142.93.216.193

基本信息:

城市(city): Bengaluru

省份(region): Karnataka

国家(country): India

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SSH bruteforce (Triggered fail2ban)	2020-03-17 06:42:03

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.216.97	attackspam	SSH Brute Force	2020-09-23 23:16:31
142.93.216.97	attackbotsspam	Sep 22 20:18:56 hanapaa sshd\[16387\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 user=root Sep 22 20:18:58 hanapaa sshd\[16387\]: Failed password for root from 142.93.216.97 port 50322 ssh2 Sep 22 20:23:20 hanapaa sshd\[16719\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 user=root Sep 22 20:23:22 hanapaa sshd\[16719\]: Failed password for root from 142.93.216.97 port 59966 ssh2 Sep 22 20:27:54 hanapaa sshd\[17100\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 user=root	2020-09-23 15:30:35
142.93.216.97	attack	Sep 23 01:15:21 piServer sshd[2469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 Sep 23 01:15:23 piServer sshd[2469]: Failed password for invalid user ahmed from 142.93.216.97 port 55418 ssh2 Sep 23 01:19:37 piServer sshd[3087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 ...	2020-09-23 07:23:48
142.93.216.97	attack	Sep 16 14:22:44 pornomens sshd\[5538\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 user=root Sep 16 14:22:46 pornomens sshd\[5538\]: Failed password for root from 142.93.216.97 port 47298 ssh2 Sep 16 14:28:13 pornomens sshd\[5606\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 user=root ...	2020-09-17 01:59:29
142.93.216.97	attack	SSH Brute Force	2020-09-16 18:16:28
142.93.216.68	attackspam	2020-08-28T04:05:16.766901hostname sshd[18188]: Invalid user evelyn from 142.93.216.68 port 36100 2020-08-28T04:05:19.147483hostname sshd[18188]: Failed password for invalid user evelyn from 142.93.216.68 port 36100 ssh2 2020-08-28T04:09:12.331442hostname sshd[19739]: Invalid user pieter from 142.93.216.68 port 41426 ...	2020-08-28 05:14:22
142.93.216.68	attack	Aug 20 08:32:38 ny01 sshd[19239]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.68 Aug 20 08:32:40 ny01 sshd[19239]: Failed password for invalid user kafka from 142.93.216.68 port 33572 ssh2 Aug 20 08:34:52 ny01 sshd[19543]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.68	2020-08-20 20:52:15
142.93.216.68	attackbotsspam	Aug 20 05:58:16 vmd26974 sshd[15433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.68 Aug 20 05:58:18 vmd26974 sshd[15433]: Failed password for invalid user hdis_mng from 142.93.216.68 port 45634 ssh2 ...	2020-08-20 13:43:49
142.93.216.97	attackspambots	2020-08-18T07:53:53.127152ks3355764 sshd[6863]: Failed password for invalid user wenbin from 142.93.216.97 port 45812 ssh2 2020-08-18T09:54:05.641164ks3355764 sshd[8179]: Invalid user kr from 142.93.216.97 port 51930 ...	2020-08-18 17:14:32
142.93.216.97	attack	Aug 17 18:03:39 dhoomketu sshd[2427134]: Failed password for invalid user benjamin from 142.93.216.97 port 60924 ssh2 Aug 17 18:08:16 dhoomketu sshd[2427270]: Invalid user ubuntu from 142.93.216.97 port 44228 Aug 17 18:08:16 dhoomketu sshd[2427270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 Aug 17 18:08:16 dhoomketu sshd[2427270]: Invalid user ubuntu from 142.93.216.97 port 44228 Aug 17 18:08:18 dhoomketu sshd[2427270]: Failed password for invalid user ubuntu from 142.93.216.97 port 44228 ssh2 ...	2020-08-17 20:49:20
142.93.216.97	attackbots	Bruteforce detected by fail2ban	2020-08-13 16:50:17
142.93.216.97	attackbots	Aug 12 15:45:54 vmd36147 sshd[12017]: Failed password for root from 142.93.216.97 port 37176 ssh2 Aug 12 15:50:37 vmd36147 sshd[22589]: Failed password for root from 142.93.216.97 port 47474 ssh2 ...	2020-08-13 00:25:38
142.93.216.97	attack	2020-08-11T01:59:39.0186481495-001 sshd[65383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 user=root 2020-08-11T01:59:41.6033341495-001 sshd[65383]: Failed password for root from 142.93.216.97 port 54248 ssh2 2020-08-11T02:01:58.0350441495-001 sshd[65495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 user=root 2020-08-11T02:01:59.8371401495-001 sshd[65495]: Failed password for root from 142.93.216.97 port 59724 ssh2 2020-08-11T02:04:22.9198341495-001 sshd[408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.97 user=root 2020-08-11T02:04:24.4910341495-001 sshd[408]: Failed password for root from 142.93.216.97 port 37046 ssh2 ...	2020-08-11 18:06:24
142.93.216.68	attackbotsspam	Aug 4 20:32:04 OPSO sshd\[9456\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.68 user=root Aug 4 20:32:07 OPSO sshd\[9456\]: Failed password for root from 142.93.216.68 port 47110 ssh2 Aug 4 20:36:27 OPSO sshd\[10618\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.68 user=root Aug 4 20:36:29 OPSO sshd\[10618\]: Failed password for root from 142.93.216.68 port 58406 ssh2 Aug 4 20:40:54 OPSO sshd\[11464\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.68 user=root	2020-08-05 05:30:58
142.93.216.157	attack	Lines containing failures of 142.93.216.157 Aug 2 07:14:21 linuxrulz sshd[12011]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.157 user=r.r Aug 2 07:14:23 linuxrulz sshd[12011]: Failed password for r.r from 142.93.216.157 port 54234 ssh2 Aug 2 07:14:24 linuxrulz sshd[12011]: Received disconnect from 142.93.216.157 port 54234:11: Bye Bye [preauth] Aug 2 07:14:24 linuxrulz sshd[12011]: Disconnected from authenticating user r.r 142.93.216.157 port 54234 [preauth] Aug 2 07:26:49 linuxrulz sshd[13828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.157 user=r.r Aug 2 07:26:51 linuxrulz sshd[13828]: Failed password for r.r from 142.93.216.157 port 42002 ssh2 Aug 2 07:26:52 linuxrulz sshd[13828]: Received disconnect from 142.93.216.157 port 42002:11: Bye Bye [preauth] Aug 2 07:26:52 linuxrulz sshd[13828]: Disconnected from authenticating user r.r 142.93.216.157 po........ ------------------------------	2020-08-03 03:11:46

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.216.193
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32966
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.216.193.			IN	A

;; AUTHORITY SECTION:
.			447	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031601 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 17 06:42:00 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 193.216.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 193.216.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
45.82.33.35	attackbotsspam	Autoban 45.82.33.35 AUTH/CONNECT	2019-10-07 20:22:40
222.186.42.241	attackspambots	Oct 7 02:09:37 hpm sshd\[6948\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.241 user=root Oct 7 02:09:39 hpm sshd\[6948\]: Failed password for root from 222.186.42.241 port 26400 ssh2 Oct 7 02:09:42 hpm sshd\[6948\]: Failed password for root from 222.186.42.241 port 26400 ssh2 Oct 7 02:09:44 hpm sshd\[6948\]: Failed password for root from 222.186.42.241 port 26400 ssh2 Oct 7 02:14:13 hpm sshd\[7328\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.241 user=root	2019-10-07 20:19:12
203.110.166.51	attackbotsspam	Unauthorized SSH login attempts	2019-10-07 20:33:35
177.124.88.65	attackspambots	Oct 7 07:53:30 our-server-hostname postfix/smtpd[2931]: connect from unknown[177.124.88.65] Oct 7 07:53:33 our-server-hostname sqlgrey: grey: new: 177.124.88.65(177.124.88.65), x@x -> x@x Oct 7 07:53:34 our-server-hostname postfix/policy-spf[12614]: : Policy action=550 Please see hxxp://www.openspf.org/Why?s=mfrom;id=burda%40apex.net.au;ip=177.124.88.65;r=mx1.cbr.spam-filtering-appliance Oct x@x Oct 7 07:53:34 our-server-hostname postfix/smtpd[2931]: lost connection after DATA from unknown[177.124.88.65] Oct 7 07 .... truncated .... Oct 7 07:53:30 our-server-hostname postfix/smtpd[2931]: connect from unknown[177.124.88.65] Oct 7 07:53:33 our-server-hostname sqlgrey: grey: new: 177.124.88.65(177.124.88.65), x@x -> x@x Oct 7 07:53:34 our-server-hostname postfix/policy-spf[12614]: : Policy action=550 Please see hxxp://www.openspf.org/Why?s=mfrom;id=burda%40apex.net.au;ip=177.124.88.65;r=mx1.cbr.spam-filtering-appliance Oct x@x Oct 7 07:53:34 our-server-hostnam........ -------------------------------	2019-10-07 20:31:24
111.205.6.222	attack	Oct 7 02:41:26 kapalua sshd\[24553\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.205.6.222 user=root Oct 7 02:41:28 kapalua sshd\[24553\]: Failed password for root from 111.205.6.222 port 34033 ssh2 Oct 7 02:45:38 kapalua sshd\[24913\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.205.6.222 user=root Oct 7 02:45:40 kapalua sshd\[24913\]: Failed password for root from 111.205.6.222 port 48772 ssh2 Oct 7 02:50:01 kapalua sshd\[25375\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.205.6.222 user=root	2019-10-07 20:50:38
190.123.159.76	attackbots	Automatic report - Port Scan Attack	2019-10-07 20:18:20
97.74.229.121	attackspambots	Oct 7 13:43:58 bouncer sshd\[22419\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=97.74.229.121 user=root Oct 7 13:43:59 bouncer sshd\[22419\]: Failed password for root from 97.74.229.121 port 53440 ssh2 Oct 7 13:47:48 bouncer sshd\[22440\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=97.74.229.121 user=root ...	2019-10-07 20:42:38
103.74.121.142	attackbotsspam	Automatic report - Banned IP Access	2019-10-07 20:16:09
106.251.118.123	attackbots	2019-10-07T11:48:29.044310abusebot-5.cloudsearch.cf sshd\[21404\]: Invalid user elena from 106.251.118.123 port 46122	2019-10-07 20:14:30
51.15.211.148	attackbots	Oct 7 11:43:44 localhost sshd\[107740\]: Invalid user 123Serial from 51.15.211.148 port 39996 Oct 7 11:43:44 localhost sshd\[107740\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.211.148 Oct 7 11:43:45 localhost sshd\[107740\]: Failed password for invalid user 123Serial from 51.15.211.148 port 39996 ssh2 Oct 7 11:47:38 localhost sshd\[107859\]: Invalid user Passwort@12 from 51.15.211.148 port 52306 Oct 7 11:47:38 localhost sshd\[107859\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.211.148 ...	2019-10-07 20:47:27
94.177.217.49	attackspambots	Oct 7 14:10:14 localhost sshd\[11727\]: Invalid user cent0s2016 from 94.177.217.49 port 33740 Oct 7 14:10:14 localhost sshd\[11727\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.217.49 Oct 7 14:10:15 localhost sshd\[11727\]: Failed password for invalid user cent0s2016 from 94.177.217.49 port 33740 ssh2	2019-10-07 20:15:05
182.61.161.107	attack	Oct 7 06:34:20 xb0 sshd[18408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.161.107 user=r.r Oct 7 06:34:21 xb0 sshd[18408]: Failed password for r.r from 182.61.161.107 port 57248 ssh2 Oct 7 06:34:22 xb0 sshd[18408]: Received disconnect from 182.61.161.107: 11: Bye Bye [preauth] Oct 7 06:38:40 xb0 sshd[15627]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.161.107 user=r.r Oct 7 06:38:42 xb0 sshd[15627]: Failed password for r.r from 182.61.161.107 port 41944 ssh2 Oct 7 06:38:42 xb0 sshd[15627]: Received disconnect from 182.61.161.107: 11: Bye Bye [preauth] Oct 7 06:42:59 xb0 sshd[20529]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.161.107 user=r.r Oct 7 06:43:02 xb0 sshd[20529]: Failed password for r.r from 182.61.161.107 port 54896 ssh2 Oct 7 06:43:02 xb0 sshd[20529]: Received disconnect from 182.61.161.107: 1........ -------------------------------	2019-10-07 20:42:13
114.235.209.138	attack	Unauthorised access (Oct 7) SRC=114.235.209.138 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=2116 TCP DPT=8080 WINDOW=58383 SYN Unauthorised access (Oct 6) SRC=114.235.209.138 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=61651 TCP DPT=8080 WINDOW=38853 SYN Unauthorised access (Oct 6) SRC=114.235.209.138 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=32135 TCP DPT=8080 WINDOW=47254 SYN Unauthorised access (Oct 6) SRC=114.235.209.138 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=61246 TCP DPT=8080 WINDOW=29244 SYN	2019-10-07 20:56:35
77.40.3.21	attackbotsspam	10/07/2019-14:03:10.709931 77.40.3.21 Protocol: 6 SURICATA SMTP tls rejected	2019-10-07 20:21:25
111.230.13.11	attackspam	Brute force attempt	2019-10-07 20:44:40

最近上报的IP列表

27.105.227.223	92.12.132.59	188.233.37.178	131.38.219.120
197.40.244.78	200.93.9.68	217.198.60.53	173.13.152.105
123.198.190.2	181.59.55.81	188.36.32.222	86.28.186.177
24.182.195.164	77.42.88.248	210.2.223.28	46.52.87.185
218.42.231.133	27.77.21.66	36.67.175.75	184.22.210.199