Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:
Type Details Datetime
attackbots
Nov 26 06:29:31 lnxweb62 sshd[5895]: Failed password for root from 142.93.2.63 port 58154 ssh2
Nov 26 06:29:31 lnxweb62 sshd[5895]: Failed password for root from 142.93.2.63 port 58154 ssh2
2019-11-26 13:39:42
Comments on same subnet:
IP Type Details Datetime
142.93.240.62 spamattack
PHISHING AND SPAM ATTACK
FROM "Important Notification - newsletter@app.ksinergy.biz - " : 
SUBJECT "Congrats! Open Immediately! " :
RECEIVED "from mail-02.ksinergy.biz ([142.93.240.62]:39126) " :
DATE/TIMESENT "Mon, 01 Mar 2021 10:14:52 ":
IP ADDRESS "inetnum: 142.93.0.0 - 142.93.255.255  OrgName: DigitalOcean, LLC
2021-03-01 08:16:37
142.93.240.62 spamattack
PHISHING AND SPAM ATTACK
FROM "Casino For You - newsletter@app.ksinergy.biz -" : 
SUBJECT "Join today and receive an amazing welcome bonus " :
RECEIVED "from mail-02.ksinergy.biz ([142.93.240.62]:57421) " :
DATE/TIMESENT "Tue, 23 Feb 2021 01:27:07 "
2021-02-23 04:32:24
142.93.212.91 attackbotsspam
SSH BruteForce Attack
2020-10-13 01:56:49
142.93.237.57 attack
Multiport scan 2 ports : 1583 27080
2020-10-12 21:16:28
142.93.212.91 attack
Oct 12 10:23:09 localhost sshd\[19098\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.212.91  user=root
Oct 12 10:23:11 localhost sshd\[19098\]: Failed password for root from 142.93.212.91 port 59394 ssh2
Oct 12 10:27:27 localhost sshd\[19552\]: Invalid user sanjeev from 142.93.212.91
Oct 12 10:27:27 localhost sshd\[19552\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.212.91
Oct 12 10:27:29 localhost sshd\[19552\]: Failed password for invalid user sanjeev from 142.93.212.91 port 36984 ssh2
...
2020-10-12 17:20:25
142.93.237.57 attack
1089/tcp 5984/tcp
[2020-10-11]2pkt
2020-10-12 12:46:46
142.93.211.36 attackspambots
Oct 12 00:25:27 *hidden* sshd[869]: Failed password for *hidden* from 142.93.211.36 port 56534 ssh2 Oct 12 00:28:28 *hidden* sshd[1320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.211.36 user=root Oct 12 00:28:30 *hidden* sshd[1320]: Failed password for *hidden* from 142.93.211.36 port 40212 ssh2
2020-10-12 07:11:11
142.93.209.251 attackbotsspam
Oct 11 22:07:55 v2202009116398126984 sshd[2515868]: Invalid user elke from 142.93.209.251 port 44534
...
2020-10-12 06:24:15
142.93.223.118 attackspam
SSH login attempts.
2020-10-12 04:12:31
142.93.211.36 attackspam
Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)
2020-10-11 23:23:00
142.93.209.251 attack
Oct 11 16:26:57 sso sshd[30604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251
Oct 11 16:26:59 sso sshd[30604]: Failed password for invalid user chris from 142.93.209.251 port 59794 ssh2
...
2020-10-11 22:34:31
142.93.223.118 attackspam
SSH login attempts.
2020-10-11 20:11:30
142.93.211.36 attack
Fail2Ban
2020-10-11 15:21:45
142.93.209.251 attackbots
(sshd) Failed SSH login from 142.93.209.251 (IN/India/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 00:54:24 optimus sshd[28004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251  user=root
Oct 11 00:54:27 optimus sshd[28004]: Failed password for root from 142.93.209.251 port 54930 ssh2
Oct 11 01:19:11 optimus sshd[6951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251  user=root
Oct 11 01:19:13 optimus sshd[6951]: Failed password for root from 142.93.209.251 port 56072 ssh2
Oct 11 01:24:49 optimus sshd[11852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251  user=root
2020-10-11 14:29:57
142.93.223.118 attackspam
2020-10-11T07:03:53.476597lavrinenko.info sshd[19701]: Failed password for root from 142.93.223.118 port 55582 ssh2
2020-10-11T07:07:58.292860lavrinenko.info sshd[19798]: Invalid user next from 142.93.223.118 port 33376
2020-10-11T07:07:58.302917lavrinenko.info sshd[19798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.223.118
2020-10-11T07:07:58.292860lavrinenko.info sshd[19798]: Invalid user next from 142.93.223.118 port 33376
2020-10-11T07:08:00.553715lavrinenko.info sshd[19798]: Failed password for invalid user next from 142.93.223.118 port 33376 ssh2
...
2020-10-11 12:10:33
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.2.63
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33273
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.2.63.			IN	A

;; AUTHORITY SECTION:
.			328	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112501 1800 900 604800 86400

;; Query time: 869 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 26 13:39:36 CST 2019
;; MSG SIZE  rcvd: 115
Host info
Host 63.2.93.142.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 63.2.93.142.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
154.205.252.55 attackbotsspam
 TCP (SYN) 154.205.252.55:43250 -> port 1698, len 44
2020-06-24 19:38:56
188.166.232.29 attackspambots
srv02 Mass scanning activity detected Target: 17134  ..
2020-06-24 19:03:36
140.246.229.200 attack
Jun 24 07:50:39 rotator sshd\[2851\]: Failed password for root from 140.246.229.200 port 50034 ssh2Jun 24 07:52:25 rotator sshd\[2874\]: Failed password for root from 140.246.229.200 port 38748 ssh2Jun 24 07:54:10 rotator sshd\[2888\]: Invalid user sftp from 140.246.229.200Jun 24 07:54:12 rotator sshd\[2888\]: Failed password for invalid user sftp from 140.246.229.200 port 55694 ssh2Jun 24 07:56:05 rotator sshd\[3673\]: Invalid user kim from 140.246.229.200Jun 24 07:56:06 rotator sshd\[3673\]: Failed password for invalid user kim from 140.246.229.200 port 44420 ssh2
...
2020-06-24 19:42:12
217.251.109.79 attackbots
SSH Brute-Force reported by Fail2Ban
2020-06-24 19:27:27
122.114.180.175 attack
20 attempts against mh-ssh on flow
2020-06-24 19:12:33
182.252.133.70 attack
2020-06-24 04:50:52,439 fail2ban.actions        [937]: NOTICE  [sshd] Ban 182.252.133.70
2020-06-24 05:25:21,932 fail2ban.actions        [937]: NOTICE  [sshd] Ban 182.252.133.70
2020-06-24 06:00:09,310 fail2ban.actions        [937]: NOTICE  [sshd] Ban 182.252.133.70
2020-06-24 06:35:14,251 fail2ban.actions        [937]: NOTICE  [sshd] Ban 182.252.133.70
2020-06-24 07:11:10,601 fail2ban.actions        [937]: NOTICE  [sshd] Ban 182.252.133.70
...
2020-06-24 19:30:22
51.178.8.29 attackspam
From return-leo=toptec.net.br@conectoficial.we.bs Tue Jun 23 20:49:10 2020
Received: from conf915-mx-4.conectoficial.we.bs ([51.178.8.29]:51268)
2020-06-24 19:32:28
52.178.90.106 attack
Jun 24 07:58:26 powerpi2 sshd[17921]: Failed password for invalid user seneca from 52.178.90.106 port 43960 ssh2
Jun 24 08:04:47 powerpi2 sshd[18220]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.178.90.106  user=root
Jun 24 08:04:49 powerpi2 sshd[18220]: Failed password for root from 52.178.90.106 port 43824 ssh2
...
2020-06-24 19:25:27
104.131.157.96 attackbots
2020-06-24T11:05:11.953677shield sshd\[12325\]: Invalid user git from 104.131.157.96 port 44552
2020-06-24T11:05:11.956518shield sshd\[12325\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.157.96
2020-06-24T11:05:14.676218shield sshd\[12325\]: Failed password for invalid user git from 104.131.157.96 port 44552 ssh2
2020-06-24T11:11:19.721568shield sshd\[13979\]: Invalid user istian from 104.131.157.96 port 45212
2020-06-24T11:11:19.725293shield sshd\[13979\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.157.96
2020-06-24 19:18:04
118.69.173.199 attackbots
xmlrpc attack
2020-06-24 19:21:24
149.56.15.98 attack
2020-06-24T10:40:51.6711531240 sshd\[9537\]: Invalid user earl from 149.56.15.98 port 59669
2020-06-24T10:40:51.6749331240 sshd\[9537\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.15.98
2020-06-24T10:40:53.8634791240 sshd\[9537\]: Failed password for invalid user earl from 149.56.15.98 port 59669 ssh2
...
2020-06-24 19:15:25
103.122.200.3 attackspam
Jun 24 11:23:04 server sshd[12174]: Failed password for invalid user alan from 103.122.200.3 port 33888 ssh2
Jun 24 11:26:15 server sshd[16039]: Failed password for invalid user guij from 103.122.200.3 port 57338 ssh2
Jun 24 11:29:34 server sshd[20319]: Failed password for invalid user aaliyah from 103.122.200.3 port 52564 ssh2
2020-06-24 19:10:22
218.104.128.54 attackspam
Jun 24 06:05:40 vps sshd[902566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.104.128.54  user=root
Jun 24 06:05:41 vps sshd[902566]: Failed password for root from 218.104.128.54 port 57495 ssh2
Jun 24 06:09:44 vps sshd[920338]: Invalid user thh from 218.104.128.54 port 57993
Jun 24 06:09:44 vps sshd[920338]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.104.128.54
Jun 24 06:09:46 vps sshd[920338]: Failed password for invalid user thh from 218.104.128.54 port 57993 ssh2
...
2020-06-24 19:15:04
197.156.67.242 attackspam
Automatic report - XMLRPC Attack
2020-06-24 19:16:20
188.35.187.50 attackbots
Jun 24 18:09:29 itv-usvr-02 sshd[3198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.35.187.50  user=root
Jun 24 18:09:31 itv-usvr-02 sshd[3198]: Failed password for root from 188.35.187.50 port 48064 ssh2
Jun 24 18:12:43 itv-usvr-02 sshd[3305]: Invalid user cisco from 188.35.187.50 port 46178
Jun 24 18:12:43 itv-usvr-02 sshd[3305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.35.187.50
Jun 24 18:12:43 itv-usvr-02 sshd[3305]: Invalid user cisco from 188.35.187.50 port 46178
Jun 24 18:12:45 itv-usvr-02 sshd[3305]: Failed password for invalid user cisco from 188.35.187.50 port 46178 ssh2
2020-06-24 19:43:27

Recently Reported IPs

36.192.14.191 135.225.73.143 123.21.143.21 27.78.225.228
118.173.129.175 94.26.12.26 3.83.212.250 203.147.8.47
36.68.171.91 113.172.166.11 213.232.192.3 170.0.125.105
186.249.17.64 171.224.78.25 202.102.67.184 182.185.179.162
109.163.143.211 190.54.24.203 87.239.255.103 202.109.204.53