142.93.2.63 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Nov 26 06:29:31 lnxweb62 sshd[5895]: Failed password for root from 142.93.2.63 port 58154 ssh2 Nov 26 06:29:31 lnxweb62 sshd[5895]: Failed password for root from 142.93.2.63 port 58154 ssh2	2019-11-26 13:39:42

Comments on same subnet:

IP	Type	Details	Datetime
142.93.240.62	spamattack	PHISHING AND SPAM ATTACK FROM "Important Notification - newsletter@app.ksinergy.biz - " : SUBJECT "Congrats! Open Immediately! " : RECEIVED "from mail-02.ksinergy.biz ([142.93.240.62]:39126) " : DATE/TIMESENT "Mon, 01 Mar 2021 10:14:52 ": IP ADDRESS "inetnum: 142.93.0.0 - 142.93.255.255 OrgName: DigitalOcean, LLC	2021-03-01 08:16:37
142.93.240.62	spamattack	PHISHING AND SPAM ATTACK FROM "Casino For You - newsletter@app.ksinergy.biz -" : SUBJECT "Join today and receive an amazing welcome bonus " : RECEIVED "from mail-02.ksinergy.biz ([142.93.240.62]:57421) " : DATE/TIMESENT "Tue, 23 Feb 2021 01:27:07 "	2021-02-23 04:32:24
142.93.212.91	attackbotsspam	SSH BruteForce Attack	2020-10-13 01:56:49
142.93.237.57	attack	Multiport scan 2 ports : 1583 27080	2020-10-12 21:16:28
142.93.212.91	attack	Oct 12 10:23:09 localhost sshd\[19098\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.212.91 user=root Oct 12 10:23:11 localhost sshd\[19098\]: Failed password for root from 142.93.212.91 port 59394 ssh2 Oct 12 10:27:27 localhost sshd\[19552\]: Invalid user sanjeev from 142.93.212.91 Oct 12 10:27:27 localhost sshd\[19552\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.212.91 Oct 12 10:27:29 localhost sshd\[19552\]: Failed password for invalid user sanjeev from 142.93.212.91 port 36984 ssh2 ...	2020-10-12 17:20:25
142.93.237.57	attack	1089/tcp 5984/tcp [2020-10-11]2pkt	2020-10-12 12:46:46
142.93.211.36	attackspambots	Oct 12 00:25:27 hidden sshd[869]: Failed password for hidden from 142.93.211.36 port 56534 ssh2 Oct 12 00:28:28 hidden sshd[1320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.211.36 user=root Oct 12 00:28:30 hidden sshd[1320]: Failed password for hidden from 142.93.211.36 port 40212 ssh2	2020-10-12 07:11:11
142.93.209.251	attackbotsspam	Oct 11 22:07:55 v2202009116398126984 sshd[2515868]: Invalid user elke from 142.93.209.251 port 44534 ...	2020-10-12 06:24:15
142.93.223.118	attackspam	SSH login attempts.	2020-10-12 04:12:31
142.93.211.36	attackspam	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-10-11 23:23:00
142.93.209.251	attack	Oct 11 16:26:57 sso sshd[30604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 Oct 11 16:26:59 sso sshd[30604]: Failed password for invalid user chris from 142.93.209.251 port 59794 ssh2 ...	2020-10-11 22:34:31
142.93.223.118	attackspam	SSH login attempts.	2020-10-11 20:11:30
142.93.211.36	attack	Fail2Ban	2020-10-11 15:21:45
142.93.209.251	attackbots	(sshd) Failed SSH login from 142.93.209.251 (IN/India/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 00:54:24 optimus sshd[28004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 user=root Oct 11 00:54:27 optimus sshd[28004]: Failed password for root from 142.93.209.251 port 54930 ssh2 Oct 11 01:19:11 optimus sshd[6951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 user=root Oct 11 01:19:13 optimus sshd[6951]: Failed password for root from 142.93.209.251 port 56072 ssh2 Oct 11 01:24:49 optimus sshd[11852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 user=root	2020-10-11 14:29:57
142.93.223.118	attackspam	2020-10-11T07:03:53.476597lavrinenko.info sshd[19701]: Failed password for root from 142.93.223.118 port 55582 ssh2 2020-10-11T07:07:58.292860lavrinenko.info sshd[19798]: Invalid user next from 142.93.223.118 port 33376 2020-10-11T07:07:58.302917lavrinenko.info sshd[19798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.223.118 2020-10-11T07:07:58.292860lavrinenko.info sshd[19798]: Invalid user next from 142.93.223.118 port 33376 2020-10-11T07:08:00.553715lavrinenko.info sshd[19798]: Failed password for invalid user next from 142.93.223.118 port 33376 ssh2 ...	2020-10-11 12:10:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.2.63
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33273
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.2.63.			IN	A

;; AUTHORITY SECTION:
.			328	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112501 1800 900 604800 86400

;; Query time: 869 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 26 13:39:36 CST 2019
;; MSG SIZE  rcvd: 115

Host info

Host 63.2.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 63.2.93.142.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
154.205.252.55	attackbotsspam	TCP (SYN) 154.205.252.55:43250 -> port 1698, len 44	2020-06-24 19:38:56
188.166.232.29	attackspambots	srv02 Mass scanning activity detected Target: 17134 ..	2020-06-24 19:03:36
140.246.229.200	attack	Jun 24 07:50:39 rotator sshd\[2851\]: Failed password for root from 140.246.229.200 port 50034 ssh2Jun 24 07:52:25 rotator sshd\[2874\]: Failed password for root from 140.246.229.200 port 38748 ssh2Jun 24 07:54:10 rotator sshd\[2888\]: Invalid user sftp from 140.246.229.200Jun 24 07:54:12 rotator sshd\[2888\]: Failed password for invalid user sftp from 140.246.229.200 port 55694 ssh2Jun 24 07:56:05 rotator sshd\[3673\]: Invalid user kim from 140.246.229.200Jun 24 07:56:06 rotator sshd\[3673\]: Failed password for invalid user kim from 140.246.229.200 port 44420 ssh2 ...	2020-06-24 19:42:12
217.251.109.79	attackbots	SSH Brute-Force reported by Fail2Ban	2020-06-24 19:27:27
122.114.180.175	attack	20 attempts against mh-ssh on flow	2020-06-24 19:12:33
182.252.133.70	attack	2020-06-24 04:50:52,439 fail2ban.actions [937]: NOTICE [sshd] Ban 182.252.133.70 2020-06-24 05:25:21,932 fail2ban.actions [937]: NOTICE [sshd] Ban 182.252.133.70 2020-06-24 06:00:09,310 fail2ban.actions [937]: NOTICE [sshd] Ban 182.252.133.70 2020-06-24 06:35:14,251 fail2ban.actions [937]: NOTICE [sshd] Ban 182.252.133.70 2020-06-24 07:11:10,601 fail2ban.actions [937]: NOTICE [sshd] Ban 182.252.133.70 ...	2020-06-24 19:30:22
51.178.8.29	attackspam	From return-leo=toptec.net.br@conectoficial.we.bs Tue Jun 23 20:49:10 2020 Received: from conf915-mx-4.conectoficial.we.bs ([51.178.8.29]:51268)	2020-06-24 19:32:28
52.178.90.106	attack	Jun 24 07:58:26 powerpi2 sshd[17921]: Failed password for invalid user seneca from 52.178.90.106 port 43960 ssh2 Jun 24 08:04:47 powerpi2 sshd[18220]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.178.90.106 user=root Jun 24 08:04:49 powerpi2 sshd[18220]: Failed password for root from 52.178.90.106 port 43824 ssh2 ...	2020-06-24 19:25:27
104.131.157.96	attackbots	2020-06-24T11:05:11.953677shield sshd\[12325\]: Invalid user git from 104.131.157.96 port 44552 2020-06-24T11:05:11.956518shield sshd\[12325\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.157.96 2020-06-24T11:05:14.676218shield sshd\[12325\]: Failed password for invalid user git from 104.131.157.96 port 44552 ssh2 2020-06-24T11:11:19.721568shield sshd\[13979\]: Invalid user istian from 104.131.157.96 port 45212 2020-06-24T11:11:19.725293shield sshd\[13979\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.157.96	2020-06-24 19:18:04
118.69.173.199	attackbots	xmlrpc attack	2020-06-24 19:21:24
149.56.15.98	attack	2020-06-24T10:40:51.6711531240 sshd\[9537\]: Invalid user earl from 149.56.15.98 port 59669 2020-06-24T10:40:51.6749331240 sshd\[9537\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.15.98 2020-06-24T10:40:53.8634791240 sshd\[9537\]: Failed password for invalid user earl from 149.56.15.98 port 59669 ssh2 ...	2020-06-24 19:15:25
103.122.200.3	attackspam	Jun 24 11:23:04 server sshd[12174]: Failed password for invalid user alan from 103.122.200.3 port 33888 ssh2 Jun 24 11:26:15 server sshd[16039]: Failed password for invalid user guij from 103.122.200.3 port 57338 ssh2 Jun 24 11:29:34 server sshd[20319]: Failed password for invalid user aaliyah from 103.122.200.3 port 52564 ssh2	2020-06-24 19:10:22
218.104.128.54	attackspam	Jun 24 06:05:40 vps sshd[902566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.104.128.54 user=root Jun 24 06:05:41 vps sshd[902566]: Failed password for root from 218.104.128.54 port 57495 ssh2 Jun 24 06:09:44 vps sshd[920338]: Invalid user thh from 218.104.128.54 port 57993 Jun 24 06:09:44 vps sshd[920338]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.104.128.54 Jun 24 06:09:46 vps sshd[920338]: Failed password for invalid user thh from 218.104.128.54 port 57993 ssh2 ...	2020-06-24 19:15:04
197.156.67.242	attackspam	Automatic report - XMLRPC Attack	2020-06-24 19:16:20
188.35.187.50	attackbots	Jun 24 18:09:29 itv-usvr-02 sshd[3198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.35.187.50 user=root Jun 24 18:09:31 itv-usvr-02 sshd[3198]: Failed password for root from 188.35.187.50 port 48064 ssh2 Jun 24 18:12:43 itv-usvr-02 sshd[3305]: Invalid user cisco from 188.35.187.50 port 46178 Jun 24 18:12:43 itv-usvr-02 sshd[3305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.35.187.50 Jun 24 18:12:43 itv-usvr-02 sshd[3305]: Invalid user cisco from 188.35.187.50 port 46178 Jun 24 18:12:45 itv-usvr-02 sshd[3305]: Failed password for invalid user cisco from 188.35.187.50 port 46178 ssh2	2020-06-24 19:43:27

Recently Reported IPs

36.192.14.191	135.225.73.143	123.21.143.21	27.78.225.228
118.173.129.175	94.26.12.26	3.83.212.250	203.147.8.47
36.68.171.91	113.172.166.11	213.232.192.3	170.0.125.105
186.249.17.64	171.224.78.25	202.102.67.184	182.185.179.162
109.163.143.211	190.54.24.203	87.239.255.103	202.109.204.53