142.93.172.64 - IPInfo

Basic Info

City: Frankfurt am Main

Region: Hesse

Country: Germany

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: DigitalOcean, LLC

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	ssh brute force	2020-06-01 16:56:52
attackspam	May 31 10:08:06 ns382633 sshd\[4544\]: Invalid user guest from 142.93.172.64 port 33332 May 31 10:08:06 ns382633 sshd\[4544\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 May 31 10:08:07 ns382633 sshd\[4544\]: Failed password for invalid user guest from 142.93.172.64 port 33332 ssh2 May 31 10:23:32 ns382633 sshd\[7418\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 user=root May 31 10:23:34 ns382633 sshd\[7418\]: Failed password for root from 142.93.172.64 port 42254 ssh2	2020-05-31 17:36:59
attackspam	May 15 19:45:09 localhost sshd[82146]: Invalid user Test from 142.93.172.64 port 38950 May 15 19:45:09 localhost sshd[82146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 May 15 19:45:09 localhost sshd[82146]: Invalid user Test from 142.93.172.64 port 38950 May 15 19:45:11 localhost sshd[82146]: Failed password for invalid user Test from 142.93.172.64 port 38950 ssh2 May 15 19:51:38 localhost sshd[83059]: Invalid user easter from 142.93.172.64 port 44968 ...	2020-05-16 03:59:57
attack	Apr 27 15:14:26 sshd\[26325\]: User root from 142.93.172.64 not allowed because not listed in AllowUsersApr 27 15:14:28 sshd\[26325\]: Failed password for invalid user root from 142.93.172.64 port 56206 ssh2 ...	2020-04-27 21:31:04
attackspam	Apr 23 21:22:46 xeon sshd[9502]: Failed password for invalid user v from 142.93.172.64 port 56438 ssh2	2020-04-24 04:51:33
attackbotsspam	Apr 17 14:03:24 nextcloud sshd\[27699\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 user=root Apr 17 14:03:26 nextcloud sshd\[27699\]: Failed password for root from 142.93.172.64 port 38496 ssh2 Apr 17 14:10:34 nextcloud sshd\[5390\]: Invalid user test from 142.93.172.64 Apr 17 14:10:34 nextcloud sshd\[5390\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64	2020-04-17 20:45:10
attack	2020-04-08T20:09:55.559817vps773228.ovh.net sshd[13557]: Invalid user qlserver from 142.93.172.64 port 45008 2020-04-08T20:09:55.575822vps773228.ovh.net sshd[13557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 2020-04-08T20:09:55.559817vps773228.ovh.net sshd[13557]: Invalid user qlserver from 142.93.172.64 port 45008 2020-04-08T20:09:57.235874vps773228.ovh.net sshd[13557]: Failed password for invalid user qlserver from 142.93.172.64 port 45008 ssh2 2020-04-08T20:14:13.715050vps773228.ovh.net sshd[15183]: Invalid user test from 142.93.172.64 port 54224 ...	2020-04-09 02:52:40
attackbotsspam	2020-04-07T17:02:57.200478vps751288.ovh.net sshd\[31469\]: Invalid user kafka from 142.93.172.64 port 58170 2020-04-07T17:02:57.208825vps751288.ovh.net sshd\[31469\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 2020-04-07T17:02:58.951077vps751288.ovh.net sshd\[31469\]: Failed password for invalid user kafka from 142.93.172.64 port 58170 ssh2 2020-04-07T17:09:51.515167vps751288.ovh.net sshd\[31503\]: Invalid user ubuntu from 142.93.172.64 port 39728 2020-04-07T17:09:51.525146vps751288.ovh.net sshd\[31503\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64	2020-04-08 01:18:45
attack	Mar 28 05:43:55 host01 sshd[17313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 Mar 28 05:43:57 host01 sshd[17313]: Failed password for invalid user ts3bot from 142.93.172.64 port 52006 ssh2 Mar 28 05:48:43 host01 sshd[18079]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 ...	2020-03-28 12:54:29
attackbotsspam	$f2bV_matches	2020-03-23 20:51:02
attackbots	Mar 18 07:55:02 ns382633 sshd\[6600\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 user=root Mar 18 07:55:04 ns382633 sshd\[6600\]: Failed password for root from 142.93.172.64 port 33862 ssh2 Mar 18 08:03:19 ns382633 sshd\[8315\]: Invalid user user from 142.93.172.64 port 46122 Mar 18 08:03:19 ns382633 sshd\[8315\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 Mar 18 08:03:21 ns382633 sshd\[8315\]: Failed password for invalid user user from 142.93.172.64 port 46122 ssh2	2020-03-18 16:04:29
attack	Mar 12 23:01:09 lukav-desktop sshd\[11700\]: Invalid user mc from 142.93.172.64 Mar 12 23:01:09 lukav-desktop sshd\[11700\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 Mar 12 23:01:11 lukav-desktop sshd\[11700\]: Failed password for invalid user mc from 142.93.172.64 port 48636 ssh2 Mar 12 23:10:29 lukav-desktop sshd\[5387\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 user=root Mar 12 23:10:31 lukav-desktop sshd\[5387\]: Failed password for root from 142.93.172.64 port 59132 ssh2	2020-03-13 06:39:52
attack	(sshd) Failed SSH login from 142.93.172.64 (DE/Germany/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 1 09:40:38 amsweb01 sshd[31451]: Invalid user kristofvps from 142.93.172.64 port 51282 Mar 1 09:40:40 amsweb01 sshd[31451]: Failed password for invalid user kristofvps from 142.93.172.64 port 51282 ssh2 Mar 1 09:42:25 amsweb01 sshd[32171]: Invalid user ts3 from 142.93.172.64 port 41406 Mar 1 09:42:27 amsweb01 sshd[32171]: Failed password for invalid user ts3 from 142.93.172.64 port 41406 ssh2 Mar 1 09:44:07 amsweb01 sshd[641]: Invalid user ashok from 142.93.172.64 port 59762	2020-03-01 16:50:12
attackbots	Feb 5 00:19:11 hpm sshd\[22840\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 user=root Feb 5 00:19:13 hpm sshd\[22840\]: Failed password for root from 142.93.172.64 port 49908 ssh2 Feb 5 00:24:07 hpm sshd\[23322\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 user=root Feb 5 00:24:09 hpm sshd\[23322\]: Failed password for root from 142.93.172.64 port 49166 ssh2 Feb 5 00:29:11 hpm sshd\[23876\]: Invalid user shameesa from 142.93.172.64	2020-02-05 18:39:26
attackbots	Unauthorized connection attempt detected from IP address 142.93.172.64 to port 2220 [J]	2020-02-02 03:59:52
attackbotsspam	2020-01-24T22:37:53.8632751495-001 sshd[29107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 2020-01-24T22:37:53.8563011495-001 sshd[29107]: Invalid user drift from 142.93.172.64 port 56018 2020-01-24T22:37:56.0326121495-001 sshd[29107]: Failed password for invalid user drift from 142.93.172.64 port 56018 ssh2 2020-01-24T23:38:42.3152161495-001 sshd[31319]: Invalid user webmaster from 142.93.172.64 port 39360 2020-01-24T23:38:42.3184441495-001 sshd[31319]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 2020-01-24T23:38:42.3152161495-001 sshd[31319]: Invalid user webmaster from 142.93.172.64 port 39360 2020-01-24T23:38:44.0960301495-001 sshd[31319]: Failed password for invalid user webmaster from 142.93.172.64 port 39360 ssh2 2020-01-24T23:41:28.2537541495-001 sshd[31422]: Invalid user vbox from 142.93.172.64 port 38312 2020-01-24T23:41:28.2617551495-001 sshd[31422]: pam_unix( ...	2020-01-25 13:38:33
attack	Unauthorized connection attempt detected from IP address 142.93.172.64 to port 2220 [J]	2020-01-23 09:21:39
attack	Jan 18 16:58:22 ncomp sshd[13124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 user=root Jan 18 16:58:24 ncomp sshd[13124]: Failed password for root from 142.93.172.64 port 42838 ssh2 Jan 18 17:06:42 ncomp sshd[13455]: Invalid user deploy from 142.93.172.64	2020-01-19 02:29:48
attack	[ssh] SSH attack	2020-01-18 04:30:24
attackbots	Unauthorized connection attempt detected from IP address 142.93.172.64 to port 2220 [J]	2020-01-17 03:42:04
attackbotsspam	no	2019-12-31 17:02:29
attackbotsspam	Dec 20 09:25:55 legacy sshd[29093]: Failed password for root from 142.93.172.64 port 36062 ssh2 Dec 20 09:33:03 legacy sshd[29427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 Dec 20 09:33:05 legacy sshd[29427]: Failed password for invalid user paypals from 142.93.172.64 port 44912 ssh2 ...	2019-12-20 16:43:37
attackbots	Dec 17 01:38:57 web9 sshd\[32568\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 user=games Dec 17 01:38:59 web9 sshd\[32568\]: Failed password for games from 142.93.172.64 port 46552 ssh2 Dec 17 01:45:33 web9 sshd\[1269\]: Invalid user hayashi from 142.93.172.64 Dec 17 01:45:33 web9 sshd\[1269\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 Dec 17 01:45:36 web9 sshd\[1269\]: Failed password for invalid user hayashi from 142.93.172.64 port 58266 ssh2	2019-12-17 22:18:21
attackspam	2019-12-04T11:17:45.166513abusebot-6.cloudsearch.cf sshd\[18960\]: Invalid user schoepflin from 142.93.172.64 port 59054	2019-12-04 23:07:19
attackbotsspam	Nov 26 15:45:27 lnxweb61 sshd[11207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64	2019-11-27 00:50:32
attackbots	Nov 22 22:54:27 kapalua sshd\[16793\]: Invalid user fonda from 142.93.172.64 Nov 22 22:54:27 kapalua sshd\[16793\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 Nov 22 22:54:28 kapalua sshd\[16793\]: Failed password for invalid user fonda from 142.93.172.64 port 33736 ssh2 Nov 22 22:58:04 kapalua sshd\[17095\]: Invalid user Aapo from 142.93.172.64 Nov 22 22:58:04 kapalua sshd\[17095\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64	2019-11-23 20:49:32
attackbotsspam	Nov 17 07:17:29 nextcloud sshd\[16147\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 user=root Nov 17 07:17:31 nextcloud sshd\[16147\]: Failed password for root from 142.93.172.64 port 36282 ssh2 Nov 17 07:29:44 nextcloud sshd\[30239\]: Invalid user radio from 142.93.172.64 ...	2019-11-17 14:55:13
attackspam	Invalid user admin from 142.93.172.64 port 56224	2019-11-16 18:58:40
attack	Nov 15 10:53:35 hanapaa sshd\[8549\]: Invalid user ziyang from 142.93.172.64 Nov 15 10:53:35 hanapaa sshd\[8549\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 Nov 15 10:53:37 hanapaa sshd\[8549\]: Failed password for invalid user ziyang from 142.93.172.64 port 57812 ssh2 Nov 15 10:57:34 hanapaa sshd\[8844\]: Invalid user shenglu from 142.93.172.64 Nov 15 10:57:34 hanapaa sshd\[8844\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64	2019-11-16 05:10:44
attackbots	Nov 12 19:56:13 web1 sshd\[25348\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 user=root Nov 12 19:56:15 web1 sshd\[25348\]: Failed password for root from 142.93.172.64 port 49794 ssh2 Nov 12 20:00:03 web1 sshd\[25680\]: Invalid user hata from 142.93.172.64 Nov 12 20:00:03 web1 sshd\[25680\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.64 Nov 12 20:00:05 web1 sshd\[25680\]: Failed password for invalid user hata from 142.93.172.64 port 58342 ssh2	2019-11-13 14:08:02

Comments on same subnet:

IP	Type	Details	Datetime
142.93.172.45	attackspam	142.93.172.45 - - [12/Sep/2020:12:44:23 +0200] "GET /wp-login.php HTTP/1.1" 200 9061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.172.45 - - [12/Sep/2020:12:44:24 +0200] "POST /wp-login.php HTTP/1.1" 200 9312 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.172.45 - - [12/Sep/2020:12:44:25 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-13 03:47:21
142.93.172.45	attackbots	142.93.172.45 - - [12/Sep/2020:12:44:23 +0200] "GET /wp-login.php HTTP/1.1" 200 9061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.172.45 - - [12/Sep/2020:12:44:24 +0200] "POST /wp-login.php HTTP/1.1" 200 9312 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.172.45 - - [12/Sep/2020:12:44:25 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-12 19:56:13
142.93.172.45	attackbots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-08-30 05:01:11
142.93.172.45	attackbotsspam	142.93.172.45 - - [22/Aug/2020:23:33:17 +0200] "GET /wp-login.php HTTP/1.1" 200 1748 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.172.45 - - [22/Aug/2020:23:33:20 +0200] "POST /wp-login.php HTTP/1.1" 200 1880 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.172.45 - - [22/Aug/2020:23:33:21 +0200] "GET /wp-login.php HTTP/1.1" 200 1748 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.172.45 - - [22/Aug/2020:23:33:22 +0200] "POST /wp-login.php HTTP/1.1" 200 1861 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.172.45 - - [22/Aug/2020:23:33:24 +0200] "GET /wp-login.php HTTP/1.1" 200 1748 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.172.45 - - [22/Aug/2020:23:33:25 +0200] "POST /wp-login.php HTTP/1.1" 200 1855 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Fir ...	2020-08-23 06:25:45
142.93.172.45	attackspam	142.93.172.45 - - [14/Aug/2020:11:37:25 +0200] "GET /wp-login.php HTTP/1.1" 200 9032 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.172.45 - - [14/Aug/2020:11:37:27 +0200] "POST /wp-login.php HTTP/1.1" 200 9283 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.172.45 - - [14/Aug/2020:11:37:28 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-14 18:14:09
142.93.172.45	attackspam	142.93.172.45 - - [03/Aug/2020:14:36:32 +0100] "POST /wp-login.php HTTP/1.1" 200 1704 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.172.45 - - [03/Aug/2020:14:36:34 +0100] "POST /wp-login.php HTTP/1.1" 200 1706 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.172.45 - - [03/Aug/2020:14:36:34 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-03 23:27:31
142.93.172.45	attackspambots	142.93.172.45 - - [26/Jul/2020:22:04:05 +0100] "POST /wp-login.php HTTP/1.1" 200 1969 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.172.45 - - [26/Jul/2020:22:04:06 +0100] "POST /wp-login.php HTTP/1.1" 200 1954 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.172.45 - - [26/Jul/2020:22:04:06 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-27 05:06:44
142.93.172.45	attackbots	142.93.172.45 - - \[17/Jul/2020:20:14:53 +0200\] "POST /wp-login.php HTTP/1.0" 200 5924 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 142.93.172.45 - - \[17/Jul/2020:20:14:54 +0200\] "POST /wp-login.php HTTP/1.0" 200 5902 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 142.93.172.45 - - \[17/Jul/2020:20:14:54 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-07-18 02:17:16
142.93.172.45	attackspam	142.93.172.45 - - [14/Jul/2020:15:40:01 +0100] "POST /wp-login.php HTTP/1.1" 200 2423 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.172.45 - - [14/Jul/2020:15:40:02 +0100] "POST /wp-login.php HTTP/1.1" 200 2371 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.172.45 - - [14/Jul/2020:15:40:03 +0100] "POST /wp-login.php HTTP/1.1" 200 2344 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-14 23:15:44
142.93.172.45	attackbotsspam	Automatic report - WordPress Brute Force	2020-07-04 08:06:31
142.93.172.45	attack	Wordpress_xmlrpc_attack	2020-05-25 04:46:46
142.93.172.67	attackbots	May 11 13:06:12 server1 sshd\[28582\]: Invalid user test from 142.93.172.67 May 11 13:06:12 server1 sshd\[28582\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.67 May 11 13:06:14 server1 sshd\[28582\]: Failed password for invalid user test from 142.93.172.67 port 40080 ssh2 May 11 13:09:37 server1 sshd\[29746\]: Invalid user prom from 142.93.172.67 May 11 13:09:37 server1 sshd\[29746\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.67 ...	2020-05-12 03:25:07
142.93.172.67	attackspambots	May 9 05:12:00 lukav-desktop sshd\[9928\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.67 user=root May 9 05:12:02 lukav-desktop sshd\[9928\]: Failed password for root from 142.93.172.67 port 43656 ssh2 May 9 05:14:50 lukav-desktop sshd\[18319\]: Invalid user zong from 142.93.172.67 May 9 05:14:50 lukav-desktop sshd\[18319\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.67 May 9 05:14:52 lukav-desktop sshd\[18319\]: Failed password for invalid user zong from 142.93.172.67 port 54458 ssh2	2020-05-09 14:43:42
142.93.172.67	attackbotsspam	May 5 05:00:40 vlre-nyc-1 sshd\[24681\]: Invalid user sb from 142.93.172.67 May 5 05:00:40 vlre-nyc-1 sshd\[24681\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.67 May 5 05:00:41 vlre-nyc-1 sshd\[24681\]: Failed password for invalid user sb from 142.93.172.67 port 34614 ssh2 May 5 05:02:50 vlre-nyc-1 sshd\[24772\]: Invalid user klara from 142.93.172.67 May 5 05:02:50 vlre-nyc-1 sshd\[24772\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.172.67 ...	2020-05-05 13:25:19
142.93.172.67	attack	Apr 8 15:59:54 [host] sshd[23436]: Invalid user a Apr 8 15:59:54 [host] sshd[23436]: pam_unix(sshd: Apr 8 15:59:56 [host] sshd[23436]: Failed passwor	2020-04-08 22:06:05

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.172.64
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40660
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.172.64.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041301 1800 900 604800 86400

;; Query time: 71 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun Apr 14 05:24:14 +08 2019
;; MSG SIZE  rcvd: 117

Host info

Host 64.172.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 64.172.93.142.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
200.85.48.30	attackbotsspam	Dec 28 15:12:19 zeus sshd[29051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.85.48.30 Dec 28 15:12:21 zeus sshd[29051]: Failed password for invalid user server from 200.85.48.30 port 34884 ssh2 Dec 28 15:14:43 zeus sshd[29132]: Failed password for root from 200.85.48.30 port 44035 ssh2	2019-12-28 23:57:30
71.6.233.232	attack	" "	2019-12-28 23:58:29
220.128.97.130	attack	Automatic report - SSH Brute-Force Attack	2019-12-29 00:06:32
190.17.208.123	attack	Dec 28 15:29:02 hell sshd[23610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.17.208.123 Dec 28 15:29:05 hell sshd[23610]: Failed password for invalid user eluned from 190.17.208.123 port 52344 ssh2 ...	2019-12-29 00:05:39
49.235.33.73	attackbots	2019-12-28T15:53:24.873343shield sshd\[19370\]: Invalid user kaji from 49.235.33.73 port 46650 2019-12-28T15:53:24.878665shield sshd\[19370\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.33.73 2019-12-28T15:53:27.107748shield sshd\[19370\]: Failed password for invalid user kaji from 49.235.33.73 port 46650 ssh2 2019-12-28T15:58:04.380260shield sshd\[20230\]: Invalid user 22222222 from 49.235.33.73 port 45622 2019-12-28T15:58:04.384798shield sshd\[20230\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.33.73	2019-12-29 00:11:41
198.27.67.154	attackbots	Dec 28 16:33:18 sd-53420 sshd\[11305\]: Invalid user ts3 from 198.27.67.154 Dec 28 16:33:18 sd-53420 sshd\[11305\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.27.67.154 Dec 28 16:33:20 sd-53420 sshd\[11305\]: Failed password for invalid user ts3 from 198.27.67.154 port 35783 ssh2 Dec 28 16:33:47 sd-53420 sshd\[11501\]: Invalid user ts3 from 198.27.67.154 Dec 28 16:33:47 sd-53420 sshd\[11501\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.27.67.154 ...	2019-12-28 23:47:18
185.176.27.102	attackbotsspam	12/28/2019-17:07:22.323420 185.176.27.102 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-12-29 00:14:46
187.22.88.86	attackspambots	Unauthorized connection attempt detected from IP address 187.22.88.86 to port 445	2019-12-28 23:53:53
222.186.175.202	attack	Dec 28 17:12:14 amit sshd\[2480\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root Dec 28 17:12:16 amit sshd\[2480\]: Failed password for root from 222.186.175.202 port 6084 ssh2 Dec 28 17:12:40 amit sshd\[2482\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root ...	2019-12-29 00:18:48
89.71.140.51	attackspam	10 attempts against mh-pma-try-ban on space.magehost.pro	2019-12-29 00:20:47
115.159.66.109	attackbots	$f2bV_matches	2019-12-28 23:46:39
180.106.81.168	attackspam	Dec 28 15:23:42 MK-Soft-Root1 sshd[6050]: Failed password for root from 180.106.81.168 port 44792 ssh2 ...	2019-12-29 00:11:20
142.93.241.93	attackspam	Dec 28 15:28:51 dedicated sshd[31298]: Invalid user postgres from 142.93.241.93 port 52488	2019-12-29 00:16:37
34.215.69.55	attackbotsspam	Sniffing for wp-login	2019-12-28 23:53:26
188.254.0.183	attackbots	Dec 28 16:30:09 minden010 sshd[8710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.183 Dec 28 16:30:12 minden010 sshd[8710]: Failed password for invalid user rubber from 188.254.0.183 port 41132 ssh2 Dec 28 16:32:35 minden010 sshd[10777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.183 ...	2019-12-29 00:29:57

Recently Reported IPs

159.192.222.213	103.110.36.6	59.83.221.74	37.187.155.16
218.92.0.134	200.53.143.42	188.166.1.123	106.12.196.74
54.236.157.249	23.89.67.21	14.232.160.197	222.141.112.183
185.208.228.175	85.236.179.164	36.66.112.254	151.74.136.247
41.40.214.234	182.70.253.202	176.114.128.163	176.112.237.75