142.93.170.130

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Automatic report - XMLRPC Attack	2020-02-21 15:16:38

Comments on same subnet:

IP	Type	Details	Datetime
142.93.170.135	attackbots	Unauthorised Access Attempt	2020-09-28 03:20:59
142.93.170.135	attackspam	Bruteforce detected by fail2ban	2020-09-27 19:30:56
142.93.170.135	attackspam	142.93.170.135 (DE/Germany/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 19 08:08:04 server4 sshd[14579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.170.135 user=root Sep 19 08:04:39 server4 sshd[12443]: Failed password for root from 106.12.166.167 port 32149 ssh2 Sep 19 08:11:35 server4 sshd[17259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.14.77.102 user=root Sep 19 08:06:23 server4 sshd[13559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.136.185 user=root Sep 19 08:06:25 server4 sshd[13559]: Failed password for root from 206.189.136.185 port 53096 ssh2 Sep 19 08:08:06 server4 sshd[14579]: Failed password for root from 142.93.170.135 port 49956 ssh2 IP Addresses Blocked:	2020-09-19 21:02:25
142.93.170.135	attack	Sep 18 13:57:46 ws12vmsma01 sshd[21511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.170.135 user=root Sep 18 13:57:48 ws12vmsma01 sshd[21511]: Failed password for root from 142.93.170.135 port 40128 ssh2 Sep 18 14:02:17 ws12vmsma01 sshd[22129]: Invalid user frank from 142.93.170.135 ...	2020-09-19 04:36:40
142.93.170.135	attackspam	Sep 14 18:50:29 neko-world sshd[5595]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.170.135 user=root Sep 14 18:50:31 neko-world sshd[5595]: Failed password for invalid user root from 142.93.170.135 port 37482 ssh2	2020-09-15 02:48:15
142.93.170.135	attack	Sep 13 22:20:17 firewall sshd[6151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.170.135 Sep 13 22:20:17 firewall sshd[6151]: Invalid user murakami from 142.93.170.135 Sep 13 22:20:19 firewall sshd[6151]: Failed password for invalid user murakami from 142.93.170.135 port 54340 ssh2 ...	2020-09-14 18:36:50
142.93.170.135	attack	Aug 23 07:31:54 PorscheCustomer sshd[3295]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.170.135 Aug 23 07:31:56 PorscheCustomer sshd[3295]: Failed password for invalid user dcj from 142.93.170.135 port 56602 ssh2 Aug 23 07:35:40 PorscheCustomer sshd[3363]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.170.135 ...	2020-08-23 19:03:56
142.93.170.135	attack	Aug 17 07:05:00 scw-tender-jepsen sshd[10328]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.170.135 Aug 17 07:05:02 scw-tender-jepsen sshd[10328]: Failed password for invalid user jin from 142.93.170.135 port 50666 ssh2	2020-08-17 18:11:08
142.93.170.135	attack	Aug 12 00:16:38 ip106 sshd[6884]: Failed password for root from 142.93.170.135 port 55982 ssh2 ...	2020-08-12 08:50:28
142.93.170.135	attackspam	Aug 2 15:03:13 hosting sshd[15812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.170.135 user=root Aug 2 15:03:15 hosting sshd[15812]: Failed password for root from 142.93.170.135 port 54016 ssh2 Aug 2 15:07:03 hosting sshd[16714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.170.135 user=root Aug 2 15:07:05 hosting sshd[16714]: Failed password for root from 142.93.170.135 port 36030 ssh2 ...	2020-08-03 01:42:06
142.93.170.135	attackspambots	SSH Invalid Login	2020-08-01 06:30:26
142.93.170.135	attackbots	Jul 31 06:21:13 vmd36147 sshd[18976]: Failed password for root from 142.93.170.135 port 52622 ssh2 Jul 31 06:24:59 vmd36147 sshd[27127]: Failed password for root from 142.93.170.135 port 34810 ssh2 ...	2020-07-31 13:51:22
142.93.170.135	attackspambots	Jul 29 08:42:36 h2829583 sshd[21030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.170.135	2020-07-29 17:23:22
142.93.170.135	attackbots	Jul 28 14:46:39 NPSTNNYC01T sshd[28102]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.170.135 Jul 28 14:46:40 NPSTNNYC01T sshd[28102]: Failed password for invalid user eddyhang from 142.93.170.135 port 50906 ssh2 Jul 28 14:51:18 NPSTNNYC01T sshd[28480]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.170.135 ...	2020-07-29 02:51:45
142.93.170.135	attack	Jul 26 22:31:11 fhem-rasp sshd[12944]: Invalid user dem from 142.93.170.135 port 39272 ...	2020-07-27 04:50:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.170.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63139
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.170.130.			IN	A

;; AUTHORITY SECTION:
.			450	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022100 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 21 15:16:34 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 130.170.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 130.170.93.142.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.158.98.224	attackspam	prod6 ...	2020-08-20 04:08:04
109.194.17.181	attackspam	Unauthorized access detected from black listed ip!	2020-08-20 04:07:38
59.125.145.88	attackbots	Invalid user minecraft from 59.125.145.88 port 36295	2020-08-20 03:51:44
218.92.0.190	attackspam	Aug 19 21:58:35 dcd-gentoo sshd[730]: User root from 218.92.0.190 not allowed because none of user's groups are listed in AllowGroups Aug 19 21:58:37 dcd-gentoo sshd[730]: error: PAM: Authentication failure for illegal user root from 218.92.0.190 Aug 19 21:58:37 dcd-gentoo sshd[730]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.190 port 24855 ssh2 ...	2020-08-20 04:10:57
213.183.101.89	attackbots	2020-08-19T20:37:14.901535+02:00 sshd[2181]: Failed password for root from 213.183.101.89 port 52476 ssh2	2020-08-20 04:03:36
164.77.117.10	attackspambots	Aug 19 12:38:15 124388 sshd[12925]: Invalid user aml from 164.77.117.10 port 34846 Aug 19 12:38:15 124388 sshd[12925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.77.117.10 Aug 19 12:38:15 124388 sshd[12925]: Invalid user aml from 164.77.117.10 port 34846 Aug 19 12:38:17 124388 sshd[12925]: Failed password for invalid user aml from 164.77.117.10 port 34846 ssh2 Aug 19 12:41:30 124388 sshd[13244]: Invalid user sy from 164.77.117.10 port 51678	2020-08-20 04:24:56
88.248.28.153	attack	Unauthorised access (Aug 19) SRC=88.248.28.153 LEN=52 TTL=115 ID=25990 DF TCP DPT=445 WINDOW=8192 SYN	2020-08-20 04:17:40
31.165.97.93	attack	Aug 19 08:35:24 server sshd\[12355\]: Invalid user mike from 31.165.97.93 port 54716 Aug 19 08:37:20 server sshd\[13123\]: Invalid user info from 31.165.97.93 port 38486	2020-08-20 04:22:19
51.91.108.57	attackbotsspam	Aug 19 17:50:30 jumpserver sshd[217184]: Invalid user sinusbot from 51.91.108.57 port 52124 Aug 19 17:50:32 jumpserver sshd[217184]: Failed password for invalid user sinusbot from 51.91.108.57 port 52124 ssh2 Aug 19 17:54:10 jumpserver sshd[217206]: Invalid user wzt from 51.91.108.57 port 60472 ...	2020-08-20 03:46:56
139.59.211.245	attackbots	Aug 19 21:51:15 ip40 sshd[32510]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.211.245 Aug 19 21:51:17 ip40 sshd[32510]: Failed password for invalid user student4 from 139.59.211.245 port 40544 ssh2 ...	2020-08-20 04:16:52
95.181.131.153	attackspambots	Aug 19 21:50:45 ns381471 sshd[24233]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.181.131.153 Aug 19 21:50:47 ns381471 sshd[24233]: Failed password for invalid user www from 95.181.131.153 port 51768 ssh2	2020-08-20 04:05:13
85.209.0.253	attackbotsspam	[H1.VM6] Blocked by UFW	2020-08-20 03:57:15
49.234.27.90	attackspambots	Aug 19 20:37:53 host sshd[27512]: Invalid user jxs from 49.234.27.90 port 38652 ...	2020-08-20 03:47:11
103.122.67.145	attackbotsspam	Port Scan ...	2020-08-20 03:51:31
177.97.215.255	attackspam	Aug 18 04:22:56 merkur04 sshd[41504]: Invalid user wangyu from 177.97.215.255 Aug 18 04:22:58 merkur04 sshd[41504]: Failed password for invalid user wangyu from 177.97.215.255 port 42211 ssh2 Aug 18 04:29:44 merkur04 sshd[2937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.97.215.255 user=r.r Aug 18 04:29:46 merkur04 sshd[2937]: Failed password for r.r from 177.97.215.255 port 37370 ssh2 Aug 18 04:31:02 merkur04 sshd[4810]: Invalid user ubuntu from 177.97.215.255 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=177.97.215.255	2020-08-20 04:16:38

Recently Reported IPs

186.69.3.154	25.71.3.146	111.67.194.113	113.23.6.88
116.1.189.45	79.50.6.96	220.164.122.218	43.231.255.145
156.251.178.156	69.176.94.213	36.79.235.22	42.142.210.170
103.138.61.134	217.107.194.5	2.139.174.205	202.30.21.190
155.118.251.222	45.143.220.215	14.177.66.57	104.248.203.218