142.93.200.252

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Invalid user mono from 142.93.200.252 port 52252	2020-08-23 13:03:22
attack	2020-08-17T07:09:02.270583correo.[domain] sshd[32079]: Invalid user arts from 142.93.200.252 port 43904 2020-08-17T07:09:04.361786correo.[domain] sshd[32079]: Failed password for invalid user arts from 142.93.200.252 port 43904 ssh2 2020-08-17T07:23:53.561727correo.[domain] sshd[33545]: Invalid user user from 142.93.200.252 port 38978 ...	2020-08-18 06:37:00
attack	20 attempts against mh-ssh on echoip	2020-08-14 18:04:17
attackspam	prod6 ...	2020-08-12 02:47:44
attack	Aug 6 09:00:31 lnxded63 sshd[22114]: Failed password for root from 142.93.200.252 port 51810 ssh2 Aug 6 09:00:31 lnxded63 sshd[22114]: Failed password for root from 142.93.200.252 port 51810 ssh2	2020-08-06 15:10:53
attack	Jul 27 00:15:58 jane sshd[2950]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.200.252 Jul 27 00:16:00 jane sshd[2950]: Failed password for invalid user nisha from 142.93.200.252 port 47436 ssh2 ...	2020-07-27 06:45:49
attackspam	Lines containing failures of 142.93.200.252 Jun 16 12:41:09 g1 sshd[14436]: Invalid user xc from 142.93.200.252 port 41970 Jun 16 12:41:09 g1 sshd[14436]: Failed password for invalid user xc from 142.93.200.252 port 41970 ssh2 Jun 16 12:41:09 g1 sshd[14436]: Received disconnect from 142.93.200.252 port 41970:11: Bye Bye [preauth] Jun 16 12:41:09 g1 sshd[14436]: Disconnected from invalid user xc 142.93.200.252 port 41970 [preauth] Jun 16 12:54:21 g1 sshd[14487]: User r.r from 142.93.200.252 not allowed because not listed in AllowUsers Jun 16 12:54:21 g1 sshd[14487]: Failed password for invalid user r.r from 142.93.200.252 port 38034 ssh2 Jun 16 12:54:21 g1 sshd[14487]: Received disconnect from 142.93.200.252 port 38034:11: Bye Bye [preauth] Jun 16 12:54:21 g1 sshd[14487]: Disconnected from invalid user r.r 142.93.200.252 port 38034 [preauth] Jun 16 12:57:43 g1 sshd[14543]: Invalid user nick from 142.93.200.252 port 42356 Jun 16 12:57:43 g1 sshd[14543]: Failed password for........ ------------------------------	2020-06-16 22:21:26

Comments on same subnet:

IP	Type	Details	Datetime
142.93.200.206	attack	port scan and connect, tcp 10000 (snet-sensor-mgmt)	2020-07-26 04:56:53

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.200.252
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33397
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.200.252.			IN	A

;; AUTHORITY SECTION:
.			592	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061600 1800 900 604800 86400

;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 16 22:21:19 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 252.200.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 252.200.93.142.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
111.230.53.144	attack	Oct 11 13:25:02 vps01 sshd[17741]: Failed password for root from 111.230.53.144 port 34934 ssh2	2019-10-11 19:46:48
36.5.132.122	attackspambots	Oct 10 03:23:23 eola sshd[4857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.5.132.122 user=r.r Oct 10 03:23:25 eola sshd[4857]: Failed password for r.r from 36.5.132.122 port 18129 ssh2 Oct 10 03:23:25 eola sshd[4857]: Received disconnect from 36.5.132.122 port 18129:11: Bye Bye [preauth] Oct 10 03:23:25 eola sshd[4857]: Disconnected from 36.5.132.122 port 18129 [preauth] Oct 10 03:27:56 eola sshd[5233]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.5.132.122 user=r.r Oct 10 03:27:57 eola sshd[5233]: Failed password for r.r from 36.5.132.122 port 19167 ssh2 Oct 10 03:27:58 eola sshd[5233]: Received disconnect from 36.5.132.122 port 19167:11: Bye Bye [preauth] Oct 10 03:27:58 eola sshd[5233]: Disconnected from 36.5.132.122 port 19167 [preauth] Oct 10 03:37:10 eola sshd[5559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.5.132.122 u........ -------------------------------	2019-10-11 19:16:14
128.199.55.13	attackspam	2019-10-11T04:20:41.404502mizuno.rwx.ovh sshd[408488]: Connection from 128.199.55.13 port 56018 on 78.46.61.178 port 22 2019-10-11T04:20:41.501833mizuno.rwx.ovh sshd[408488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.55.13 user=root 2019-10-11T04:20:43.054842mizuno.rwx.ovh sshd[408488]: Failed password for root from 128.199.55.13 port 56018 ssh2 2019-10-11T04:36:48.809024mizuno.rwx.ovh sshd[410561]: Connection from 128.199.55.13 port 50860 on 78.46.61.178 port 22 2019-10-11T04:36:50.974637mizuno.rwx.ovh sshd[410561]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.55.13 user=root 2019-10-11T04:36:53.219547mizuno.rwx.ovh sshd[410561]: Failed password for root from 128.199.55.13 port 50860 ssh2 ...	2019-10-11 19:34:41
218.92.0.175	attack	Oct 11 11:10:51 srv206 sshd[3791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.175 user=root Oct 11 11:10:53 srv206 sshd[3791]: Failed password for root from 218.92.0.175 port 42623 ssh2 Oct 11 11:10:56 srv206 sshd[3791]: Failed password for root from 218.92.0.175 port 42623 ssh2 Oct 11 11:10:51 srv206 sshd[3791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.175 user=root Oct 11 11:10:53 srv206 sshd[3791]: Failed password for root from 218.92.0.175 port 42623 ssh2 Oct 11 11:10:56 srv206 sshd[3791]: Failed password for root from 218.92.0.175 port 42623 ssh2 ...	2019-10-11 19:40:38
51.83.69.78	attackbots	Oct 11 11:07:12 web8 sshd\[11552\]: Invalid user %\^\&TYUGHJ from 51.83.69.78 Oct 11 11:07:12 web8 sshd\[11552\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.69.78 Oct 11 11:07:15 web8 sshd\[11552\]: Failed password for invalid user %\^\&TYUGHJ from 51.83.69.78 port 47762 ssh2 Oct 11 11:11:11 web8 sshd\[13676\]: Invalid user Qwerty01 from 51.83.69.78 Oct 11 11:11:11 web8 sshd\[13676\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.69.78	2019-10-11 19:21:18
92.118.161.53	attackspam	10/11/2019-05:52:14.421907 92.118.161.53 Protocol: 17 GPL POLICY PCAnywhere server response	2019-10-11 19:43:02
49.232.35.211	attackspambots	[ssh] SSH attack	2019-10-11 19:35:25
51.75.248.241	attack	Oct 10 22:29:19 friendsofhawaii sshd\[14515\]: Invalid user QazWsx\# from 51.75.248.241 Oct 10 22:29:19 friendsofhawaii sshd\[14515\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=241.ip-51-75-248.eu Oct 10 22:29:21 friendsofhawaii sshd\[14515\]: Failed password for invalid user QazWsx\# from 51.75.248.241 port 51282 ssh2 Oct 10 22:33:10 friendsofhawaii sshd\[14852\]: Invalid user Brasil_123 from 51.75.248.241 Oct 10 22:33:10 friendsofhawaii sshd\[14852\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=241.ip-51-75-248.eu	2019-10-11 19:24:47
78.198.188.122	attack	Oct 11 05:33:45 xxxx sshd[25872]: Invalid user pi from 78.198.188.122 Oct 11 05:33:45 xxxx sshd[25872]: Failed none for invalid user pi from 78.198.188.122 port 43936 ssh2 Oct 11 05:33:45 xxxx sshd[25872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=4ne54-1-78-198-188-122.fbx.proxad.net Oct 11 05:33:45 xxxx sshd[25874]: Invalid user pi from 78.198.188.122 Oct 11 05:33:45 xxxx sshd[25874]: Failed none for invalid user pi from 78.198.188.122 port 43938 ssh2 Oct 11 05:33:45 xxxx sshd[25874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=4ne54-1-78-198-188-122.fbx.proxad.net Oct 11 05:33:48 xxxx sshd[25872]: Failed password for invalid user pi from 78.198.188.122 port 43936 ssh2 Oct 11 05:33:48 xxxx sshd[25874]: Failed password for invalid user pi from 78.198.188.122 port 43938 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=78.198.188.122	2019-10-11 19:54:13
62.210.151.21	attackbotsspam	\[2019-10-11 07:51:24\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-11T07:51:24.037-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="90013054404227",SessionID="0x7fc3ad578188",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.151.21/62941",ACLName="no_extension_match" \[2019-10-11 07:51:37\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-11T07:51:37.595-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01113054404227",SessionID="0x7fc3ac47b5f8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.151.21/65168",ACLName="no_extension_match" \[2019-10-11 07:51:54\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-11T07:51:54.226-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="913054404227",SessionID="0x7fc3acd9a8d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.151.21/53889",ACLName="no_extensio	2019-10-11 19:54:33
87.154.251.205	attackbots	Oct 11 12:57:19 mail postfix/smtpd[20551]: warning: p579AFBCD.dip0.t-ipconnect.de[87.154.251.205]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 11 12:58:37 mail postfix/smtpd[22153]: warning: p579AFBCD.dip0.t-ipconnect.de[87.154.251.205]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 11 13:01:47 mail postfix/smtpd[19283]: warning: p579AFBCD.dip0.t-ipconnect.de[87.154.251.205]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-10-11 19:14:49
104.248.90.77	attack	Oct 10 22:47:13 sachi sshd\[18844\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.90.77 user=root Oct 10 22:47:16 sachi sshd\[18844\]: Failed password for root from 104.248.90.77 port 35862 ssh2 Oct 10 22:51:09 sachi sshd\[19174\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.90.77 user=root Oct 10 22:51:11 sachi sshd\[19174\]: Failed password for root from 104.248.90.77 port 46734 ssh2 Oct 10 22:55:01 sachi sshd\[19473\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.90.77 user=root	2019-10-11 19:43:48
49.235.22.230	attackspam	Oct 11 13:01:42 mail sshd\[2105\]: Invalid user Romania@123 from 49.235.22.230 Oct 11 13:01:42 mail sshd\[2105\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.22.230 Oct 11 13:01:44 mail sshd\[2105\]: Failed password for invalid user Romania@123 from 49.235.22.230 port 55234 ssh2 ...	2019-10-11 19:45:14
104.244.77.210	attackbots	Port Scan: TCP/22	2019-10-11 19:44:27
85.105.109.156	attackbots	Automatic report - Port Scan Attack	2019-10-11 19:49:27

Recently Reported IPs

131.124.162.6	157.205.180.99	37.28.254.57	31.235.51.44
103.215.24.251	188.141.231.37	43.237.219.252	197.56.166.250
65.208.115.140	249.237.183.22	79.64.57.97	45.41.134.111
103.216.146.11	142.93.223.208	51.161.52.180	3.230.143.72
13.71.134.242	37.49.224.15	87.251.74.46	51.132.243.71