142.93.68.181 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	TCP (SYN) 142.93.68.181:58096 -> port 5163, len 44	2020-10-10 06:23:00
attackspambots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-10-09 22:33:25
attackspam	Port scan denied	2020-10-09 14:23:39
attackbots	Sep 21 08:41:29 firewall sshd[6332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.68.181 Sep 21 08:41:29 firewall sshd[6332]: Invalid user matt from 142.93.68.181 Sep 21 08:41:31 firewall sshd[6332]: Failed password for invalid user matt from 142.93.68.181 port 59184 ssh2 ...	2020-09-22 00:12:16
attackspam	2020-09-21T02:40:02.708915morrigan.ad5gb.com sshd[1300711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.68.181 user=root 2020-09-21T02:40:04.773200morrigan.ad5gb.com sshd[1300711]: Failed password for root from 142.93.68.181 port 55668 ssh2	2020-09-21 15:52:54
attackbots	TCP (SYN) 142.93.68.181:47400 -> port 23052, len 44	2020-09-21 07:47:37
attackbots	firewall-block, port(s): 22646/tcp	2020-09-05 04:30:04
attackbotsspam	trying to access non-authorized port	2020-08-31 21:46:10
attackspam	2020-08-24T21:12:50.488886vps1033 sshd[12368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.68.181 2020-08-24T21:12:50.483431vps1033 sshd[12368]: Invalid user vargas from 142.93.68.181 port 53998 2020-08-24T21:12:52.186131vps1033 sshd[12368]: Failed password for invalid user vargas from 142.93.68.181 port 53998 ssh2 2020-08-24T21:16:38.539613vps1033 sshd[20506]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.68.181 user=root 2020-08-24T21:16:40.208251vps1033 sshd[20506]: Failed password for root from 142.93.68.181 port 34200 ssh2 ...	2020-08-25 05:59:23
attack	Port Scan detected from 142.93.68.181 (US/United States/New Jersey/Clifton/m2.k12-solutions.com). 4 hits in the last 215 seconds	2020-08-09 22:51:03
attack	Aug 5 08:41:06 melroy-server sshd[21643]: Failed password for root from 142.93.68.181 port 46584 ssh2 ...	2020-08-05 16:36:56
attackbots	Aug 4 12:25:26 vpn01 sshd[18464]: Failed password for root from 142.93.68.181 port 52634 ssh2 ...	2020-08-04 20:50:29
attackbotsspam	Jul 26 07:59:17 marvibiene sshd[24874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.68.181 Jul 26 07:59:20 marvibiene sshd[24874]: Failed password for invalid user pjh from 142.93.68.181 port 36178 ssh2	2020-07-26 14:30:16
attackspam	Jul 23 07:21:05 server1 sshd\[25801\]: Failed password for invalid user siva from 142.93.68.181 port 44512 ssh2 Jul 23 07:25:00 server1 sshd\[26913\]: Invalid user tyy from 142.93.68.181 Jul 23 07:25:00 server1 sshd\[26913\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.68.181 Jul 23 07:25:02 server1 sshd\[26913\]: Failed password for invalid user tyy from 142.93.68.181 port 57880 ssh2 Jul 23 07:28:57 server1 sshd\[27896\]: Invalid user cmsftp from 142.93.68.181 ...	2020-07-23 21:51:56
attackspam	Jul 12 09:56:00 vps46666688 sshd[526]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.68.181 Jul 12 09:56:02 vps46666688 sshd[526]: Failed password for invalid user nz from 142.93.68.181 port 35640 ssh2 ...	2020-07-13 03:10:03
attackspambots	2020-07-06T06:48:59.635768abusebot.cloudsearch.cf sshd[19408]: Invalid user devuser from 142.93.68.181 port 56324 2020-07-06T06:48:59.641564abusebot.cloudsearch.cf sshd[19408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.68.181 2020-07-06T06:48:59.635768abusebot.cloudsearch.cf sshd[19408]: Invalid user devuser from 142.93.68.181 port 56324 2020-07-06T06:49:01.302745abusebot.cloudsearch.cf sshd[19408]: Failed password for invalid user devuser from 142.93.68.181 port 56324 ssh2 2020-07-06T06:53:42.676664abusebot.cloudsearch.cf sshd[19461]: Invalid user liming from 142.93.68.181 port 42070 2020-07-06T06:53:42.682713abusebot.cloudsearch.cf sshd[19461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.68.181 2020-07-06T06:53:42.676664abusebot.cloudsearch.cf sshd[19461]: Invalid user liming from 142.93.68.181 port 42070 2020-07-06T06:53:44.860775abusebot.cloudsearch.cf sshd[19461]: Failed passwor ...	2020-07-06 16:09:59
attackbots	Jun 25 18:54:10 debian-2gb-nbg1-2 kernel: \[15362710.967008\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=142.93.68.181 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=32515 PROTO=TCP SPT=41237 DPT=23384 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-26 02:20:32
attackspam	Fail2Ban Ban Triggered	2020-06-06 19:47:55
attackbots	Jun 1 09:34:16 ip-172-31-61-156 sshd[22768]: Failed password for root from 142.93.68.181 port 35044 ssh2 Jun 1 09:34:13 ip-172-31-61-156 sshd[22768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.68.181 user=root Jun 1 09:34:16 ip-172-31-61-156 sshd[22768]: Failed password for root from 142.93.68.181 port 35044 ssh2 Jun 1 09:37:07 ip-172-31-61-156 sshd[22953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.68.181 user=root Jun 1 09:37:10 ip-172-31-61-156 sshd[22953]: Failed password for root from 142.93.68.181 port 57784 ssh2 ...	2020-06-01 17:51:46
attackbotsspam	firewall-block, port(s): 31869/tcp	2020-05-31 19:33:05
attackspambots	May 24 16:49:40 odroid64 sshd\[8974\]: Invalid user hatti from 142.93.68.181 May 24 16:49:40 odroid64 sshd\[8974\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.68.181 ...	2020-05-24 23:21:03
attackspambots	TCP (SYN) 142.93.68.181:51871 -> port 20791, len 44	2020-05-24 18:33:52
attackspam	Port scanning [2 denied]	2020-05-22 16:43:13
attackspam	May 13 18:55:18 : SSH login attempts with invalid user	2020-05-14 06:48:33
attackspam	05/06/2020-06:07:35.959302 142.93.68.181 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-05-06 18:10:06
attackspambots	Invalid user vila from 142.93.68.181 port 49628	2020-05-01 03:12:32
attackbotsspam	04/25/2020-15:11:05.174508 142.93.68.181 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-04-26 04:08:42
attack	SSH Scan	2020-04-25 17:09:22
attack	2020-04-24 11:51:13,115 fail2ban.actions [22360]: NOTICE [sshd] Ban 142.93.68.181 2020-04-24 12:26:39,172 fail2ban.actions [22360]: NOTICE [sshd] Ban 142.93.68.181 2020-04-24 12:59:58,136 fail2ban.actions [22360]: NOTICE [sshd] Ban 142.93.68.181 2020-04-24 13:36:09,526 fail2ban.actions [22360]: NOTICE [sshd] Ban 142.93.68.181 2020-04-24 14:10:41,026 fail2ban.actions [22360]: NOTICE [sshd] Ban 142.93.68.181 ...	2020-04-24 20:17:31
attackbots	Apr 23 18:57:41 server sshd[21931]: Failed password for invalid user pj from 142.93.68.181 port 44146 ssh2 Apr 23 19:56:53 server sshd[37721]: Failed password for root from 142.93.68.181 port 58286 ssh2 Apr 23 19:59:49 server sshd[38472]: Failed password for invalid user developer from 142.93.68.181 port 57464 ssh2	2020-04-24 02:20:40

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.68.181
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53177
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.68.181.			IN	A

;; AUTHORITY SECTION:
.			177	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042300 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 23 14:57:43 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

181.68.93.142.in-addr.arpa domain name pointer m2.k12-solutions.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
181.68.93.142.in-addr.arpa	name = m2.k12-solutions.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
220.165.15.228	attackbotsspam	Jul 12 00:36:03 dignus sshd[7440]: Failed password for invalid user yanis from 220.165.15.228 port 51505 ssh2 Jul 12 00:40:40 dignus sshd[7888]: Invalid user jerry from 220.165.15.228 port 52580 Jul 12 00:40:40 dignus sshd[7888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.165.15.228 Jul 12 00:40:41 dignus sshd[7888]: Failed password for invalid user jerry from 220.165.15.228 port 52580 ssh2 Jul 12 00:45:22 dignus sshd[8359]: Invalid user java from 220.165.15.228 port 53654 ...	2020-07-12 16:56:12
64.227.50.96	attackbotsspam	php WP PHPmyadamin ABUSE blocked for 12h	2020-07-12 16:53:10
185.143.73.58	attackspambots	Rude login attack (557 tries in 1d)	2020-07-12 17:08:58
119.28.221.132	attackbotsspam	2020-07-12T07:00:42.253777abusebot-5.cloudsearch.cf sshd[25964]: Invalid user librenms from 119.28.221.132 port 36526 2020-07-12T07:00:42.259466abusebot-5.cloudsearch.cf sshd[25964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.221.132 2020-07-12T07:00:42.253777abusebot-5.cloudsearch.cf sshd[25964]: Invalid user librenms from 119.28.221.132 port 36526 2020-07-12T07:00:44.388760abusebot-5.cloudsearch.cf sshd[25964]: Failed password for invalid user librenms from 119.28.221.132 port 36526 ssh2 2020-07-12T07:05:09.192032abusebot-5.cloudsearch.cf sshd[25980]: Invalid user admin from 119.28.221.132 port 33962 2020-07-12T07:05:09.197965abusebot-5.cloudsearch.cf sshd[25980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.221.132 2020-07-12T07:05:09.192032abusebot-5.cloudsearch.cf sshd[25980]: Invalid user admin from 119.28.221.132 port 33962 2020-07-12T07:05:11.315332abusebot-5.cloudsearch.cf ssh ...	2020-07-12 16:42:44
46.38.148.18	attackspam	2020-07-12T03:05:08.296504linuxbox-skyline auth[887621]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=webdisk.app rhost=46.38.148.18 ...	2020-07-12 17:11:40
193.32.161.149	attackspambots	Port scan: Attack repeated for 24 hours	2020-07-12 16:56:44
187.35.124.152	attackbotsspam	Invalid user kaylana from 187.35.124.152 port 42582	2020-07-12 16:46:22
157.230.132.100	attackbots	"Unauthorized connection attempt on SSHD detected"	2020-07-12 17:13:58
81.214.50.56	attackbotsspam	Automatic report - Banned IP Access	2020-07-12 16:52:06
217.160.241.170	attack	SSH Brute-Force Attack	2020-07-12 16:40:12
35.245.33.180	attack	Jul 12 10:33:56 abendstille sshd\[26097\]: Invalid user www from 35.245.33.180 Jul 12 10:33:56 abendstille sshd\[26097\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.245.33.180 Jul 12 10:33:58 abendstille sshd\[26097\]: Failed password for invalid user www from 35.245.33.180 port 44030 ssh2 Jul 12 10:38:52 abendstille sshd\[30611\]: Invalid user javi from 35.245.33.180 Jul 12 10:38:52 abendstille sshd\[30611\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.245.33.180 ...	2020-07-12 16:41:50
218.92.0.133	attackbots	Jul 12 10:38:02 piServer sshd[10898]: Failed password for root from 218.92.0.133 port 33839 ssh2 Jul 12 10:38:07 piServer sshd[10898]: Failed password for root from 218.92.0.133 port 33839 ssh2 Jul 12 10:38:11 piServer sshd[10898]: Failed password for root from 218.92.0.133 port 33839 ssh2 Jul 12 10:38:15 piServer sshd[10898]: Failed password for root from 218.92.0.133 port 33839 ssh2 ...	2020-07-12 16:53:54
177.87.68.182	attackspambots	Jul 12 05:34:21 mail.srvfarm.net postfix/smtpd[1861403]: warning: unknown[177.87.68.182]: SASL PLAIN authentication failed: Jul 12 05:34:21 mail.srvfarm.net postfix/smtpd[1861403]: lost connection after AUTH from unknown[177.87.68.182] Jul 12 05:35:21 mail.srvfarm.net postfix/smtpd[1865114]: warning: unknown[177.87.68.182]: SASL PLAIN authentication failed: Jul 12 05:35:21 mail.srvfarm.net postfix/smtpd[1865114]: lost connection after AUTH from unknown[177.87.68.182] Jul 12 05:42:55 mail.srvfarm.net postfix/smtps/smtpd[1865752]: warning: unknown[177.87.68.182]: SASL PLAIN authentication failed:	2020-07-12 17:09:47
185.143.73.203	attackspam	Jul 12 10:56:41 relay postfix/smtpd\[26932\]: warning: unknown\[185.143.73.203\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 12 10:57:24 relay postfix/smtpd\[26913\]: warning: unknown\[185.143.73.203\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 12 10:58:06 relay postfix/smtpd\[27382\]: warning: unknown\[185.143.73.203\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 12 10:58:47 relay postfix/smtpd\[25643\]: warning: unknown\[185.143.73.203\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 12 10:59:31 relay postfix/smtpd\[31784\]: warning: unknown\[185.143.73.203\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-12 17:06:41
222.186.173.215	attackbots	Jul 12 10:43:57 piServer sshd[11598]: Failed password for root from 222.186.173.215 port 15590 ssh2 Jul 12 10:44:02 piServer sshd[11598]: Failed password for root from 222.186.173.215 port 15590 ssh2 Jul 12 10:44:07 piServer sshd[11598]: Failed password for root from 222.186.173.215 port 15590 ssh2 Jul 12 10:44:11 piServer sshd[11598]: Failed password for root from 222.186.173.215 port 15590 ssh2 ...	2020-07-12 16:50:54

最近上报的IP列表

136.164.40.60	175.165.231.53	188.115.182.144	37.255.233.80
142.75.72.142	20.79.182.207	186.89.197.8	69.12.66.202
52.226.79.76	151.45.152.156	180.249.3.34	187.145.21.110
49.232.69.39	123.36.117.57	219.159.110.127	109.116.220.113
36.91.76.171	27.72.30.175	223.150.107.23	110.138.68.182