142.93.246.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	SSH Login Bruteforce	2020-09-08 03:09:58
attackbots	Sep 7 12:26:05 MainVPS sshd[10732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Sep 7 12:26:07 MainVPS sshd[10732]: Failed password for root from 142.93.246.42 port 47020 ssh2 Sep 7 12:30:04 MainVPS sshd[16861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Sep 7 12:30:06 MainVPS sshd[16861]: Failed password for root from 142.93.246.42 port 46532 ssh2 Sep 7 12:33:51 MainVPS sshd[24197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Sep 7 12:33:53 MainVPS sshd[24197]: Failed password for root from 142.93.246.42 port 46046 ssh2 ...	2020-09-07 18:38:58
attackspambots	(sshd) Failed SSH login from 142.93.246.42 (US/United States/-): 5 in the last 3600 secs	2020-08-28 21:43:03
attackbots	invalid user	2020-08-28 15:27:02
attack	'Fail2Ban'	2020-08-24 09:25:39
attackspam	2020-08-22T08:15:33.389407vps751288.ovh.net sshd\[26569\]: Invalid user jana from 142.93.246.42 port 43498 2020-08-22T08:15:33.398096vps751288.ovh.net sshd\[26569\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 2020-08-22T08:15:35.118809vps751288.ovh.net sshd\[26569\]: Failed password for invalid user jana from 142.93.246.42 port 43498 ssh2 2020-08-22T08:19:33.967472vps751288.ovh.net sshd\[26595\]: Invalid user alexandra from 142.93.246.42 port 52482 2020-08-22T08:19:33.973702vps751288.ovh.net sshd\[26595\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42	2020-08-22 14:40:16
attackbots	Aug 20 14:50:22 sso sshd[15567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 Aug 20 14:50:24 sso sshd[15567]: Failed password for invalid user lfd from 142.93.246.42 port 45452 ssh2 ...	2020-08-20 21:43:59
attackspambots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-20T12:03:59Z and 2020-08-20T12:11:51Z	2020-08-20 20:11:59
attackspambots	2020-08-19T04:07:01.641367shield sshd\[24416\]: Invalid user lqx from 142.93.246.42 port 59456 2020-08-19T04:07:01.650018shield sshd\[24416\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 2020-08-19T04:07:03.669370shield sshd\[24416\]: Failed password for invalid user lqx from 142.93.246.42 port 59456 ssh2 2020-08-19T04:10:41.269912shield sshd\[24696\]: Invalid user admin from 142.93.246.42 port 39044 2020-08-19T04:10:41.278362shield sshd\[24696\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42	2020-08-19 12:40:19
attack	Automatic Fail2ban report - Trying login SSH	2020-08-19 04:27:33
attackspam	fail2ban/Aug 15 01:39:24 h1962932 sshd[10329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 15 01:39:26 h1962932 sshd[10329]: Failed password for root from 142.93.246.42 port 56728 ssh2 Aug 15 01:43:47 h1962932 sshd[10531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 15 01:43:49 h1962932 sshd[10531]: Failed password for root from 142.93.246.42 port 37618 ssh2 Aug 15 01:48:07 h1962932 sshd[13310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 15 01:48:09 h1962932 sshd[13310]: Failed password for root from 142.93.246.42 port 46740 ssh2	2020-08-15 08:57:53
attackbots	Aug 7 13:53:13 ovpn sshd\[15541\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 7 13:53:16 ovpn sshd\[15541\]: Failed password for root from 142.93.246.42 port 50526 ssh2 Aug 7 13:58:57 ovpn sshd\[17913\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 7 13:58:59 ovpn sshd\[17913\]: Failed password for root from 142.93.246.42 port 36444 ssh2 Aug 7 14:00:40 ovpn sshd\[18709\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root	2020-08-08 03:10:29
attackspam	2020-08-04T14:33:10+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-08-04 22:21:58
attackspam	Jul 28 00:44:41 gospond sshd[26578]: Invalid user liuziyuan from 142.93.246.42 port 55216 Jul 28 00:44:43 gospond sshd[26578]: Failed password for invalid user liuziyuan from 142.93.246.42 port 55216 ssh2 Jul 28 00:45:56 gospond sshd[26595]: Invalid user sxltzxkt from 142.93.246.42 port 42322 ...	2020-07-28 07:51:31
attackbotsspam	$f2bV_matches	2020-07-27 01:10:48
attack	Jul 23 20:22:13 ns382633 sshd\[14117\]: Invalid user romulo from 142.93.246.42 port 37092 Jul 23 20:22:13 ns382633 sshd\[14117\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 Jul 23 20:22:14 ns382633 sshd\[14117\]: Failed password for invalid user romulo from 142.93.246.42 port 37092 ssh2 Jul 23 20:30:02 ns382633 sshd\[15175\]: Invalid user gitlab-runner from 142.93.246.42 port 40638 Jul 23 20:30:02 ns382633 sshd\[15175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42	2020-07-24 02:34:04
attackbotsspam	$f2bV_matches	2020-07-23 00:34:06
attackspambots	Jul 19 06:22:44 ny01 sshd[21270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 Jul 19 06:22:46 ny01 sshd[21270]: Failed password for invalid user nor from 142.93.246.42 port 53458 ssh2 Jul 19 06:24:33 ny01 sshd[21449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42	2020-07-19 18:59:30
attackspam	2020-07-16T10:31:40+0200 Failed SSH Authentication/Brute Force Attack. (Server 10)	2020-07-16 18:10:09
attackbots	Jul 7 07:25:21 PorscheCustomer sshd[8035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 Jul 7 07:25:23 PorscheCustomer sshd[8035]: Failed password for invalid user jessica from 142.93.246.42 port 40628 ssh2 Jul 7 07:28:44 PorscheCustomer sshd[8212]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 ...	2020-07-07 16:14:23
attackspambots	SSH Bruteforce attack	2020-07-03 22:57:48
attackbots	2020-06-29T22:55:06.615667abusebot.cloudsearch.cf sshd[25556]: Invalid user gt from 142.93.246.42 port 50744 2020-06-29T22:55:06.620753abusebot.cloudsearch.cf sshd[25556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 2020-06-29T22:55:06.615667abusebot.cloudsearch.cf sshd[25556]: Invalid user gt from 142.93.246.42 port 50744 2020-06-29T22:55:07.967600abusebot.cloudsearch.cf sshd[25556]: Failed password for invalid user gt from 142.93.246.42 port 50744 ssh2 2020-06-29T22:58:40.004605abusebot.cloudsearch.cf sshd[25734]: Invalid user ftw from 142.93.246.42 port 50858 2020-06-29T22:58:40.009666abusebot.cloudsearch.cf sshd[25734]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 2020-06-29T22:58:40.004605abusebot.cloudsearch.cf sshd[25734]: Invalid user ftw from 142.93.246.42 port 50858 2020-06-29T22:58:42.069002abusebot.cloudsearch.cf sshd[25734]: Failed password for invalid user ft ...	2020-06-30 07:59:21
attack	Jun 24 15:04:40 h1745522 sshd[28789]: Invalid user phil from 142.93.246.42 port 58670 Jun 24 15:04:40 h1745522 sshd[28789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 Jun 24 15:04:40 h1745522 sshd[28789]: Invalid user phil from 142.93.246.42 port 58670 Jun 24 15:04:42 h1745522 sshd[28789]: Failed password for invalid user phil from 142.93.246.42 port 58670 ssh2 Jun 24 15:07:53 h1745522 sshd[28905]: Invalid user dai from 142.93.246.42 port 59036 Jun 24 15:07:53 h1745522 sshd[28905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 Jun 24 15:07:53 h1745522 sshd[28905]: Invalid user dai from 142.93.246.42 port 59036 Jun 24 15:07:55 h1745522 sshd[28905]: Failed password for invalid user dai from 142.93.246.42 port 59036 ssh2 Jun 24 15:11:05 h1745522 sshd[29179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Jun 24 ...	2020-06-24 21:43:30
attack	Jun 24 09:57:29 jumpserver sshd[198740]: Failed password for root from 142.93.246.42 port 44052 ssh2 Jun 24 10:00:46 jumpserver sshd[198783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Jun 24 10:00:48 jumpserver sshd[198783]: Failed password for root from 142.93.246.42 port 45026 ssh2 ...	2020-06-24 18:23:30

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.246.239	attackspambots	ssh brute force	2020-03-09 13:52:17

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.246.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38431
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.246.42.			IN	A

;; AUTHORITY SECTION:
.			408	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062400 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 24 18:23:23 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 42.246.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.246.93.142.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
112.85.42.186	attackspambots	Feb 15 02:44:37 areeb-Workstation sshd[20657]: Failed password for root from 112.85.42.186 port 19059 ssh2 Feb 15 02:44:40 areeb-Workstation sshd[20657]: Failed password for root from 112.85.42.186 port 19059 ssh2 ...	2020-02-15 05:41:27
158.69.210.168	attackbots	2020-02-14T13:39:48.4191231495-001 sshd[42244]: Invalid user xavier from 158.69.210.168 port 48197 2020-02-14T13:39:48.4221371495-001 sshd[42244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.ip-158-69-210.net 2020-02-14T13:39:48.4191231495-001 sshd[42244]: Invalid user xavier from 158.69.210.168 port 48197 2020-02-14T13:39:50.3216841495-001 sshd[42244]: Failed password for invalid user xavier from 158.69.210.168 port 48197 ssh2 2020-02-14T13:41:48.6137361495-001 sshd[42376]: Invalid user a from 158.69.210.168 port 57817 2020-02-14T13:41:48.6183911495-001 sshd[42376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.ip-158-69-210.net 2020-02-14T13:41:48.6137361495-001 sshd[42376]: Invalid user a from 158.69.210.168 port 57817 2020-02-14T13:41:50.6156991495-001 sshd[42376]: Failed password for invalid user a from 158.69.210.168 port 57817 ssh2 2020-02-14T13:43:46.8283761495-001 sshd[42485]: Invalid ...	2020-02-15 05:13:29
77.109.173.12	attackspam	Feb 14 07:45:28 mockhub sshd[24104]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.109.173.12 Feb 14 07:45:30 mockhub sshd[24104]: Failed password for invalid user saldana from 77.109.173.12 port 55714 ssh2 ...	2020-02-15 05:28:08
183.150.68.106	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 05:49:05
89.149.112.111	attack	Unauthorized connection attempt from IP address 89.149.112.111 on Port 445(SMB)	2020-02-15 05:25:38
89.218.239.94	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 14-02-2020 13:45:09.	2020-02-15 05:26:49
213.194.74.226	attackspambots	Unauthorized connection attempt from IP address 213.194.74.226 on Port 445(SMB)	2020-02-15 05:27:48
118.24.36.247	attackspambots	Feb 14 16:07:21 cp sshd[24499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.36.247	2020-02-15 05:50:27
139.5.159.62	attack	SSH brutforce	2020-02-15 05:50:09
94.141.68.63	attack	Unauthorized connection attempt from IP address 94.141.68.63 on Port 445(SMB)	2020-02-15 05:32:13
212.58.121.170	attackspambots	Unauthorized connection attempt from IP address 212.58.121.170 on Port 445(SMB)	2020-02-15 05:15:52
179.228.184.164	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 05:16:08
14.231.84.221	attack	Unauthorized connection attempt from IP address 14.231.84.221 on Port 445(SMB)	2020-02-15 05:33:55
198.199.100.5	attackspam	Feb 14 19:21:36 mout sshd[10343]: Invalid user appldisc from 198.199.100.5 port 45904	2020-02-15 05:19:44
85.159.212.18	attackbotsspam	trying to access non-authorized port	2020-02-15 05:53:05

最近上报的IP列表

78.90.247.14	112.215.210.141	240.124.169.197	195.146.59.157
35.196.75.48	220.191.229.133	140.138.221.79	103.205.129.171
66.186.7.124	1.131.102.211	200.108.240.59	214.133.12.137
218.243.161.3	161.47.74.106	15.226.249.21	110.4.14.81
103.142.21.118	242.97.73.245	159.8.49.95	103.131.71.96