142.93.148.58 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
142.93.148.12	attack	Automatic report - XMLRPC Attack	2020-06-24 06:23:24
142.93.148.51	attackbots	Feb 1 21:01:46 debian-2gb-nbg1-2 kernel: \[2846562.157247\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=142.93.148.51 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=236 ID=23146 PROTO=TCP SPT=48338 DPT=9503 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-02 04:05:32
142.93.148.51	attack	Unauthorized connection attempt detected from IP address 142.93.148.51 to port 2220 [J]	2020-01-20 17:32:33
142.93.148.51	attackspam	Unauthorized connection attempt detected from IP address 142.93.148.51 to port 2220 [J]	2020-01-14 15:16:20
142.93.148.51	attackspambots	Unauthorized connection attempt detected from IP address 142.93.148.51 to port 22	2020-01-13 03:33:22
142.93.148.51	attack	Unauthorized connection attempt detected from IP address 142.93.148.51 to port 2220 [J]	2020-01-11 23:03:39
142.93.148.51	attack	" "	2020-01-10 18:25:55
142.93.148.51	attackspam	Unauthorized connection attempt detected from IP address 142.93.148.51 to port 2220 [J]	2020-01-07 17:27:38
142.93.148.51	attackspambots	Unauthorized connection attempt detected from IP address 142.93.148.51 to port 2220 [J]	2020-01-06 06:06:24
142.93.148.51	attackbotsspam	Unauthorized connection attempt detected from IP address 142.93.148.51 to port 2220 [J]	2020-01-05 03:46:51
142.93.148.51	attackspam	Invalid user marquerite from 142.93.148.51 port 43992	2019-12-24 22:41:03
142.93.148.51	attackspam	Dec 19 12:30:45 kapalua sshd\[25819\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.148.51 user=root Dec 19 12:30:47 kapalua sshd\[25819\]: Failed password for root from 142.93.148.51 port 37964 ssh2 Dec 19 12:35:45 kapalua sshd\[26387\]: Invalid user webadmin from 142.93.148.51 Dec 19 12:35:45 kapalua sshd\[26387\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.148.51 Dec 19 12:35:47 kapalua sshd\[26387\]: Failed password for invalid user webadmin from 142.93.148.51 port 43848 ssh2	2019-12-20 06:40:55

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.148.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30080
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.148.58.			IN	A

;; AUTHORITY SECTION:
.			469	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120902 1800 900 604800 86400

;; Query time: 94 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 10 09:27:11 CST 2019
;; MSG SIZE  rcvd: 117

Host info

58.148.93.142.in-addr.arpa domain name pointer 2012.r2.dc.x64.eval.us-english.gz-s-1vcpu-2gb-nyc1-01-1575791430176-s-1vcpu-2gb-tor1-01.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
58.148.93.142.in-addr.arpa	name = 2012.r2.dc.x64.eval.us-english.gz-s-1vcpu-2gb-nyc1-01-1575791430176-s-1vcpu-2gb-tor1-01.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.111.95.132	attackspam	Aug 4 21:05:41 wildwolf ssh-honeypotd[26164]: Failed password for pi from 106.111.95.132 port 53526 ssh2 (target: 158.69.100.150:22, password: raspberry) Aug 4 21:05:44 wildwolf ssh-honeypotd[26164]: Failed password for pi from 106.111.95.132 port 54242 ssh2 (target: 158.69.100.150:22, password: 12345) Aug 4 21:05:48 wildwolf ssh-honeypotd[26164]: Failed password for pi from 106.111.95.132 port 54992 ssh2 (target: 158.69.100.150:22, password: 123321) Aug 4 21:05:50 wildwolf ssh-honeypotd[26164]: Failed password for ubnt from 106.111.95.132 port 55698 ssh2 (target: 158.69.100.150:22, password: ubnt) Aug 4 21:05:53 wildwolf ssh-honeypotd[26164]: Failed password for openhabian from 106.111.95.132 port 56337 ssh2 (target: 158.69.100.150:22, password: openhabian) Aug 4 21:05:56 wildwolf ssh-honeypotd[26164]: Failed password for netscreen from 106.111.95.132 port 57004 ssh2 (target: 158.69.100.150:22, password: netscreen) Aug 4 21:06:02 wildwolf ssh-honeypotd[26164]: Fa........ ------------------------------	2019-08-05 14:26:06
89.153.225.177	attackbots	Autoban 89.153.225.177 AUTH/CONNECT	2019-08-05 14:17:33
89.159.101.24	attackbots	Autoban 89.159.101.24 AUTH/CONNECT	2019-08-05 14:11:15
89.163.142.102	attackspambots	Autoban 89.163.142.102 AUTH/CONNECT	2019-08-05 14:09:31
196.0.113.10	attack	proto=tcp . spt=49097 . dpt=25 . (listed on Blocklist de Aug 04) (698)	2019-08-05 14:34:31
89.210.143.54	attackbotsspam	Autoban 89.210.143.54 AUTH/CONNECT	2019-08-05 14:04:03
43.226.38.26	attack	2019-08-05T05:55:28.463707abusebot-2.cloudsearch.cf sshd\[2502\]: Invalid user ansible from 43.226.38.26 port 59192	2019-08-05 14:06:52
89.217.110.31	attackbots	Autoban 89.217.110.31 AUTH/CONNECT	2019-08-05 13:58:59
58.145.168.162	attackspambots	Aug 5 06:22:15 vtv3 sshd\[31850\]: Invalid user paul from 58.145.168.162 port 34610 Aug 5 06:22:15 vtv3 sshd\[31850\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.145.168.162 Aug 5 06:22:17 vtv3 sshd\[31850\]: Failed password for invalid user paul from 58.145.168.162 port 34610 ssh2 Aug 5 06:27:16 vtv3 sshd\[1924\]: Invalid user ts3 from 58.145.168.162 port 56154 Aug 5 06:27:16 vtv3 sshd\[1924\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.145.168.162 Aug 5 06:41:28 vtv3 sshd\[8970\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.145.168.162 user=root Aug 5 06:41:30 vtv3 sshd\[8970\]: Failed password for root from 58.145.168.162 port 36180 ssh2 Aug 5 06:46:20 vtv3 sshd\[11242\]: Invalid user gc from 58.145.168.162 port 57837 Aug 5 06:46:20 vtv3 sshd\[11242\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.14	2019-08-05 14:22:25
88.87.233.246	attackspambots	Autoban 88.87.233.246 AUTH/CONNECT	2019-08-05 14:31:54
89.250.149.114	attack	Autoban 89.250.149.114 AUTH/CONNECT	2019-08-05 13:51:30
185.238.44.210	attackbots	proto=tcp . spt=44425 . dpt=25 . (listed on Blocklist de Aug 04) (706)	2019-08-05 13:56:49
89.109.80.244	attackspam	Autoban 89.109.80.244 AUTH/CONNECT	2019-08-05 14:27:10
88.86.212.11	attackbots	Autoban 88.86.212.11 AUTH/CONNECT	2019-08-05 14:33:43
128.199.222.43	attackbots	Aug 5 08:12:01 [munged] sshd[28954]: Invalid user paintball1 from 128.199.222.43 port 41336 Aug 5 08:12:01 [munged] sshd[28954]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.222.43	2019-08-05 14:27:46

Recently Reported IPs

163.172.62.21	15.188.105.189	67.199.254.216	112.215.220.82
217.103.68.77	148.72.31.117	121.8.190.26	115.74.229.10
160.20.253.23	14.186.144.190	218.232.135.95	101.88.208.80
101.71.132.182	151.251.210.88	243.55.136.49	112.195.255.131
61.137.143.53	189.213.164.30	200.175.174.114	201.161.58.56