142.93.246.239

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	ssh brute force	2020-03-09 13:52:17

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.246.42	attackspambots	SSH Login Bruteforce	2020-09-08 03:09:58
142.93.246.42	attackbots	Sep 7 12:26:05 MainVPS sshd[10732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Sep 7 12:26:07 MainVPS sshd[10732]: Failed password for root from 142.93.246.42 port 47020 ssh2 Sep 7 12:30:04 MainVPS sshd[16861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Sep 7 12:30:06 MainVPS sshd[16861]: Failed password for root from 142.93.246.42 port 46532 ssh2 Sep 7 12:33:51 MainVPS sshd[24197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Sep 7 12:33:53 MainVPS sshd[24197]: Failed password for root from 142.93.246.42 port 46046 ssh2 ...	2020-09-07 18:38:58
142.93.246.42	attackspambots	(sshd) Failed SSH login from 142.93.246.42 (US/United States/-): 5 in the last 3600 secs	2020-08-28 21:43:03
142.93.246.42	attackbots	invalid user	2020-08-28 15:27:02
142.93.246.42	attack	'Fail2Ban'	2020-08-24 09:25:39
142.93.246.42	attackspam	2020-08-22T08:15:33.389407vps751288.ovh.net sshd\[26569\]: Invalid user jana from 142.93.246.42 port 43498 2020-08-22T08:15:33.398096vps751288.ovh.net sshd\[26569\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 2020-08-22T08:15:35.118809vps751288.ovh.net sshd\[26569\]: Failed password for invalid user jana from 142.93.246.42 port 43498 ssh2 2020-08-22T08:19:33.967472vps751288.ovh.net sshd\[26595\]: Invalid user alexandra from 142.93.246.42 port 52482 2020-08-22T08:19:33.973702vps751288.ovh.net sshd\[26595\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42	2020-08-22 14:40:16
142.93.246.42	attackbots	Aug 20 14:50:22 sso sshd[15567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 Aug 20 14:50:24 sso sshd[15567]: Failed password for invalid user lfd from 142.93.246.42 port 45452 ssh2 ...	2020-08-20 21:43:59
142.93.246.42	attackspambots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-20T12:03:59Z and 2020-08-20T12:11:51Z	2020-08-20 20:11:59
142.93.246.42	attackspambots	2020-08-19T04:07:01.641367shield sshd\[24416\]: Invalid user lqx from 142.93.246.42 port 59456 2020-08-19T04:07:01.650018shield sshd\[24416\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 2020-08-19T04:07:03.669370shield sshd\[24416\]: Failed password for invalid user lqx from 142.93.246.42 port 59456 ssh2 2020-08-19T04:10:41.269912shield sshd\[24696\]: Invalid user admin from 142.93.246.42 port 39044 2020-08-19T04:10:41.278362shield sshd\[24696\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42	2020-08-19 12:40:19
142.93.246.42	attack	Automatic Fail2ban report - Trying login SSH	2020-08-19 04:27:33
142.93.246.42	attackspam	fail2ban/Aug 15 01:39:24 h1962932 sshd[10329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 15 01:39:26 h1962932 sshd[10329]: Failed password for root from 142.93.246.42 port 56728 ssh2 Aug 15 01:43:47 h1962932 sshd[10531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 15 01:43:49 h1962932 sshd[10531]: Failed password for root from 142.93.246.42 port 37618 ssh2 Aug 15 01:48:07 h1962932 sshd[13310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 15 01:48:09 h1962932 sshd[13310]: Failed password for root from 142.93.246.42 port 46740 ssh2	2020-08-15 08:57:53
142.93.246.42	attackbots	Aug 7 13:53:13 ovpn sshd\[15541\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 7 13:53:16 ovpn sshd\[15541\]: Failed password for root from 142.93.246.42 port 50526 ssh2 Aug 7 13:58:57 ovpn sshd\[17913\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 7 13:58:59 ovpn sshd\[17913\]: Failed password for root from 142.93.246.42 port 36444 ssh2 Aug 7 14:00:40 ovpn sshd\[18709\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root	2020-08-08 03:10:29
142.93.246.42	attackspam	2020-08-04T14:33:10+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-08-04 22:21:58
142.93.246.42	attackspam	Jul 28 00:44:41 gospond sshd[26578]: Invalid user liuziyuan from 142.93.246.42 port 55216 Jul 28 00:44:43 gospond sshd[26578]: Failed password for invalid user liuziyuan from 142.93.246.42 port 55216 ssh2 Jul 28 00:45:56 gospond sshd[26595]: Invalid user sxltzxkt from 142.93.246.42 port 42322 ...	2020-07-28 07:51:31
142.93.246.42	attackbotsspam	$f2bV_matches	2020-07-27 01:10:48

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.246.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1114
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.246.239.			IN	A

;; AUTHORITY SECTION:
.			552	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030900 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 09 13:52:11 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 239.246.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 239.246.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.82.214.218	attack	Failed password for root from 222.82.214.218 port 12335 ssh2	2020-04-29 23:29:09
103.9.77.38	attack	repeated spam emails e pishing, every day	2020-04-29 23:00:22
14.255.84.129	attackspambots	Unauthorized connection attempt from IP address 14.255.84.129 on Port 445(SMB)	2020-04-29 23:27:35
92.239.176.230	attackspambots	Apr 29 15:19:49 ArkNodeAT sshd\[1625\]: Invalid user guest from 92.239.176.230 Apr 29 15:19:49 ArkNodeAT sshd\[1625\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.239.176.230 Apr 29 15:19:51 ArkNodeAT sshd\[1625\]: Failed password for invalid user guest from 92.239.176.230 port 58564 ssh2	2020-04-29 22:44:20
183.82.115.50	attackbotsspam	Unauthorized connection attempt from IP address 183.82.115.50 on Port 445(SMB)	2020-04-29 22:58:59
191.31.28.244	attackspambots	Apr 29 14:01:54 ns3164893 sshd[30213]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.31.28.244 Apr 29 14:01:56 ns3164893 sshd[30213]: Failed password for invalid user sibyl from 191.31.28.244 port 36455 ssh2 ...	2020-04-29 23:00:52
77.236.228.26	attack	Unauthorized connection attempt from IP address 77.236.228.26 on Port 445(SMB)	2020-04-29 23:09:57
178.209.98.7	attack	Invalid user daniel from 178.209.98.7 port 43242	2020-04-29 23:16:14
111.229.139.95	attack	Apr 29 12:20:41 vlre-nyc-1 sshd\[8293\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.139.95 user=root Apr 29 12:20:44 vlre-nyc-1 sshd\[8293\]: Failed password for root from 111.229.139.95 port 53697 ssh2 Apr 29 12:24:55 vlre-nyc-1 sshd\[8428\]: Invalid user tomcat from 111.229.139.95 Apr 29 12:24:55 vlre-nyc-1 sshd\[8428\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.139.95 Apr 29 12:24:57 vlre-nyc-1 sshd\[8428\]: Failed password for invalid user tomcat from 111.229.139.95 port 43256 ssh2 ...	2020-04-29 23:05:51
185.132.53.100	attack	name="portscan detected" action="portscan" fwrule="60017" initf="eth1" mark="0x21bd" app="445" srcmac="78:0c:f0:6c:d7:41" dstmac="00:1a:8c:f0:77:c1" srcip="185.132.53.100"	2020-04-29 23:07:08
179.162.186.63	attackspambots	Bruteforce detected by fail2ban	2020-04-29 22:59:26
35.229.135.250	attackspam	Apr 29 08:29:19 NPSTNNYC01T sshd[26715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.229.135.250 Apr 29 08:29:21 NPSTNNYC01T sshd[26715]: Failed password for invalid user ss from 35.229.135.250 port 58800 ssh2 Apr 29 08:32:31 NPSTNNYC01T sshd[26978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.229.135.250 ...	2020-04-29 22:51:14
51.38.238.165	attackspambots	Failed password for root from 51.38.238.165 port 53798 ssh2	2020-04-29 23:23:01
96.114.71.147	attackspambots	$f2bV_matches	2020-04-29 22:51:30
123.206.81.59	attackbotsspam	SSH bruteforce	2020-04-29 23:19:09

最近上报的IP列表

202.67.38.10	45.136.109.219	240.90.230.51	185.246.187.44
176.98.42.15	190.174.195.131	116.226.248.217	148.70.151.134
20.7.170.201	185.162.167.27	83.25.29.45	142.91.207.173
14.170.237.192	202.137.131.162	161.10.219.211	40.247.8.34
177.43.160.149	113.23.6.24	161.32.52.13	51.158.127.70