142.93.2.145 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	SSH auth scanning - multiple failed logins	2020-07-23 19:17:54
attackspambots	Jul 22 22:52:03 main sshd[21931]: Failed password for invalid user bjorn from 142.93.2.145 port 58884 ssh2	2020-07-23 04:00:55

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.240.62	spamattack	PHISHING AND SPAM ATTACK FROM "Important Notification - newsletter@app.ksinergy.biz - " : SUBJECT "Congrats! Open Immediately! " : RECEIVED "from mail-02.ksinergy.biz ([142.93.240.62]:39126) " : DATE/TIMESENT "Mon, 01 Mar 2021 10:14:52 ": IP ADDRESS "inetnum: 142.93.0.0 - 142.93.255.255 OrgName: DigitalOcean, LLC	2021-03-01 08:16:37
142.93.240.62	spamattack	PHISHING AND SPAM ATTACK FROM "Casino For You - newsletter@app.ksinergy.biz -" : SUBJECT "Join today and receive an amazing welcome bonus " : RECEIVED "from mail-02.ksinergy.biz ([142.93.240.62]:57421) " : DATE/TIMESENT "Tue, 23 Feb 2021 01:27:07 "	2021-02-23 04:32:24
142.93.212.91	attackbotsspam	SSH BruteForce Attack	2020-10-13 01:56:49
142.93.237.57	attack	Multiport scan 2 ports : 1583 27080	2020-10-12 21:16:28
142.93.212.91	attack	Oct 12 10:23:09 localhost sshd\[19098\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.212.91 user=root Oct 12 10:23:11 localhost sshd\[19098\]: Failed password for root from 142.93.212.91 port 59394 ssh2 Oct 12 10:27:27 localhost sshd\[19552\]: Invalid user sanjeev from 142.93.212.91 Oct 12 10:27:27 localhost sshd\[19552\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.212.91 Oct 12 10:27:29 localhost sshd\[19552\]: Failed password for invalid user sanjeev from 142.93.212.91 port 36984 ssh2 ...	2020-10-12 17:20:25
142.93.237.57	attack	1089/tcp 5984/tcp [2020-10-11]2pkt	2020-10-12 12:46:46
142.93.211.36	attackspambots	Oct 12 00:25:27 hidden sshd[869]: Failed password for hidden from 142.93.211.36 port 56534 ssh2 Oct 12 00:28:28 hidden sshd[1320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.211.36 user=root Oct 12 00:28:30 hidden sshd[1320]: Failed password for hidden from 142.93.211.36 port 40212 ssh2	2020-10-12 07:11:11
142.93.209.251	attackbotsspam	Oct 11 22:07:55 v2202009116398126984 sshd[2515868]: Invalid user elke from 142.93.209.251 port 44534 ...	2020-10-12 06:24:15
142.93.223.118	attackspam	SSH login attempts.	2020-10-12 04:12:31
142.93.211.36	attackspam	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-10-11 23:23:00
142.93.209.251	attack	Oct 11 16:26:57 sso sshd[30604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 Oct 11 16:26:59 sso sshd[30604]: Failed password for invalid user chris from 142.93.209.251 port 59794 ssh2 ...	2020-10-11 22:34:31
142.93.223.118	attackspam	SSH login attempts.	2020-10-11 20:11:30
142.93.211.36	attack	Fail2Ban	2020-10-11 15:21:45
142.93.209.251	attackbots	(sshd) Failed SSH login from 142.93.209.251 (IN/India/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 00:54:24 optimus sshd[28004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 user=root Oct 11 00:54:27 optimus sshd[28004]: Failed password for root from 142.93.209.251 port 54930 ssh2 Oct 11 01:19:11 optimus sshd[6951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 user=root Oct 11 01:19:13 optimus sshd[6951]: Failed password for root from 142.93.209.251 port 56072 ssh2 Oct 11 01:24:49 optimus sshd[11852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 user=root	2020-10-11 14:29:57
142.93.223.118	attackspam	2020-10-11T07:03:53.476597lavrinenko.info sshd[19701]: Failed password for root from 142.93.223.118 port 55582 ssh2 2020-10-11T07:07:58.292860lavrinenko.info sshd[19798]: Invalid user next from 142.93.223.118 port 33376 2020-10-11T07:07:58.302917lavrinenko.info sshd[19798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.223.118 2020-10-11T07:07:58.292860lavrinenko.info sshd[19798]: Invalid user next from 142.93.223.118 port 33376 2020-10-11T07:08:00.553715lavrinenko.info sshd[19798]: Failed password for invalid user next from 142.93.223.118 port 33376 ssh2 ...	2020-10-11 12:10:33

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.2.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20780
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.2.145.			IN	A

;; AUTHORITY SECTION:
.			408	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072201 1800 900 604800 86400

;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jul 23 04:00:51 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 145.2.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.2.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
51.141.122.112	attack	May 10 14:34:32 plex sshd[19772]: Invalid user hadoop from 51.141.122.112 port 60922	2020-05-10 20:39:11
162.243.138.215	attack	05/10/2020-14:15:21.266561 162.243.138.215 Protocol: 17 GPL SNMP public access udp	2020-05-10 21:02:24
222.186.169.192	attackspambots	May 10 14:52:18 vps sshd[981826]: Failed password for root from 222.186.169.192 port 5010 ssh2 May 10 14:52:21 vps sshd[981826]: Failed password for root from 222.186.169.192 port 5010 ssh2 May 10 14:52:24 vps sshd[981826]: Failed password for root from 222.186.169.192 port 5010 ssh2 May 10 14:52:27 vps sshd[981826]: Failed password for root from 222.186.169.192 port 5010 ssh2 May 10 14:52:30 vps sshd[981826]: Failed password for root from 222.186.169.192 port 5010 ssh2 ...	2020-05-10 20:54:55
103.20.188.18	attackspambots	May 10 14:15:49 nextcloud sshd\[8219\]: Invalid user oracle from 103.20.188.18 May 10 14:15:49 nextcloud sshd\[8219\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.20.188.18 May 10 14:15:52 nextcloud sshd\[8219\]: Failed password for invalid user oracle from 103.20.188.18 port 54872 ssh2	2020-05-10 20:26:08
45.168.139.88	attack	Automatic report - Port Scan Attack	2020-05-10 20:48:13
103.218.242.29	attackspam	May 10 14:20:05 v22019038103785759 sshd\[23331\]: Invalid user user from 103.218.242.29 port 41026 May 10 14:20:05 v22019038103785759 sshd\[23331\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.218.242.29 May 10 14:20:07 v22019038103785759 sshd\[23331\]: Failed password for invalid user user from 103.218.242.29 port 41026 ssh2 May 10 14:26:32 v22019038103785759 sshd\[23677\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.218.242.29 user=root May 10 14:26:34 v22019038103785759 sshd\[23677\]: Failed password for root from 103.218.242.29 port 44978 ssh2 ...	2020-05-10 20:58:14
83.241.232.51	attack	May 10 14:14:21 meumeu sshd[7176]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.241.232.51 May 10 14:14:22 meumeu sshd[7176]: Failed password for invalid user teacher from 83.241.232.51 port 43881 ssh2 May 10 14:19:56 meumeu sshd[8010]: Failed password for jenkins from 83.241.232.51 port 55297 ssh2 ...	2020-05-10 20:29:10
27.112.68.2	attackbots	May 10 14:12:33 OPSO sshd\[7364\]: Invalid user oracle from 27.112.68.2 port 55800 May 10 14:12:33 OPSO sshd\[7364\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.112.68.2 May 10 14:12:34 OPSO sshd\[7364\]: Failed password for invalid user oracle from 27.112.68.2 port 55800 ssh2 May 10 14:15:47 OPSO sshd\[8048\]: Invalid user taylor from 27.112.68.2 port 43658 May 10 14:15:47 OPSO sshd\[8048\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.112.68.2	2020-05-10 20:27:22
49.88.112.114	attack	2020-05-10T21:11:06.996854vivaldi2.tree2.info sshd[15870]: refused connect from 49.88.112.114 (49.88.112.114) 2020-05-10T21:12:14.024144vivaldi2.tree2.info sshd[15937]: refused connect from 49.88.112.114 (49.88.112.114) 2020-05-10T21:13:26.637138vivaldi2.tree2.info sshd[15963]: refused connect from 49.88.112.114 (49.88.112.114) 2020-05-10T21:14:39.775210vivaldi2.tree2.info sshd[15982]: refused connect from 49.88.112.114 (49.88.112.114) 2020-05-10T21:15:53.389377vivaldi2.tree2.info sshd[16038]: refused connect from 49.88.112.114 (49.88.112.114) ...	2020-05-10 20:25:13
94.245.20.160	attackbotsspam	Fail2Ban Ban Triggered	2020-05-10 20:44:59
220.129.146.23	attack	Port probing on unauthorized port 23	2020-05-10 20:59:20
164.132.56.243	attack	May 10 14:47:44 web01 sshd[4681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.56.243 May 10 14:47:46 web01 sshd[4681]: Failed password for invalid user nagios from 164.132.56.243 port 52722 ssh2 ...	2020-05-10 20:53:54
162.243.253.67	attackspambots	May 10 14:15:47 ns381471 sshd[23927]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.253.67 May 10 14:15:48 ns381471 sshd[23927]: Failed password for invalid user bt from 162.243.253.67 port 48401 ssh2	2020-05-10 20:28:52
222.186.175.183	attack	May 10 14:26:45 v22019038103785759 sshd\[23704\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.183 user=root May 10 14:26:46 v22019038103785759 sshd\[23704\]: Failed password for root from 222.186.175.183 port 7954 ssh2 May 10 14:26:50 v22019038103785759 sshd\[23704\]: Failed password for root from 222.186.175.183 port 7954 ssh2 May 10 14:26:53 v22019038103785759 sshd\[23704\]: Failed password for root from 222.186.175.183 port 7954 ssh2 May 10 14:26:56 v22019038103785759 sshd\[23704\]: Failed password for root from 222.186.175.183 port 7954 ssh2 ...	2020-05-10 20:27:55
123.16.160.99	attack	Unauthorized connection attempt from IP address 123.16.160.99 on Port 445(SMB)	2020-05-10 20:50:46

最近上报的IP列表

203.189.118.99	110.39.7.4	129.145.3.27	5.189.183.232
15.54.231.201	86.227.126.140	79.139.56.120	192.241.236.53
76.41.72.13	51.145.242.1	123.21.36.161	103.207.37.197
61.221.64.5	54.166.178.180	193.43.252.210	75.126.104.249
125.227.21.223	31.142.242.97	17.188.22.144	177.153.11.13