142.93.6.190 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Jul 22 19:24:53 eddieflores sshd\[25780\]: Invalid user musik from 142.93.6.190 Jul 22 19:24:53 eddieflores sshd\[25780\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 Jul 22 19:24:56 eddieflores sshd\[25780\]: Failed password for invalid user musik from 142.93.6.190 port 49916 ssh2 Jul 22 19:26:58 eddieflores sshd\[25952\]: Invalid user come from 142.93.6.190 Jul 22 19:26:58 eddieflores sshd\[25952\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190	2020-07-23 15:02:36
attackbots	Jul 14 11:13:48 firewall sshd[12437]: Invalid user usuario from 142.93.6.190 Jul 14 11:13:49 firewall sshd[12437]: Failed password for invalid user usuario from 142.93.6.190 port 49188 ssh2 Jul 14 11:17:07 firewall sshd[12512]: Invalid user ross from 142.93.6.190 ...	2020-07-15 01:29:26
attackbotsspam	Jul 12 07:01:20 meumeu sshd[454001]: Invalid user guochao from 142.93.6.190 port 52778 Jul 12 07:01:20 meumeu sshd[454001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 Jul 12 07:01:20 meumeu sshd[454001]: Invalid user guochao from 142.93.6.190 port 52778 Jul 12 07:01:22 meumeu sshd[454001]: Failed password for invalid user guochao from 142.93.6.190 port 52778 ssh2 Jul 12 07:04:49 meumeu sshd[454214]: Invalid user belzer from 142.93.6.190 port 50780 Jul 12 07:04:49 meumeu sshd[454214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 Jul 12 07:04:49 meumeu sshd[454214]: Invalid user belzer from 142.93.6.190 port 50780 Jul 12 07:04:51 meumeu sshd[454214]: Failed password for invalid user belzer from 142.93.6.190 port 50780 ssh2 Jul 12 07:08:15 meumeu sshd[454305]: Invalid user wzt from 142.93.6.190 port 48786 ...	2020-07-12 13:31:11
attack	Jul 4 12:16:57 sshgateway sshd\[605\]: Invalid user academy from 142.93.6.190 Jul 4 12:16:57 sshgateway sshd\[605\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 Jul 4 12:16:58 sshgateway sshd\[605\]: Failed password for invalid user academy from 142.93.6.190 port 50826 ssh2	2020-07-04 18:37:02
attack	2020-06-18T15:18:29.268370abusebot-7.cloudsearch.cf sshd[26934]: Invalid user mysql from 142.93.6.190 port 45918 2020-06-18T15:18:29.274662abusebot-7.cloudsearch.cf sshd[26934]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 2020-06-18T15:18:29.268370abusebot-7.cloudsearch.cf sshd[26934]: Invalid user mysql from 142.93.6.190 port 45918 2020-06-18T15:18:30.791285abusebot-7.cloudsearch.cf sshd[26934]: Failed password for invalid user mysql from 142.93.6.190 port 45918 ssh2 2020-06-18T15:22:12.188653abusebot-7.cloudsearch.cf sshd[27166]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 user=root 2020-06-18T15:22:13.986312abusebot-7.cloudsearch.cf sshd[27166]: Failed password for root from 142.93.6.190 port 45514 ssh2 2020-06-18T15:25:46.016661abusebot-7.cloudsearch.cf sshd[27424]: Invalid user cow from 142.93.6.190 port 45124 ...	2020-06-19 02:47:05
attackspam	Jun 18 04:56:02 scw-6657dc sshd[25039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 Jun 18 04:56:02 scw-6657dc sshd[25039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 Jun 18 04:56:05 scw-6657dc sshd[25039]: Failed password for invalid user cheryl from 142.93.6.190 port 50564 ssh2 ...	2020-06-18 13:30:40
attack	Jun 11 18:40:25 Tower sshd[25645]: Connection from 142.93.6.190 port 37938 on 192.168.10.220 port 22 rdomain "" Jun 11 18:40:28 Tower sshd[25645]: Invalid user alessandro from 142.93.6.190 port 37938 Jun 11 18:40:28 Tower sshd[25645]: error: Could not get shadow information for NOUSER Jun 11 18:40:28 Tower sshd[25645]: Failed password for invalid user alessandro from 142.93.6.190 port 37938 ssh2 Jun 11 18:40:28 Tower sshd[25645]: Received disconnect from 142.93.6.190 port 37938:11: Bye Bye [preauth] Jun 11 18:40:28 Tower sshd[25645]: Disconnected from invalid user alessandro 142.93.6.190 port 37938 [preauth]	2020-06-12 09:05:40
attackbots	2020-06-07T13:24:14.321220shield sshd\[8519\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 user=root 2020-06-07T13:24:16.406839shield sshd\[8519\]: Failed password for root from 142.93.6.190 port 54840 ssh2 2020-06-07T13:28:47.185152shield sshd\[10858\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 user=root 2020-06-07T13:28:49.073886shield sshd\[10858\]: Failed password for root from 142.93.6.190 port 39398 ssh2 2020-06-07T13:33:04.804253shield sshd\[12885\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 user=root	2020-06-07 22:04:48
attackspam	<6 unauthorized SSH connections	2020-05-31 18:49:58
attackbotsspam	SSH authentication failure x 6 reported by Fail2Ban ...	2020-05-27 01:01:02
attackbots	May 10 15:01:28 electroncash sshd[11327]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 May 10 15:01:28 electroncash sshd[11327]: Invalid user ar from 142.93.6.190 port 57038 May 10 15:01:30 electroncash sshd[11327]: Failed password for invalid user ar from 142.93.6.190 port 57038 ssh2 May 10 15:05:59 electroncash sshd[13619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.6.190 user=root May 10 15:06:01 electroncash sshd[13619]: Failed password for root from 142.93.6.190 port 38364 ssh2 ...	2020-05-10 21:34:52

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.62.222	attack	Bad IP	2024-04-30 13:05:00
142.93.68.181	attack	TCP (SYN) 142.93.68.181:58096 -> port 5163, len 44	2020-10-10 06:23:00
142.93.68.181	attackspambots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-10-09 22:33:25
142.93.68.181	attackspam	Port scan denied	2020-10-09 14:23:39
142.93.62.231	attackbots	Oct 7 13:48:33 hosting sshd[12236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.62.231 user=root Oct 7 13:48:35 hosting sshd[12236]: Failed password for root from 142.93.62.231 port 48454 ssh2 ...	2020-10-08 06:47:50
142.93.62.231	attackspam	Oct 7 13:48:33 hosting sshd[12236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.62.231 user=root Oct 7 13:48:35 hosting sshd[12236]: Failed password for root from 142.93.62.231 port 48454 ssh2 ...	2020-10-07 23:09:21
142.93.62.231	attackspam	$f2bV_matches	2020-10-07 15:15:23
142.93.66.165	attackbots	MYH,DEF GET /wp-login.php	2020-10-03 06:22:50
142.93.66.165	attack	142.93.66.165 - - [02/Oct/2020:07:28:05 +0000] "POST /wp-login.php HTTP/1.1" 200 2077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:08 +0000] "POST /wp-login.php HTTP/1.1" 200 2055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:10 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:12 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:14 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-10-03 01:50:22
142.93.66.165	attackspam	142.93.66.165 - - [02/Oct/2020:07:28:05 +0000] "POST /wp-login.php HTTP/1.1" 200 2077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:08 +0000] "POST /wp-login.php HTTP/1.1" 200 2055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:10 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:12 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:14 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-10-02 22:18:34
142.93.66.165	attack	142.93.66.165 - - [02/Oct/2020:07:28:05 +0000] "POST /wp-login.php HTTP/1.1" 200 2077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:08 +0000] "POST /wp-login.php HTTP/1.1" 200 2055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:10 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:12 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 142.93.66.165 - - [02/Oct/2020:07:28:14 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-10-02 18:51:05
142.93.66.165	attackbots	CMS (WordPress or Joomla) login attempt.	2020-10-02 15:26:09
142.93.62.231	attack	2020-09-24T20:15:59.264943abusebot-4.cloudsearch.cf sshd[28847]: Invalid user sms from 142.93.62.231 port 37906 2020-09-24T20:15:59.273521abusebot-4.cloudsearch.cf sshd[28847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.62.231 2020-09-24T20:15:59.264943abusebot-4.cloudsearch.cf sshd[28847]: Invalid user sms from 142.93.62.231 port 37906 2020-09-24T20:16:01.375888abusebot-4.cloudsearch.cf sshd[28847]: Failed password for invalid user sms from 142.93.62.231 port 37906 ssh2 2020-09-24T20:19:20.827360abusebot-4.cloudsearch.cf sshd[28854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.62.231 user=root 2020-09-24T20:19:22.187495abusebot-4.cloudsearch.cf sshd[28854]: Failed password for root from 142.93.62.231 port 47050 ssh2 2020-09-24T20:22:39.126038abusebot-4.cloudsearch.cf sshd[28860]: Invalid user bitcoin from 142.93.62.231 port 56162 ...	2020-09-25 05:16:47
142.93.62.231	attack	2020-09-22 UTC: (2x) - chart(2x)	2020-09-24 01:07:59
142.93.62.231	attack	Sep 23 07:12:32 staging sshd[71513]: Invalid user rochelle from 142.93.62.231 port 41190 Sep 23 07:12:32 staging sshd[71513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.62.231 Sep 23 07:12:32 staging sshd[71513]: Invalid user rochelle from 142.93.62.231 port 41190 Sep 23 07:12:34 staging sshd[71513]: Failed password for invalid user rochelle from 142.93.62.231 port 41190 ssh2 ...	2020-09-23 17:11:22

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.6.190
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24864
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.6.190.			IN	A

;; AUTHORITY SECTION:
.			425	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051000 1800 900 604800 86400

;; Query time: 89 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 10 21:34:37 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 190.6.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 190.6.93.142.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
190.151.35.250	attackspam	9530/tcp [2020-03-08]1pkt	2020-03-09 08:37:40
222.186.3.249	attack	2020-03-09T01:56:06.438727scmdmz1 sshd[28904]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.3.249 user=root 2020-03-09T01:56:08.805699scmdmz1 sshd[28904]: Failed password for root from 222.186.3.249 port 43084 ssh2 2020-03-09T01:56:10.483310scmdmz1 sshd[28904]: Failed password for root from 222.186.3.249 port 43084 ssh2 ...	2020-03-09 08:56:34
117.240.4.19	attackbots	Unauthorized connection attempt from IP address 117.240.4.19 on Port 445(SMB)	2020-03-09 08:47:41
96.68.73.98	attack	23/tcp [2020-03-08]1pkt	2020-03-09 09:07:27
46.105.124.219	attack	$f2bV_matches	2020-03-09 08:59:53
103.236.152.44	attackspambots	Automatic report - Port Scan Attack	2020-03-09 09:02:55
179.228.207.170	attackspambots	Unauthorized connection attempt from IP address 179.228.207.170 on Port 445(SMB)	2020-03-09 08:58:18
88.34.126.169	attackspambots	Linear eMerge E3 Unauthenticated Command Injection Remote Root Exploit Vulnerability	2020-03-09 09:19:16
200.54.255.253	attackbotsspam	fail2ban	2020-03-09 08:40:00
35.230.40.152	attackspam	Automatically reported by fail2ban report script (mx1)	2020-03-09 08:42:57
167.99.127.58	attack	DigitalOcean BotNet attack - 10s of requests to non-existent pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks node-superagent/4.1.0	2020-03-09 09:04:02
91.28.193.105	attackbots	Scan detected and blocked 2020.03.08 22:30:30	2020-03-09 09:15:35
130.43.87.167	attackspambots	2323/tcp [2020-03-08]1pkt	2020-03-09 08:50:48
176.30.251.233	attack	Email rejected due to spam filtering	2020-03-09 09:05:47
113.190.252.217	attackspam	Unauthorised access (Mar 8) SRC=113.190.252.217 LEN=52 TTL=107 ID=26541 DF TCP DPT=1433 WINDOW=8192 SYN	2020-03-09 08:55:21

最近上报的IP列表

185.229.182.206	213.21.174.81	125.165.76.253	35.234.101.128
27.222.54.63	186.249.211.212	31.206.174.117	211.75.202.208
174.204.73.16	152.0.198.78	150.180.113.248	220.156.163.247
162.243.139.103	94.249.211.155	197.255.160.225	209.141.41.138
73.62.252.237	49.159.185.58	103.139.219.20	54.37.159.45