142.93.247.238

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	$f2bV_matches	2020-10-01 06:35:04
attackspam	Time: Wed Sep 30 14:01:06 2020 +0000 IP: 142.93.247.238 (-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 30 13:43:03 16-1 sshd[73385]: Invalid user edu from 142.93.247.238 port 53456 Sep 30 13:43:05 16-1 sshd[73385]: Failed password for invalid user edu from 142.93.247.238 port 53456 ssh2 Sep 30 13:57:04 16-1 sshd[75172]: Invalid user samba from 142.93.247.238 port 54508 Sep 30 13:57:06 16-1 sshd[75172]: Failed password for invalid user samba from 142.93.247.238 port 54508 ssh2 Sep 30 14:01:04 16-1 sshd[75752]: Invalid user pgsql from 142.93.247.238 port 34488	2020-09-30 22:57:17
attack	Sep 30 09:55:48 pkdns2 sshd\[12307\]: Invalid user shoutcast from 142.93.247.238Sep 30 09:55:50 pkdns2 sshd\[12307\]: Failed password for invalid user shoutcast from 142.93.247.238 port 50328 ssh2Sep 30 09:59:55 pkdns2 sshd\[12460\]: Invalid user webmaster1 from 142.93.247.238Sep 30 09:59:57 pkdns2 sshd\[12460\]: Failed password for invalid user webmaster1 from 142.93.247.238 port 60148 ssh2Sep 30 10:03:59 pkdns2 sshd\[12670\]: Invalid user newsletter from 142.93.247.238Sep 30 10:04:00 pkdns2 sshd\[12670\]: Failed password for invalid user newsletter from 142.93.247.238 port 41736 ssh2 ...	2020-09-30 15:31:01
attack	Brute force attempt	2020-09-22 20:45:36
attackbots	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-09-22T03:52:31Z and 2020-09-22T04:24:06Z	2020-09-22 12:44:13
attackbotsspam	2020-09-21T22:22:36+0200 Failed SSH Authentication/Brute Force Attack. (Server 4)	2020-09-22 04:53:37
attackspam	IP blocked	2020-09-16 12:43:46
attackbots	Sep 15 19:02:48 master sshd[23018]: Failed password for root from 142.93.247.238 port 35158 ssh2 Sep 15 19:08:01 master sshd[23028]: Failed password for root from 142.93.247.238 port 50154 ssh2 Sep 15 19:13:03 master sshd[23037]: Failed password for root from 142.93.247.238 port 34968 ssh2 Sep 15 19:17:46 master sshd[23077]: Failed password for root from 142.93.247.238 port 48012 ssh2 Sep 15 19:22:23 master sshd[23107]: Failed password for root from 142.93.247.238 port 32822 ssh2 Sep 15 19:26:46 master sshd[23132]: Failed password for root from 142.93.247.238 port 45864 ssh2 Sep 15 19:31:20 master sshd[23179]: Failed password for invalid user ftpuser from 142.93.247.238 port 58928 ssh2 Sep 15 19:35:51 master sshd[23208]: Failed password for invalid user dead from 142.93.247.238 port 43754 ssh2 Sep 15 19:40:37 master sshd[23244]: Failed password for root from 142.93.247.238 port 56798 ssh2 Sep 15 19:44:43 master sshd[23277]: Failed password for root from 142.93.247.238 port 41608 ssh2	2020-09-16 04:29:44
attack	fail2ban	2020-09-13 22:13:49
attackspam	ssh intrusion attempt	2020-09-13 14:09:05
attackspam	Sep 12 17:48:44 game-panel sshd[23279]: Failed password for root from 142.93.247.238 port 52830 ssh2 Sep 12 17:52:47 game-panel sshd[23432]: Failed password for root from 142.93.247.238 port 36974 ssh2	2020-09-13 05:54:30
attack	Sep 1 11:53:57 server sshd[5657]: User root from 142.93.247.238 not allowed because listed in DenyUsers Sep 1 11:53:58 server sshd[5657]: Failed password for invalid user root from 142.93.247.238 port 49122 ssh2 Sep 1 11:53:57 server sshd[5657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.238 user=root Sep 1 11:53:57 server sshd[5657]: User root from 142.93.247.238 not allowed because listed in DenyUsers Sep 1 11:53:58 server sshd[5657]: Failed password for invalid user root from 142.93.247.238 port 49122 ssh2 ...	2020-09-01 19:32:21
attackbotsspam	Brute-force attempt banned	2020-08-30 23:38:08

Comments on same subnet:

IP	Type	Details	Datetime
142.93.247.221	attack	Aug 19 19:34:04 game-panel sshd[15495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 Aug 19 19:34:07 game-panel sshd[15495]: Failed password for invalid user kevin from 142.93.247.221 port 36064 ssh2 Aug 19 19:38:47 game-panel sshd[15722]: Failed password for root from 142.93.247.221 port 45738 ssh2	2020-08-20 03:53:34
142.93.247.221	attackspambots	1597236191 - 08/12/2020 14:43:11 Host: 142.93.247.221/142.93.247.221 Port: 353 TCP Blocked ...	2020-08-12 21:45:57
142.93.247.221	attack	Port Scan detected from 142.93.247.221 (US/United States/New Jersey/North Bergen/-). 4 hits in the last 30 seconds	2020-08-12 12:21:43
142.93.247.221	attack	Aug 9 07:39:50 abendstille sshd\[14525\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 user=root Aug 9 07:39:52 abendstille sshd\[14525\]: Failed password for root from 142.93.247.221 port 45004 ssh2 Aug 9 07:44:49 abendstille sshd\[19192\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 user=root Aug 9 07:44:51 abendstille sshd\[19192\]: Failed password for root from 142.93.247.221 port 56136 ssh2 Aug 9 07:49:39 abendstille sshd\[23640\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 user=root ...	2020-08-09 14:34:38
142.93.247.221	attack	Aug 8 00:35:03 NPSTNNYC01T sshd[13971]: Failed password for root from 142.93.247.221 port 60876 ssh2 Aug 8 00:39:34 NPSTNNYC01T sshd[14336]: Failed password for root from 142.93.247.221 port 43046 ssh2 ...	2020-08-08 13:05:18
142.93.247.221	attackspambots	2020-08-02T19:10:33.535121hostname sshd[45098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 user=root 2020-08-02T19:10:35.740053hostname sshd[45098]: Failed password for root from 142.93.247.221 port 36326 ssh2 ...	2020-08-02 23:21:11
142.93.247.221	attack	2020-07-28T19:52:18.994527mail.broermann.family sshd[5264]: Invalid user jiajian from 142.93.247.221 port 40088 2020-07-28T19:52:18.999740mail.broermann.family sshd[5264]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 2020-07-28T19:52:18.994527mail.broermann.family sshd[5264]: Invalid user jiajian from 142.93.247.221 port 40088 2020-07-28T19:52:21.105469mail.broermann.family sshd[5264]: Failed password for invalid user jiajian from 142.93.247.221 port 40088 ssh2 2020-07-28T19:57:29.510677mail.broermann.family sshd[5447]: Invalid user liuchao from 142.93.247.221 port 52196 ...	2020-07-29 03:56:04
142.93.247.221	attackspam	Unauthorized connection attempt detected from IP address 142.93.247.221 to port 1759	2020-07-25 20:32:20
142.93.247.221	attackbotsspam	Jul 20 11:21:16 mout sshd[25809]: Invalid user viktor from 142.93.247.221 port 54218	2020-07-20 17:27:40
142.93.247.221	attackspambots	Port Scan detected from 142.93.247.221 (US/United States/New Jersey/North Bergen/-). 4 hits in the last 260 seconds	2020-07-19 16:56:21
142.93.247.221	attackbots	Jun 6 06:11:21 abendstille sshd\[24520\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 user=root Jun 6 06:11:22 abendstille sshd\[24520\]: Failed password for root from 142.93.247.221 port 41542 ssh2 Jun 6 06:14:52 abendstille sshd\[27837\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 user=root Jun 6 06:14:53 abendstille sshd\[27837\]: Failed password for root from 142.93.247.221 port 44642 ssh2 Jun 6 06:18:24 abendstille sshd\[31139\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 user=root ...	2020-06-06 14:19:39
142.93.247.221	attackbots	Jun 3 00:58:41 itv-usvr-01 sshd[17615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 user=root Jun 3 00:58:44 itv-usvr-01 sshd[17615]: Failed password for root from 142.93.247.221 port 34070 ssh2 Jun 3 01:02:56 itv-usvr-01 sshd[17839]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 user=root Jun 3 01:02:58 itv-usvr-01 sshd[17839]: Failed password for root from 142.93.247.221 port 38782 ssh2 Jun 3 01:07:06 itv-usvr-01 sshd[18051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 user=root Jun 3 01:07:08 itv-usvr-01 sshd[18051]: Failed password for root from 142.93.247.221 port 43494 ssh2	2020-06-03 02:26:32
142.93.247.221	attackbotsspam	May 30 15:16:23 localhost sshd\[10786\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 user=root May 30 15:16:25 localhost sshd\[10786\]: Failed password for root from 142.93.247.221 port 38196 ssh2 May 30 15:19:30 localhost sshd\[10883\]: Invalid user zimbra from 142.93.247.221 May 30 15:19:30 localhost sshd\[10883\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 May 30 15:19:32 localhost sshd\[10883\]: Failed password for invalid user zimbra from 142.93.247.221 port 33902 ssh2 ...	2020-05-30 23:41:17
142.93.247.221	attackspambots	May 15 09:48:07 nextcloud sshd\[26947\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 user=root May 15 09:48:09 nextcloud sshd\[26947\]: Failed password for root from 142.93.247.221 port 34012 ssh2 May 15 09:52:05 nextcloud sshd\[32701\]: Invalid user webmaster from 142.93.247.221 May 15 09:52:05 nextcloud sshd\[32701\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221	2020-05-15 15:58:35
142.93.247.221	attackspam	2020-05-13T09:30:11.587256abusebot-8.cloudsearch.cf sshd[3446]: Invalid user helpdesk1 from 142.93.247.221 port 38168 2020-05-13T09:30:11.595441abusebot-8.cloudsearch.cf sshd[3446]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 2020-05-13T09:30:11.587256abusebot-8.cloudsearch.cf sshd[3446]: Invalid user helpdesk1 from 142.93.247.221 port 38168 2020-05-13T09:30:13.435616abusebot-8.cloudsearch.cf sshd[3446]: Failed password for invalid user helpdesk1 from 142.93.247.221 port 38168 ssh2 2020-05-13T09:34:47.475401abusebot-8.cloudsearch.cf sshd[3872]: Invalid user deploy from 142.93.247.221 port 48404 2020-05-13T09:34:47.485045abusebot-8.cloudsearch.cf sshd[3872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 2020-05-13T09:34:47.475401abusebot-8.cloudsearch.cf sshd[3872]: Invalid user deploy from 142.93.247.221 port 48404 2020-05-13T09:34:49.214708abusebot-8.cloudsearch.cf sshd[ ...	2020-05-13 19:38:32

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.247.238
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35656
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.247.238.			IN	A

;; AUTHORITY SECTION:
.			264	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020083000 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Aug 30 23:38:04 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 238.247.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 238.247.93.142.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.234.78.54	attackbots	2020-07-15T03:55:00.276093vps751288.ovh.net sshd\[3528\]: Invalid user clay from 49.234.78.54 port 35452 2020-07-15T03:55:00.282178vps751288.ovh.net sshd\[3528\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.78.54 2020-07-15T03:55:02.019714vps751288.ovh.net sshd\[3528\]: Failed password for invalid user clay from 49.234.78.54 port 35452 ssh2 2020-07-15T04:04:58.839688vps751288.ovh.net sshd\[3668\]: Invalid user iz from 49.234.78.54 port 51212 2020-07-15T04:04:58.847233vps751288.ovh.net sshd\[3668\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.78.54	2020-07-15 10:39:57
51.178.24.61	attackspambots	2020-07-15T04:04:53+0200 Failed SSH Authentication/Brute Force Attack. (Server 10)	2020-07-15 10:48:07
183.56.160.72	attackbots	1594778708 - 07/15/2020 04:05:08 Host: 183.56.160.72/183.56.160.72 Port: 445 TCP Blocked	2020-07-15 10:21:46
13.72.73.88	attack	Jul 15 07:21:33 gw1 sshd[22151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.72.73.88 Jul 15 07:21:36 gw1 sshd[22151]: Failed password for invalid user admin from 13.72.73.88 port 32769 ssh2 ...	2020-07-15 10:29:09
52.227.173.224	attackbots	Jul 15 04:23:19 ourumov-web sshd\[23444\]: Invalid user admin from 52.227.173.224 port 8340 Jul 15 04:23:19 ourumov-web sshd\[23444\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.227.173.224 Jul 15 04:23:22 ourumov-web sshd\[23444\]: Failed password for invalid user admin from 52.227.173.224 port 8340 ssh2 ...	2020-07-15 10:30:43
5.188.84.95	attackspam	0,16-01/02 [bc01/m10] PostRequest-Spammer scoring: maputo01_x2b	2020-07-15 10:32:41
23.100.80.45	attackbotsspam	Jul 15 04:48:03 zooi sshd[14336]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.100.80.45 Jul 15 04:48:04 zooi sshd[14336]: Failed password for invalid user admin from 23.100.80.45 port 60836 ssh2 ...	2020-07-15 10:49:28
104.44.141.85	attack	Jul 15 04:41:58 vpn01 sshd[10089]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.44.141.85 Jul 15 04:42:00 vpn01 sshd[10089]: Failed password for invalid user admin from 104.44.141.85 port 32391 ssh2 ...	2020-07-15 10:42:12
31.36.181.181	attack	Auto Fail2Ban report, multiple SSH login attempts.	2020-07-15 10:26:34
59.153.241.11	attackbots	1594778693 - 07/15/2020 04:04:53 Host: 59.153.241.11/59.153.241.11 Port: 445 TCP Blocked	2020-07-15 10:45:42
123.30.149.34	attackspambots	Jul 15 03:57:08 vps687878 sshd\[21855\]: Failed password for invalid user ftp2 from 123.30.149.34 port 47145 ssh2 Jul 15 04:00:41 vps687878 sshd\[22228\]: Invalid user mrm from 123.30.149.34 port 43113 Jul 15 04:00:41 vps687878 sshd\[22228\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.30.149.34 Jul 15 04:00:43 vps687878 sshd\[22228\]: Failed password for invalid user mrm from 123.30.149.34 port 43113 ssh2 Jul 15 04:04:18 vps687878 sshd\[22565\]: Invalid user jack from 123.30.149.34 port 39077 Jul 15 04:04:18 vps687878 sshd\[22565\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.30.149.34 ...	2020-07-15 10:25:03
24.214.147.134	attackspambots	port scan and connect, tcp 22 (ssh)	2020-07-15 10:23:58
13.82.135.74	attackbots	SSH invalid-user multiple login attempts	2020-07-15 10:53:57
49.233.216.158	attackbots	Jul 15 05:00:08 lukav-desktop sshd\[30465\]: Invalid user abu from 49.233.216.158 Jul 15 05:00:08 lukav-desktop sshd\[30465\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.216.158 Jul 15 05:00:09 lukav-desktop sshd\[30465\]: Failed password for invalid user abu from 49.233.216.158 port 57366 ssh2 Jul 15 05:04:26 lukav-desktop sshd\[30514\]: Invalid user tania from 49.233.216.158 Jul 15 05:04:26 lukav-desktop sshd\[30514\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.216.158	2020-07-15 10:43:06
195.181.167.149	attackbotsspam	abasicmove.de 195.181.167.149 [15/Jul/2020:04:04:49 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4319 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" abasicmove.de 195.181.167.149 [15/Jul/2020:04:04:52 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4319 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36"	2020-07-15 10:49:43

Recently Reported IPs

232.221.143.73	27.106.1.241	251.249.22.242	113.207.147.15
191.187.240.75	255.68.68.16	191.20.161.195	64.93.158.254
111.88.231.159	36.69.8.2	113.184.70.74	78.189.110.225
46.35.180.7	193.112.111.207	35.240.85.177	190.209.43.70
43.226.148.1	244.15.188.37	196.36.234.135	123.206.109.221