142.93.175.158

Basic Info

City: Frankfurt am Main

Region: Hesse

Country: Germany

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Nov 10 18:29:10 odroid64 sshd\[10790\]: Invalid user strannemar from 142.93.175.158 Nov 10 18:29:10 odroid64 sshd\[10790\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.175.158 ...	2019-11-11 04:25:28
attackbotsspam	Nov 9 22:46:16 cavern sshd[13253]: Failed password for root from 142.93.175.158 port 52678 ssh2	2019-11-10 08:09:58
attackspambots	ssh failed login	2019-11-07 15:11:33

Type

Details

Datetime

attackspam

Nov 10 18:29:10 odroid64 sshd\[10790\]: Invalid user strannemar from 142.93.175.158
Nov 10 18:29:10 odroid64 sshd\[10790\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.175.158
...

2019-11-11 04:25:28

attackbotsspam

Nov  9 22:46:16 cavern sshd[13253]: Failed password for root from 142.93.175.158 port 52678 ssh2

2019-11-10 08:09:58

attackspambots

ssh failed login

2019-11-07 15:11:33

Comments on same subnet:

IP	Type	Details	Datetime
142.93.175.116	attackbots	DATE:2020-06-14 14:46:49, IP:142.93.175.116, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2020-06-15 00:49:47
142.93.175.166	attackbots	SSH/22 MH Probe, BF, Hack -	2020-01-23 18:44:19
142.93.175.50	attackspam	May 24 15:16:14 server sshd\[177620\]: Invalid user ibiza from 142.93.175.50 May 24 15:16:15 server sshd\[177620\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.175.50 May 24 15:16:16 server sshd\[177620\]: Failed password for invalid user ibiza from 142.93.175.50 port 34038 ssh2 ...	2019-07-12 05:05:05

Type

Details

Datetime

142.93.175.116

attackbots

DATE:2020-06-14 14:46:49, IP:142.93.175.116, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)

2020-06-15 00:49:47

142.93.175.166

attackbots

SSH/22 MH Probe, BF, Hack -

2020-01-23 18:44:19

142.93.175.50

attackspam

May 24 15:16:14 server sshd\[177620\]: Invalid user ibiza from 142.93.175.50
May 24 15:16:15 server sshd\[177620\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.175.50
May 24 15:16:16 server sshd\[177620\]: Failed password for invalid user ibiza from 142.93.175.50 port 34038 ssh2
...

2019-07-12 05:05:05

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.175.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7884
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.175.158.			IN	A

;; AUTHORITY SECTION:
.			364	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110700 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Nov 07 15:11:27 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 158.175.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 158.175.93.142.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.146.41.44	attack	Unauthorized connection attempt from IP address 49.146.41.44 on Port 445(SMB)	2020-03-09 18:16:25
188.166.237.191	attackbotsspam	Mar 8 23:41:11 hanapaa sshd\[892\]: Invalid user 1 from 188.166.237.191 Mar 8 23:41:11 hanapaa sshd\[892\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.237.191 Mar 8 23:41:12 hanapaa sshd\[892\]: Failed password for invalid user 1 from 188.166.237.191 port 43870 ssh2 Mar 8 23:46:00 hanapaa sshd\[1320\]: Invalid user Asd@12 from 188.166.237.191 Mar 8 23:46:00 hanapaa sshd\[1320\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.237.191	2020-03-09 17:53:22
175.6.32.134	attackspam	2020-03-09T05:21:15.705612ns386461 sshd\[11141\]: Invalid user xsbk from 175.6.32.134 port 46908 2020-03-09T05:21:15.710131ns386461 sshd\[11141\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.6.32.134 2020-03-09T05:21:17.558455ns386461 sshd\[11141\]: Failed password for invalid user xsbk from 175.6.32.134 port 46908 ssh2 2020-03-09T05:36:12.936509ns386461 sshd\[24851\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.6.32.134 user=root 2020-03-09T05:36:15.259645ns386461 sshd\[24851\]: Failed password for root from 175.6.32.134 port 44502 ssh2 ...	2020-03-09 17:35:36
1.10.135.31	attackspambots	Unauthorized connection attempt from IP address 1.10.135.31 on Port 445(SMB)	2020-03-09 17:56:23
192.184.46.240	attackbots	20/3/8@23:46:06: FAIL: Alarm-Intrusion address from=192.184.46.240 ...	2020-03-09 18:04:49
113.62.176.98	attack	Mar 9 06:42:48 ws12vmsma01 sshd[46722]: Failed password for invalid user bitbucket from 113.62.176.98 port 30828 ssh2 Mar 9 06:47:54 ws12vmsma01 sshd[47744]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.62.176.98 user=root Mar 9 06:47:56 ws12vmsma01 sshd[47744]: Failed password for root from 113.62.176.98 port 51583 ssh2 ...	2020-03-09 18:15:31
23.254.70.190	attackbots	LAMP,DEF GET http://dev1.meyer-trousers.com/adminer.php	2020-03-09 17:51:34
118.173.134.31	attackspambots	Unauthorized connection attempt from IP address 118.173.134.31 on Port 445(SMB)	2020-03-09 18:06:55
81.91.170.12	spam	MARRE de ces ORDURES et autres FILS de PUTE genre SOUS MERDES capables de POLLUER STUPIDEMENT pour ne pas dire CONNEMENT la Planète par des POURRIELS INUTILES sur des listes VOLÉES on ne sait où et SANS notre accord pour du SEXE ! w-bieker@t-online.de, camaramahamady@yahoo.fr and tatisere@list.ru to BURN / CLOSE / DELETTE / SOP IMMEDIATELY for SPAM, PHISHING and SCAM ! Message-ID: Content-Type: multipart/mixed; boundary="------------000002020604090504010201" X-Priority: 3 (Normal) From: "Nice Tatianulenka" Reply-To: "Nice Tatianulenka" To: camaramahamady@yahoo.fr t-online.de => denic.de AS USUAL ! ! ! t-online.de => 62.138.239.100 denic.de => 81.91.170.12 https://www.mywot.com/scorecard/t-online.de https://www.mywot.com/scorecard/denic.de https://en.asytech.cn/check-ip/62.138.239.100 https://en.asytech.cn/check-ip/81.91.170.12 list.ru => go.mail.ru list.ru => 217.69.139.53 go.mail.ru => 217.69.139.51 https://www.mywot.com/scorecard/list.ru https://www.mywot.com/scorecard/mail.ru https://www.mywot.com/scorecard/go.mail.ru https://en.asytech.cn/check-ip/217.69.139.51 https://en.asytech.cn/check-ip/217.69.139.53	2020-03-09 17:53:24
203.176.179.210	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-09 18:02:44
200.194.14.234	attackbots	Automatic report - Port Scan Attack	2020-03-09 18:11:45
118.69.35.129	attackspam	Unauthorized connection attempt from IP address 118.69.35.129 on Port 445(SMB)	2020-03-09 17:36:21
96.232.195.28	attackspam	$f2bV_matches	2020-03-09 18:04:15
81.30.179.48	attackbotsspam	Mar 9 04:12:12 rama sshd[975589]: reveeclipse mapping checking getaddrinfo for 81.30.179.48.static.ufanet.ru [81.30.179.48] failed - POSSIBLE BREAK-IN ATTEMPT! Mar 9 04:12:12 rama sshd[975589]: Invalid user lilei from 81.30.179.48 Mar 9 04:12:12 rama sshd[975589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.30.179.48 Mar 9 04:12:14 rama sshd[975589]: Failed password for invalid user lilei from 81.30.179.48 port 34647 ssh2 Mar 9 04:12:15 rama sshd[975589]: Received disconnect from 81.30.179.48: 11: Bye Bye [preauth] Mar 9 04:27:28 rama sshd[989174]: reveeclipse mapping checking getaddrinfo for 81.30.179.48.static.ufanet.ru [81.30.179.48] failed - POSSIBLE BREAK-IN ATTEMPT! Mar 9 04:27:28 rama sshd[989174]: Invalid user jeff from 81.30.179.48 Mar 9 04:27:28 rama sshd[989174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.30.179.48 Mar 9 04:27:30 rama sshd[989174]: Failed........ -------------------------------	2020-03-09 18:05:21
113.125.44.80	attackspam	Mar 9 07:14:51 lnxmysql61 sshd[9164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.44.80	2020-03-09 17:49:30

Recently Reported IPs

111.199.17.138	109.180.254.152	109.78.33.158	104.148.119.2
103.119.141.125	103.112.169.37	102.68.109.129	68.183.42.105
45.117.82.191	31.187.96.68	27.64.60.114	151.101.112.33
14.185.42.250	141.98.80.100	52.71.65.129	51.89.185.101
183.147.22.154	176.51.240.30	80.84.57.116	192.241.240.89