142.93.197.100

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Brute force attack against VPN service	2020-04-11 02:05:32

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.197.186	attackbots	php WP PHPmyadamin ABUSE blocked for 12h	2020-09-17 23:08:32
142.93.197.186	attackspam	php WP PHPmyadamin ABUSE blocked for 12h	2020-09-17 15:14:26
142.93.197.186	attackbots	142.93.197.186 - - [16/Sep/2020:20:59:32 +0200] "GET /wp-login.php HTTP/1.1" 200 8558 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.197.186 - - [16/Sep/2020:20:59:35 +0200] "POST /wp-login.php HTTP/1.1" 200 8809 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.197.186 - - [16/Sep/2020:20:59:36 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-17 06:22:48
142.93.197.59	attackspambots	Dec 10 00:13:23 hanapaa sshd\[6822\]: Invalid user mstewart from 142.93.197.59 Dec 10 00:13:23 hanapaa sshd\[6822\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.197.59 Dec 10 00:13:26 hanapaa sshd\[6822\]: Failed password for invalid user mstewart from 142.93.197.59 port 60606 ssh2 Dec 10 00:18:57 hanapaa sshd\[7381\]: Invalid user arsavir from 142.93.197.59 Dec 10 00:18:57 hanapaa sshd\[7381\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.197.59	2019-12-10 18:45:24
142.93.197.59	attackbots	Dec 6 00:17:20 hpm sshd\[32063\]: Invalid user qo from 142.93.197.59 Dec 6 00:17:20 hpm sshd\[32063\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.197.59 Dec 6 00:17:22 hpm sshd\[32063\]: Failed password for invalid user qo from 142.93.197.59 port 60366 ssh2 Dec 6 00:23:26 hpm sshd\[32582\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.197.59 user=root Dec 6 00:23:28 hpm sshd\[32582\]: Failed password for root from 142.93.197.59 port 42480 ssh2	2019-12-06 21:11:20
142.93.197.59	attack	Dec 3 20:24:08 tdfoods sshd\[17815\]: Invalid user scary from 142.93.197.59 Dec 3 20:24:08 tdfoods sshd\[17815\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.197.59 Dec 3 20:24:10 tdfoods sshd\[17815\]: Failed password for invalid user scary from 142.93.197.59 port 57330 ssh2 Dec 3 20:30:25 tdfoods sshd\[18402\]: Invalid user mogul from 142.93.197.59 Dec 3 20:30:25 tdfoods sshd\[18402\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.197.59	2019-12-04 14:43:42
142.93.197.54	attackbotsspam	Nov 24 21:38:27 vtv3 sshd[15769]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.197.54 Nov 24 21:38:29 vtv3 sshd[15769]: Failed password for invalid user asterisk from 142.93.197.54 port 53710 ssh2 Nov 24 21:44:24 vtv3 sshd[18933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.197.54 Nov 24 21:56:04 vtv3 sshd[25547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.197.54 Nov 24 21:56:06 vtv3 sshd[25547]: Failed password for invalid user hbcscan from 142.93.197.54 port 51720 ssh2 Nov 24 22:02:06 vtv3 sshd[29259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.197.54 Nov 24 22:14:00 vtv3 sshd[3891]: Failed password for root from 142.93.197.54 port 49730 ssh2 Nov 24 22:20:02 vtv3 sshd[7210]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.197.54 Nov 24 22:20:04 vtv3 sshd[	2019-11-25 07:04:42

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.197.100
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28925
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.197.100.			IN	A

;; AUTHORITY SECTION:
.			352	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041001 1800 900 604800 86400

;; Query time: 117 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 11 02:05:26 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 100.197.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 100.197.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
87.98.150.12	attackspambots	Sep 10 01:54:06 php1 sshd\[18884\]: Invalid user ftpuser from 87.98.150.12 Sep 10 01:54:06 php1 sshd\[18884\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.98.150.12 Sep 10 01:54:08 php1 sshd\[18884\]: Failed password for invalid user ftpuser from 87.98.150.12 port 52054 ssh2 Sep 10 02:00:04 php1 sshd\[19429\]: Invalid user test from 87.98.150.12 Sep 10 02:00:04 php1 sshd\[19429\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.98.150.12	2019-09-11 05:06:10
94.191.40.166	attackspambots	Sep 11 01:47:47 itv-usvr-01 sshd[21269]: Invalid user ftp from 94.191.40.166 Sep 11 01:47:47 itv-usvr-01 sshd[21269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.40.166 Sep 11 01:47:47 itv-usvr-01 sshd[21269]: Invalid user ftp from 94.191.40.166 Sep 11 01:47:49 itv-usvr-01 sshd[21269]: Failed password for invalid user ftp from 94.191.40.166 port 46768 ssh2 Sep 11 01:51:08 itv-usvr-01 sshd[21414]: Invalid user nagios from 94.191.40.166	2019-09-11 05:31:52
54.39.96.8	attackbots	Sep 10 23:54:54 www2 sshd\[35684\]: Invalid user ftptest from 54.39.96.8Sep 10 23:54:56 www2 sshd\[35684\]: Failed password for invalid user ftptest from 54.39.96.8 port 53802 ssh2Sep 10 23:59:56 www2 sshd\[36251\]: Invalid user oneadmin from 54.39.96.8 ...	2019-09-11 05:04:15
146.88.240.10	attackbots	Sep 6 05:30:51 mercury kernel: [UFW ALLOW] IN=eth0 OUT= MAC=f2:3c:91:bc:4d:f8:84:78:ac:0d:8f:41:08:00 SRC=146.88.240.10 DST=109.74.200.221 LEN=76 TOS=0x00 PREC=0x00 TTL=54 ID=34701 DF PROTO=UDP SPT=51159 DPT=123 LEN=56 ...	2019-09-11 05:27:03
181.31.134.69	attack	Sep 10 11:03:39 plusreed sshd[4805]: Invalid user temp from 181.31.134.69 ...	2019-09-11 05:14:03
104.248.162.218	attackspambots	Sep 10 10:41:52 kapalua sshd\[11368\]: Invalid user gmodserver from 104.248.162.218 Sep 10 10:41:52 kapalua sshd\[11368\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.162.218 Sep 10 10:41:53 kapalua sshd\[11368\]: Failed password for invalid user gmodserver from 104.248.162.218 port 52486 ssh2 Sep 10 10:47:45 kapalua sshd\[11902\]: Invalid user servers from 104.248.162.218 Sep 10 10:47:45 kapalua sshd\[11902\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.162.218	2019-09-11 05:38:17
88.0.80.224	attack	DATE:2019-09-10 19:17:37, IP:88.0.80.224, PORT:ssh brute force auth on SSH service (patata)	2019-09-11 05:20:55
51.254.57.17	attackbots	Sep 10 11:12:31 sachi sshd\[4882\]: Invalid user temp from 51.254.57.17 Sep 10 11:12:31 sachi sshd\[4882\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip17.ip-51-254-57.eu Sep 10 11:12:32 sachi sshd\[4882\]: Failed password for invalid user temp from 51.254.57.17 port 49685 ssh2 Sep 10 11:18:19 sachi sshd\[5423\]: Invalid user git from 51.254.57.17 Sep 10 11:18:19 sachi sshd\[5423\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip17.ip-51-254-57.eu	2019-09-11 05:18:36
177.124.216.10	attackbotsspam	Sep 10 15:48:01 XXX sshd[51977]: Invalid user csgoserver from 177.124.216.10 port 57296	2019-09-11 05:43:09
106.12.108.23	attackbotsspam	Sep 10 22:48:21 vps691689 sshd[31575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.108.23 Sep 10 22:48:23 vps691689 sshd[31575]: Failed password for invalid user daniel from 106.12.108.23 port 37534 ssh2 Sep 10 22:55:11 vps691689 sshd[31771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.108.23 ...	2019-09-11 05:09:44
112.169.255.1	attackbots	2019-08-21T16:25:28.259Z CLOSE host=112.169.255.1 port=46766 fd=7 time=700.081 bytes=1189 ...	2019-09-11 05:40:25
218.98.26.184	attack	Sep 10 23:00:27 ArkNodeAT sshd\[20551\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.98.26.184 user=root Sep 10 23:00:29 ArkNodeAT sshd\[20551\]: Failed password for root from 218.98.26.184 port 64369 ssh2 Sep 10 23:00:37 ArkNodeAT sshd\[20553\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.98.26.184 user=root	2019-09-11 05:01:40
156.67.212.52	attack	May 23 03:45:09 mercury wordpress(lukegirvin.co.uk)[14438]: XML-RPC authentication failure for luke from 156.67.212.52 ...	2019-09-11 05:32:46
49.231.234.73	attack	Sep 10 14:33:34 [host] sshd[7210]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.231.234.73 user=root Sep 10 14:33:36 [host] sshd[7210]: Failed password for root from 49.231.234.73 port 49057 ssh2 Sep 10 14:39:28 [host] sshd[7471]: Invalid user bcampion from 49.231.234.73	2019-09-11 05:41:34
71.72.12.0	attack	2019-09-10T15:53:15.853048abusebot.cloudsearch.cf sshd\[21277\]: Invalid user test7 from 71.72.12.0 port 42572	2019-09-11 05:21:14

最近上报的IP列表

62.234.130.87	25.146.210.107	255.81.76.246	88.212.61.174
255.220.202.111	36.55.28.99	220.36.197.83	160.142.20.19
48.225.199.12	151.76.222.138	239.16.249.144	3.255.112.229
52.128.88.165	225.184.230.75	67.198.51.156	135.149.58.142
246.156.217.172	98.249.55.252	235.154.167.246	88.114.45.93