142.93.247.238

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	$f2bV_matches	2020-10-01 06:35:04
attackspam	Time: Wed Sep 30 14:01:06 2020 +0000 IP: 142.93.247.238 (-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 30 13:43:03 16-1 sshd[73385]: Invalid user edu from 142.93.247.238 port 53456 Sep 30 13:43:05 16-1 sshd[73385]: Failed password for invalid user edu from 142.93.247.238 port 53456 ssh2 Sep 30 13:57:04 16-1 sshd[75172]: Invalid user samba from 142.93.247.238 port 54508 Sep 30 13:57:06 16-1 sshd[75172]: Failed password for invalid user samba from 142.93.247.238 port 54508 ssh2 Sep 30 14:01:04 16-1 sshd[75752]: Invalid user pgsql from 142.93.247.238 port 34488	2020-09-30 22:57:17
attack	Sep 30 09:55:48 pkdns2 sshd\[12307\]: Invalid user shoutcast from 142.93.247.238Sep 30 09:55:50 pkdns2 sshd\[12307\]: Failed password for invalid user shoutcast from 142.93.247.238 port 50328 ssh2Sep 30 09:59:55 pkdns2 sshd\[12460\]: Invalid user webmaster1 from 142.93.247.238Sep 30 09:59:57 pkdns2 sshd\[12460\]: Failed password for invalid user webmaster1 from 142.93.247.238 port 60148 ssh2Sep 30 10:03:59 pkdns2 sshd\[12670\]: Invalid user newsletter from 142.93.247.238Sep 30 10:04:00 pkdns2 sshd\[12670\]: Failed password for invalid user newsletter from 142.93.247.238 port 41736 ssh2 ...	2020-09-30 15:31:01
attack	Brute force attempt	2020-09-22 20:45:36
attackbots	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-09-22T03:52:31Z and 2020-09-22T04:24:06Z	2020-09-22 12:44:13
attackbotsspam	2020-09-21T22:22:36+0200 Failed SSH Authentication/Brute Force Attack. (Server 4)	2020-09-22 04:53:37
attackspam	IP blocked	2020-09-16 12:43:46
attackbots	Sep 15 19:02:48 master sshd[23018]: Failed password for root from 142.93.247.238 port 35158 ssh2 Sep 15 19:08:01 master sshd[23028]: Failed password for root from 142.93.247.238 port 50154 ssh2 Sep 15 19:13:03 master sshd[23037]: Failed password for root from 142.93.247.238 port 34968 ssh2 Sep 15 19:17:46 master sshd[23077]: Failed password for root from 142.93.247.238 port 48012 ssh2 Sep 15 19:22:23 master sshd[23107]: Failed password for root from 142.93.247.238 port 32822 ssh2 Sep 15 19:26:46 master sshd[23132]: Failed password for root from 142.93.247.238 port 45864 ssh2 Sep 15 19:31:20 master sshd[23179]: Failed password for invalid user ftpuser from 142.93.247.238 port 58928 ssh2 Sep 15 19:35:51 master sshd[23208]: Failed password for invalid user dead from 142.93.247.238 port 43754 ssh2 Sep 15 19:40:37 master sshd[23244]: Failed password for root from 142.93.247.238 port 56798 ssh2 Sep 15 19:44:43 master sshd[23277]: Failed password for root from 142.93.247.238 port 41608 ssh2	2020-09-16 04:29:44
attack	fail2ban	2020-09-13 22:13:49
attackspam	ssh intrusion attempt	2020-09-13 14:09:05
attackspam	Sep 12 17:48:44 game-panel sshd[23279]: Failed password for root from 142.93.247.238 port 52830 ssh2 Sep 12 17:52:47 game-panel sshd[23432]: Failed password for root from 142.93.247.238 port 36974 ssh2	2020-09-13 05:54:30
attack	Sep 1 11:53:57 server sshd[5657]: User root from 142.93.247.238 not allowed because listed in DenyUsers Sep 1 11:53:58 server sshd[5657]: Failed password for invalid user root from 142.93.247.238 port 49122 ssh2 Sep 1 11:53:57 server sshd[5657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.238 user=root Sep 1 11:53:57 server sshd[5657]: User root from 142.93.247.238 not allowed because listed in DenyUsers Sep 1 11:53:58 server sshd[5657]: Failed password for invalid user root from 142.93.247.238 port 49122 ssh2 ...	2020-09-01 19:32:21
attackbotsspam	Brute-force attempt banned	2020-08-30 23:38:08

Comments on same subnet:

IP	Type	Details	Datetime
142.93.247.221	attack	Aug 19 19:34:04 game-panel sshd[15495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 Aug 19 19:34:07 game-panel sshd[15495]: Failed password for invalid user kevin from 142.93.247.221 port 36064 ssh2 Aug 19 19:38:47 game-panel sshd[15722]: Failed password for root from 142.93.247.221 port 45738 ssh2	2020-08-20 03:53:34
142.93.247.221	attackspambots	1597236191 - 08/12/2020 14:43:11 Host: 142.93.247.221/142.93.247.221 Port: 353 TCP Blocked ...	2020-08-12 21:45:57
142.93.247.221	attack	Port Scan detected from 142.93.247.221 (US/United States/New Jersey/North Bergen/-). 4 hits in the last 30 seconds	2020-08-12 12:21:43
142.93.247.221	attack	Aug 9 07:39:50 abendstille sshd\[14525\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 user=root Aug 9 07:39:52 abendstille sshd\[14525\]: Failed password for root from 142.93.247.221 port 45004 ssh2 Aug 9 07:44:49 abendstille sshd\[19192\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 user=root Aug 9 07:44:51 abendstille sshd\[19192\]: Failed password for root from 142.93.247.221 port 56136 ssh2 Aug 9 07:49:39 abendstille sshd\[23640\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 user=root ...	2020-08-09 14:34:38
142.93.247.221	attack	Aug 8 00:35:03 NPSTNNYC01T sshd[13971]: Failed password for root from 142.93.247.221 port 60876 ssh2 Aug 8 00:39:34 NPSTNNYC01T sshd[14336]: Failed password for root from 142.93.247.221 port 43046 ssh2 ...	2020-08-08 13:05:18
142.93.247.221	attackspambots	2020-08-02T19:10:33.535121hostname sshd[45098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 user=root 2020-08-02T19:10:35.740053hostname sshd[45098]: Failed password for root from 142.93.247.221 port 36326 ssh2 ...	2020-08-02 23:21:11
142.93.247.221	attack	2020-07-28T19:52:18.994527mail.broermann.family sshd[5264]: Invalid user jiajian from 142.93.247.221 port 40088 2020-07-28T19:52:18.999740mail.broermann.family sshd[5264]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 2020-07-28T19:52:18.994527mail.broermann.family sshd[5264]: Invalid user jiajian from 142.93.247.221 port 40088 2020-07-28T19:52:21.105469mail.broermann.family sshd[5264]: Failed password for invalid user jiajian from 142.93.247.221 port 40088 ssh2 2020-07-28T19:57:29.510677mail.broermann.family sshd[5447]: Invalid user liuchao from 142.93.247.221 port 52196 ...	2020-07-29 03:56:04
142.93.247.221	attackspam	Unauthorized connection attempt detected from IP address 142.93.247.221 to port 1759	2020-07-25 20:32:20
142.93.247.221	attackbotsspam	Jul 20 11:21:16 mout sshd[25809]: Invalid user viktor from 142.93.247.221 port 54218	2020-07-20 17:27:40
142.93.247.221	attackspambots	Port Scan detected from 142.93.247.221 (US/United States/New Jersey/North Bergen/-). 4 hits in the last 260 seconds	2020-07-19 16:56:21
142.93.247.221	attackbots	Jun 6 06:11:21 abendstille sshd\[24520\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 user=root Jun 6 06:11:22 abendstille sshd\[24520\]: Failed password for root from 142.93.247.221 port 41542 ssh2 Jun 6 06:14:52 abendstille sshd\[27837\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 user=root Jun 6 06:14:53 abendstille sshd\[27837\]: Failed password for root from 142.93.247.221 port 44642 ssh2 Jun 6 06:18:24 abendstille sshd\[31139\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 user=root ...	2020-06-06 14:19:39
142.93.247.221	attackbots	Jun 3 00:58:41 itv-usvr-01 sshd[17615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 user=root Jun 3 00:58:44 itv-usvr-01 sshd[17615]: Failed password for root from 142.93.247.221 port 34070 ssh2 Jun 3 01:02:56 itv-usvr-01 sshd[17839]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 user=root Jun 3 01:02:58 itv-usvr-01 sshd[17839]: Failed password for root from 142.93.247.221 port 38782 ssh2 Jun 3 01:07:06 itv-usvr-01 sshd[18051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 user=root Jun 3 01:07:08 itv-usvr-01 sshd[18051]: Failed password for root from 142.93.247.221 port 43494 ssh2	2020-06-03 02:26:32
142.93.247.221	attackbotsspam	May 30 15:16:23 localhost sshd\[10786\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 user=root May 30 15:16:25 localhost sshd\[10786\]: Failed password for root from 142.93.247.221 port 38196 ssh2 May 30 15:19:30 localhost sshd\[10883\]: Invalid user zimbra from 142.93.247.221 May 30 15:19:30 localhost sshd\[10883\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 May 30 15:19:32 localhost sshd\[10883\]: Failed password for invalid user zimbra from 142.93.247.221 port 33902 ssh2 ...	2020-05-30 23:41:17
142.93.247.221	attackspambots	May 15 09:48:07 nextcloud sshd\[26947\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 user=root May 15 09:48:09 nextcloud sshd\[26947\]: Failed password for root from 142.93.247.221 port 34012 ssh2 May 15 09:52:05 nextcloud sshd\[32701\]: Invalid user webmaster from 142.93.247.221 May 15 09:52:05 nextcloud sshd\[32701\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221	2020-05-15 15:58:35
142.93.247.221	attackspam	2020-05-13T09:30:11.587256abusebot-8.cloudsearch.cf sshd[3446]: Invalid user helpdesk1 from 142.93.247.221 port 38168 2020-05-13T09:30:11.595441abusebot-8.cloudsearch.cf sshd[3446]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 2020-05-13T09:30:11.587256abusebot-8.cloudsearch.cf sshd[3446]: Invalid user helpdesk1 from 142.93.247.221 port 38168 2020-05-13T09:30:13.435616abusebot-8.cloudsearch.cf sshd[3446]: Failed password for invalid user helpdesk1 from 142.93.247.221 port 38168 ssh2 2020-05-13T09:34:47.475401abusebot-8.cloudsearch.cf sshd[3872]: Invalid user deploy from 142.93.247.221 port 48404 2020-05-13T09:34:47.485045abusebot-8.cloudsearch.cf sshd[3872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 2020-05-13T09:34:47.475401abusebot-8.cloudsearch.cf sshd[3872]: Invalid user deploy from 142.93.247.221 port 48404 2020-05-13T09:34:49.214708abusebot-8.cloudsearch.cf sshd[ ...	2020-05-13 19:38:32

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.247.238
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35656
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.247.238.			IN	A

;; AUTHORITY SECTION:
.			264	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020083000 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Aug 30 23:38:04 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 238.247.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 238.247.93.142.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
52.73.169.169	attackbotsspam	Honeypot attack, application: ssdp, PTR: scanner2.scanning.cybergreen.net.	2019-07-04 01:49:56
198.199.83.59	attack	Jul 3 17:44:44 localhost sshd\[10826\]: Invalid user fh from 198.199.83.59 port 43113 Jul 3 17:44:44 localhost sshd\[10826\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.83.59 Jul 3 17:44:46 localhost sshd\[10826\]: Failed password for invalid user fh from 198.199.83.59 port 43113 ssh2 ...	2019-07-04 01:53:23
186.3.234.169	attackspam	Jul 3 17:21:56 marvibiene sshd[39791]: Invalid user awharton from 186.3.234.169 port 36025 Jul 3 17:21:56 marvibiene sshd[39791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.3.234.169 Jul 3 17:21:56 marvibiene sshd[39791]: Invalid user awharton from 186.3.234.169 port 36025 Jul 3 17:21:58 marvibiene sshd[39791]: Failed password for invalid user awharton from 186.3.234.169 port 36025 ssh2 ...	2019-07-04 02:26:16
148.70.41.33	attack	Jul 3 16:58:16 [host] sshd[1233]: Invalid user c-comatic from 148.70.41.33 Jul 3 16:58:16 [host] sshd[1233]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.41.33 Jul 3 16:58:18 [host] sshd[1233]: Failed password for invalid user c-comatic from 148.70.41.33 port 58536 ssh2	2019-07-04 02:09:42
177.22.121.134	attack	Honeypot attack, port: 445, PTR: 177-22-121-134.rev.netcorporativa.com.br.	2019-07-04 02:12:57
23.226.181.18	attackspambots	MALWARE-CNC Win.Trojan.Pmabot	2019-07-04 02:03:57
89.38.145.79	attackbots	firewall-block, port(s): 443/tcp	2019-07-04 02:04:23
68.183.122.94	attackspam	Jul 3 15:44:52 OPSO sshd\[25220\]: Invalid user pollinate from 68.183.122.94 port 39724 Jul 3 15:44:52 OPSO sshd\[25220\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.122.94 Jul 3 15:44:53 OPSO sshd\[25220\]: Failed password for invalid user pollinate from 68.183.122.94 port 39724 ssh2 Jul 3 15:47:04 OPSO sshd\[25614\]: Invalid user teacher from 68.183.122.94 port 36852 Jul 3 15:47:04 OPSO sshd\[25614\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.122.94	2019-07-04 01:46:52
61.163.2.246	attackspam	Brute force attack to crack SMTP password (port 25 / 587)	2019-07-04 01:59:43
125.90.79.190	attack	2019-07-03T19:23:18.131956lon01.zurich-datacenter.net sshd\[15762\]: Invalid user ftpuser from 125.90.79.190 port 42160 2019-07-03T19:23:18.138259lon01.zurich-datacenter.net sshd\[15762\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.90.79.190 2019-07-03T19:23:20.229328lon01.zurich-datacenter.net sshd\[15762\]: Failed password for invalid user ftpuser from 125.90.79.190 port 42160 ssh2 2019-07-03T19:27:14.218540lon01.zurich-datacenter.net sshd\[15867\]: Invalid user ventrilo from 125.90.79.190 port 55824 2019-07-03T19:27:14.223775lon01.zurich-datacenter.net sshd\[15867\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.90.79.190 ...	2019-07-04 02:18:15
101.20.81.163	attack	DATE:2019-07-03_15:20:17, IP:101.20.81.163, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-07-04 01:54:52
23.30.117.166	attackspambots	Jul 3 23:47:42 tanzim-HP-Z238-Microtower-Workstation sshd\[24206\]: Invalid user fsc from 23.30.117.166 Jul 3 23:47:42 tanzim-HP-Z238-Microtower-Workstation sshd\[24206\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.30.117.166 Jul 3 23:47:43 tanzim-HP-Z238-Microtower-Workstation sshd\[24206\]: Failed password for invalid user fsc from 23.30.117.166 port 43994 ssh2 ...	2019-07-04 02:22:42
179.157.103.223	attackbotsspam	Wordpress attack	2019-07-04 01:48:50
58.61.38.85	attack	Honeypot attack, port: 445, PTR: PTR record not found	2019-07-04 02:04:43
106.75.10.4	attackbots	Jul 3 19:41:50 core01 sshd\[31753\]: Invalid user felix from 106.75.10.4 port 46077 Jul 3 19:41:50 core01 sshd\[31753\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.10.4 ...	2019-07-04 01:55:22

Recently Reported IPs

232.221.143.73	27.106.1.241	251.249.22.242	113.207.147.15
191.187.240.75	255.68.68.16	191.20.161.195	64.93.158.254
111.88.231.159	36.69.8.2	113.184.70.74	78.189.110.225
46.35.180.7	193.112.111.207	35.240.85.177	190.209.43.70
43.226.148.1	244.15.188.37	196.36.234.135	123.206.109.221