142.93.237.140

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Oct 10 21:19:20 friendsofhawaii sshd\[8439\]: Invalid user Visitateur-123 from 142.93.237.140 Oct 10 21:19:20 friendsofhawaii sshd\[8439\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.237.140 Oct 10 21:19:23 friendsofhawaii sshd\[8439\]: Failed password for invalid user Visitateur-123 from 142.93.237.140 port 56042 ssh2 Oct 10 21:23:20 friendsofhawaii sshd\[8755\]: Invalid user 123@P@ssword from 142.93.237.140 Oct 10 21:23:20 friendsofhawaii sshd\[8755\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.237.140	2019-10-11 19:39:43
attackbots	Oct 8 22:02:32 vtv3 sshd\[19313\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.237.140 user=root Oct 8 22:02:35 vtv3 sshd\[19313\]: Failed password for root from 142.93.237.140 port 42976 ssh2 Oct 8 22:05:59 vtv3 sshd\[21496\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.237.140 user=root Oct 8 22:06:00 vtv3 sshd\[21496\]: Failed password for root from 142.93.237.140 port 55286 ssh2 Oct 8 22:09:27 vtv3 sshd\[23444\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.237.140 user=root Oct 8 22:20:30 vtv3 sshd\[30627\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.237.140 user=root Oct 8 22:20:31 vtv3 sshd\[30627\]: Failed password for root from 142.93.237.140 port 48066 ssh2 Oct 8 22:24:08 vtv3 sshd\[378\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rh	2019-10-09 05:24:53
attackbotsspam	$f2bV_matches	2019-09-26 23:12:39
attackbots	Sep 23 07:53:49 mail sshd\[27062\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.237.140 Sep 23 07:53:50 mail sshd\[27062\]: Failed password for invalid user kbecker from 142.93.237.140 port 44586 ssh2 Sep 23 07:57:59 mail sshd\[27516\]: Invalid user dk from 142.93.237.140 port 57674 Sep 23 07:57:59 mail sshd\[27516\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.237.140 Sep 23 07:58:02 mail sshd\[27516\]: Failed password for invalid user dk from 142.93.237.140 port 57674 ssh2	2019-09-23 14:11:40
attackspam	Sep 17 00:58:26 SilenceServices sshd[20905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.237.140 Sep 17 00:58:28 SilenceServices sshd[20905]: Failed password for invalid user columbia from 142.93.237.140 port 50202 ssh2 Sep 17 01:02:30 SilenceServices sshd[22458]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.237.140	2019-09-17 08:59:33
attackspambots	2019-09-11T10:50:51.194137abusebot-6.cloudsearch.cf sshd\[14439\]: Invalid user user1 from 142.93.237.140 port 42648	2019-09-11 19:06:06
attackspambots	Aug 16 14:52:02 php2 sshd\[16284\]: Invalid user byu123 from 142.93.237.140 Aug 16 14:52:02 php2 sshd\[16284\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.237.140 Aug 16 14:52:04 php2 sshd\[16284\]: Failed password for invalid user byu123 from 142.93.237.140 port 56344 ssh2 Aug 16 14:56:17 php2 sshd\[17003\]: Invalid user torr1ent from 142.93.237.140 Aug 16 14:56:17 php2 sshd\[17003\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.237.140	2019-08-17 11:11:23
attackspambots	Aug 3 20:15:14 www sshd\[53793\]: Invalid user maurta from 142.93.237.140Aug 3 20:15:16 www sshd\[53793\]: Failed password for invalid user maurta from 142.93.237.140 port 59140 ssh2Aug 3 20:19:16 www sshd\[53946\]: Invalid user yang from 142.93.237.140 ...	2019-08-04 08:31:54

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.237.57	attack	Multiport scan 2 ports : 1583 27080	2020-10-12 21:16:28
142.93.237.57	attack	1089/tcp 5984/tcp [2020-10-11]2pkt	2020-10-12 12:46:46
142.93.237.233	attackbotsspam	Jul 3 06:10:52 server sshd\[22469\]: Invalid user globe from 142.93.237.233 Jul 3 06:10:52 server sshd\[22469\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.237.233 Jul 3 06:10:54 server sshd\[22469\]: Failed password for invalid user globe from 142.93.237.233 port 51934 ssh2 ...	2019-07-12 04:51:33
142.93.237.233	attackspam	$f2bV_matches	2019-07-11 19:30:17
142.93.237.233	attackbots	Jul 9 16:23:30 srv-4 sshd\[20460\]: Invalid user ls from 142.93.237.233 Jul 9 16:23:30 srv-4 sshd\[20460\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.237.233 Jul 9 16:23:32 srv-4 sshd\[20460\]: Failed password for invalid user ls from 142.93.237.233 port 47210 ssh2 ...	2019-07-10 06:26:14
142.93.237.233	attackspambots	Invalid user silas from 142.93.237.233 port 44572 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.237.233 Failed password for invalid user silas from 142.93.237.233 port 44572 ssh2 Invalid user crv from 142.93.237.233 port 43922 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.237.233	2019-07-07 10:03:21

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.237.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63600
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.237.140.			IN	A

;; AUTHORITY SECTION:
.			1848	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072900 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 29 17:48:57 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 140.237.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 140.237.93.142.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
125.27.54.37	attackbotsspam	445/tcp [2019-06-21]1pkt	2019-06-22 06:11:07
89.252.172.164	attackspambots	SASL Brute Force	2019-06-22 05:56:40
201.95.136.61	attack	Request: "GET / HTTP/1.1"	2019-06-22 05:54:53
191.255.192.212	attackbots	Request: "GET / HTTP/1.1"	2019-06-22 05:39:31
47.205.52.254	attackspam	Proxy Request: "GET http://httpheader.net/ HTTP/1.1" Bad Request: "\x04\x01\x00P\xC0c\xF660\x00" Bad Request: "\x04\x01\x00P\xC0c\xF660\x00" Bad Request: "\x05\x01\x00"	2019-06-22 05:37:52
115.217.103.185	attackspam	Request: "POST /wp-login.php HTTP/1.1" Request: "POST /wp-login.php HTTP/1.1" Request: "POST /wp-login.php HTTP/1.1" Request: "POST /wp-login.php HTTP/1.1"	2019-06-22 05:30:22
78.131.58.176	attackbotsspam	78.131.0.0/17 blocked putin lovers not allowed	2019-06-22 05:50:59
217.146.81.46	attackspambots	NAME : UK-HYDRACOM-20040421 CIDR : 217.146.80.0/20 \| STATUS : 200 ROBOT {Looking for resource vulnerabilities} DDoS Attack United Kingdom - block certain countries :) IP: 217.146.81.46 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-06-22 05:42:52
88.126.255.148	attackbots	Jun 21 22:39:10 mout sshd[15606]: Invalid user admin from 88.126.255.148 port 36748 Jun 21 22:39:12 mout sshd[15606]: Failed password for invalid user admin from 88.126.255.148 port 36748 ssh2 Jun 21 22:39:12 mout sshd[15606]: Connection closed by 88.126.255.148 port 36748 [preauth]	2019-06-22 05:47:25
86.57.138.40	attackbots	Request: "GET / HTTP/1.1" Request: "GET /HNAP1/ HTTP/1.1"	2019-06-22 05:50:33
54.193.66.148	attackbots	Bad Bot Bad Request: "GET /app HTTP/1.1" Agent: "python-requests/2.6.0 CPython/2.7.6 Linux/3.13.0-74-generic" Bad Bot Bad Request: "GET / HTTP/1.1" Agent: "python-requests/2.6.0 CPython/2.7.6 Linux/3.13.0-74-generic" Bad Bot Bad Request: "GET / HTTP/1.1" Agent: "python-requests/2.6.0 CPython/2.7.6 Linux/3.13.0-74-generic"	2019-06-22 05:33:08
179.99.171.84	attack	Request: "GET / HTTP/1.1"	2019-06-22 06:02:33
216.119.46.179	attackbots	23/tcp [2019-06-21]1pkt	2019-06-22 05:56:12
179.98.8.190	attackspambots	Request: "GET / HTTP/1.1" Request: "GET / HTTP/1.1"	2019-06-22 05:57:33
41.41.31.243	attack	445/tcp [2019-06-21]1pkt	2019-06-22 05:53:01

最近上报的IP列表

103.38.215.150	29.109.112.21	48.161.95.81	223.158.15.48
76.222.114.36	180.49.29.236	138.174.224.94	223.244.250.99
163.172.36.149	119.92.140.39	109.242.193.148	160.16.95.154
93.177.66.166	42.118.70.6	188.128.242.115	61.154.196.178
165.227.172.10	97.113.253.245	159.65.12.183	98.140.155.90