142.93.246.239

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	ssh brute force	2020-03-09 13:52:17

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.246.42	attackspambots	SSH Login Bruteforce	2020-09-08 03:09:58
142.93.246.42	attackbots	Sep 7 12:26:05 MainVPS sshd[10732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Sep 7 12:26:07 MainVPS sshd[10732]: Failed password for root from 142.93.246.42 port 47020 ssh2 Sep 7 12:30:04 MainVPS sshd[16861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Sep 7 12:30:06 MainVPS sshd[16861]: Failed password for root from 142.93.246.42 port 46532 ssh2 Sep 7 12:33:51 MainVPS sshd[24197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Sep 7 12:33:53 MainVPS sshd[24197]: Failed password for root from 142.93.246.42 port 46046 ssh2 ...	2020-09-07 18:38:58
142.93.246.42	attackspambots	(sshd) Failed SSH login from 142.93.246.42 (US/United States/-): 5 in the last 3600 secs	2020-08-28 21:43:03
142.93.246.42	attackbots	invalid user	2020-08-28 15:27:02
142.93.246.42	attack	'Fail2Ban'	2020-08-24 09:25:39
142.93.246.42	attackspam	2020-08-22T08:15:33.389407vps751288.ovh.net sshd\[26569\]: Invalid user jana from 142.93.246.42 port 43498 2020-08-22T08:15:33.398096vps751288.ovh.net sshd\[26569\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 2020-08-22T08:15:35.118809vps751288.ovh.net sshd\[26569\]: Failed password for invalid user jana from 142.93.246.42 port 43498 ssh2 2020-08-22T08:19:33.967472vps751288.ovh.net sshd\[26595\]: Invalid user alexandra from 142.93.246.42 port 52482 2020-08-22T08:19:33.973702vps751288.ovh.net sshd\[26595\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42	2020-08-22 14:40:16
142.93.246.42	attackbots	Aug 20 14:50:22 sso sshd[15567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 Aug 20 14:50:24 sso sshd[15567]: Failed password for invalid user lfd from 142.93.246.42 port 45452 ssh2 ...	2020-08-20 21:43:59
142.93.246.42	attackspambots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-20T12:03:59Z and 2020-08-20T12:11:51Z	2020-08-20 20:11:59
142.93.246.42	attackspambots	2020-08-19T04:07:01.641367shield sshd\[24416\]: Invalid user lqx from 142.93.246.42 port 59456 2020-08-19T04:07:01.650018shield sshd\[24416\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 2020-08-19T04:07:03.669370shield sshd\[24416\]: Failed password for invalid user lqx from 142.93.246.42 port 59456 ssh2 2020-08-19T04:10:41.269912shield sshd\[24696\]: Invalid user admin from 142.93.246.42 port 39044 2020-08-19T04:10:41.278362shield sshd\[24696\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42	2020-08-19 12:40:19
142.93.246.42	attack	Automatic Fail2ban report - Trying login SSH	2020-08-19 04:27:33
142.93.246.42	attackspam	fail2ban/Aug 15 01:39:24 h1962932 sshd[10329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 15 01:39:26 h1962932 sshd[10329]: Failed password for root from 142.93.246.42 port 56728 ssh2 Aug 15 01:43:47 h1962932 sshd[10531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 15 01:43:49 h1962932 sshd[10531]: Failed password for root from 142.93.246.42 port 37618 ssh2 Aug 15 01:48:07 h1962932 sshd[13310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 15 01:48:09 h1962932 sshd[13310]: Failed password for root from 142.93.246.42 port 46740 ssh2	2020-08-15 08:57:53
142.93.246.42	attackbots	Aug 7 13:53:13 ovpn sshd\[15541\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 7 13:53:16 ovpn sshd\[15541\]: Failed password for root from 142.93.246.42 port 50526 ssh2 Aug 7 13:58:57 ovpn sshd\[17913\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 7 13:58:59 ovpn sshd\[17913\]: Failed password for root from 142.93.246.42 port 36444 ssh2 Aug 7 14:00:40 ovpn sshd\[18709\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root	2020-08-08 03:10:29
142.93.246.42	attackspam	2020-08-04T14:33:10+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-08-04 22:21:58
142.93.246.42	attackspam	Jul 28 00:44:41 gospond sshd[26578]: Invalid user liuziyuan from 142.93.246.42 port 55216 Jul 28 00:44:43 gospond sshd[26578]: Failed password for invalid user liuziyuan from 142.93.246.42 port 55216 ssh2 Jul 28 00:45:56 gospond sshd[26595]: Invalid user sxltzxkt from 142.93.246.42 port 42322 ...	2020-07-28 07:51:31
142.93.246.42	attackbotsspam	$f2bV_matches	2020-07-27 01:10:48

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.246.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1114
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.246.239.			IN	A

;; AUTHORITY SECTION:
.			552	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030900 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 09 13:52:11 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 239.246.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 239.246.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
124.156.185.149	attack	$f2bV_matches	2019-06-28 18:52:05
35.173.137.45	attackbots	IP: 35.173.137.45 ASN: AS14618 Amazon.com Inc. Port: World Wide Web HTTP 80 Found in one or more Blacklists Date: 28/06/2019 5:24:13 AM UTC	2019-06-28 18:43:11
123.206.61.46	attack	28.06.2019 10:33:18 SSH access blocked by firewall	2019-06-28 19:17:09
77.83.202.38	attackbotsspam	ft-1848-fussball.de 77.83.202.38 \[28/Jun/2019:07:09:13 +0200\] "POST /wp-login.php HTTP/1.1" 200 2313 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" ft-1848-fussball.de 77.83.202.38 \[28/Jun/2019:07:09:14 +0200\] "POST /wp-login.php HTTP/1.1" 200 2277 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-06-28 18:40:16
13.65.28.14	attack	$f2bV_matches	2019-06-28 18:37:12
201.46.62.100	attack	libpam_shield report: forced login attempt	2019-06-28 18:55:43
46.101.126.68	attackbots	login attack	2019-06-28 18:34:05
113.87.46.67	attackspam	Jun 28 07:07:37 xm3 sshd[11887]: Failed password for invalid user admin from 113.87.46.67 port 48623 ssh2 Jun 28 07:07:37 xm3 sshd[11887]: Received disconnect from 113.87.46.67: 11: Bye Bye [preauth] Jun 28 07:20:22 xm3 sshd[8772]: Failed password for invalid user jennyfer from 113.87.46.67 port 47030 ssh2 Jun 28 07:20:22 xm3 sshd[8772]: Received disconnect from 113.87.46.67: 11: Bye Bye [preauth] Jun 28 07:21:39 xm3 sshd[9554]: Failed password for invalid user oracle from 113.87.46.67 port 48014 ssh2 Jun 28 07:21:39 xm3 sshd[9554]: Received disconnect from 113.87.46.67: 11: Bye Bye [preauth] Jun 28 07:22:58 xm3 sshd[11998]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.87.46.67 user=r.r Jun 28 07:23:00 xm3 sshd[11998]: Failed password for r.r from 113.87.46.67 port 49222 ssh2 Jun 28 07:23:00 xm3 sshd[11998]: Received disconnect from 113.87.46.67: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.htm	2019-06-28 19:03:34
141.98.81.81	attackbots	Jun 28 10:30:26 unicornsoft sshd\[20888\]: Invalid user admin from 141.98.81.81 Jun 28 10:30:26 unicornsoft sshd\[20888\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.81 Jun 28 10:30:29 unicornsoft sshd\[20888\]: Failed password for invalid user admin from 141.98.81.81 port 53861 ssh2	2019-06-28 18:47:04
106.75.17.46	attackbots	Jan 23 14:21:50 vtv3 sshd\[2761\]: Invalid user nicola from 106.75.17.46 port 45064 Jan 23 14:21:50 vtv3 sshd\[2761\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.17.46 Jan 23 14:21:53 vtv3 sshd\[2761\]: Failed password for invalid user nicola from 106.75.17.46 port 45064 ssh2 Jan 23 14:27:06 vtv3 sshd\[4199\]: Invalid user jupiter from 106.75.17.46 port 47164 Jan 23 14:27:06 vtv3 sshd\[4199\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.17.46 Feb 10 00:43:54 vtv3 sshd\[31530\]: Invalid user server from 106.75.17.46 port 56682 Feb 10 00:43:54 vtv3 sshd\[31530\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.17.46 Feb 10 00:43:56 vtv3 sshd\[31530\]: Failed password for invalid user server from 106.75.17.46 port 56682 ssh2 Feb 10 00:49:45 vtv3 sshd\[592\]: Invalid user service from 106.75.17.46 port 50292 Feb 10 00:49:45 vtv3 sshd\[592\]: pam_unix\(sshd:	2019-06-28 19:07:09
80.211.54.154	attack	2019-06-28T10:42:04.317009abusebot-7.cloudsearch.cf sshd\[15504\]: Invalid user test from 80.211.54.154 port 34226	2019-06-28 19:10:34
218.92.0.156	attackspam	2019-06-28T06:08:53.431557+01:00 suse sshd[5956]: User root from 218.92.0.156 not allowed because not listed in AllowUsers 2019-06-28T06:08:56.622585+01:00 suse sshd[5956]: error: PAM: Authentication failure for illegal user root from 218.92.0.156 2019-06-28T06:08:53.431557+01:00 suse sshd[5956]: User root from 218.92.0.156 not allowed because not listed in AllowUsers 2019-06-28T06:08:56.622585+01:00 suse sshd[5956]: error: PAM: Authentication failure for illegal user root from 218.92.0.156 2019-06-28T06:08:53.431557+01:00 suse sshd[5956]: User root from 218.92.0.156 not allowed because not listed in AllowUsers 2019-06-28T06:08:56.622585+01:00 suse sshd[5956]: error: PAM: Authentication failure for illegal user root from 218.92.0.156 2019-06-28T06:08:56.624068+01:00 suse sshd[5956]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.156 port 4881 ssh2 ...	2019-06-28 18:53:04
129.204.210.237	attackspam	Jun 28 07:12:18 MK-Soft-VM5 sshd\[16311\]: Invalid user nathalie from 129.204.210.237 port 57084 Jun 28 07:12:18 MK-Soft-VM5 sshd\[16311\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.210.237 Jun 28 07:12:21 MK-Soft-VM5 sshd\[16311\]: Failed password for invalid user nathalie from 129.204.210.237 port 57084 ssh2 ...	2019-06-28 19:17:36
14.169.169.219	attackspambots	Jun 28 06:17:03 s20-ffm-r02 postfix/smtpd[4877]: warning: 14.169.169.219: address not listed for hostname static.vnpt.vn Jun 28 06:17:03 s20-ffm-r02 postfix/smtpd[4877]: connect from unknown[14.169.169.219] Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.169.169.219	2019-06-28 19:22:58
177.21.194.120	attackspambots	Brute force attempt	2019-06-28 18:58:05

最近上报的IP列表

202.67.38.10	45.136.109.219	240.90.230.51	185.246.187.44
176.98.42.15	190.174.195.131	116.226.248.217	148.70.151.134
20.7.170.201	185.162.167.27	83.25.29.45	142.91.207.173
14.170.237.192	202.137.131.162	161.10.219.211	40.247.8.34
177.43.160.149	113.23.6.24	161.32.52.13	51.158.127.70