142.93.104.89 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
142.93.104.32	attack	2020-06-30T10:28:50.487141morrigan.ad5gb.com sshd[2920184]: Invalid user counter from 142.93.104.32 port 57248 2020-06-30T10:28:52.174935morrigan.ad5gb.com sshd[2920184]: Failed password for invalid user counter from 142.93.104.32 port 57248 ssh2	2020-07-01 05:43:49
142.93.104.32	attack	Jun 30 08:32:39 hell sshd[1978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.104.32 Jun 30 08:32:41 hell sshd[1978]: Failed password for invalid user usertest from 142.93.104.32 port 34712 ssh2 ...	2020-06-30 20:16:04
142.93.104.32	attackbotsspam	$f2bV_matches	2020-06-19 23:39:20
142.93.104.32	attackbots	2020-06-10T19:25:22.5932121240 sshd\[12667\]: Invalid user admin123 from 142.93.104.32 port 56308 2020-06-10T19:25:22.5976411240 sshd\[12667\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.104.32 2020-06-10T19:25:24.8603061240 sshd\[12667\]: Failed password for invalid user admin123 from 142.93.104.32 port 56308 ssh2 ...	2020-06-11 02:17:14
142.93.104.32	attack	Jun 3 08:31:15 abendstille sshd\[32095\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.104.32 user=root Jun 3 08:31:17 abendstille sshd\[32095\]: Failed password for root from 142.93.104.32 port 50084 ssh2 Jun 3 08:34:19 abendstille sshd\[2621\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.104.32 user=root Jun 3 08:34:21 abendstille sshd\[2621\]: Failed password for root from 142.93.104.32 port 49174 ssh2 Jun 3 08:40:30 abendstille sshd\[8628\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.104.32 user=root ...	2020-06-03 17:15:48
142.93.104.32	attack	May 27 11:36:21 MainVPS sshd[19231]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.104.32 user=root May 27 11:36:23 MainVPS sshd[19231]: Failed password for root from 142.93.104.32 port 58974 ssh2 May 27 11:39:37 MainVPS sshd[22001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.104.32 user=root May 27 11:39:40 MainVPS sshd[22001]: Failed password for root from 142.93.104.32 port 56924 ssh2 May 27 11:43:06 MainVPS sshd[25274]: Invalid user test from 142.93.104.32 port 54890 ...	2020-05-27 18:05:31
142.93.104.32	attackspambots	Failed password for invalid user vpq from 142.93.104.32 port 49154 ssh2	2020-05-24 16:58:40
142.93.104.162	attackbotsspam	T: f2b 404 5x	2020-05-20 02:43:40
142.93.104.32	attack	May 13 09:34:04 legacy sshd[22287]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.104.32 May 13 09:34:06 legacy sshd[22287]: Failed password for invalid user user from 142.93.104.32 port 45318 ssh2 May 13 09:37:50 legacy sshd[22404]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.104.32 ...	2020-05-13 16:03:54
142.93.104.142	attack	Unauthorized connection attempt detected from IP address 142.93.104.142 to port 135 [J]	2020-03-01 03:39:28

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.104.89
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5796
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.93.104.89.			IN	A

;; AUTHORITY SECTION:
.			592	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022063001 1800 900 604800 86400

;; Query time: 98 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jul 01 11:56:08 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 89.104.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 89.104.93.142.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.175.169	attack	Apr 29 14:03:25 minden010 sshd[6873]: Failed password for root from 222.186.175.169 port 25162 ssh2 Apr 29 14:03:29 minden010 sshd[6873]: Failed password for root from 222.186.175.169 port 25162 ssh2 Apr 29 14:03:32 minden010 sshd[6873]: Failed password for root from 222.186.175.169 port 25162 ssh2 Apr 29 14:03:36 minden010 sshd[6873]: Failed password for root from 222.186.175.169 port 25162 ssh2 ...	2020-04-29 20:04:57
187.141.71.27	attackspambots	SSH authentication failure x 6 reported by Fail2Ban ...	2020-04-29 20:00:40
94.69.226.48	attackbotsspam	Invalid user sjx from 94.69.226.48 port 56050	2020-04-29 19:53:54
185.50.149.10	attackspam	Apr 29 14:04:16 relay postfix/smtpd\[9299\]: warning: unknown\[185.50.149.10\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 29 14:16:21 relay postfix/smtpd\[9300\]: warning: unknown\[185.50.149.10\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 29 14:16:31 relay postfix/smtpd\[7436\]: warning: unknown\[185.50.149.10\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 29 14:23:38 relay postfix/smtpd\[9299\]: warning: unknown\[185.50.149.10\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 29 14:23:57 relay postfix/smtpd\[7434\]: warning: unknown\[185.50.149.10\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-04-29 20:31:59
203.112.73.170	attack	Apr 29 14:02:27 * sshd[22965]: Failed password for root from 203.112.73.170 port 51670 ssh2 Apr 29 14:04:14 * sshd[23260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.112.73.170	2020-04-29 20:13:20
114.141.132.88	attackbotsspam	Apr 29 11:59:34 124388 sshd[11494]: Invalid user t from 114.141.132.88 port 5171 Apr 29 11:59:34 124388 sshd[11494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.141.132.88 Apr 29 11:59:34 124388 sshd[11494]: Invalid user t from 114.141.132.88 port 5171 Apr 29 11:59:36 124388 sshd[11494]: Failed password for invalid user t from 114.141.132.88 port 5171 ssh2 Apr 29 12:04:09 124388 sshd[11567]: Invalid user liuhao from 114.141.132.88 port 5172	2020-04-29 20:17:43
185.50.149.26	attack	2020-04-29 14:03:30 dovecot_login authenticator failed for $\[185.50.149.26\]$ \[185.50.149.26\]: 535 Incorrect authentication data $set_id=support@nopcommerce.it$ 2020-04-29 14:03:39 dovecot_login authenticator failed for $\[185.50.149.26\]$ \[185.50.149.26\]: 535 Incorrect authentication data 2020-04-29 14:03:49 dovecot_login authenticator failed for $\[185.50.149.26\]$ \[185.50.149.26\]: 535 Incorrect authentication data 2020-04-29 14:03:56 dovecot_login authenticator failed for $\[185.50.149.26\]$ \[185.50.149.26\]: 535 Incorrect authentication data 2020-04-29 14:04:10 dovecot_login authenticator failed for $\[185.50.149.26\]$ \[185.50.149.26\]: 535 Incorrect authentication data	2020-04-29 20:16:02
222.186.175.183	attackbots	Apr 29 14:18:11 vpn01 sshd[29071]: Failed password for root from 222.186.175.183 port 8244 ssh2 Apr 29 14:18:15 vpn01 sshd[29071]: Failed password for root from 222.186.175.183 port 8244 ssh2 ...	2020-04-29 20:22:00
59.125.155.188	attackspambots	(sshd) Failed SSH login from 59.125.155.188 (TW/Taiwan/59-125-155-188.HINET-IP.hinet.net): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 29 13:10:23 amsweb01 sshd[31952]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.125.155.188 user=root Apr 29 13:10:25 amsweb01 sshd[31952]: Failed password for root from 59.125.155.188 port 57720 ssh2 Apr 29 14:00:04 amsweb01 sshd[8387]: Invalid user mice from 59.125.155.188 port 42990 Apr 29 14:00:06 amsweb01 sshd[8387]: Failed password for invalid user mice from 59.125.155.188 port 42990 ssh2 Apr 29 14:04:07 amsweb01 sshd[8778]: Invalid user hellen from 59.125.155.188 port 55040	2020-04-29 20:18:12
217.112.142.251	attackspambots	Apr 29 13:41:13 web01.agentur-b-2.de postfix/smtpd[1084900]: NOQUEUE: reject: RCPT from unknown[217.112.142.251]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Apr 29 13:43:26 web01.agentur-b-2.de postfix/smtpd[1077559]: NOQUEUE: reject: RCPT from unknown[217.112.142.251]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Apr 29 13:45:24 web01.agentur-b-2.de postfix/smtpd[1077559]: NOQUEUE: reject: RCPT from unknown[217.112.142.251]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Apr 29 13:45:24 web01.agentur-b-2.de postfix/smtpd[1084900]: NOQUEUE: reject: RCPT from unknown[2	2020-04-29 20:34:26
49.232.59.165	attackspambots	Fail2Ban Ban Triggered	2020-04-29 20:21:26
139.155.1.18	attackspambots	Invalid user ghost from 139.155.1.18 port 48936	2020-04-29 19:59:44
116.196.82.80	attackspam	Apr 29 13:06:13 icinga sshd[2896]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.82.80 Apr 29 13:06:15 icinga sshd[2896]: Failed password for invalid user bsnl from 116.196.82.80 port 42146 ssh2 Apr 29 13:11:24 icinga sshd[11610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.82.80 ...	2020-04-29 19:56:25
121.200.48.58	attackbotsspam	Apr 29 14:01:43 web01.agentur-b-2.de postfix/smtpd[1077562]: NOQUEUE: reject: RCPT from unknown[121.200.48.58]: 554 5.7.1 Service unavailable; Client host [121.200.48.58] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/121.200.48.58 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo= Apr 29 14:02:05 web01.agentur-b-2.de postfix/smtpd[1077562]: NOQUEUE: reject: RCPT from unknown[121.200.48.58]: 554 5.7.1 Service unavailable; Client host [121.200.48.58] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/121.200.48.58 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo= Apr 29 14:02:07 web01.agentur-b-2.de postfix/smtpd[1077562]: NOQUEUE: reject: RCPT from unknown[121.200.48.58]: 554 5.7.1 Service unavailable; Client host [121.200.48.58] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip	2020-04-29 20:14:04
195.231.3.155	attack	Apr 29 13:34:43 mail.srvfarm.net postfix/smtpd[143817]: lost connection after CONNECT from unknown[195.231.3.155] Apr 29 13:34:43 mail.srvfarm.net postfix/smtpd[146233]: lost connection after CONNECT from unknown[195.231.3.155] Apr 29 13:37:24 mail.srvfarm.net postfix/smtpd[129799]: lost connection after CONNECT from unknown[195.231.3.155] Apr 29 13:42:38 mail.srvfarm.net postfix/smtpd[146743]: warning: unknown[195.231.3.155]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 29 13:42:38 mail.srvfarm.net postfix/smtpd[146743]: lost connection after AUTH from unknown[195.231.3.155]	2020-04-29 20:37:58

Recently Reported IPs

112.216.68.26	103.138.57.147	132.226.163.52	85.122.128.17
90.198.96.220	211.178.151.190	121.147.254.178	82.25.153.127
122.107.100.92	222.230.85.51	20.55.43.28	133.32.1.19
114.159.182.198	162.253.17.211	180.76.232.83	59.126.139.132
206.189.164.107	201.68.251.151	218.155.224.191	112.166.117.215