142.93.6.190 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Jul 22 19:24:53 eddieflores sshd\[25780\]: Invalid user musik from 142.93.6.190 Jul 22 19:24:53 eddieflores sshd\[25780\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 Jul 22 19:24:56 eddieflores sshd\[25780\]: Failed password for invalid user musik from 142.93.6.190 port 49916 ssh2 Jul 22 19:26:58 eddieflores sshd\[25952\]: Invalid user come from 142.93.6.190 Jul 22 19:26:58 eddieflores sshd\[25952\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190	2020-07-23 15:02:36
attackbots	Jul 14 11:13:48 firewall sshd[12437]: Invalid user usuario from 142.93.6.190 Jul 14 11:13:49 firewall sshd[12437]: Failed password for invalid user usuario from 142.93.6.190 port 49188 ssh2 Jul 14 11:17:07 firewall sshd[12512]: Invalid user ross from 142.93.6.190 ...	2020-07-15 01:29:26
attackbotsspam	Jul 12 07:01:20 meumeu sshd[454001]: Invalid user guochao from 142.93.6.190 port 52778 Jul 12 07:01:20 meumeu sshd[454001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 Jul 12 07:01:20 meumeu sshd[454001]: Invalid user guochao from 142.93.6.190 port 52778 Jul 12 07:01:22 meumeu sshd[454001]: Failed password for invalid user guochao from 142.93.6.190 port 52778 ssh2 Jul 12 07:04:49 meumeu sshd[454214]: Invalid user belzer from 142.93.6.190 port 50780 Jul 12 07:04:49 meumeu sshd[454214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 Jul 12 07:04:49 meumeu sshd[454214]: Invalid user belzer from 142.93.6.190 port 50780 Jul 12 07:04:51 meumeu sshd[454214]: Failed password for invalid user belzer from 142.93.6.190 port 50780 ssh2 Jul 12 07:08:15 meumeu sshd[454305]: Invalid user wzt from 142.93.6.190 port 48786 ...	2020-07-12 13:31:11
attack	Jul 4 12:16:57 sshgateway sshd\[605\]: Invalid user academy from 142.93.6.190 Jul 4 12:16:57 sshgateway sshd\[605\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 Jul 4 12:16:58 sshgateway sshd\[605\]: Failed password for invalid user academy from 142.93.6.190 port 50826 ssh2	2020-07-04 18:37:02
attack	2020-06-18T15:18:29.268370abusebot-7.cloudsearch.cf sshd[26934]: Invalid user mysql from 142.93.6.190 port 45918 2020-06-18T15:18:29.274662abusebot-7.cloudsearch.cf sshd[26934]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 2020-06-18T15:18:29.268370abusebot-7.cloudsearch.cf sshd[26934]: Invalid user mysql from 142.93.6.190 port 45918 2020-06-18T15:18:30.791285abusebot-7.cloudsearch.cf sshd[26934]: Failed password for invalid user mysql from 142.93.6.190 port 45918 ssh2 2020-06-18T15:22:12.188653abusebot-7.cloudsearch.cf sshd[27166]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 user=root 2020-06-18T15:22:13.986312abusebot-7.cloudsearch.cf sshd[27166]: Failed password for root from 142.93.6.190 port 45514 ssh2 2020-06-18T15:25:46.016661abusebot-7.cloudsearch.cf sshd[27424]: Invalid user cow from 142.93.6.190 port 45124 ...	2020-06-19 02:47:05
attackspam	Jun 18 04:56:02 scw-6657dc sshd[25039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 Jun 18 04:56:02 scw-6657dc sshd[25039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 Jun 18 04:56:05 scw-6657dc sshd[25039]: Failed password for invalid user cheryl from 142.93.6.190 port 50564 ssh2 ...	2020-06-18 13:30:40
attack	Jun 11 18:40:25 Tower sshd[25645]: Connection from 142.93.6.190 port 37938 on 192.168.10.220 port 22 rdomain "" Jun 11 18:40:28 Tower sshd[25645]: Invalid user alessandro from 142.93.6.190 port 37938 Jun 11 18:40:28 Tower sshd[25645]: error: Could not get shadow information for NOUSER Jun 11 18:40:28 Tower sshd[25645]: Failed password for invalid user alessandro from 142.93.6.190 port 37938 ssh2 Jun 11 18:40:28 Tower sshd[25645]: Received disconnect from 142.93.6.190 port 37938:11: Bye Bye [preauth] Jun 11 18:40:28 Tower sshd[25645]: Disconnected from invalid user alessandro 142.93.6.190 port 37938 [preauth]	2020-06-12 09:05:40
attackbots	2020-06-07T13:24:14.321220shield sshd\[8519\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 user=root 2020-06-07T13:24:16.406839shield sshd\[8519\]: Failed password for root from 142.93.6.190 port 54840 ssh2 2020-06-07T13:28:47.185152shield sshd\[10858\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 user=root 2020-06-07T13:28:49.073886shield sshd\[10858\]: Failed password for root from 142.93.6.190 port 39398 ssh2 2020-06-07T13:33:04.804253shield sshd\[12885\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 user=root	2020-06-07 22:04:48
attackspam	<6 unauthorized SSH connections	2020-05-31 18:49:58
attackbotsspam	SSH authentication failure x 6 reported by Fail2Ban ...	2020-05-27 01:01:02
attackbots	May 10 15:01:28 electroncash sshd[11327]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 May 10 15:01:28 electroncash sshd[11327]: Invalid user ar from 142.93.6.190 port 57038 May 10 15:01:30 electroncash sshd[11327]: Failed password for invalid user ar from 142.93.6.190 port 57038 ssh2 May 10 15:05:59 electroncash sshd[13619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 user=root May 10 15:06:01 electroncash sshd[13619]: Failed password for root from 142.93.6.190 port 38364 ssh2 ...	2020-05-10 21:34:52

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.62.222	attack	Bad IP	2024-04-30 13:05:00
142.93.68.181	attack	TCP (SYN) 142.93.68.181:58096 -> port 5163, len 44	2020-10-10 06:23:00
142.93.68.181	attackspambots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-10-09 22:33:25
142.93.68.181	attackspam	Port scan denied	2020-10-09 14:23:39
142.93.62.231	attackbots	Oct 7 13:48:33 hosting sshd[12236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.62.231 user=root Oct 7 13:48:35 hosting sshd[12236]: Failed password for root from 142.93.62.231 port 48454 ssh2 ...	2020-10-08 06:47:50
142.93.62.231	attackspam	Oct 7 13:48:33 hosting sshd[12236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.62.231 user=root Oct 7 13:48:35 hosting sshd[12236]: Failed password for root from 142.93.62.231 port 48454 ssh2 ...	2020-10-07 23:09:21
142.93.62.231	attackspam	$f2bV_matches	2020-10-07 15:15:23
142.93.66.165	attackbots	MYH,DEF GET /wp-login.php	2020-10-03 06:22:50
142.93.66.165	attack	142.93.66.165 - - [02/Oct/2020:07:28:05 +0000] "POST /wp-login.php HTTP/1.1" 200 2077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:08 +0000] "POST /wp-login.php HTTP/1.1" 200 2055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:10 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:12 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:14 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-10-03 01:50:22
142.93.66.165	attackspam	142.93.66.165 - - [02/Oct/2020:07:28:05 +0000] "POST /wp-login.php HTTP/1.1" 200 2077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:08 +0000] "POST /wp-login.php HTTP/1.1" 200 2055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:10 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:12 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:14 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-10-02 22:18:34
142.93.66.165	attack	142.93.66.165 - - [02/Oct/2020:07:28:05 +0000] "POST /wp-login.php HTTP/1.1" 200 2077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:08 +0000] "POST /wp-login.php HTTP/1.1" 200 2055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:10 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:12 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:14 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-10-02 18:51:05
142.93.66.165	attackbots	CMS (WordPress or Joomla) login attempt.	2020-10-02 15:26:09
142.93.62.231	attack	2020-09-24T20:15:59.264943abusebot-4.cloudsearch.cf sshd[28847]: Invalid user sms from 142.93.62.231 port 37906 2020-09-24T20:15:59.273521abusebot-4.cloudsearch.cf sshd[28847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.62.231 2020-09-24T20:15:59.264943abusebot-4.cloudsearch.cf sshd[28847]: Invalid user sms from 142.93.62.231 port 37906 2020-09-24T20:16:01.375888abusebot-4.cloudsearch.cf sshd[28847]: Failed password for invalid user sms from 142.93.62.231 port 37906 ssh2 2020-09-24T20:19:20.827360abusebot-4.cloudsearch.cf sshd[28854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.62.231 user=root 2020-09-24T20:19:22.187495abusebot-4.cloudsearch.cf sshd[28854]: Failed password for root from 142.93.62.231 port 47050 ssh2 2020-09-24T20:22:39.126038abusebot-4.cloudsearch.cf sshd[28860]: Invalid user bitcoin from 142.93.62.231 port 56162 ...	2020-09-25 05:16:47
142.93.62.231	attack	2020-09-22 UTC: (2x) - chart(2x)	2020-09-24 01:07:59
142.93.62.231	attack	Sep 23 07:12:32 staging sshd[71513]: Invalid user rochelle from 142.93.62.231 port 41190 Sep 23 07:12:32 staging sshd[71513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.62.231 Sep 23 07:12:32 staging sshd[71513]: Invalid user rochelle from 142.93.62.231 port 41190 Sep 23 07:12:34 staging sshd[71513]: Failed password for invalid user rochelle from 142.93.62.231 port 41190 ssh2 ...	2020-09-23 17:11:22

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.6.190
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24864
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.6.190.			IN	A

;; AUTHORITY SECTION:
.			425	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051000 1800 900 604800 86400

;; Query time: 89 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 10 21:34:37 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 190.6.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 190.6.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.171.247	attackspam	SSH Invalid Login	2020-07-24 08:00:45
139.59.87.254	attackspambots	Jul 23 16:03:28 pixelmemory sshd[2958151]: Failed password for invalid user fpt from 139.59.87.254 port 50534 ssh2 Jul 23 16:08:03 pixelmemory sshd[2971236]: Invalid user factura from 139.59.87.254 port 35918 Jul 23 16:08:03 pixelmemory sshd[2971236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.87.254 Jul 23 16:08:03 pixelmemory sshd[2971236]: Invalid user factura from 139.59.87.254 port 35918 Jul 23 16:08:05 pixelmemory sshd[2971236]: Failed password for invalid user factura from 139.59.87.254 port 35918 ssh2 ...	2020-07-24 07:58:29
180.76.238.128	attackbotsspam	Jul 23 18:24:17 firewall sshd[15689]: Invalid user deploy from 180.76.238.128 Jul 23 18:24:19 firewall sshd[15689]: Failed password for invalid user deploy from 180.76.238.128 port 51722 ssh2 Jul 23 18:30:03 firewall sshd[15893]: Invalid user bssh from 180.76.238.128 ...	2020-07-24 07:56:24
160.177.221.83	attack	May 18 22:25:28 pi sshd[11920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.177.221.83 May 18 22:25:30 pi sshd[11920]: Failed password for invalid user guest from 160.177.221.83 port 60682 ssh2	2020-07-24 08:03:16
81.68.113.212	attackbots	Invalid user Test from 81.68.113.212 port 54396	2020-07-24 07:49:34
161.35.32.43	attackbots	Invalid user nut from 161.35.32.43 port 36176	2020-07-24 07:42:43
162.158.107.20	attackbotsspam	Jul 23 22:18:23 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3f:fd:58:00:08:e3:ff:fd:90:08:00 SRC=162.158.107.20 DST=79.143.186.54 LEN=52 TOS=0x00 PREC=0x00 TTL=56 ID=17964 DF PROTO=TCP SPT=60472 DPT=80 WINDOW=65535 RES=0x00 SYN URGP=0 Jul 23 22:18:24 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3f:fd:58:00:08:e3:ff:fd:90:08:00 SRC=162.158.107.20 DST=79.143.186.54 LEN=52 TOS=0x00 PREC=0x00 TTL=56 ID=17965 DF PROTO=TCP SPT=60472 DPT=80 WINDOW=65535 RES=0x00 SYN URGP=0 Jul 23 22:18:26 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3f:fd:58:00:08:e3:ff:fd:90:08:00 SRC=162.158.107.20 DST=79.143.186.54 LEN=52 TOS=0x00 PREC=0x00 TTL=56 ID=17966 DF PROTO=TCP SPT=60472 DPT=80 WINDOW=65535 RES=0x00 SYN URGP=0	2020-07-24 07:43:45
161.35.11.165	attack	May 27 00:21:59 pi sshd[24570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.11.165 May 27 00:22:02 pi sshd[24570]: Failed password for invalid user testuser from 161.35.11.165 port 34430 ssh2	2020-07-24 07:51:55
62.151.177.85	attackbotsspam	SSH Invalid Login	2020-07-24 07:52:49
161.35.103.140	attack	May 28 01:45:01 pi sshd[28817]: Failed password for root from 161.35.103.140 port 57718 ssh2	2020-07-24 07:55:54
111.230.41.183	attack	Invalid user deployer from 111.230.41.183 port 35020	2020-07-24 08:01:38
194.26.25.81	attackspambots	Multiport scan : 136 ports scanned 8011 8013 8032 8039 8061 8089 8103 8110 8129 8174 8184 8198 8248 8271 8279 8359 8367 8379 8390 8392 8398 8409 8417 8421 8429 8442 8448 8454 8473 8498 8508 8517 8590 8607 8608 8619 8638 8640 8652 8723 8740 8742 8769 8787 8815 8846 8856 8906 8926 8955 8962 8993 8998 9005 9024 9051 9060 9062 9069 9073 9081 9091 9101 9105 9125 9135 9185 9212 9223 9225 9235 9254 9287 9306 9323 9324 9346 9378 9393 9404 .....	2020-07-24 08:06:20
160.16.137.121	attackbots	Jul 3 11:28:59 pi sshd[18218]: Failed password for root from 160.16.137.121 port 45280 ssh2	2020-07-24 08:05:12
116.90.165.26	attack	Invalid user admin from 116.90.165.26 port 50890	2020-07-24 08:04:08
186.147.129.110	attackspambots	Jul 24 00:09:35 l02a sshd[4162]: Invalid user thanks from 186.147.129.110 Jul 24 00:09:35 l02a sshd[4162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.147.129.110 Jul 24 00:09:35 l02a sshd[4162]: Invalid user thanks from 186.147.129.110 Jul 24 00:09:36 l02a sshd[4162]: Failed password for invalid user thanks from 186.147.129.110 port 49940 ssh2	2020-07-24 07:55:01

最近上报的IP列表

185.229.182.206	213.21.174.81	125.165.76.253	35.234.101.128
27.222.54.63	186.249.211.212	31.206.174.117	211.75.202.208
174.204.73.16	152.0.198.78	150.180.113.248	220.156.163.247
162.243.139.103	94.249.211.155	197.255.160.225	209.141.41.138
73.62.252.237	49.159.185.58	103.139.219.20	54.37.159.45