142.93.240.103

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	SSH authentication failure x 6 reported by Fail2Ban ...	2019-12-09 16:57:27

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.240.62	spamattack	PHISHING AND SPAM ATTACK FROM "Important Notification - newsletter@app.ksinergy.biz - " : SUBJECT "Congrats! Open Immediately! " : RECEIVED "from mail-02.ksinergy.biz ([142.93.240.62]:39126) " : DATE/TIMESENT "Mon, 01 Mar 2021 10:14:52 ": IP ADDRESS "inetnum: 142.93.0.0 - 142.93.255.255 OrgName: DigitalOcean, LLC	2021-03-01 08:16:37
142.93.240.62	spamattack	PHISHING AND SPAM ATTACK FROM "Casino For You - newsletter@app.ksinergy.biz -" : SUBJECT "Join today and receive an amazing welcome bonus " : RECEIVED "from mail-02.ksinergy.biz ([142.93.240.62]:57421) " : DATE/TIMESENT "Tue, 23 Feb 2021 01:27:07 "	2021-02-23 04:32:24
142.93.240.192	attackspambots	Oct 1 18:12:46 serwer sshd\[22357\]: Invalid user dal from 142.93.240.192 port 54980 Oct 1 18:12:46 serwer sshd\[22357\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.240.192 Oct 1 18:12:48 serwer sshd\[22357\]: Failed password for invalid user dal from 142.93.240.192 port 54980 ssh2 ...	2020-10-02 02:48:55
142.93.240.192	attackspambots	Oct 1 12:49:00 localhost sshd\[19580\]: Invalid user alex from 142.93.240.192 Oct 1 12:49:00 localhost sshd\[19580\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.240.192 Oct 1 12:49:02 localhost sshd\[19580\]: Failed password for invalid user alex from 142.93.240.192 port 37830 ssh2 Oct 1 12:52:58 localhost sshd\[19839\]: Invalid user jiaxing from 142.93.240.192 Oct 1 12:52:58 localhost sshd\[19839\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.240.192 ...	2020-10-01 19:00:30
142.93.240.192	attackspam	Invalid user admin from 142.93.240.192 port 39536	2020-09-24 00:38:38
142.93.240.192	attackspambots	2020-09-23T07:26:16.897242server.espacesoutien.com sshd[4118]: Invalid user bkp from 142.93.240.192 port 53984 2020-09-23T07:26:16.908492server.espacesoutien.com sshd[4118]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.240.192 2020-09-23T07:26:16.897242server.espacesoutien.com sshd[4118]: Invalid user bkp from 142.93.240.192 port 53984 2020-09-23T07:26:18.670688server.espacesoutien.com sshd[4118]: Failed password for invalid user bkp from 142.93.240.192 port 53984 ssh2 ...	2020-09-23 16:44:39
142.93.240.192	attackbots	2020-09-23T00:31:10.216791shield sshd\[15217\]: Invalid user lulu from 142.93.240.192 port 43432 2020-09-23T00:31:10.229707shield sshd\[15217\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.240.192 2020-09-23T00:31:12.166257shield sshd\[15217\]: Failed password for invalid user lulu from 142.93.240.192 port 43432 ssh2 2020-09-23T00:35:28.978654shield sshd\[15762\]: Invalid user dropbox from 142.93.240.192 port 52614 2020-09-23T00:35:28.992637shield sshd\[15762\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.240.192	2020-09-23 08:43:11
142.93.240.192	attack	(sshd) Failed SSH login from 142.93.240.192 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 22 08:39:02 server sshd[18219]: Invalid user voip from 142.93.240.192 Sep 22 08:39:02 server sshd[18219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.240.192 Sep 22 08:39:04 server sshd[18219]: Failed password for invalid user voip from 142.93.240.192 port 53544 ssh2 Sep 22 08:53:46 server sshd[20601]: Invalid user superman from 142.93.240.192 Sep 22 08:53:46 server sshd[20601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.240.192	2020-09-22 15:55:17
142.93.240.192	attackbots	Sep 21 23:59:45 abendstille sshd\[22867\]: Invalid user raj from 142.93.240.192 Sep 21 23:59:45 abendstille sshd\[22867\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.240.192 Sep 21 23:59:47 abendstille sshd\[22867\]: Failed password for invalid user raj from 142.93.240.192 port 51240 ssh2 Sep 22 00:03:55 abendstille sshd\[26670\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.240.192 user=root Sep 22 00:03:57 abendstille sshd\[26670\]: Failed password for root from 142.93.240.192 port 60802 ssh2 ...	2020-09-22 07:59:09
142.93.240.192	attackspam	Aug 25 19:09:12 XXX sshd[56521]: Invalid user visitor from 142.93.240.192 port 48842	2020-08-26 06:53:51
142.93.240.192	attackspambots	$f2bV_matches	2020-08-23 02:58:53
142.93.240.192	attackbots	Aug 18 09:08:42 plex-server sshd[3186842]: Invalid user bonny from 142.93.240.192 port 47966 Aug 18 09:08:42 plex-server sshd[3186842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.240.192 Aug 18 09:08:42 plex-server sshd[3186842]: Invalid user bonny from 142.93.240.192 port 47966 Aug 18 09:08:44 plex-server sshd[3186842]: Failed password for invalid user bonny from 142.93.240.192 port 47966 ssh2 Aug 18 09:11:15 plex-server sshd[3187859]: Invalid user release from 142.93.240.192 port 60848 ...	2020-08-18 17:21:16
142.93.240.192	attackspambots	2020-08-16T03:38:38.948866ionos.janbro.de sshd[25322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.240.192 user=root 2020-08-16T03:38:41.531750ionos.janbro.de sshd[25322]: Failed password for root from 142.93.240.192 port 48956 ssh2 2020-08-16T03:42:50.693715ionos.janbro.de sshd[25329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.240.192 user=root 2020-08-16T03:42:52.870340ionos.janbro.de sshd[25329]: Failed password for root from 142.93.240.192 port 59626 ssh2 2020-08-16T03:47:08.827147ionos.janbro.de sshd[25346]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.240.192 user=root 2020-08-16T03:47:10.421711ionos.janbro.de sshd[25346]: Failed password for root from 142.93.240.192 port 42080 ssh2 2020-08-16T03:51:33.528204ionos.janbro.de sshd[25348]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14 ...	2020-08-16 14:02:31
142.93.240.192	attackspam	Aug 14 12:11:59 ws24vmsma01 sshd[193566]: Failed password for root from 142.93.240.192 port 51096 ssh2 ...	2020-08-15 01:22:49
142.93.240.192	attackbots	SSH Brute Force	2020-08-09 02:07:56

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.240.103
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19203
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.240.103.			IN	A

;; AUTHORITY SECTION:
.			503	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120900 1800 900 604800 86400

;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 09 16:57:24 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 103.240.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 103.240.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
35.196.27.1	attackbots	Automatic report BANNED IP	2020-08-18 17:04:11
179.111.51.194	attack	php WP PHPmyadamin ABUSE blocked for 12h	2020-08-18 17:22:58
122.30.27.30	attackbots	1597722650 - 08/18/2020 05:50:50 Host: 122.30.27.30/122.30.27.30 Port: 23 TCP Blocked ...	2020-08-18 17:31:20
78.46.85.236	attackspambots	20 attempts against mh-misbehave-ban on wave	2020-08-18 17:19:31
198.12.253.83	attackbots	C1,WP GET /nelson/staging/wp-includes/wlwmanifest.xml	2020-08-18 17:16:48
115.58.203.99	attackbots	Unauthorised access (Aug 18) SRC=115.58.203.99 LEN=40 TTL=46 ID=50345 TCP DPT=8080 WINDOW=54996 SYN Unauthorised access (Aug 18) SRC=115.58.203.99 LEN=40 TTL=46 ID=30140 TCP DPT=8080 WINDOW=54996 SYN	2020-08-18 17:15:36
139.155.76.135	attackbots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-18T03:50:06Z and 2020-08-18T03:58:44Z	2020-08-18 17:38:09
124.89.2.42	attackspam	Failed password for invalid user iphone from 124.89.2.42 port 2088 ssh2	2020-08-18 17:14:48
180.76.177.237	attack	2020-08-18T05:07:00.851432vps1033 sshd[420]: Invalid user sultan from 180.76.177.237 port 60904 2020-08-18T05:07:00.855354vps1033 sshd[420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.177.237 2020-08-18T05:07:00.851432vps1033 sshd[420]: Invalid user sultan from 180.76.177.237 port 60904 2020-08-18T05:07:02.071174vps1033 sshd[420]: Failed password for invalid user sultan from 180.76.177.237 port 60904 ssh2 2020-08-18T05:10:35.632257vps1033 sshd[8092]: Invalid user admin from 180.76.177.237 port 41828 ...	2020-08-18 17:20:07
128.116.147.130	spamattack	vvvvvvv	2020-08-18 17:27:53
157.230.235.233	attackbotsspam	2020-08-18T08:45:50.097905shield sshd\[18209\]: Invalid user ubuntu from 157.230.235.233 port 44166 2020-08-18T08:45:50.106480shield sshd\[18209\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.235.233 2020-08-18T08:45:51.843536shield sshd\[18209\]: Failed password for invalid user ubuntu from 157.230.235.233 port 44166 ssh2 2020-08-18T08:49:51.742943shield sshd\[18639\]: Invalid user sysadmin from 157.230.235.233 port 54864 2020-08-18T08:49:51.752213shield sshd\[18639\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.235.233	2020-08-18 17:12:58
124.156.166.151	attackbots	Banned for a week because repeated abuses, for example SSH, but not only	2020-08-18 17:25:37
45.95.168.172	attackbots	Aug 18 10:53:22 marvibiene sshd[30813]: Failed password for root from 45.95.168.172 port 45710 ssh2 Aug 18 10:53:29 marvibiene sshd[30816]: Failed password for root from 45.95.168.172 port 56028 ssh2	2020-08-18 17:01:03
132.232.120.145	attack	Aug 18 08:59:53 ns382633 sshd\[9420\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.120.145 user=root Aug 18 08:59:54 ns382633 sshd\[9420\]: Failed password for root from 132.232.120.145 port 32774 ssh2 Aug 18 09:02:06 ns382633 sshd\[10076\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.120.145 user=root Aug 18 09:02:08 ns382633 sshd\[10076\]: Failed password for root from 132.232.120.145 port 52364 ssh2 Aug 18 09:03:25 ns382633 sshd\[10170\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.120.145 user=root	2020-08-18 17:13:20
218.111.88.185	attack	Aug 18 07:42:44 eventyay sshd[26086]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.111.88.185 Aug 18 07:42:46 eventyay sshd[26086]: Failed password for invalid user s1 from 218.111.88.185 port 46096 ssh2 Aug 18 07:48:00 eventyay sshd[26232]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.111.88.185 ...	2020-08-18 17:17:27

最近上报的IP列表

214.161.81.173	6.42.128.221	95.29.97.3	121.10.160.138
41.41.67.69	189.28.144.8	196.221.244.56	247.101.147.136
117.4.49.76	87.66.156.53	194.228.227.157	162.253.42.208
83.242.157.71	89.110.39.34	88.56.9.212	191.47.29.252
98.134.127.192	179.35.251.9	138.36.22.28	71.109.48.125