142.93.216.134

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Jun 2 06:58:04 localhost sshd\[2870\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.134 user=root Jun 2 06:58:06 localhost sshd\[2870\]: Failed password for root from 142.93.216.134 port 42150 ssh2 Jun 2 07:02:13 localhost sshd\[2940\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.134 user=root ...	2020-06-02 18:18:31

类型

评论内容

时间

attack

Jun  2 06:58:04 localhost sshd\[2870\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.134  user=root
Jun  2 06:58:06 localhost sshd\[2870\]: Failed password for root from 142.93.216.134 port 42150 ssh2
Jun  2 07:02:13 localhost sshd\[2940\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.134  user=root
...

2020-06-02 18:18:31

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.216.97	attackspam	SSH Brute Force	2020-09-23 23:16:31
142.93.216.97	attackbotsspam	Sep 22 20:18:56 hanapaa sshd\[16387\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 user=root Sep 22 20:18:58 hanapaa sshd\[16387\]: Failed password for root from 142.93.216.97 port 50322 ssh2 Sep 22 20:23:20 hanapaa sshd\[16719\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 user=root Sep 22 20:23:22 hanapaa sshd\[16719\]: Failed password for root from 142.93.216.97 port 59966 ssh2 Sep 22 20:27:54 hanapaa sshd\[17100\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 user=root	2020-09-23 15:30:35
142.93.216.97	attack	Sep 23 01:15:21 piServer sshd[2469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 Sep 23 01:15:23 piServer sshd[2469]: Failed password for invalid user ahmed from 142.93.216.97 port 55418 ssh2 Sep 23 01:19:37 piServer sshd[3087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 ...	2020-09-23 07:23:48
142.93.216.97	attack	Sep 16 14:22:44 pornomens sshd\[5538\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 user=root Sep 16 14:22:46 pornomens sshd\[5538\]: Failed password for root from 142.93.216.97 port 47298 ssh2 Sep 16 14:28:13 pornomens sshd\[5606\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 user=root ...	2020-09-17 01:59:29
142.93.216.97	attack	SSH Brute Force	2020-09-16 18:16:28
142.93.216.68	attackspam	2020-08-28T04:05:16.766901hostname sshd[18188]: Invalid user evelyn from 142.93.216.68 port 36100 2020-08-28T04:05:19.147483hostname sshd[18188]: Failed password for invalid user evelyn from 142.93.216.68 port 36100 ssh2 2020-08-28T04:09:12.331442hostname sshd[19739]: Invalid user pieter from 142.93.216.68 port 41426 ...	2020-08-28 05:14:22
142.93.216.68	attack	Aug 20 08:32:38 ny01 sshd[19239]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.68 Aug 20 08:32:40 ny01 sshd[19239]: Failed password for invalid user kafka from 142.93.216.68 port 33572 ssh2 Aug 20 08:34:52 ny01 sshd[19543]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.68	2020-08-20 20:52:15
142.93.216.68	attackbotsspam	Aug 20 05:58:16 vmd26974 sshd[15433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.68 Aug 20 05:58:18 vmd26974 sshd[15433]: Failed password for invalid user hdis_mng from 142.93.216.68 port 45634 ssh2 ...	2020-08-20 13:43:49
142.93.216.97	attackspambots	2020-08-18T07:53:53.127152ks3355764 sshd[6863]: Failed password for invalid user wenbin from 142.93.216.97 port 45812 ssh2 2020-08-18T09:54:05.641164ks3355764 sshd[8179]: Invalid user kr from 142.93.216.97 port 51930 ...	2020-08-18 17:14:32
142.93.216.97	attack	Aug 17 18:03:39 dhoomketu sshd[2427134]: Failed password for invalid user benjamin from 142.93.216.97 port 60924 ssh2 Aug 17 18:08:16 dhoomketu sshd[2427270]: Invalid user ubuntu from 142.93.216.97 port 44228 Aug 17 18:08:16 dhoomketu sshd[2427270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 Aug 17 18:08:16 dhoomketu sshd[2427270]: Invalid user ubuntu from 142.93.216.97 port 44228 Aug 17 18:08:18 dhoomketu sshd[2427270]: Failed password for invalid user ubuntu from 142.93.216.97 port 44228 ssh2 ...	2020-08-17 20:49:20
142.93.216.97	attackbots	Bruteforce detected by fail2ban	2020-08-13 16:50:17
142.93.216.97	attackbots	Aug 12 15:45:54 vmd36147 sshd[12017]: Failed password for root from 142.93.216.97 port 37176 ssh2 Aug 12 15:50:37 vmd36147 sshd[22589]: Failed password for root from 142.93.216.97 port 47474 ssh2 ...	2020-08-13 00:25:38
142.93.216.97	attack	2020-08-11T01:59:39.0186481495-001 sshd[65383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 user=root 2020-08-11T01:59:41.6033341495-001 sshd[65383]: Failed password for root from 142.93.216.97 port 54248 ssh2 2020-08-11T02:01:58.0350441495-001 sshd[65495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 user=root 2020-08-11T02:01:59.8371401495-001 sshd[65495]: Failed password for root from 142.93.216.97 port 59724 ssh2 2020-08-11T02:04:22.9198341495-001 sshd[408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 user=root 2020-08-11T02:04:24.4910341495-001 sshd[408]: Failed password for root from 142.93.216.97 port 37046 ssh2 ...	2020-08-11 18:06:24
142.93.216.68	attackbotsspam	Aug 4 20:32:04 OPSO sshd\[9456\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.68 user=root Aug 4 20:32:07 OPSO sshd\[9456\]: Failed password for root from 142.93.216.68 port 47110 ssh2 Aug 4 20:36:27 OPSO sshd\[10618\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.68 user=root Aug 4 20:36:29 OPSO sshd\[10618\]: Failed password for root from 142.93.216.68 port 58406 ssh2 Aug 4 20:40:54 OPSO sshd\[11464\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.68 user=root	2020-08-05 05:30:58
142.93.216.157	attack	Lines containing failures of 142.93.216.157 Aug 2 07:14:21 linuxrulz sshd[12011]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.157 user=r.r Aug 2 07:14:23 linuxrulz sshd[12011]: Failed password for r.r from 142.93.216.157 port 54234 ssh2 Aug 2 07:14:24 linuxrulz sshd[12011]: Received disconnect from 142.93.216.157 port 54234:11: Bye Bye [preauth] Aug 2 07:14:24 linuxrulz sshd[12011]: Disconnected from authenticating user r.r 142.93.216.157 port 54234 [preauth] Aug 2 07:26:49 linuxrulz sshd[13828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.157 user=r.r Aug 2 07:26:51 linuxrulz sshd[13828]: Failed password for r.r from 142.93.216.157 port 42002 ssh2 Aug 2 07:26:52 linuxrulz sshd[13828]: Received disconnect from 142.93.216.157 port 42002:11: Bye Bye [preauth] Aug 2 07:26:52 linuxrulz sshd[13828]: Disconnected from authenticating user r.r 142.93.216.157 po........ ------------------------------	2020-08-03 03:11:46

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.216.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18151
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.216.134.			IN	A

;; AUTHORITY SECTION:
.			548	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060200 1800 900 604800 86400

;; Query time: 95 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 02 18:18:25 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 134.216.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 134.216.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
181.120.204.164	attack	Sep 16 19:00:44 sip sshd[28867]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.120.204.164 Sep 16 19:00:45 sip sshd[28869]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.120.204.164 Sep 16 19:00:46 sip sshd[28867]: Failed password for invalid user osmc from 181.120.204.164 port 42390 ssh2	2020-09-17 22:13:36
177.185.159.51	attackspam	Automatic report - Port Scan Attack	2020-09-17 22:18:00
222.186.173.226	attack	Sep 17 16:38:50 server sshd[31186]: Failed none for root from 222.186.173.226 port 40127 ssh2 Sep 17 16:38:52 server sshd[31186]: Failed password for root from 222.186.173.226 port 40127 ssh2 Sep 17 16:38:58 server sshd[31186]: Failed password for root from 222.186.173.226 port 40127 ssh2	2020-09-17 22:39:34
103.20.188.18	attack	Sep 17 12:22:53 web8 sshd\[24930\]: Invalid user lfy from 103.20.188.18 Sep 17 12:22:53 web8 sshd\[24930\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.20.188.18 Sep 17 12:22:55 web8 sshd\[24930\]: Failed password for invalid user lfy from 103.20.188.18 port 52050 ssh2 Sep 17 12:27:16 web8 sshd\[26980\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.20.188.18 user=root Sep 17 12:27:17 web8 sshd\[26980\]: Failed password for root from 103.20.188.18 port 33786 ssh2	2020-09-17 22:19:20
64.44.140.132	attackspambots	udp 59419	2020-09-17 22:15:27
60.243.132.190	attackbots	Auto Detect Rule! proto TCP (SYN), 60.243.132.190:34872->gjan.info:23, len 40	2020-09-17 22:31:33
192.241.228.251	attackspam	2020-09-17T09:23:40.180030vps773228.ovh.net sshd[28620]: Failed password for root from 192.241.228.251 port 41466 ssh2 2020-09-17T09:27:38.070731vps773228.ovh.net sshd[28665]: Invalid user ZXDSL from 192.241.228.251 port 52302 2020-09-17T09:27:38.090396vps773228.ovh.net sshd[28665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.228.251 2020-09-17T09:27:38.070731vps773228.ovh.net sshd[28665]: Invalid user ZXDSL from 192.241.228.251 port 52302 2020-09-17T09:27:39.821073vps773228.ovh.net sshd[28665]: Failed password for invalid user ZXDSL from 192.241.228.251 port 52302 ssh2 ...	2020-09-17 22:22:45
27.6.149.231	attackbotsspam	Auto Detect Rule! proto TCP (SYN), 27.6.149.231:11525->gjan.info:23, len 40	2020-09-17 22:26:29
120.224.55.8	attackbots	SP-Scan 50546:1433 detected 2020.09.16 03:15:39 blocked until 2020.11.04 19:18:26	2020-09-17 22:21:30
181.112.81.175	attackspambots	Honeypot attack, port: 445, PTR: 175.81.112.181.static.anycast.cnt-grms.ec.	2020-09-17 22:17:42
202.137.10.182	attackbots	$f2bV_matches	2020-09-17 22:40:23
188.168.40.25	attackspam	Unauthorized connection attempt from IP address 188.168.40.25 on Port 445(SMB)	2020-09-17 22:42:37
116.72.35.44	attack	Listed on zen-spamhaus also barracudaCentral and abuseat.org / proto=6 . srcport=49295 . dstport=8080 . (1120)	2020-09-17 22:35:32
82.112.62.181	attackbotsspam	Auto Detect Rule! proto TCP (SYN), 82.112.62.181:22767->gjan.info:23, len 40	2020-09-17 22:19:38
88.136.99.40	attackspam	sshd: Failed password for invalid user .... from 88.136.99.40 port 35836 ssh2 (9 attempts)	2020-09-17 22:26:02

最近上报的IP列表

183.107.122.89	157.159.187.59	58.38.100.114	78.58.225.5
136.202.91.23	101.184.75.66	66.105.46.117	163.249.50.49
183.4.220.197	175.219.10.142	31.171.54.71	114.161.169.156
58.195.69.155	65.182.76.47	162.83.251.34	64.135.136.136
152.127.122.143	169.184.162.36	98.143.124.25	8.251.65.242