必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:
类型 评论内容 时间
attackspam
$f2bV_matches
2020-09-09 23:48:56
attack
SSH brute-force attempt
2020-09-09 17:22:27
attackbots
Fail2Ban
2020-09-09 00:46:41
attack
Sep  8 09:41:03 vpn01 sshd[19053]: Failed password for root from 142.93.195.249 port 34586 ssh2
Sep  8 09:41:13 vpn01 sshd[19066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.249
...
2020-09-08 16:15:06
attackbotsspam
SSH-BruteForce
2020-09-08 08:50:27
attackspam
Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-09-07T17:47:16Z and 2020-09-07T17:48:54Z
2020-09-08 02:08:56
attack
Sep  7 11:10:44 ns1 sshd[39890]: Did not receive identification string from 142.93.195.249 port 37134
Sep  7 11:11:01 ns1 sshd[39903]: Unable to negotiate with 142.93.195.249 port 58228: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]
Sep  7 11:11:13 ns1 sshd[39905]: Unable to negotiate with 142.93.195.249 port 53052: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]
Sep  7 11:11:24 ns1 sshd[39907]: Unable to negotiate with 142.93.195.249 port 47216: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]
Sep  7 11:11:34 ns1 sshd[39909]: Unable to negotiate with 142.93.195.249 port 41672: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-e
...
2020-09-07 17:33:47
attackbots
Sep  4 12:09:33 marvibiene sshd[7134]: Failed password for root from 142.93.195.249 port 35784 ssh2
Sep  4 12:09:42 marvibiene sshd[7138]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.249 
Sep  4 12:09:44 marvibiene sshd[7138]: Failed password for invalid user oracle from 142.93.195.249 port 60592 ssh2
2020-09-04 18:35:50
attackbots
Sep  2 19:16:02 master sshd[23796]: Did not receive identification string from 142.93.195.249
Sep  2 19:16:23 master sshd[23797]: Failed password for root from 142.93.195.249 port 42000 ssh2
Sep  2 19:16:34 master sshd[23799]: Failed password for invalid user oracle from 142.93.195.249 port 35648 ssh2
Sep  2 19:16:43 master sshd[23801]: Failed password for root from 142.93.195.249 port 57486 ssh2
Sep  2 19:16:53 master sshd[23803]: Failed password for invalid user postgres from 142.93.195.249 port 51124 ssh2
Sep  2 19:17:02 master sshd[23805]: Failed password for root from 142.93.195.249 port 44798 ssh2
Sep  2 19:17:12 master sshd[23810]: Failed password for invalid user hadoop from 142.93.195.249 port 38392 ssh2
Sep  2 19:17:22 master sshd[23812]: Failed password for root from 142.93.195.249 port 60294 ssh2
Sep  2 19:17:31 master sshd[23814]: Failed password for git from 142.93.195.249 port 54458 ssh2
Sep  2 19:17:40 master sshd[23816]: Failed password for root from 142.93.195.249 port 47538 ssh2
2020-09-03 02:11:16
attackbots
Auto Fail2Ban report, multiple SSH login attempts.
2020-09-02 17:41:52
attack
2020-09-01 03:31:53.763995-0500  localhost sshd[64887]: Failed password for root from 142.93.195.249 port 58868 ssh2
2020-09-01 16:35:20
attackspambots
2020-08-30T10:49:44.318025afi-git.jinr.ru sshd[25864]: Invalid user oracle from 142.93.195.249 port 60862
2020-08-30T10:49:45.881210afi-git.jinr.ru sshd[25864]: Failed password for invalid user oracle from 142.93.195.249 port 60862 ssh2
2020-08-30T10:49:55.779373afi-git.jinr.ru sshd[25900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.249  user=root
2020-08-30T10:49:58.182279afi-git.jinr.ru sshd[25900]: Failed password for root from 142.93.195.249 port 60172 ssh2
2020-08-30T10:50:07.451162afi-git.jinr.ru sshd[26112]: Invalid user postgres from 142.93.195.249 port 58996
...
2020-08-30 16:42:34
attackbotsspam
Aug 29 13:07:32 mail sshd\[44509\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.249  user=root
...
2020-08-30 01:59:29
attackbotsspam
2020-08-28T22:43:59+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)
2020-08-29 07:08:15
attack
Aug 28 19:50:38 vps sshd[21065]: Failed password for root from 142.93.195.249 port 60020 ssh2
Aug 28 19:50:47 vps sshd[21077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.249 
Aug 28 19:50:49 vps sshd[21077]: Failed password for invalid user oracle from 142.93.195.249 port 57736 ssh2
...
2020-08-29 01:52:07
attackbots
Aug 25 08:43:37 v26 sshd[21112]: Did not receive identification string from 142.93.195.249 port 51152
Aug 25 09:05:45 v26 sshd[24195]: Did not receive identification string from 142.93.195.249 port 53628
Aug 25 12:02:40 v26 sshd[16004]: Did not receive identification string from 142.93.195.249 port 44500
Aug 25 16:52:45 v26 sshd[3948]: Did not receive identification string from 142.93.195.249 port 58940
Aug 25 20:45:55 v26 sshd[7588]: Did not receive identification string from 142.93.195.249 port 37214
Aug 26 00:46:23 v26 sshd[13612]: Did not receive identification string from 142.93.195.249 port 52830
Aug 26 09:37:09 v26 sshd[2926]: Did not receive identification string from 142.93.195.249 port 51042
Aug 27 07:02:46 v26 sshd[27176]: Did not receive identification string from 142.93.195.249 port 53350
Aug 27 07:03:04 v26 sshd[27211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.249  user=r.r
Aug 27 07:03:06 v26 sshd[........
-------------------------------
2020-08-28 13:23:42
相同子网IP讨论:
IP 类型 评论内容 时间
142.93.195.157 attack
Oct  6 16:46:11 IngegnereFirenze sshd[5993]: User root from 142.93.195.157 not allowed because not listed in AllowUsers
...
2020-10-07 05:17:01
142.93.195.157 attackbotsspam
Repeated brute force against a port
2020-10-06 21:26:02
142.93.195.157 attack
Oct  5 18:46:03 sachi sshd\[31984\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157  user=root
Oct  5 18:46:04 sachi sshd\[31984\]: Failed password for root from 142.93.195.157 port 53324 ssh2
Oct  5 18:49:58 sachi sshd\[32327\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157  user=root
Oct  5 18:49:59 sachi sshd\[32327\]: Failed password for root from 142.93.195.157 port 38726 ssh2
Oct  5 18:53:26 sachi sshd\[32599\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157  user=root
2020-10-06 13:07:51
142.93.195.157 attackbots
2020-09-26T18:35:19+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)
2020-09-27 00:54:11
142.93.195.157 attackspam
(sshd) Failed SSH login from 142.93.195.157 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 26 03:04:05 optimus sshd[20599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157  user=root
Sep 26 03:04:07 optimus sshd[20599]: Failed password for root from 142.93.195.157 port 54994 ssh2
Sep 26 03:17:41 optimus sshd[26737]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157  user=root
Sep 26 03:17:43 optimus sshd[26737]: Failed password for root from 142.93.195.157 port 57090 ssh2
Sep 26 03:21:19 optimus sshd[28919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157  user=root
2020-09-26 16:44:26
142.93.195.157 attackbotsspam
Sep 22 15:10:58 staging sshd[43343]: Invalid user download from 142.93.195.157 port 46336
Sep 22 15:10:58 staging sshd[43343]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 
Sep 22 15:10:58 staging sshd[43343]: Invalid user download from 142.93.195.157 port 46336
Sep 22 15:11:00 staging sshd[43343]: Failed password for invalid user download from 142.93.195.157 port 46336 ssh2
...
2020-09-23 00:07:35
142.93.195.157 attackspambots
Time:     Tue Sep 22 00:21:34 2020 +0000
IP:       142.93.195.157 (US/United States/-)
Failures: 5 (sshd)
Interval: 3600 seconds
Blocked:  Permanent Block [LF_SSHD]

Log entries:

Sep 22 00:02:54 3 sshd[18335]: Invalid user guest from 142.93.195.157 port 43922
Sep 22 00:02:56 3 sshd[18335]: Failed password for invalid user guest from 142.93.195.157 port 43922 ssh2
Sep 22 00:18:12 3 sshd[22200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157  user=root
Sep 22 00:18:15 3 sshd[22200]: Failed password for root from 142.93.195.157 port 40852 ssh2
Sep 22 00:21:29 3 sshd[23084]: Invalid user nagios from 142.93.195.157 port 49008
2020-09-22 16:10:08
142.93.195.157 attackspam
Sep 22 01:09:56 ns382633 sshd\[22640\]: Invalid user lorenzo from 142.93.195.157 port 58940
Sep 22 01:09:56 ns382633 sshd\[22640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157
Sep 22 01:09:58 ns382633 sshd\[22640\]: Failed password for invalid user lorenzo from 142.93.195.157 port 58940 ssh2
Sep 22 01:16:13 ns382633 sshd\[24090\]: Invalid user gerald from 142.93.195.157 port 43644
Sep 22 01:16:13 ns382633 sshd\[24090\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157
2020-09-22 08:12:57
142.93.195.157 attackspam
Sep 18 06:28:29 master sshd[1401]: Failed password for root from 142.93.195.157 port 35516 ssh2
2020-09-18 20:26:15
142.93.195.157 attack
Sep 18 00:05:55 firewall sshd[30914]: Failed password for root from 142.93.195.157 port 41982 ssh2
Sep 18 00:09:47 firewall sshd[30998]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157  user=root
Sep 18 00:09:50 firewall sshd[30998]: Failed password for root from 142.93.195.157 port 52610 ssh2
...
2020-09-18 12:45:07
142.93.195.157 attackbots
2 SSH login attempts.
2020-09-18 02:59:57
142.93.195.15 attackbotsspam
Sep  9 06:47:37 haigwepa sshd[30682]: Failed password for root from 142.93.195.15 port 34886 ssh2
...
2020-09-09 20:22:45
142.93.195.15 attack
Sep  9 06:47:37 haigwepa sshd[30682]: Failed password for root from 142.93.195.15 port 34886 ssh2
...
2020-09-09 14:20:26
142.93.195.15 attack
2020-09-08T18:59:04+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)
2020-09-09 06:31:32
142.93.195.157 attackbots
Aug 31 16:25:20 meumeu sshd[718297]: Invalid user lkj from 142.93.195.157 port 45962
Aug 31 16:25:20 meumeu sshd[718297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 
Aug 31 16:25:20 meumeu sshd[718297]: Invalid user lkj from 142.93.195.157 port 45962
Aug 31 16:25:21 meumeu sshd[718297]: Failed password for invalid user lkj from 142.93.195.157 port 45962 ssh2
Aug 31 16:29:06 meumeu sshd[718442]: Invalid user florent from 142.93.195.157 port 53084
Aug 31 16:29:06 meumeu sshd[718442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 
Aug 31 16:29:06 meumeu sshd[718442]: Invalid user florent from 142.93.195.157 port 53084
Aug 31 16:29:08 meumeu sshd[718442]: Failed password for invalid user florent from 142.93.195.157 port 53084 ssh2
Aug 31 16:32:56 meumeu sshd[718568]: Invalid user pokemon from 142.93.195.157 port 60198
...
2020-08-31 23:45:52
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.195.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1182
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.195.249.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082800 1800 900 604800 86400

;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Aug 28 13:23:36 CST 2020
;; MSG SIZE  rcvd: 118
HOST信息:
Host 249.195.93.142.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 249.195.93.142.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
222.186.175.216 attackbotsspam
$f2bV_matches
2020-02-20 07:00:18
69.92.184.148 attackbots
Feb 19 23:10:37 sd-53420 sshd\[29953\]: Invalid user at from 69.92.184.148
Feb 19 23:10:37 sd-53420 sshd\[29953\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.92.184.148
Feb 19 23:10:38 sd-53420 sshd\[29953\]: Failed password for invalid user at from 69.92.184.148 port 38256 ssh2
Feb 19 23:13:45 sd-53420 sshd\[30251\]: Invalid user nxroot from 69.92.184.148
Feb 19 23:13:45 sd-53420 sshd\[30251\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.92.184.148
...
2020-02-20 06:50:05
104.248.128.82 attackbotsspam
Feb 19 23:58:53 h1745522 sshd[11749]: Invalid user git from 104.248.128.82 port 33086
Feb 19 23:58:53 h1745522 sshd[11749]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.128.82
Feb 19 23:58:53 h1745522 sshd[11749]: Invalid user git from 104.248.128.82 port 33086
Feb 19 23:58:55 h1745522 sshd[11749]: Failed password for invalid user git from 104.248.128.82 port 33086 ssh2
Feb 20 00:01:10 h1745522 sshd[11971]: Invalid user ibpzxz from 104.248.128.82 port 54208
Feb 20 00:01:10 h1745522 sshd[11971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.128.82
Feb 20 00:01:10 h1745522 sshd[11971]: Invalid user ibpzxz from 104.248.128.82 port 54208
Feb 20 00:01:11 h1745522 sshd[11971]: Failed password for invalid user ibpzxz from 104.248.128.82 port 54208 ssh2
Feb 20 00:03:22 h1745522 sshd[13314]: Invalid user centos from 104.248.128.82 port 47098
...
2020-02-20 07:04:50
103.80.55.19 attackspambots
Feb 19 12:53:26 wbs sshd\[32726\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.80.55.19  user=root
Feb 19 12:53:27 wbs sshd\[32726\]: Failed password for root from 103.80.55.19 port 35044 ssh2
Feb 19 12:59:18 wbs sshd\[924\]: Invalid user ubuntu from 103.80.55.19
Feb 19 12:59:18 wbs sshd\[924\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.80.55.19
Feb 19 12:59:20 wbs sshd\[924\]: Failed password for invalid user ubuntu from 103.80.55.19 port 60558 ssh2
2020-02-20 07:13:49
118.184.186.79 attackspambots
Feb 19 22:57:32 andromeda sshd\[55199\]: Invalid user admin from 118.184.186.79 port 29704
Feb 19 22:57:32 andromeda sshd\[55199\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.184.186.79
Feb 19 22:57:34 andromeda sshd\[55199\]: Failed password for invalid user admin from 118.184.186.79 port 29704 ssh2
2020-02-20 06:54:25
92.63.194.106 attackspam
2020-02-19T22:13:14.899097shield sshd\[9897\]: Invalid user user from 92.63.194.106 port 39627
2020-02-19T22:13:14.905542shield sshd\[9897\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.63.194.106
2020-02-19T22:13:16.876905shield sshd\[9897\]: Failed password for invalid user user from 92.63.194.106 port 39627 ssh2
2020-02-19T22:13:45.470156shield sshd\[9948\]: Invalid user guest from 92.63.194.106 port 46231
2020-02-19T22:13:45.474288shield sshd\[9948\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.63.194.106
2020-02-20 06:47:52
196.192.110.64 attack
Feb 19 12:25:15 hpm sshd\[3087\]: Invalid user ljh from 196.192.110.64
Feb 19 12:25:15 hpm sshd\[3087\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.192.110.64
Feb 19 12:25:16 hpm sshd\[3087\]: Failed password for invalid user ljh from 196.192.110.64 port 47226 ssh2
Feb 19 12:29:13 hpm sshd\[3459\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.192.110.64  user=news
Feb 19 12:29:15 hpm sshd\[3459\]: Failed password for news from 196.192.110.64 port 49720 ssh2
2020-02-20 06:36:49
45.136.109.251 attackbots
Excessive Port-Scanning
2020-02-20 07:14:16
218.92.0.175 attackbots
2020-02-19T23:23:13.644031  sshd[3799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.175  user=root
2020-02-19T23:23:16.513808  sshd[3799]: Failed password for root from 218.92.0.175 port 59791 ssh2
2020-02-19T23:23:21.703737  sshd[3799]: Failed password for root from 218.92.0.175 port 59791 ssh2
2020-02-19T23:23:13.644031  sshd[3799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.175  user=root
2020-02-19T23:23:16.513808  sshd[3799]: Failed password for root from 218.92.0.175 port 59791 ssh2
2020-02-19T23:23:21.703737  sshd[3799]: Failed password for root from 218.92.0.175 port 59791 ssh2
...
2020-02-20 06:41:34
185.176.27.170 attackspam
02/19/2020-22:57:51.325615 185.176.27.170 Protocol: 6 ET DROP Dshield Block Listed Source group 1
2020-02-20 06:46:18
139.155.71.154 attackbots
Feb 19 17:38:56 ny01 sshd[7224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.71.154
Feb 19 17:38:57 ny01 sshd[7224]: Failed password for invalid user jira from 139.155.71.154 port 58362 ssh2
Feb 19 17:43:30 ny01 sshd[9028]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.71.154
2020-02-20 06:53:39
133.242.155.85 attackspambots
SSH Brute-Force reported by Fail2Ban
2020-02-20 06:58:38
222.186.173.183 attackspam
Feb 19 23:53:52 dedicated sshd[5373]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183  user=root
Feb 19 23:53:54 dedicated sshd[5373]: Failed password for root from 222.186.173.183 port 57642 ssh2
2020-02-20 06:56:22
150.109.181.27 attackbotsspam
Port probing on unauthorized port 8082
2020-02-20 07:12:01
49.88.112.112 attackbotsspam
February 19 2020, 22:35:43 [sshd] - Banned from the Cipher Host hosting platform by Fail2ban.
2020-02-20 06:43:29

最近上报的IP列表

122.53.85.62 220.234.245.166 193.37.32.142 40.205.231.158
168.194.119.179 128.53.216.201 182.191.117.83 188.120.239.4
110.50.85.83 51.48.20.0 103.118.222.82 68.183.224.67
14.255.119.57 203.92.159.44 207.62.251.139 168.119.50.182
197.209.29.174 0.67.120.53 113.223.137.0 80.117.29.95