城市(city): unknown
省份(region): unknown
国家(country): United States of America
运营商(isp): DigitalOcean LLC
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): Data Center/Web Hosting/Transit
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attack | Jun 2 06:58:04 localhost sshd\[2870\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.134 user=root Jun 2 06:58:06 localhost sshd\[2870\]: Failed password for root from 142.93.216.134 port 42150 ssh2 Jun 2 07:02:13 localhost sshd\[2940\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.134 user=root ... |
2020-06-02 18:18:31 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 142.93.216.97 | attackspam | SSH Brute Force |
2020-09-23 23:16:31 |
| 142.93.216.97 | attackbotsspam | Sep 22 20:18:56 hanapaa sshd\[16387\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 user=root Sep 22 20:18:58 hanapaa sshd\[16387\]: Failed password for root from 142.93.216.97 port 50322 ssh2 Sep 22 20:23:20 hanapaa sshd\[16719\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 user=root Sep 22 20:23:22 hanapaa sshd\[16719\]: Failed password for root from 142.93.216.97 port 59966 ssh2 Sep 22 20:27:54 hanapaa sshd\[17100\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 user=root |
2020-09-23 15:30:35 |
| 142.93.216.97 | attack | Sep 23 01:15:21 piServer sshd[2469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 Sep 23 01:15:23 piServer sshd[2469]: Failed password for invalid user ahmed from 142.93.216.97 port 55418 ssh2 Sep 23 01:19:37 piServer sshd[3087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 ... |
2020-09-23 07:23:48 |
| 142.93.216.97 | attack | Sep 16 14:22:44 pornomens sshd\[5538\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 user=root Sep 16 14:22:46 pornomens sshd\[5538\]: Failed password for root from 142.93.216.97 port 47298 ssh2 Sep 16 14:28:13 pornomens sshd\[5606\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 user=root ... |
2020-09-17 01:59:29 |
| 142.93.216.97 | attack | SSH Brute Force |
2020-09-16 18:16:28 |
| 142.93.216.68 | attackspam | 2020-08-28T04:05:16.766901hostname sshd[18188]: Invalid user evelyn from 142.93.216.68 port 36100 2020-08-28T04:05:19.147483hostname sshd[18188]: Failed password for invalid user evelyn from 142.93.216.68 port 36100 ssh2 2020-08-28T04:09:12.331442hostname sshd[19739]: Invalid user pieter from 142.93.216.68 port 41426 ... |
2020-08-28 05:14:22 |
| 142.93.216.68 | attack | Aug 20 08:32:38 ny01 sshd[19239]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.68 Aug 20 08:32:40 ny01 sshd[19239]: Failed password for invalid user kafka from 142.93.216.68 port 33572 ssh2 Aug 20 08:34:52 ny01 sshd[19543]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.68 |
2020-08-20 20:52:15 |
| 142.93.216.68 | attackbotsspam | Aug 20 05:58:16 vmd26974 sshd[15433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.68 Aug 20 05:58:18 vmd26974 sshd[15433]: Failed password for invalid user hdis_mng from 142.93.216.68 port 45634 ssh2 ... |
2020-08-20 13:43:49 |
| 142.93.216.97 | attackspambots | 2020-08-18T07:53:53.127152ks3355764 sshd[6863]: Failed password for invalid user wenbin from 142.93.216.97 port 45812 ssh2 2020-08-18T09:54:05.641164ks3355764 sshd[8179]: Invalid user kr from 142.93.216.97 port 51930 ... |
2020-08-18 17:14:32 |
| 142.93.216.97 | attack | Aug 17 18:03:39 dhoomketu sshd[2427134]: Failed password for invalid user benjamin from 142.93.216.97 port 60924 ssh2 Aug 17 18:08:16 dhoomketu sshd[2427270]: Invalid user ubuntu from 142.93.216.97 port 44228 Aug 17 18:08:16 dhoomketu sshd[2427270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 Aug 17 18:08:16 dhoomketu sshd[2427270]: Invalid user ubuntu from 142.93.216.97 port 44228 Aug 17 18:08:18 dhoomketu sshd[2427270]: Failed password for invalid user ubuntu from 142.93.216.97 port 44228 ssh2 ... |
2020-08-17 20:49:20 |
| 142.93.216.97 | attackbots | Bruteforce detected by fail2ban |
2020-08-13 16:50:17 |
| 142.93.216.97 | attackbots | Aug 12 15:45:54 vmd36147 sshd[12017]: Failed password for root from 142.93.216.97 port 37176 ssh2 Aug 12 15:50:37 vmd36147 sshd[22589]: Failed password for root from 142.93.216.97 port 47474 ssh2 ... |
2020-08-13 00:25:38 |
| 142.93.216.97 | attack | 2020-08-11T01:59:39.0186481495-001 sshd[65383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 user=root 2020-08-11T01:59:41.6033341495-001 sshd[65383]: Failed password for root from 142.93.216.97 port 54248 ssh2 2020-08-11T02:01:58.0350441495-001 sshd[65495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 user=root 2020-08-11T02:01:59.8371401495-001 sshd[65495]: Failed password for root from 142.93.216.97 port 59724 ssh2 2020-08-11T02:04:22.9198341495-001 sshd[408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 user=root 2020-08-11T02:04:24.4910341495-001 sshd[408]: Failed password for root from 142.93.216.97 port 37046 ssh2 ... |
2020-08-11 18:06:24 |
| 142.93.216.68 | attackbotsspam | Aug 4 20:32:04 OPSO sshd\[9456\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.68 user=root Aug 4 20:32:07 OPSO sshd\[9456\]: Failed password for root from 142.93.216.68 port 47110 ssh2 Aug 4 20:36:27 OPSO sshd\[10618\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.68 user=root Aug 4 20:36:29 OPSO sshd\[10618\]: Failed password for root from 142.93.216.68 port 58406 ssh2 Aug 4 20:40:54 OPSO sshd\[11464\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.68 user=root |
2020-08-05 05:30:58 |
| 142.93.216.157 | attack | Lines containing failures of 142.93.216.157 Aug 2 07:14:21 linuxrulz sshd[12011]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.157 user=r.r Aug 2 07:14:23 linuxrulz sshd[12011]: Failed password for r.r from 142.93.216.157 port 54234 ssh2 Aug 2 07:14:24 linuxrulz sshd[12011]: Received disconnect from 142.93.216.157 port 54234:11: Bye Bye [preauth] Aug 2 07:14:24 linuxrulz sshd[12011]: Disconnected from authenticating user r.r 142.93.216.157 port 54234 [preauth] Aug 2 07:26:49 linuxrulz sshd[13828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.157 user=r.r Aug 2 07:26:51 linuxrulz sshd[13828]: Failed password for r.r from 142.93.216.157 port 42002 ssh2 Aug 2 07:26:52 linuxrulz sshd[13828]: Received disconnect from 142.93.216.157 port 42002:11: Bye Bye [preauth] Aug 2 07:26:52 linuxrulz sshd[13828]: Disconnected from authenticating user r.r 142.93.216.157 po........ ------------------------------ |
2020-08-03 03:11:46 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.216.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18151
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.216.134. IN A
;; AUTHORITY SECTION:
. 548 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020060200 1800 900 604800 86400
;; Query time: 95 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 02 18:18:25 CST 2020
;; MSG SIZE rcvd: 118
Host 134.216.93.142.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 134.216.93.142.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 106.13.33.27 | attackspambots | Nov 13 07:29:15 nextcloud sshd\[14205\]: Invalid user test from 106.13.33.27 Nov 13 07:29:15 nextcloud sshd\[14205\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.33.27 Nov 13 07:29:16 nextcloud sshd\[14205\]: Failed password for invalid user test from 106.13.33.27 port 48036 ssh2 ... |
2019-11-13 15:19:00 |
| 124.47.14.14 | attackbots | 2019-11-13T06:59:22.233103abusebot-5.cloudsearch.cf sshd\[22813\]: Invalid user solr from 124.47.14.14 port 58098 |
2019-11-13 15:24:34 |
| 27.71.224.2 | attackspambots | Nov 13 07:24:17 SilenceServices sshd[27126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.71.224.2 Nov 13 07:24:19 SilenceServices sshd[27126]: Failed password for invalid user adelaida from 27.71.224.2 port 56800 ssh2 Nov 13 07:29:00 SilenceServices sshd[28411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.71.224.2 |
2019-11-13 15:32:43 |
| 46.45.178.5 | attack | xmlrpc attack |
2019-11-13 15:52:42 |
| 145.239.76.165 | attackbotsspam | 145.239.76.165 - - \[13/Nov/2019:07:28:23 +0100\] "POST /wp-login.php HTTP/1.0" 200 4802 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 145.239.76.165 - - \[13/Nov/2019:07:28:25 +0100\] "POST /wp-login.php HTTP/1.0" 200 4640 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 145.239.76.165 - - \[13/Nov/2019:07:28:28 +0100\] "POST /wp-login.php HTTP/1.0" 200 4639 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2019-11-13 15:57:53 |
| 114.202.139.173 | attackbotsspam | Tried sshing with brute force. |
2019-11-13 15:58:49 |
| 45.82.153.76 | attackbots | 2019-11-13 08:40:07 dovecot_login authenticator failed for \(\[45.82.153.76\]\) \[45.82.153.76\]: 535 Incorrect authentication data \(set_id=bt@opso.it\) 2019-11-13 08:40:16 dovecot_login authenticator failed for \(\[45.82.153.76\]\) \[45.82.153.76\]: 535 Incorrect authentication data 2019-11-13 08:40:27 dovecot_login authenticator failed for \(\[45.82.153.76\]\) \[45.82.153.76\]: 535 Incorrect authentication data 2019-11-13 08:40:33 dovecot_login authenticator failed for \(\[45.82.153.76\]\) \[45.82.153.76\]: 535 Incorrect authentication data 2019-11-13 08:40:47 dovecot_login authenticator failed for \(\[45.82.153.76\]\) \[45.82.153.76\]: 535 Incorrect authentication data |
2019-11-13 15:47:01 |
| 151.74.4.73 | attackbotsspam | Automatic report - Port Scan Attack |
2019-11-13 15:21:21 |
| 128.199.73.25 | attackbotsspam | Nov 13 08:06:07 SilenceServices sshd[6832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.73.25 Nov 13 08:06:09 SilenceServices sshd[6832]: Failed password for invalid user ftp from 128.199.73.25 port 36732 ssh2 Nov 13 08:09:51 SilenceServices sshd[7898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.73.25 |
2019-11-13 15:23:46 |
| 222.186.175.183 | attackbotsspam | Nov 13 08:18:27 h2177944 sshd\[3944\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.183 user=root Nov 13 08:18:29 h2177944 sshd\[3944\]: Failed password for root from 222.186.175.183 port 62826 ssh2 Nov 13 08:18:33 h2177944 sshd\[3944\]: Failed password for root from 222.186.175.183 port 62826 ssh2 Nov 13 08:18:36 h2177944 sshd\[3944\]: Failed password for root from 222.186.175.183 port 62826 ssh2 ... |
2019-11-13 15:19:31 |
| 145.239.136.186 | attack | leo_www |
2019-11-13 15:39:39 |
| 91.106.193.72 | attackbots | Nov 13 08:19:34 icinga sshd[12128]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.193.72 Nov 13 08:19:36 icinga sshd[12128]: Failed password for invalid user aggie from 91.106.193.72 port 42482 ssh2 ... |
2019-11-13 15:41:19 |
| 85.154.47.69 | attackspam | Lines containing failures of 85.154.47.69 Oct 17 17:35:00 server-name sshd[5687]: Invalid user admin from 85.154.47.69 port 47806 Oct 17 17:35:00 server-name sshd[5687]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.154.47.69 Oct 17 17:35:02 server-name sshd[5687]: Failed password for invalid user admin from 85.154.47.69 port 47806 ssh2 Oct 17 17:35:04 server-name sshd[5687]: Connection closed by invalid user admin 85.154.47.69 port 47806 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=85.154.47.69 |
2019-11-13 15:48:07 |
| 14.231.228.41 | attackspambots | Unauthorized IMAP connection attempt |
2019-11-13 15:59:33 |
| 116.196.85.71 | attackspambots | 2019-11-13T07:33:39.169978abusebot-2.cloudsearch.cf sshd\[31740\]: Invalid user toshimi from 116.196.85.71 port 49226 |
2019-11-13 15:39:54 |