 142.93.195.157 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 26 03:04:05 optimus sshd[20599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 user=root Sep 26 03:04:07 optimus sshd[20599]: Failed password for root from 142.93.195.157 port 54994 ssh2 Sep 26 03:17:41 optimus sshd[26737]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 user=root Sep 26 03:17:43 optimus sshd[26737]: Failed password for root from 142.93.195.157 port 57090 ssh2 Sep 26 03:21:19 optimus sshd[28919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 user=root |
2020-09-26 16:44:26 |
| 142.93.195.157 | attackbotsspam | Sep 22 15:10:58 staging sshd[43343]: Invalid user download from 142.93.195.157 port 46336 Sep 22 15:10:58 staging sshd[43343]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 Sep 22 15:10:58 staging sshd[43343]: Invalid user download from 142.93.195.157 port 46336 Sep 22 15:11:00 staging sshd[43343]: Failed password for invalid user download from 142.93.195.157 port 46336 ssh2 ... |
2020-09-23 00:07:35 |
| 142.93.195.157 | attackspambots | Time: Tue Sep 22 00:21:34 2020 +0000 IP: 142.93.195.157 (US/United States/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 22 00:02:54 3 sshd[18335]: Invalid user guest from 142.93.195.157 port 43922 Sep 22 00:02:56 3 sshd[18335]: Failed password for invalid user guest from 142.93.195.157 port 43922 ssh2 Sep 22 00:18:12 3 sshd[22200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 user=root Sep 22 00:18:15 3 sshd[22200]: Failed password for root from 142.93.195.157 port 40852 ssh2 Sep 22 00:21:29 3 sshd[23084]: Invalid user nagios from 142.93.195.157 port 49008 |
2020-09-22 16:10:08 |
| 142.93.195.157 | attackspam | Sep 22 01:09:56 ns382633 sshd\[22640\]: Invalid user lorenzo from 142.93.195.157 port 58940 Sep 22 01:09:56 ns382633 sshd\[22640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 Sep 22 01:09:58 ns382633 sshd\[22640\]: Failed password for invalid user lorenzo from 142.93.195.157 port 58940 ssh2 Sep 22 01:16:13 ns382633 sshd\[24090\]: Invalid user gerald from 142.93.195.157 port 43644 Sep 22 01:16:13 ns382633 sshd\[24090\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 |
2020-09-22 08:12:57 |
| 142.93.195.157 | attackspam | Sep 18 06:28:29 master sshd[1401]: Failed password for root from 142.93.195.157 port 35516 ssh2 |
2020-09-18 20:26:15 |
| 142.93.195.157 | attack | Sep 18 00:05:55 firewall sshd[30914]: Failed password for root from 142.93.195.157 port 41982 ssh2 Sep 18 00:09:47 firewall sshd[30998]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 user=root Sep 18 00:09:50 firewall sshd[30998]: Failed password for root from 142.93.195.157 port 52610 ssh2 ... |
2020-09-18 12:45:07 |
| 142.93.195.157 | attackbots | 2 SSH login attempts. |
2020-09-18 02:59:57 |
| 142.93.195.15 | attackbotsspam | Sep 9 06:47:37 haigwepa sshd[30682]: Failed password for root from 142.93.195.15 port 34886 ssh2 ... |
2020-09-09 20:22:45 |
| 142.93.195.15 | attack | Sep 9 06:47:37 haigwepa sshd[30682]: Failed password for root from 142.93.195.15 port 34886 ssh2 ... |
2020-09-09 14:20:26 |
| 142.93.195.15 | attack | 2020-09-08T18:59:04+0200 Failed SSH Authentication/Brute Force Attack. (Server 9) |
2020-09-09 06:31:32 |
| 142.93.195.157 | attackbots | Aug 31 16:25:20 meumeu sshd[718297]: Invalid user lkj from 142.93.195.157 port 45962 Aug 31 16:25:20 meumeu sshd[718297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 Aug 31 16:25:20 meumeu sshd[718297]: Invalid user lkj from 142.93.195.157 port 45962 Aug 31 16:25:21 meumeu sshd[718297]: Failed password for invalid user lkj from 142.93.195.157 port 45962 ssh2 Aug 31 16:29:06 meumeu sshd[718442]: Invalid user florent from 142.93.195.157 port 53084 Aug 31 16:29:06 meumeu sshd[718442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 Aug 31 16:29:06 meumeu sshd[718442]: Invalid user florent from 142.93.195.157 port 53084 Aug 31 16:29:08 meumeu sshd[718442]: Failed password for invalid user florent from 142.93.195.157 port 53084 ssh2 Aug 31 16:32:56 meumeu sshd[718568]: Invalid user pokemon from 142.93.195.157 port 60198 ... |
2020-08-31 23:45:52 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.195.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1182
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.195.249. IN A
;; AUTHORITY SECTION:
. 600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020082800 1800 900 604800 86400
;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Aug 28 13:23:36 CST 2020
;; MSG SIZE rcvd: 118Host 249.195.93.142.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 249.195.93.142.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 115.159.235.17 | attack | Nov 17 06:59:13 jane sshd[28388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.235.17 Nov 17 06:59:14 jane sshd[28388]: Failed password for invalid user giselle from 115.159.235.17 port 47942 ssh2 ... |
2019-11-17 14:00:44 |
| 49.235.108.92 | attackspam | Nov 16 19:42:56 web1 sshd\[24136\]: Invalid user whistler from 49.235.108.92 Nov 16 19:42:56 web1 sshd\[24136\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.108.92 Nov 16 19:42:58 web1 sshd\[24136\]: Failed password for invalid user whistler from 49.235.108.92 port 60226 ssh2 Nov 16 19:48:01 web1 sshd\[24594\]: Invalid user melody from 49.235.108.92 Nov 16 19:48:01 web1 sshd\[24594\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.108.92 |
2019-11-17 13:59:39 |
| 113.140.75.205 | attackspam | Nov 17 07:35:18 server sshd\[8995\]: Invalid user aidan from 113.140.75.205 Nov 17 07:35:18 server sshd\[8995\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.140.75.205 Nov 17 07:35:20 server sshd\[8995\]: Failed password for invalid user aidan from 113.140.75.205 port 49164 ssh2 Nov 17 07:56:44 server sshd\[14739\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.140.75.205 user=root Nov 17 07:56:46 server sshd\[14739\]: Failed password for root from 113.140.75.205 port 37426 ssh2 ... |
2019-11-17 14:24:36 |
| 107.182.187.34 | attackspambots | Automatic report - Banned IP Access |
2019-11-17 13:53:53 |
| 222.120.192.122 | attackbotsspam | Invalid user dev from 222.120.192.122 port 37172 |
2019-11-17 14:19:39 |
| 110.246.11.204 | attackbots | badbot |
2019-11-17 13:57:45 |
| 112.85.42.94 | attack | 2019-11-17T06:09:30.431819abusebot-7.cloudsearch.cf sshd\[13653\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.94 user=root |
2019-11-17 14:22:49 |
| 185.143.223.137 | attackbotsspam | 185.143.223.137 was recorded 5 times by 3 hosts attempting to connect to the following ports: 34491,34702,34918,34879,34564. Incident counter (4h, 24h, all-time): 5, 69, 178 |
2019-11-17 14:14:23 |
| 222.186.175.155 | attack | Nov 17 06:46:50 MK-Soft-Root1 sshd[31019]: Failed password for root from 222.186.175.155 port 63848 ssh2 Nov 17 06:46:56 MK-Soft-Root1 sshd[31019]: Failed password for root from 222.186.175.155 port 63848 ssh2 ... |
2019-11-17 14:02:40 |
| 117.70.39.249 | attack | badbot |
2019-11-17 14:23:30 |
| 222.190.163.154 | attackspam | badbot |
2019-11-17 14:11:37 |
| 35.199.154.128 | attackspam | Nov 17 06:59:50 MK-Soft-VM3 sshd[16347]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.199.154.128 Nov 17 06:59:52 MK-Soft-VM3 sshd[16347]: Failed password for invalid user chynena from 35.199.154.128 port 59340 ssh2 ... |
2019-11-17 14:23:11 |
| 104.131.189.116 | attackbotsspam | Nov 17 01:53:18 firewall sshd[8038]: Failed password for news from 104.131.189.116 port 34990 ssh2 Nov 17 01:57:10 firewall sshd[8133]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.189.116 user=root Nov 17 01:57:12 firewall sshd[8133]: Failed password for root from 104.131.189.116 port 45328 ssh2 ... |
2019-11-17 14:01:03 |
| 145.239.82.110 | attackspambots | Automatic report - XMLRPC Attack |
2019-11-17 14:20:14 |
| 118.168.73.103 | attack | Telnet Server BruteForce Attack |
2019-11-17 13:46:14 |