142.93.207.14 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Feb 13 23:02:44 pi sshd[28431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.207.14 user=root Feb 13 23:02:46 pi sshd[28431]: Failed password for invalid user root from 142.93.207.14 port 47466 ssh2	2020-03-14 02:32:50
attack	Feb 13 23:02:44 pi sshd[28431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.207.14 user=root Feb 13 23:02:46 pi sshd[28431]: Failed password for invalid user root from 142.93.207.14 port 47466 ssh2	2020-02-14 09:54:57

类型

评论内容

时间

attackspam

Feb 13 23:02:44 pi sshd[28431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.207.14  user=root
Feb 13 23:02:46 pi sshd[28431]: Failed password for invalid user root from 142.93.207.14 port 47466 ssh2

2020-03-14 02:32:50

attack

Feb 13 23:02:44 pi sshd[28431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.207.14  user=root
Feb 13 23:02:46 pi sshd[28431]: Failed password for invalid user root from 142.93.207.14 port 47466 ssh2

2020-02-14 09:54:57

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.207.23	attack	trying to access non-authorized port	2020-06-19 04:00:08

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.207.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35625
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.207.14.			IN	A

;; AUTHORITY SECTION:
.			585	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021302 1800 900 604800 86400

;; Query time: 49 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 14 09:54:52 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 14.207.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 14.207.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
27.10.171.72	attackspambots	Jul 27 13:55:04 ncomp sshd[30142]: Invalid user osbash from 27.10.171.72 Jul 27 13:55:04 ncomp sshd[30142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.10.171.72 Jul 27 13:55:04 ncomp sshd[30142]: Invalid user osbash from 27.10.171.72 Jul 27 13:55:06 ncomp sshd[30142]: Failed password for invalid user osbash from 27.10.171.72 port 46790 ssh2	2020-07-27 22:21:41
189.125.93.48	attack	Brute-force attempt banned	2020-07-27 22:37:05
45.4.5.221	attackspam	$f2bV_matches	2020-07-27 22:45:26
178.32.221.142	attack	Jul 27 13:51:46 *** sshd[29139]: Invalid user ebaserdb from 178.32.221.142	2020-07-27 22:17:59
176.41.148.147	attackbotsspam	2020-07-27T15:51:50.164049sd-86998 sshd[4045]: Invalid user lutz from 176.41.148.147 port 36483 2020-07-27T15:51:50.169460sd-86998 sshd[4045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.41.148.147 2020-07-27T15:51:50.164049sd-86998 sshd[4045]: Invalid user lutz from 176.41.148.147 port 36483 2020-07-27T15:51:52.347663sd-86998 sshd[4045]: Failed password for invalid user lutz from 176.41.148.147 port 36483 ssh2 2020-07-27T15:56:05.850632sd-86998 sshd[5111]: Invalid user vegeta from 176.41.148.147 port 50668 ...	2020-07-27 22:14:17
128.106.120.29	attack	port scan and connect, tcp 80 (http)	2020-07-27 22:33:57
80.13.94.95	attackbots	20/7/27@07:54:33: FAIL: Alarm-Network address from=80.13.94.95 ...	2020-07-27 22:51:46
183.111.204.148	attackspambots	2020-07-27T11:49:30.801787shield sshd\[25612\]: Invalid user test from 183.111.204.148 port 60720 2020-07-27T11:49:30.814442shield sshd\[25612\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.111.204.148 2020-07-27T11:49:33.004044shield sshd\[25612\]: Failed password for invalid user test from 183.111.204.148 port 60720 ssh2 2020-07-27T11:54:34.423261shield sshd\[26065\]: Invalid user rustserver from 183.111.204.148 port 43082 2020-07-27T11:54:34.433299shield sshd\[26065\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.111.204.148	2020-07-27 22:48:04
40.113.124.250	attackbots	40.113.124.250 - - [27/Jul/2020:15:17:02 +0200] "GET /wp-login.php HTTP/1.1" 200 6060 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 40.113.124.250 - - [27/Jul/2020:15:17:03 +0200] "POST /wp-login.php HTTP/1.1" 200 6311 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 40.113.124.250 - - [27/Jul/2020:15:17:04 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-07-27 22:27:16
45.95.168.77	attackspam	2020-07-27 16:11:01 dovecot_login authenticator failed for slot0.banhats.com $USER$ \[45.95.168.77\]: 535 Incorrect authentication data $set_id=test@german-hoeffner.net$ 2020-07-27 16:11:01 dovecot_login authenticator failed for slot0.banhats.com $USER$ \[45.95.168.77\]: 535 Incorrect authentication data $set_id=test@yt.gl$ 2020-07-27 16:11:01 dovecot_login authenticator failed for slot0.banhats.com $USER$ \[45.95.168.77\]: 535 Incorrect authentication data $set_id=test@darkrp.com$ 2020-07-27 16:17:41 dovecot_login authenticator failed for slot0.banhats.com $USER$ \[45.95.168.77\]: 535 Incorrect authentication data $set_id=test@german-hoeffner.net$ 2020-07-27 16:17:41 dovecot_login authenticator failed for slot0.banhats.com $USER$ \[45.95.168.77\]: 535 Incorrect authentication data $set_id=test@darkrp.com$ 2020-07-27 16:17:41 dovecot_login authenticator failed for slot0.banhats.com $USER$ \[45.95.168.77\]: 535 Incorrect authentication data $set_id=test@yt.gl$ ...	2020-07-27 22:25:08
178.32.225.198	attackbotsspam	Port Scan detected from 178.32.225.198 (FR/France/Centre-Val de Loire/Nouan-le-Fuzelier/release.invineo.com). 4 hits in the last 280 seconds	2020-07-27 22:17:19
128.106.88.130	attack	Automatic report - Banned IP Access	2020-07-27 22:19:13
51.91.157.101	attackspam	Invalid user ubuntu from 51.91.157.101 port 34534	2020-07-27 22:13:59
147.135.223.229	attackbotsspam	[2020-07-27 10:22:06] NOTICE[1248] chan_sip.c: Registration from '' failed for '147.135.223.229:63792' - Wrong password [2020-07-27 10:22:06] SECURITY[1275] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-07-27T10:22:06.914-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1416",SessionID="0x7f272006f888",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/147.135.223.229/63792",Challenge="24a5d41a",ReceivedChallenge="24a5d41a",ReceivedHash="8ae494185ffd3c46b65b3f5e6ebac96c" [2020-07-27 10:22:14] NOTICE[1248] chan_sip.c: Registration from '' failed for '147.135.223.229:61874' - Wrong password [2020-07-27 10:22:14] SECURITY[1275] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-07-27T10:22:14.128-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="167",SessionID="0x7f27200510e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/147.135.2 ...	2020-07-27 22:36:45
178.44.219.38	attackspambots	Jul 27 14:11:32 master sshd[5318]: Failed password for root from 178.44.219.38 port 52502 ssh2	2020-07-27 22:22:14

最近上报的IP列表

179.228.27.66	191.36.185.119	114.24.143.9	191.35.186.35
37.233.22.170	36.226.107.120	92.38.152.92	122.224.34.193
191.249.205.99	142.169.78.2	181.62.0.150	52.130.85.47
124.100.110.20	191.240.236.74	1.30.49.195	191.184.141.170
95.104.86.161	45.64.153.50	153.126.141.42	106.12.173.236