142.93.6.190 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Jul 22 19:24:53 eddieflores sshd\[25780\]: Invalid user musik from 142.93.6.190 Jul 22 19:24:53 eddieflores sshd\[25780\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 Jul 22 19:24:56 eddieflores sshd\[25780\]: Failed password for invalid user musik from 142.93.6.190 port 49916 ssh2 Jul 22 19:26:58 eddieflores sshd\[25952\]: Invalid user come from 142.93.6.190 Jul 22 19:26:58 eddieflores sshd\[25952\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190	2020-07-23 15:02:36
attackbots	Jul 14 11:13:48 firewall sshd[12437]: Invalid user usuario from 142.93.6.190 Jul 14 11:13:49 firewall sshd[12437]: Failed password for invalid user usuario from 142.93.6.190 port 49188 ssh2 Jul 14 11:17:07 firewall sshd[12512]: Invalid user ross from 142.93.6.190 ...	2020-07-15 01:29:26
attackbotsspam	Jul 12 07:01:20 meumeu sshd[454001]: Invalid user guochao from 142.93.6.190 port 52778 Jul 12 07:01:20 meumeu sshd[454001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 Jul 12 07:01:20 meumeu sshd[454001]: Invalid user guochao from 142.93.6.190 port 52778 Jul 12 07:01:22 meumeu sshd[454001]: Failed password for invalid user guochao from 142.93.6.190 port 52778 ssh2 Jul 12 07:04:49 meumeu sshd[454214]: Invalid user belzer from 142.93.6.190 port 50780 Jul 12 07:04:49 meumeu sshd[454214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 Jul 12 07:04:49 meumeu sshd[454214]: Invalid user belzer from 142.93.6.190 port 50780 Jul 12 07:04:51 meumeu sshd[454214]: Failed password for invalid user belzer from 142.93.6.190 port 50780 ssh2 Jul 12 07:08:15 meumeu sshd[454305]: Invalid user wzt from 142.93.6.190 port 48786 ...	2020-07-12 13:31:11
attack	Jul 4 12:16:57 sshgateway sshd\[605\]: Invalid user academy from 142.93.6.190 Jul 4 12:16:57 sshgateway sshd\[605\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 Jul 4 12:16:58 sshgateway sshd\[605\]: Failed password for invalid user academy from 142.93.6.190 port 50826 ssh2	2020-07-04 18:37:02
attack	2020-06-18T15:18:29.268370abusebot-7.cloudsearch.cf sshd[26934]: Invalid user mysql from 142.93.6.190 port 45918 2020-06-18T15:18:29.274662abusebot-7.cloudsearch.cf sshd[26934]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 2020-06-18T15:18:29.268370abusebot-7.cloudsearch.cf sshd[26934]: Invalid user mysql from 142.93.6.190 port 45918 2020-06-18T15:18:30.791285abusebot-7.cloudsearch.cf sshd[26934]: Failed password for invalid user mysql from 142.93.6.190 port 45918 ssh2 2020-06-18T15:22:12.188653abusebot-7.cloudsearch.cf sshd[27166]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 user=root 2020-06-18T15:22:13.986312abusebot-7.cloudsearch.cf sshd[27166]: Failed password for root from 142.93.6.190 port 45514 ssh2 2020-06-18T15:25:46.016661abusebot-7.cloudsearch.cf sshd[27424]: Invalid user cow from 142.93.6.190 port 45124 ...	2020-06-19 02:47:05
attackspam	Jun 18 04:56:02 scw-6657dc sshd[25039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 Jun 18 04:56:02 scw-6657dc sshd[25039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 Jun 18 04:56:05 scw-6657dc sshd[25039]: Failed password for invalid user cheryl from 142.93.6.190 port 50564 ssh2 ...	2020-06-18 13:30:40
attack	Jun 11 18:40:25 Tower sshd[25645]: Connection from 142.93.6.190 port 37938 on 192.168.10.220 port 22 rdomain "" Jun 11 18:40:28 Tower sshd[25645]: Invalid user alessandro from 142.93.6.190 port 37938 Jun 11 18:40:28 Tower sshd[25645]: error: Could not get shadow information for NOUSER Jun 11 18:40:28 Tower sshd[25645]: Failed password for invalid user alessandro from 142.93.6.190 port 37938 ssh2 Jun 11 18:40:28 Tower sshd[25645]: Received disconnect from 142.93.6.190 port 37938:11: Bye Bye [preauth] Jun 11 18:40:28 Tower sshd[25645]: Disconnected from invalid user alessandro 142.93.6.190 port 37938 [preauth]	2020-06-12 09:05:40
attackbots	2020-06-07T13:24:14.321220shield sshd\[8519\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 user=root 2020-06-07T13:24:16.406839shield sshd\[8519\]: Failed password for root from 142.93.6.190 port 54840 ssh2 2020-06-07T13:28:47.185152shield sshd\[10858\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 user=root 2020-06-07T13:28:49.073886shield sshd\[10858\]: Failed password for root from 142.93.6.190 port 39398 ssh2 2020-06-07T13:33:04.804253shield sshd\[12885\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 user=root	2020-06-07 22:04:48
attackspam	<6 unauthorized SSH connections	2020-05-31 18:49:58
attackbotsspam	SSH authentication failure x 6 reported by Fail2Ban ...	2020-05-27 01:01:02
attackbots	May 10 15:01:28 electroncash sshd[11327]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 May 10 15:01:28 electroncash sshd[11327]: Invalid user ar from 142.93.6.190 port 57038 May 10 15:01:30 electroncash sshd[11327]: Failed password for invalid user ar from 142.93.6.190 port 57038 ssh2 May 10 15:05:59 electroncash sshd[13619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 user=root May 10 15:06:01 electroncash sshd[13619]: Failed password for root from 142.93.6.190 port 38364 ssh2 ...	2020-05-10 21:34:52

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.62.222	attack	Bad IP	2024-04-30 13:05:00
142.93.68.181	attack	TCP (SYN) 142.93.68.181:58096 -> port 5163, len 44	2020-10-10 06:23:00
142.93.68.181	attackspambots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-10-09 22:33:25
142.93.68.181	attackspam	Port scan denied	2020-10-09 14:23:39
142.93.62.231	attackbots	Oct 7 13:48:33 hosting sshd[12236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.62.231 user=root Oct 7 13:48:35 hosting sshd[12236]: Failed password for root from 142.93.62.231 port 48454 ssh2 ...	2020-10-08 06:47:50
142.93.62.231	attackspam	Oct 7 13:48:33 hosting sshd[12236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.62.231 user=root Oct 7 13:48:35 hosting sshd[12236]: Failed password for root from 142.93.62.231 port 48454 ssh2 ...	2020-10-07 23:09:21
142.93.62.231	attackspam	$f2bV_matches	2020-10-07 15:15:23
142.93.66.165	attackbots	MYH,DEF GET /wp-login.php	2020-10-03 06:22:50
142.93.66.165	attack	142.93.66.165 - - [02/Oct/2020:07:28:05 +0000] "POST /wp-login.php HTTP/1.1" 200 2077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:08 +0000] "POST /wp-login.php HTTP/1.1" 200 2055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:10 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:12 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:14 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-10-03 01:50:22
142.93.66.165	attackspam	142.93.66.165 - - [02/Oct/2020:07:28:05 +0000] "POST /wp-login.php HTTP/1.1" 200 2077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:08 +0000] "POST /wp-login.php HTTP/1.1" 200 2055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:10 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:12 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:14 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-10-02 22:18:34
142.93.66.165	attack	142.93.66.165 - - [02/Oct/2020:07:28:05 +0000] "POST /wp-login.php HTTP/1.1" 200 2077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:08 +0000] "POST /wp-login.php HTTP/1.1" 200 2055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:10 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:12 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:14 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-10-02 18:51:05
142.93.66.165	attackbots	CMS (WordPress or Joomla) login attempt.	2020-10-02 15:26:09
142.93.62.231	attack	2020-09-24T20:15:59.264943abusebot-4.cloudsearch.cf sshd[28847]: Invalid user sms from 142.93.62.231 port 37906 2020-09-24T20:15:59.273521abusebot-4.cloudsearch.cf sshd[28847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.62.231 2020-09-24T20:15:59.264943abusebot-4.cloudsearch.cf sshd[28847]: Invalid user sms from 142.93.62.231 port 37906 2020-09-24T20:16:01.375888abusebot-4.cloudsearch.cf sshd[28847]: Failed password for invalid user sms from 142.93.62.231 port 37906 ssh2 2020-09-24T20:19:20.827360abusebot-4.cloudsearch.cf sshd[28854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.62.231 user=root 2020-09-24T20:19:22.187495abusebot-4.cloudsearch.cf sshd[28854]: Failed password for root from 142.93.62.231 port 47050 ssh2 2020-09-24T20:22:39.126038abusebot-4.cloudsearch.cf sshd[28860]: Invalid user bitcoin from 142.93.62.231 port 56162 ...	2020-09-25 05:16:47
142.93.62.231	attack	2020-09-22 UTC: (2x) - chart(2x)	2020-09-24 01:07:59
142.93.62.231	attack	Sep 23 07:12:32 staging sshd[71513]: Invalid user rochelle from 142.93.62.231 port 41190 Sep 23 07:12:32 staging sshd[71513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.62.231 Sep 23 07:12:32 staging sshd[71513]: Invalid user rochelle from 142.93.62.231 port 41190 Sep 23 07:12:34 staging sshd[71513]: Failed password for invalid user rochelle from 142.93.62.231 port 41190 ssh2 ...	2020-09-23 17:11:22

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.6.190
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24864
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.6.190.			IN	A

;; AUTHORITY SECTION:
.			425	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051000 1800 900 604800 86400

;; Query time: 89 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 10 21:34:37 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 190.6.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 190.6.93.142.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
186.114.153.27	attack	Port probing on unauthorized port 23	2020-03-30 18:52:10
171.227.164.106	attackbots	2020-03-30T10:16:57.357098homeassistant sshd[27599]: Invalid user ts3 from 171.227.164.106 port 55176 2020-03-30T10:16:57.363610homeassistant sshd[27599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.227.164.106 ...	2020-03-30 19:00:36
5.2.77.167	attack	" "	2020-03-30 19:12:44
106.12.33.174	attackspambots	$f2bV_matches	2020-03-30 18:46:42
142.93.239.197	attackspam	$f2bV_matches	2020-03-30 18:37:16
114.237.188.52	attack	$f2bV_matches	2020-03-30 19:21:36
92.63.194.94	attackspam	Brute-force attempt banned	2020-03-30 18:40:59
128.199.150.215	attackbotsspam	(sshd) Failed SSH login from 128.199.150.215 (SG/Singapore/-): 5 in the last 3600 secs	2020-03-30 19:17:25
14.248.218.148	attack	20/3/30@06:43:01: FAIL: Alarm-Network address from=14.248.218.148 20/3/30@06:43:02: FAIL: Alarm-Network address from=14.248.218.148 ...	2020-03-30 18:47:13
45.133.99.4	attack	Mar 30 12:59:32 mail.srvfarm.net postfix/smtpd[1523161]: warning: unknown[45.133.99.4]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 30 12:59:32 mail.srvfarm.net postfix/smtpd[1523161]: lost connection after AUTH from unknown[45.133.99.4] Mar 30 12:59:41 mail.srvfarm.net postfix/smtpd[1525615]: warning: unknown[45.133.99.4]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 30 12:59:41 mail.srvfarm.net postfix/smtpd[1525615]: lost connection after AUTH from unknown[45.133.99.4] Mar 30 13:00:03 mail.srvfarm.net postfix/smtpd[1521667]: warning: unknown[45.133.99.4]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-03-30 19:12:07
170.245.202.34	attackspambots	IP blocked	2020-03-30 19:13:50
34.93.85.18	attackspam	firewall-block, port(s): 21/tcp	2020-03-30 18:58:06
185.216.140.252	attackbotsspam	Fail2Ban Ban Triggered	2020-03-30 19:07:41
183.156.1.155	attackspambots	Mar 30 09:30:25 [HOSTNAME] sshd[22520]: Invalid user vy from 183.156.1.155 port 35752 Mar 30 09:30:25 [HOSTNAME] sshd[22520]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.156.1.155 Mar 30 09:30:27 [HOSTNAME] sshd[22520]: Failed password for invalid user vy from 183.156.1.155 port 35752 ssh2 ...	2020-03-30 18:39:08
185.246.100.205	attackspambots	Repeated brute force against a port	2020-03-30 18:38:34

最近上报的IP列表

185.229.182.206	213.21.174.81	125.165.76.253	35.234.101.128
27.222.54.63	186.249.211.212	31.206.174.117	211.75.202.208
174.204.73.16	152.0.198.78	150.180.113.248	220.156.163.247
162.243.139.103	94.249.211.155	197.255.160.225	209.141.41.138
73.62.252.237	49.159.185.58	103.139.219.20	54.37.159.45