142.93.246.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	SSH Login Bruteforce	2020-09-08 03:09:58
attackbots	Sep 7 12:26:05 MainVPS sshd[10732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Sep 7 12:26:07 MainVPS sshd[10732]: Failed password for root from 142.93.246.42 port 47020 ssh2 Sep 7 12:30:04 MainVPS sshd[16861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Sep 7 12:30:06 MainVPS sshd[16861]: Failed password for root from 142.93.246.42 port 46532 ssh2 Sep 7 12:33:51 MainVPS sshd[24197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Sep 7 12:33:53 MainVPS sshd[24197]: Failed password for root from 142.93.246.42 port 46046 ssh2 ...	2020-09-07 18:38:58
attackspambots	(sshd) Failed SSH login from 142.93.246.42 (US/United States/-): 5 in the last 3600 secs	2020-08-28 21:43:03
attackbots	invalid user	2020-08-28 15:27:02
attack	'Fail2Ban'	2020-08-24 09:25:39
attackspam	2020-08-22T08:15:33.389407vps751288.ovh.net sshd\[26569\]: Invalid user jana from 142.93.246.42 port 43498 2020-08-22T08:15:33.398096vps751288.ovh.net sshd\[26569\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 2020-08-22T08:15:35.118809vps751288.ovh.net sshd\[26569\]: Failed password for invalid user jana from 142.93.246.42 port 43498 ssh2 2020-08-22T08:19:33.967472vps751288.ovh.net sshd\[26595\]: Invalid user alexandra from 142.93.246.42 port 52482 2020-08-22T08:19:33.973702vps751288.ovh.net sshd\[26595\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42	2020-08-22 14:40:16
attackbots	Aug 20 14:50:22 sso sshd[15567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 Aug 20 14:50:24 sso sshd[15567]: Failed password for invalid user lfd from 142.93.246.42 port 45452 ssh2 ...	2020-08-20 21:43:59
attackspambots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-20T12:03:59Z and 2020-08-20T12:11:51Z	2020-08-20 20:11:59
attackspambots	2020-08-19T04:07:01.641367shield sshd\[24416\]: Invalid user lqx from 142.93.246.42 port 59456 2020-08-19T04:07:01.650018shield sshd\[24416\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 2020-08-19T04:07:03.669370shield sshd\[24416\]: Failed password for invalid user lqx from 142.93.246.42 port 59456 ssh2 2020-08-19T04:10:41.269912shield sshd\[24696\]: Invalid user admin from 142.93.246.42 port 39044 2020-08-19T04:10:41.278362shield sshd\[24696\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42	2020-08-19 12:40:19
attack	Automatic Fail2ban report - Trying login SSH	2020-08-19 04:27:33
attackspam	fail2ban/Aug 15 01:39:24 h1962932 sshd[10329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 15 01:39:26 h1962932 sshd[10329]: Failed password for root from 142.93.246.42 port 56728 ssh2 Aug 15 01:43:47 h1962932 sshd[10531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 15 01:43:49 h1962932 sshd[10531]: Failed password for root from 142.93.246.42 port 37618 ssh2 Aug 15 01:48:07 h1962932 sshd[13310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 15 01:48:09 h1962932 sshd[13310]: Failed password for root from 142.93.246.42 port 46740 ssh2	2020-08-15 08:57:53
attackbots	Aug 7 13:53:13 ovpn sshd\[15541\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 7 13:53:16 ovpn sshd\[15541\]: Failed password for root from 142.93.246.42 port 50526 ssh2 Aug 7 13:58:57 ovpn sshd\[17913\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 7 13:58:59 ovpn sshd\[17913\]: Failed password for root from 142.93.246.42 port 36444 ssh2 Aug 7 14:00:40 ovpn sshd\[18709\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root	2020-08-08 03:10:29
attackspam	2020-08-04T14:33:10+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-08-04 22:21:58
attackspam	Jul 28 00:44:41 gospond sshd[26578]: Invalid user liuziyuan from 142.93.246.42 port 55216 Jul 28 00:44:43 gospond sshd[26578]: Failed password for invalid user liuziyuan from 142.93.246.42 port 55216 ssh2 Jul 28 00:45:56 gospond sshd[26595]: Invalid user sxltzxkt from 142.93.246.42 port 42322 ...	2020-07-28 07:51:31
attackbotsspam	$f2bV_matches	2020-07-27 01:10:48
attack	Jul 23 20:22:13 ns382633 sshd\[14117\]: Invalid user romulo from 142.93.246.42 port 37092 Jul 23 20:22:13 ns382633 sshd\[14117\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 Jul 23 20:22:14 ns382633 sshd\[14117\]: Failed password for invalid user romulo from 142.93.246.42 port 37092 ssh2 Jul 23 20:30:02 ns382633 sshd\[15175\]: Invalid user gitlab-runner from 142.93.246.42 port 40638 Jul 23 20:30:02 ns382633 sshd\[15175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42	2020-07-24 02:34:04
attackbotsspam	$f2bV_matches	2020-07-23 00:34:06
attackspambots	Jul 19 06:22:44 ny01 sshd[21270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 Jul 19 06:22:46 ny01 sshd[21270]: Failed password for invalid user nor from 142.93.246.42 port 53458 ssh2 Jul 19 06:24:33 ny01 sshd[21449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42	2020-07-19 18:59:30
attackspam	2020-07-16T10:31:40+0200 Failed SSH Authentication/Brute Force Attack. (Server 10)	2020-07-16 18:10:09
attackbots	Jul 7 07:25:21 PorscheCustomer sshd[8035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 Jul 7 07:25:23 PorscheCustomer sshd[8035]: Failed password for invalid user jessica from 142.93.246.42 port 40628 ssh2 Jul 7 07:28:44 PorscheCustomer sshd[8212]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 ...	2020-07-07 16:14:23
attackspambots	SSH Bruteforce attack	2020-07-03 22:57:48
attackbots	2020-06-29T22:55:06.615667abusebot.cloudsearch.cf sshd[25556]: Invalid user gt from 142.93.246.42 port 50744 2020-06-29T22:55:06.620753abusebot.cloudsearch.cf sshd[25556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 2020-06-29T22:55:06.615667abusebot.cloudsearch.cf sshd[25556]: Invalid user gt from 142.93.246.42 port 50744 2020-06-29T22:55:07.967600abusebot.cloudsearch.cf sshd[25556]: Failed password for invalid user gt from 142.93.246.42 port 50744 ssh2 2020-06-29T22:58:40.004605abusebot.cloudsearch.cf sshd[25734]: Invalid user ftw from 142.93.246.42 port 50858 2020-06-29T22:58:40.009666abusebot.cloudsearch.cf sshd[25734]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 2020-06-29T22:58:40.004605abusebot.cloudsearch.cf sshd[25734]: Invalid user ftw from 142.93.246.42 port 50858 2020-06-29T22:58:42.069002abusebot.cloudsearch.cf sshd[25734]: Failed password for invalid user ft ...	2020-06-30 07:59:21
attack	Jun 24 15:04:40 h1745522 sshd[28789]: Invalid user phil from 142.93.246.42 port 58670 Jun 24 15:04:40 h1745522 sshd[28789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 Jun 24 15:04:40 h1745522 sshd[28789]: Invalid user phil from 142.93.246.42 port 58670 Jun 24 15:04:42 h1745522 sshd[28789]: Failed password for invalid user phil from 142.93.246.42 port 58670 ssh2 Jun 24 15:07:53 h1745522 sshd[28905]: Invalid user dai from 142.93.246.42 port 59036 Jun 24 15:07:53 h1745522 sshd[28905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 Jun 24 15:07:53 h1745522 sshd[28905]: Invalid user dai from 142.93.246.42 port 59036 Jun 24 15:07:55 h1745522 sshd[28905]: Failed password for invalid user dai from 142.93.246.42 port 59036 ssh2 Jun 24 15:11:05 h1745522 sshd[29179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Jun 24 ...	2020-06-24 21:43:30
attack	Jun 24 09:57:29 jumpserver sshd[198740]: Failed password for root from 142.93.246.42 port 44052 ssh2 Jun 24 10:00:46 jumpserver sshd[198783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Jun 24 10:00:48 jumpserver sshd[198783]: Failed password for root from 142.93.246.42 port 45026 ssh2 ...	2020-06-24 18:23:30

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.246.239	attackspambots	ssh brute force	2020-03-09 13:52:17

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.246.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38431
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.246.42.			IN	A

;; AUTHORITY SECTION:
.			408	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062400 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 24 18:23:23 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 42.246.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.246.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.180.17	attack	Jan 10 23:06:47 herz-der-gamer sshd[11306]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.17 user=root Jan 10 23:06:50 herz-der-gamer sshd[11306]: Failed password for root from 222.186.180.17 port 27180 ssh2 Jan 10 23:06:53 herz-der-gamer sshd[11306]: Failed password for root from 222.186.180.17 port 27180 ssh2 Jan 10 23:06:47 herz-der-gamer sshd[11306]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.17 user=root Jan 10 23:06:50 herz-der-gamer sshd[11306]: Failed password for root from 222.186.180.17 port 27180 ssh2 Jan 10 23:06:53 herz-der-gamer sshd[11306]: Failed password for root from 222.186.180.17 port 27180 ssh2 ...	2020-01-11 06:10:32
122.117.254.157	attackbots	Honeypot attack, port: 81, PTR: 122-117-254-157.HINET-IP.hinet.net.	2020-01-11 06:11:21
152.231.31.131	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-11 06:13:02
210.68.177.237	attackspambots	Jan 10 22:37:17 vps691689 sshd[21111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.68.177.237 Jan 10 22:37:19 vps691689 sshd[21111]: Failed password for invalid user 5v2ew from 210.68.177.237 port 51958 ssh2 ...	2020-01-11 06:07:36
45.246.219.230	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-11 06:31:27
94.130.97.126	attack	Jan 10 22:10:06 ns382633 sshd\[23919\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.130.97.126 user=root Jan 10 22:10:08 ns382633 sshd\[23919\]: Failed password for root from 94.130.97.126 port 34742 ssh2 Jan 10 22:10:39 ns382633 sshd\[24225\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.130.97.126 user=root Jan 10 22:10:41 ns382633 sshd\[24225\]: Failed password for root from 94.130.97.126 port 37162 ssh2 Jan 10 22:11:09 ns382633 sshd\[24281\]: Invalid user at4400 from 94.130.97.126 port 39506 Jan 10 22:11:09 ns382633 sshd\[24281\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.130.97.126	2020-01-11 05:57:35
52.34.195.239	attackbots	01/10/2020-23:14:31.286600 52.34.195.239 Protocol: 6 SURICATA TLS invalid record/traffic	2020-01-11 06:29:41
222.186.173.180	attackbotsspam	$f2bV_matches	2020-01-11 06:07:03
189.195.41.134	attackspam	Jan 11 00:23:59 server sshd\[23747\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.195.41.134 user=root Jan 11 00:24:02 server sshd\[23747\]: Failed password for root from 189.195.41.134 port 41642 ssh2 Jan 11 00:27:47 server sshd\[24815\]: Invalid user yuki from 189.195.41.134 Jan 11 00:27:47 server sshd\[24815\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.195.41.134 Jan 11 00:27:49 server sshd\[24815\]: Failed password for invalid user yuki from 189.195.41.134 port 38068 ssh2 ...	2020-01-11 06:03:36
222.186.175.215	attackbotsspam	Jan 10 23:06:15 dedicated sshd[11714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.215 user=root Jan 10 23:06:17 dedicated sshd[11714]: Failed password for root from 222.186.175.215 port 5876 ssh2	2020-01-11 06:14:40
112.85.42.188	attack	01/10/2020-16:58:39.494646 112.85.42.188 Protocol: 6 ET SCAN Potential SSH Scan	2020-01-11 05:59:33
181.113.134.248	attackbotsspam	Honeypot attack, port: 445, PTR: 248.134.113.181.static.anycast.cnt-grms.ec.	2020-01-11 06:30:08
222.186.173.142	attackspam	Jan 10 12:13:04 hpm sshd\[1529\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.142 user=root Jan 10 12:13:07 hpm sshd\[1529\]: Failed password for root from 222.186.173.142 port 20196 ssh2 Jan 10 12:13:22 hpm sshd\[1552\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.142 user=root Jan 10 12:13:25 hpm sshd\[1552\]: Failed password for root from 222.186.173.142 port 31582 ssh2 Jan 10 12:13:37 hpm sshd\[1552\]: Failed password for root from 222.186.173.142 port 31582 ssh2	2020-01-11 06:15:45
191.195.132.250	attack	Probing for vulnerable services	2020-01-11 06:12:09
110.49.53.18	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-11 06:22:14

最近上报的IP列表

78.90.247.14	112.215.210.141	240.124.169.197	195.146.59.157
35.196.75.48	220.191.229.133	140.138.221.79	103.205.129.171
66.186.7.124	1.131.102.211	200.108.240.59	214.133.12.137
218.243.161.3	161.47.74.106	15.226.249.21	110.4.14.81
103.142.21.118	242.97.73.245	159.8.49.95	103.131.71.96