142.93.2.145 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	SSH auth scanning - multiple failed logins	2020-07-23 19:17:54
attackspambots	Jul 22 22:52:03 main sshd[21931]: Failed password for invalid user bjorn from 142.93.2.145 port 58884 ssh2	2020-07-23 04:00:55

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.240.62	spamattack	PHISHING AND SPAM ATTACK FROM "Important Notification - newsletter@app.ksinergy.biz - " : SUBJECT "Congrats! Open Immediately! " : RECEIVED "from mail-02.ksinergy.biz ([142.93.240.62]:39126) " : DATE/TIMESENT "Mon, 01 Mar 2021 10:14:52 ": IP ADDRESS "inetnum: 142.93.0.0 - 142.93.255.255 OrgName: DigitalOcean, LLC	2021-03-01 08:16:37
142.93.240.62	spamattack	PHISHING AND SPAM ATTACK FROM "Casino For You - newsletter@app.ksinergy.biz -" : SUBJECT "Join today and receive an amazing welcome bonus " : RECEIVED "from mail-02.ksinergy.biz ([142.93.240.62]:57421) " : DATE/TIMESENT "Tue, 23 Feb 2021 01:27:07 "	2021-02-23 04:32:24
142.93.212.91	attackbotsspam	SSH BruteForce Attack	2020-10-13 01:56:49
142.93.237.57	attack	Multiport scan 2 ports : 1583 27080	2020-10-12 21:16:28
142.93.212.91	attack	Oct 12 10:23:09 localhost sshd\[19098\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.212.91 user=root Oct 12 10:23:11 localhost sshd\[19098\]: Failed password for root from 142.93.212.91 port 59394 ssh2 Oct 12 10:27:27 localhost sshd\[19552\]: Invalid user sanjeev from 142.93.212.91 Oct 12 10:27:27 localhost sshd\[19552\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.212.91 Oct 12 10:27:29 localhost sshd\[19552\]: Failed password for invalid user sanjeev from 142.93.212.91 port 36984 ssh2 ...	2020-10-12 17:20:25
142.93.237.57	attack	1089/tcp 5984/tcp [2020-10-11]2pkt	2020-10-12 12:46:46
142.93.211.36	attackspambots	Oct 12 00:25:27 hidden sshd[869]: Failed password for hidden from 142.93.211.36 port 56534 ssh2 Oct 12 00:28:28 hidden sshd[1320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.211.36 user=root Oct 12 00:28:30 hidden sshd[1320]: Failed password for hidden from 142.93.211.36 port 40212 ssh2	2020-10-12 07:11:11
142.93.209.251	attackbotsspam	Oct 11 22:07:55 v2202009116398126984 sshd[2515868]: Invalid user elke from 142.93.209.251 port 44534 ...	2020-10-12 06:24:15
142.93.223.118	attackspam	SSH login attempts.	2020-10-12 04:12:31
142.93.211.36	attackspam	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-10-11 23:23:00
142.93.209.251	attack	Oct 11 16:26:57 sso sshd[30604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 Oct 11 16:26:59 sso sshd[30604]: Failed password for invalid user chris from 142.93.209.251 port 59794 ssh2 ...	2020-10-11 22:34:31
142.93.223.118	attackspam	SSH login attempts.	2020-10-11 20:11:30
142.93.211.36	attack	Fail2Ban	2020-10-11 15:21:45
142.93.209.251	attackbots	(sshd) Failed SSH login from 142.93.209.251 (IN/India/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 00:54:24 optimus sshd[28004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 user=root Oct 11 00:54:27 optimus sshd[28004]: Failed password for root from 142.93.209.251 port 54930 ssh2 Oct 11 01:19:11 optimus sshd[6951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 user=root Oct 11 01:19:13 optimus sshd[6951]: Failed password for root from 142.93.209.251 port 56072 ssh2 Oct 11 01:24:49 optimus sshd[11852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 user=root	2020-10-11 14:29:57
142.93.223.118	attackspam	2020-10-11T07:03:53.476597lavrinenko.info sshd[19701]: Failed password for root from 142.93.223.118 port 55582 ssh2 2020-10-11T07:07:58.292860lavrinenko.info sshd[19798]: Invalid user next from 142.93.223.118 port 33376 2020-10-11T07:07:58.302917lavrinenko.info sshd[19798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.223.118 2020-10-11T07:07:58.292860lavrinenko.info sshd[19798]: Invalid user next from 142.93.223.118 port 33376 2020-10-11T07:08:00.553715lavrinenko.info sshd[19798]: Failed password for invalid user next from 142.93.223.118 port 33376 ssh2 ...	2020-10-11 12:10:33

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.2.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20780
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.2.145.			IN	A

;; AUTHORITY SECTION:
.			408	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072201 1800 900 604800 86400

;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jul 23 04:00:51 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 145.2.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.2.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
115.217.19.16	attack	2020-08-15T06:07:57.455722shield sshd\[20097\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.217.19.16 user=root 2020-08-15T06:07:59.069986shield sshd\[20097\]: Failed password for root from 115.217.19.16 port 40958 ssh2 2020-08-15T06:10:26.459864shield sshd\[20363\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.217.19.16 user=root 2020-08-15T06:10:28.194778shield sshd\[20363\]: Failed password for root from 115.217.19.16 port 52576 ssh2 2020-08-15T06:12:46.193184shield sshd\[20638\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.217.19.16 user=root	2020-08-15 14:48:31
23.95.224.43	attack	(From eric@talkwithwebvisitor.com) Hey there, I just found your site, quick question… My name’s Eric, I found decubellisfamilychiropractic.com after doing a quick search – you showed up near the top of the rankings, so whatever you’re doing for SEO, looks like it’s working well. So here’s my question – what happens AFTER someone lands on your site? Anything? Research tells us at least 70% of the people who find your site, after a quick once-over, they disappear… forever. That means that all the work and effort you put into getting them to show up, goes down the tubes. Why would you want all that good work – and the great site you’ve built – go to waste? Because the odds are they’ll just skip over calling or even grabbing their phone, leaving you high and dry. But here’s a thought… what if you could make it super-simple for someone to raise their hand, say, “okay, let’s talk” without requiring them to even pull their cell phone from their pocket? You can – thanks to revolutionary new	2020-08-15 14:25:42
51.15.106.64	attackbots	Automatic report - Port Scan	2020-08-15 14:31:33
222.186.42.7	attack	Aug 15 08:45:56 abendstille sshd\[21796\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.7 user=root Aug 15 08:45:57 abendstille sshd\[21796\]: Failed password for root from 222.186.42.7 port 44503 ssh2 Aug 15 08:46:05 abendstille sshd\[22145\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.7 user=root Aug 15 08:46:08 abendstille sshd\[22145\]: Failed password for root from 222.186.42.7 port 23601 ssh2 Aug 15 08:46:14 abendstille sshd\[22204\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.7 user=root ...	2020-08-15 14:47:43
72.130.10.216	attackbots	Port 22 Scan, PTR: None	2020-08-15 14:31:10
114.235.139.77	attackbotsspam	Automatic report - Port Scan Attack	2020-08-15 14:41:47
222.252.21.30	attackspam	Aug 15 08:29:58 ip106 sshd[10681]: Failed password for root from 222.252.21.30 port 44865 ssh2 ...	2020-08-15 14:35:31
174.21.138.106	attack	Port 22 Scan, PTR: None	2020-08-15 14:34:37
64.227.34.162	attackspambots	Aug 15 07:55:33 cosmoit sshd[31207]: Failed password for root from 64.227.34.162 port 56643 ssh2	2020-08-15 14:20:03
159.192.104.253	attackbots	IP 159.192.104.253 attacked honeypot on port: 1433 at 8/14/2020 8:54:37 PM	2020-08-15 14:40:40
117.158.175.167	attackbotsspam	frenzy	2020-08-15 14:55:07
46.249.32.37	attackbotsspam	Port 22 Scan, PTR: reverse.hostingbb.com.	2020-08-15 14:42:21
194.26.25.97	attack	[Sat Aug 15 07:14:00 2020] - DDoS Attack From IP: 194.26.25.97 Port: 40449	2020-08-15 14:34:08
193.169.253.27	attack	Aug 15 08:13:15 srv01 postfix/smtpd\[29611\]: warning: unknown\[193.169.253.27\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 08:16:03 srv01 postfix/smtpd\[29358\]: warning: unknown\[193.169.253.27\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 08:19:15 srv01 postfix/smtpd\[4056\]: warning: unknown\[193.169.253.27\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 08:20:02 srv01 postfix/smtpd\[4056\]: warning: unknown\[193.169.253.27\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 08:20:35 srv01 postfix/smtpd\[4949\]: warning: unknown\[193.169.253.27\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-15 14:23:56
213.45.29.13	attackspambots	Port 22 Scan, PTR: None	2020-08-15 14:27:22

最近上报的IP列表

203.189.118.99	110.39.7.4	129.145.3.27	5.189.183.232
15.54.231.201	86.227.126.140	79.139.56.120	192.241.236.53
76.41.72.13	51.145.242.1	123.21.36.161	103.207.37.197
61.221.64.5	54.166.178.180	193.43.252.210	75.126.104.249
125.227.21.223	31.142.242.97	17.188.22.144	177.153.11.13