142.93.68.181 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	TCP (SYN) 142.93.68.181:58096 -> port 5163, len 44	2020-10-10 06:23:00
attackspambots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-10-09 22:33:25
attackspam	Port scan denied	2020-10-09 14:23:39
attackbots	Sep 21 08:41:29 firewall sshd[6332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.68.181 Sep 21 08:41:29 firewall sshd[6332]: Invalid user matt from 142.93.68.181 Sep 21 08:41:31 firewall sshd[6332]: Failed password for invalid user matt from 142.93.68.181 port 59184 ssh2 ...	2020-09-22 00:12:16
attackspam	2020-09-21T02:40:02.708915morrigan.ad5gb.com sshd[1300711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.68.181 user=root 2020-09-21T02:40:04.773200morrigan.ad5gb.com sshd[1300711]: Failed password for root from 142.93.68.181 port 55668 ssh2	2020-09-21 15:52:54
attackbots	TCP (SYN) 142.93.68.181:47400 -> port 23052, len 44	2020-09-21 07:47:37
attackbots	firewall-block, port(s): 22646/tcp	2020-09-05 04:30:04
attackbotsspam	trying to access non-authorized port	2020-08-31 21:46:10
attackspam	2020-08-24T21:12:50.488886vps1033 sshd[12368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.68.181 2020-08-24T21:12:50.483431vps1033 sshd[12368]: Invalid user vargas from 142.93.68.181 port 53998 2020-08-24T21:12:52.186131vps1033 sshd[12368]: Failed password for invalid user vargas from 142.93.68.181 port 53998 ssh2 2020-08-24T21:16:38.539613vps1033 sshd[20506]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.68.181 user=root 2020-08-24T21:16:40.208251vps1033 sshd[20506]: Failed password for root from 142.93.68.181 port 34200 ssh2 ...	2020-08-25 05:59:23
attack	Port Scan detected from 142.93.68.181 (US/United States/New Jersey/Clifton/m2.k12-solutions.com). 4 hits in the last 215 seconds	2020-08-09 22:51:03
attack	Aug 5 08:41:06 melroy-server sshd[21643]: Failed password for root from 142.93.68.181 port 46584 ssh2 ...	2020-08-05 16:36:56
attackbots	Aug 4 12:25:26 vpn01 sshd[18464]: Failed password for root from 142.93.68.181 port 52634 ssh2 ...	2020-08-04 20:50:29
attackbotsspam	Jul 26 07:59:17 marvibiene sshd[24874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.68.181 Jul 26 07:59:20 marvibiene sshd[24874]: Failed password for invalid user pjh from 142.93.68.181 port 36178 ssh2	2020-07-26 14:30:16
attackspam	Jul 23 07:21:05 server1 sshd\[25801\]: Failed password for invalid user siva from 142.93.68.181 port 44512 ssh2 Jul 23 07:25:00 server1 sshd\[26913\]: Invalid user tyy from 142.93.68.181 Jul 23 07:25:00 server1 sshd\[26913\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.68.181 Jul 23 07:25:02 server1 sshd\[26913\]: Failed password for invalid user tyy from 142.93.68.181 port 57880 ssh2 Jul 23 07:28:57 server1 sshd\[27896\]: Invalid user cmsftp from 142.93.68.181 ...	2020-07-23 21:51:56
attackspam	Jul 12 09:56:00 vps46666688 sshd[526]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.68.181 Jul 12 09:56:02 vps46666688 sshd[526]: Failed password for invalid user nz from 142.93.68.181 port 35640 ssh2 ...	2020-07-13 03:10:03
attackspambots	2020-07-06T06:48:59.635768abusebot.cloudsearch.cf sshd[19408]: Invalid user devuser from 142.93.68.181 port 56324 2020-07-06T06:48:59.641564abusebot.cloudsearch.cf sshd[19408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.68.181 2020-07-06T06:48:59.635768abusebot.cloudsearch.cf sshd[19408]: Invalid user devuser from 142.93.68.181 port 56324 2020-07-06T06:49:01.302745abusebot.cloudsearch.cf sshd[19408]: Failed password for invalid user devuser from 142.93.68.181 port 56324 ssh2 2020-07-06T06:53:42.676664abusebot.cloudsearch.cf sshd[19461]: Invalid user liming from 142.93.68.181 port 42070 2020-07-06T06:53:42.682713abusebot.cloudsearch.cf sshd[19461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.68.181 2020-07-06T06:53:42.676664abusebot.cloudsearch.cf sshd[19461]: Invalid user liming from 142.93.68.181 port 42070 2020-07-06T06:53:44.860775abusebot.cloudsearch.cf sshd[19461]: Failed passwor ...	2020-07-06 16:09:59
attackbots	Jun 25 18:54:10 debian-2gb-nbg1-2 kernel: \[15362710.967008\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=142.93.68.181 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=32515 PROTO=TCP SPT=41237 DPT=23384 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-26 02:20:32
attackspam	Fail2Ban Ban Triggered	2020-06-06 19:47:55
attackbots	Jun 1 09:34:16 ip-172-31-61-156 sshd[22768]: Failed password for root from 142.93.68.181 port 35044 ssh2 Jun 1 09:34:13 ip-172-31-61-156 sshd[22768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.68.181 user=root Jun 1 09:34:16 ip-172-31-61-156 sshd[22768]: Failed password for root from 142.93.68.181 port 35044 ssh2 Jun 1 09:37:07 ip-172-31-61-156 sshd[22953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.68.181 user=root Jun 1 09:37:10 ip-172-31-61-156 sshd[22953]: Failed password for root from 142.93.68.181 port 57784 ssh2 ...	2020-06-01 17:51:46
attackbotsspam	firewall-block, port(s): 31869/tcp	2020-05-31 19:33:05
attackspambots	May 24 16:49:40 odroid64 sshd\[8974\]: Invalid user hatti from 142.93.68.181 May 24 16:49:40 odroid64 sshd\[8974\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.68.181 ...	2020-05-24 23:21:03
attackspambots	TCP (SYN) 142.93.68.181:51871 -> port 20791, len 44	2020-05-24 18:33:52
attackspam	Port scanning [2 denied]	2020-05-22 16:43:13
attackspam	May 13 18:55:18 : SSH login attempts with invalid user	2020-05-14 06:48:33
attackspam	05/06/2020-06:07:35.959302 142.93.68.181 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-05-06 18:10:06
attackspambots	Invalid user vila from 142.93.68.181 port 49628	2020-05-01 03:12:32
attackbotsspam	04/25/2020-15:11:05.174508 142.93.68.181 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-04-26 04:08:42
attack	SSH Scan	2020-04-25 17:09:22
attack	2020-04-24 11:51:13,115 fail2ban.actions [22360]: NOTICE [sshd] Ban 142.93.68.181 2020-04-24 12:26:39,172 fail2ban.actions [22360]: NOTICE [sshd] Ban 142.93.68.181 2020-04-24 12:59:58,136 fail2ban.actions [22360]: NOTICE [sshd] Ban 142.93.68.181 2020-04-24 13:36:09,526 fail2ban.actions [22360]: NOTICE [sshd] Ban 142.93.68.181 2020-04-24 14:10:41,026 fail2ban.actions [22360]: NOTICE [sshd] Ban 142.93.68.181 ...	2020-04-24 20:17:31
attackbots	Apr 23 18:57:41 server sshd[21931]: Failed password for invalid user pj from 142.93.68.181 port 44146 ssh2 Apr 23 19:56:53 server sshd[37721]: Failed password for root from 142.93.68.181 port 58286 ssh2 Apr 23 19:59:49 server sshd[38472]: Failed password for invalid user developer from 142.93.68.181 port 57464 ssh2	2020-04-24 02:20:40

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.68.181
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53177
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.68.181.			IN	A

;; AUTHORITY SECTION:
.			177	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042300 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 23 14:57:43 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

181.68.93.142.in-addr.arpa domain name pointer m2.k12-solutions.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
181.68.93.142.in-addr.arpa	name = m2.k12-solutions.com.

Authoritative answers can be found from:

IP	类型	评论内容	时间
200.0.236.210	attackbots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-07-09T10:31:54Z and 2020-07-09T10:38:05Z	2020-07-09 18:52:47
137.74.119.50	attackspam	Jul 9 08:37:18 server sshd[17297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.119.50 Jul 9 08:37:19 server sshd[17297]: Failed password for invalid user cflou from 137.74.119.50 port 55314 ssh2 Jul 9 08:44:35 server sshd[17875]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.119.50 Jul 9 08:44:37 server sshd[17875]: Failed password for invalid user hfcheng from 137.74.119.50 port 34880 ssh2	2020-07-09 18:30:43
192.241.222.45	attack	TCP ports : 70 / 1521 / 44818	2020-07-09 18:41:55
125.27.126.200	attackspambots	Icarus honeypot on github	2020-07-09 18:47:35
106.53.97.24	attackbotsspam	Jul 9 06:54:24 home sshd[23533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.97.24 Jul 9 06:54:27 home sshd[23533]: Failed password for invalid user ptao from 106.53.97.24 port 40362 ssh2 Jul 9 06:55:35 home sshd[23648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.97.24 ...	2020-07-09 18:41:25
112.166.133.216	attackspam	Jul 9 10:38:53 l03 sshd[17475]: Invalid user webuser from 112.166.133.216 port 58794 ...	2020-07-09 18:56:37
103.141.232.10	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-07-09 19:07:07
129.204.238.250	attackspam	SSH Bruteforce attack	2020-07-09 18:40:47
213.230.90.55	attackspambots	Jul 9 05:50:53 smtp postfix/smtpd[35300]: NOQUEUE: reject: RCPT from unknown[213.230.90.55]: 554 5.7.1 Service unavailable; Client host [213.230.90.55] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?213.230.90.55; from= to= proto=ESMTP helo=<[213.230.90.55]> ...	2020-07-09 19:08:41
203.85.72.177	attackspambots	Honeypot attack, port: 445, PTR: 203-85-72-177.static.hk.net.	2020-07-09 18:45:13
46.238.122.54	attackbotsspam	5x Failed Password	2020-07-09 19:09:30
181.129.127.146	attackspam	Unauthorised access (Jul 9) SRC=181.129.127.146 LEN=48 TTL=109 ID=31364 DF TCP DPT=445 WINDOW=8192 SYN	2020-07-09 18:37:36
152.174.65.145	attackbots	[Wed Jul 08 22:43:40.322918 2020] [php7:error] [pid 70441] [client 152.174.65.145:54854] script /Library/Server/Web/Data/Sites/worldawakeinc.org/wp-login.php not found or unable to stat	2020-07-09 19:00:31
201.71.32.87	attackspam	Honeypot attack, port: 445, PTR: static-201-71-32-87.v4.naclick.com.br.	2020-07-09 18:41:11
192.241.226.183	attackbotsspam	...	2020-07-09 18:32:45

最近上报的IP列表

136.164.40.60	175.165.231.53	188.115.182.144	37.255.233.80
142.75.72.142	20.79.182.207	186.89.197.8	69.12.66.202
52.226.79.76	151.45.152.156	180.249.3.34	187.145.21.110
49.232.69.39	123.36.117.57	219.159.110.127	109.116.220.113
36.91.76.171	27.72.30.175	223.150.107.23	110.138.68.182