142.93.48.106 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	(mod_security) mod_security (id:230011) triggered by 142.93.48.106 (US/United States/dev1.gaslamp.media): 5 in the last 3600 secs	2020-03-18 08:19:52

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.48.191	attack	11109/tcp 4545/tcp 12805/tcp... [2020-08-30/09-25]50pkt,17pt.(tcp)	2020-09-26 02:54:00
142.93.48.191	attackspam	TCP ports : 4545 / 11109	2020-09-25 18:39:21
142.93.48.191	attackspambots	2020-09-15T15:12:08.262284sorsha.thespaminator.com sshd[16347]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.48.191 user=root 2020-09-15T15:12:10.495909sorsha.thespaminator.com sshd[16347]: Failed password for root from 142.93.48.191 port 56048 ssh2 ...	2020-09-16 03:26:42
142.93.48.191	attack	17418/tcp 17103/tcp 18405/tcp... [2020-08-30/09-15]31pkt,11pt.(tcp)	2020-09-15 19:30:33
142.93.48.191	attack	SSH Scan	2020-08-31 16:34:29
142.93.48.191	attackspambots	Attempted connection to port 18720.	2020-08-31 07:25:08
142.93.48.191	attack	Aug 30 14:31:11 buvik sshd[1558]: Failed password for root from 142.93.48.191 port 43900 ssh2 Aug 30 14:34:52 buvik sshd[2031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.48.191 user=root Aug 30 14:34:54 buvik sshd[2031]: Failed password for root from 142.93.48.191 port 45650 ssh2 ...	2020-08-30 21:03:12
142.93.48.191	attackbotsspam	"$f2bV_matches"	2020-08-28 04:24:22
142.93.48.191	attackbots	Aug 25 16:56:16 OPSO sshd\[7232\]: Invalid user ftpu from 142.93.48.191 port 39276 Aug 25 16:56:16 OPSO sshd\[7232\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.48.191 Aug 25 16:56:18 OPSO sshd\[7232\]: Failed password for invalid user ftpu from 142.93.48.191 port 39276 ssh2 Aug 25 17:00:30 OPSO sshd\[8411\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.48.191 user=root Aug 25 17:00:32 OPSO sshd\[8411\]: Failed password for root from 142.93.48.191 port 46392 ssh2	2020-08-25 23:06:20
142.93.48.155	attackbotsspam	Jul 4 14:10:59 prox sshd[6702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.48.155 Jul 4 14:11:00 prox sshd[6702]: Failed password for invalid user king from 142.93.48.155 port 40008 ssh2	2020-07-05 00:10:52
142.93.48.155	attack	2020-06-16T12:20:32.770817abusebot-5.cloudsearch.cf sshd[15081]: Invalid user vid from 142.93.48.155 port 35614 2020-06-16T12:20:32.775990abusebot-5.cloudsearch.cf sshd[15081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.48.155 2020-06-16T12:20:32.770817abusebot-5.cloudsearch.cf sshd[15081]: Invalid user vid from 142.93.48.155 port 35614 2020-06-16T12:20:34.762014abusebot-5.cloudsearch.cf sshd[15081]: Failed password for invalid user vid from 142.93.48.155 port 35614 ssh2 2020-06-16T12:25:36.762081abusebot-5.cloudsearch.cf sshd[15130]: Invalid user sunil from 142.93.48.155 port 57490 2020-06-16T12:25:36.767796abusebot-5.cloudsearch.cf sshd[15130]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.48.155 2020-06-16T12:25:36.762081abusebot-5.cloudsearch.cf sshd[15130]: Invalid user sunil from 142.93.48.155 port 57490 2020-06-16T12:25:38.823563abusebot-5.cloudsearch.cf sshd[15130]: Failed passw ...	2020-06-17 01:26:45
142.93.48.155	attackspam	Jun 10 10:59:35 game-panel sshd[17497]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.48.155 Jun 10 10:59:37 game-panel sshd[17497]: Failed password for invalid user wei from 142.93.48.155 port 49882 ssh2 Jun 10 11:02:52 game-panel sshd[17638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.48.155	2020-06-10 19:24:40
142.93.48.155	attackspambots	2020-06-05T05:03:25.385185shield sshd\[15299\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.48.155 user=root 2020-06-05T05:03:27.495544shield sshd\[15299\]: Failed password for root from 142.93.48.155 port 59510 ssh2 2020-06-05T05:06:49.229893shield sshd\[17291\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.48.155 user=root 2020-06-05T05:06:51.343897shield sshd\[17291\]: Failed password for root from 142.93.48.155 port 34986 ssh2 2020-06-05T05:10:13.555304shield sshd\[18612\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.48.155 user=root	2020-06-05 14:30:07
142.93.48.155	attack	Jun 4 08:25:14 sip sshd[534135]: Failed password for root from 142.93.48.155 port 49300 ssh2 Jun 4 08:28:30 sip sshd[534191]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.48.155 user=root Jun 4 08:28:33 sip sshd[534191]: Failed password for root from 142.93.48.155 port 53670 ssh2 ...	2020-06-04 14:39:29
142.93.48.155	attack	May 25 14:47:09 sshgateway sshd\[16075\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.48.155 user=root May 25 14:47:10 sshgateway sshd\[16075\]: Failed password for root from 142.93.48.155 port 43496 ssh2 May 25 14:50:10 sshgateway sshd\[16112\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.48.155 user=root	2020-05-26 00:09:32

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.48.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59048
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.48.106.			IN	A

;; AUTHORITY SECTION:
.			452	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031702 1800 900 604800 86400

;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 18 08:19:48 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

106.48.93.142.in-addr.arpa domain name pointer dev1.gaslamp.media.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
106.48.93.142.in-addr.arpa	name = dev1.gaslamp.media.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
165.227.196.144	attack	Sep 9 17:48:49 yabzik sshd[21942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.196.144 Sep 9 17:48:51 yabzik sshd[21942]: Failed password for invalid user odoo from 165.227.196.144 port 37622 ssh2 Sep 9 17:54:27 yabzik sshd[23975]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.196.144	2019-09-10 08:26:18
139.211.146.26	attackspam	Tue, 2019-08-06 18:59:31 - TCP Packet - Source:139.211.146.26,46169 Destination:80 - [DVR-HTTP rule match]	2019-09-10 07:58:29
49.236.203.163	attackspam	Sep 9 18:53:05 yabzik sshd[14864]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.236.203.163 Sep 9 18:53:07 yabzik sshd[14864]: Failed password for invalid user newuser from 49.236.203.163 port 44262 ssh2 Sep 9 19:00:32 yabzik sshd[17665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.236.203.163	2019-09-10 08:32:50
54.37.154.113	attackbots	Sep 10 01:48:02 eventyay sshd[13439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.154.113 Sep 10 01:48:04 eventyay sshd[13439]: Failed password for invalid user oracle from 54.37.154.113 port 53544 ssh2 Sep 10 01:53:05 eventyay sshd[13514]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.154.113 ...	2019-09-10 08:01:02
176.159.57.134	attackbotsspam	Sep 9 22:06:35 *** sshd[15452]: Invalid user dev from 176.159.57.134	2019-09-10 07:44:33
185.53.88.54	attackspam	Brute force attack stopped by firewall	2019-09-10 07:54:59
202.85.220.177	attack	Sep 9 23:26:20 mail sshd\[10432\]: Invalid user user2 from 202.85.220.177 Sep 9 23:26:20 mail sshd\[10432\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.85.220.177 Sep 9 23:26:23 mail sshd\[10432\]: Failed password for invalid user user2 from 202.85.220.177 port 43492 ssh2 ...	2019-09-10 07:49:13
45.136.109.40	attackspambots	firewall-block, port(s): 8122/tcp, 8588/tcp, 8610/tcp, 8655/tcp, 8759/tcp, 8766/tcp	2019-09-10 08:05:51
60.190.56.6	attackspambots	09/09/2019-10:54:03.013391 60.190.56.6 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 59	2019-09-10 08:14:18
36.66.203.251	attackbots	Sep 9 11:16:14 home sshd[28268]: Invalid user amsftp from 36.66.203.251 port 44442 Sep 9 11:16:14 home sshd[28268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.66.203.251 Sep 9 11:16:14 home sshd[28268]: Invalid user amsftp from 36.66.203.251 port 44442 Sep 9 11:16:16 home sshd[28268]: Failed password for invalid user amsftp from 36.66.203.251 port 44442 ssh2 Sep 9 11:25:36 home sshd[28316]: Invalid user teamspeak from 36.66.203.251 port 43218 Sep 9 11:25:36 home sshd[28316]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.66.203.251 Sep 9 11:25:36 home sshd[28316]: Invalid user teamspeak from 36.66.203.251 port 43218 Sep 9 11:25:38 home sshd[28316]: Failed password for invalid user teamspeak from 36.66.203.251 port 43218 ssh2 Sep 9 11:32:42 home sshd[28359]: Invalid user zabbix from 36.66.203.251 port 47742 Sep 9 11:32:42 home sshd[28359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=	2019-09-10 08:03:15
190.202.54.178	attackbots	Port Scan detected from 190.202.54.178 (VE/Venezuela/-). 4 hits in the last 255 seconds	2019-09-10 08:06:48
128.199.196.155	attack	Sep 9 20:11:45 raspberrypi sshd\[5467\]: Failed password for root from 128.199.196.155 port 41347 ssh2Sep 9 20:27:07 raspberrypi sshd\[9293\]: Invalid user ubuntu from 128.199.196.155Sep 9 20:27:10 raspberrypi sshd\[9293\]: Failed password for invalid user ubuntu from 128.199.196.155 port 54717 ssh2 ...	2019-09-10 07:51:02
185.56.153.231	attackbotsspam	Sep 9 23:21:58 localhost sshd\[18625\]: Invalid user www from 185.56.153.231 port 58834 Sep 9 23:21:58 localhost sshd\[18625\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.56.153.231 Sep 9 23:22:01 localhost sshd\[18625\]: Failed password for invalid user www from 185.56.153.231 port 58834 ssh2 Sep 9 23:29:23 localhost sshd\[18842\]: Invalid user mailtest from 185.56.153.231 port 35576 Sep 9 23:29:23 localhost sshd\[18842\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.56.153.231 ...	2019-09-10 08:14:50
218.76.87.67	attack	F2B jail: sshd. Time: 2019-09-10 02:14:16, Reported by: VKReport	2019-09-10 08:25:31
222.180.199.138	attackspambots	Sep 10 02:16:27 dedicated sshd[15824]: Invalid user password from 222.180.199.138 port 43550	2019-09-10 08:29:38

最近上报的IP列表

45.162.158.246	123.97.102.35	73.14.123.172	153.36.110.29
183.190.210.135	239.228.104.79	93.192.241.55	138.118.100.149
36.236.138.132	168.90.206.110	220.143.22.7	183.33.71.235
14.18.103.163	60.173.116.25	88.196.205.56	111.235.244.103
2.182.190.155	82.223.108.214	60.196.43.102	46.99.164.4