142.93.202.93 - IPInfo

Basic Info

City: North Bergen

Region: New Jersey

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Dec 4 21:48:18 legacy sshd[8860]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.202.93 Dec 4 21:48:20 legacy sshd[8860]: Failed password for invalid user kapp from 142.93.202.93 port 36310 ssh2 Dec 4 21:54:23 legacy sshd[9119]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.202.93 ...	2019-12-05 05:17:20

Type

Details

Datetime

attackbotsspam

Dec  4 21:48:18 legacy sshd[8860]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.202.93
Dec  4 21:48:20 legacy sshd[8860]: Failed password for invalid user kapp from 142.93.202.93 port 36310 ssh2
Dec  4 21:54:23 legacy sshd[9119]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.202.93
...

2019-12-05 05:17:20

Comments on same subnet:

IP	Type	Details	Datetime
142.93.202.82	attackspam	firewall-block, port(s): 10000/tcp	2020-07-14 03:01:13
142.93.202.159	attack	2020-06-16T19:42:35.769855vps773228.ovh.net sshd[9491]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.202.159 2020-06-16T19:42:35.753180vps773228.ovh.net sshd[9491]: Invalid user odoo from 142.93.202.159 port 52434 2020-06-16T19:42:37.135961vps773228.ovh.net sshd[9491]: Failed password for invalid user odoo from 142.93.202.159 port 52434 ssh2 2020-06-16T19:45:49.570650vps773228.ovh.net sshd[9541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.202.159 user=root 2020-06-16T19:45:51.569203vps773228.ovh.net sshd[9541]: Failed password for root from 142.93.202.159 port 52696 ssh2 ...	2020-06-17 03:33:43
142.93.202.159	attackspambots	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-06-12 13:48:07
142.93.202.159	attack	Port Scan detected from 142.93.202.159 (US/United States/New Jersey/North Bergen/-). 4 hits in the last 121 seconds	2020-06-09 14:17:45
142.93.202.159	attackspam	<6 unauthorized SSH connections	2020-06-07 16:21:27
142.93.202.159	attack	Jun 6 09:46:53 vps333114 sshd[26505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.202.159 user=root Jun 6 09:46:54 vps333114 sshd[26505]: Failed password for root from 142.93.202.159 port 42794 ssh2 ...	2020-06-06 16:59:13
142.93.202.159	attackbotsspam	2020-05-30T05:11:17.000055suse-nuc sshd[11801]: User root from 142.93.202.159 not allowed because listed in DenyUsers ...	2020-05-30 23:59:27
142.93.202.159	attackspambots	May 29 08:31:40 MainVPS sshd[8466]: Invalid user oracle from 142.93.202.159 port 50330 May 29 08:31:40 MainVPS sshd[8466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.202.159 May 29 08:31:40 MainVPS sshd[8466]: Invalid user oracle from 142.93.202.159 port 50330 May 29 08:31:42 MainVPS sshd[8466]: Failed password for invalid user oracle from 142.93.202.159 port 50330 ssh2 May 29 08:35:26 MainVPS sshd[11803]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.202.159 user=root May 29 08:35:27 MainVPS sshd[11803]: Failed password for root from 142.93.202.159 port 42948 ssh2 ...	2020-05-29 19:42:58
142.93.202.159	attackspambots	May 26 02:11:46 OPSO sshd\[2661\]: Invalid user neptune from 142.93.202.159 port 50368 May 26 02:11:46 OPSO sshd\[2661\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.202.159 May 26 02:11:48 OPSO sshd\[2661\]: Failed password for invalid user neptune from 142.93.202.159 port 50368 ssh2 May 26 02:15:21 OPSO sshd\[4790\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.202.159 user=root May 26 02:15:24 OPSO sshd\[4790\]: Failed password for root from 142.93.202.159 port 57754 ssh2	2020-05-26 08:18:58
142.93.202.159	attack	2020-05-10T15:08:03.597361vivaldi2.tree2.info sshd[30283]: Invalid user perpetua from 142.93.202.159 2020-05-10T15:08:03.608706vivaldi2.tree2.info sshd[30283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.202.159 2020-05-10T15:08:03.597361vivaldi2.tree2.info sshd[30283]: Invalid user perpetua from 142.93.202.159 2020-05-10T15:08:05.838540vivaldi2.tree2.info sshd[30283]: Failed password for invalid user perpetua from 142.93.202.159 port 55558 ssh2 2020-05-10T15:11:59.735896vivaldi2.tree2.info sshd[30523]: Invalid user ubuntu from 142.93.202.159 ...	2020-05-10 15:14:40
142.93.202.188	attack	enlinea.de 142.93.202.188 [04/May/2020:22:27:18 +0200] "POST /wp-login.php HTTP/1.1" 200 6105 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" enlinea.de 142.93.202.188 [04/May/2020:22:27:18 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4109 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-05 04:43:32
142.93.202.188	attackbots	142.93.202.188 - - [29/Apr/2020:09:35:23 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.202.188 - - [29/Apr/2020:09:35:24 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.202.188 - - [29/Apr/2020:09:35:24 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.202.188 - - [29/Apr/2020:09:35:26 +0200] "POST /wp-login.php HTTP/1.1" 200 1818 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.202.188 - - [29/Apr/2020:09:35:26 +0200] "POST /wp-login.php HTTP/1.1" 200 1816 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.202.188 - - [29/Apr/2020:09:35:26 +0200] "POST /wp-login.php HTTP/1.1" 200 1819 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/201001 ...	2020-04-29 16:41:56
142.93.202.159	attack	Apr 26 15:31:03 scw-6657dc sshd[3646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.202.159 Apr 26 15:31:03 scw-6657dc sshd[3646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.202.159 Apr 26 15:31:04 scw-6657dc sshd[3646]: Failed password for invalid user dev from 142.93.202.159 port 40768 ssh2 ...	2020-04-27 03:07:35
142.93.202.159	attackbots	2020-04-26T05:47:09.396447shield sshd\[22267\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.202.159 user=root 2020-04-26T05:47:11.127295shield sshd\[22267\]: Failed password for root from 142.93.202.159 port 42096 ssh2 2020-04-26T05:51:24.123113shield sshd\[22733\]: Invalid user cg from 142.93.202.159 port 56832 2020-04-26T05:51:24.126796shield sshd\[22733\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.202.159 2020-04-26T05:51:26.196990shield sshd\[22733\]: Failed password for invalid user cg from 142.93.202.159 port 56832 ssh2	2020-04-26 14:47:40
142.93.202.159	attackbotsspam	Apr 25 14:12:47 roki-contabo sshd\[10980\]: Invalid user net from 142.93.202.159 Apr 25 14:12:47 roki-contabo sshd\[10980\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.202.159 Apr 25 14:12:49 roki-contabo sshd\[10980\]: Failed password for invalid user net from 142.93.202.159 port 41318 ssh2 Apr 25 14:15:23 roki-contabo sshd\[11044\]: Invalid user test3 from 142.93.202.159 Apr 25 14:15:23 roki-contabo sshd\[11044\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.202.159 ...	2020-04-25 21:24:45

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.202.93
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34231
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.202.93.			IN	A

;; AUTHORITY SECTION:
.			304	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120402 1800 900 604800 86400

;; Query time: 88 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 05 05:17:17 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 93.202.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 93.202.93.142.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.15.158	attack	02/22/2020-20:23:15.209008 222.186.15.158 Protocol: 6 ET SCAN Potential SSH Scan	2020-02-23 09:23:47
222.186.175.212	attackspam	Feb 22 21:55:20 firewall sshd[14281]: Failed password for root from 222.186.175.212 port 37612 ssh2 Feb 22 21:55:31 firewall sshd[14281]: error: maximum authentication attempts exceeded for root from 222.186.175.212 port 37612 ssh2 [preauth] Feb 22 21:55:31 firewall sshd[14281]: Disconnecting: Too many authentication failures [preauth] ...	2020-02-23 08:59:05
222.186.175.169	attack	$f2bV_matches	2020-02-23 09:04:00
177.156.78.24	attack	Automatic report - Port Scan Attack	2020-02-23 09:14:29
92.222.66.234	attack	Feb 23 01:15:45 game-panel sshd[26445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.66.234 Feb 23 01:15:47 game-panel sshd[26445]: Failed password for invalid user hyperic from 92.222.66.234 port 51792 ssh2 Feb 23 01:18:17 game-panel sshd[26547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.66.234	2020-02-23 09:26:15
139.59.80.65	attackbots	Feb 23 01:00:52 web8 sshd\[14415\]: Invalid user es from 139.59.80.65 Feb 23 01:00:52 web8 sshd\[14415\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.80.65 Feb 23 01:00:53 web8 sshd\[14415\]: Failed password for invalid user es from 139.59.80.65 port 42042 ssh2 Feb 23 01:03:59 web8 sshd\[16091\]: Invalid user freeswitch from 139.59.80.65 Feb 23 01:03:59 web8 sshd\[16091\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.80.65	2020-02-23 09:12:50
119.137.53.5	attack	Feb 22 20:04:17 plusreed sshd[30458]: Invalid user us from 119.137.53.5 ...	2020-02-23 09:15:19
222.186.31.83	attack	Feb 23 04:09:24 server sshd\[32754\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.83 user=root Feb 23 04:09:26 server sshd\[32754\]: Failed password for root from 222.186.31.83 port 58089 ssh2 Feb 23 04:09:26 server sshd\[32762\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.83 user=root Feb 23 04:09:28 server sshd\[32754\]: Failed password for root from 222.186.31.83 port 58089 ssh2 Feb 23 04:09:28 server sshd\[32762\]: Failed password for root from 222.186.31.83 port 26410 ssh2 ...	2020-02-23 09:16:52
51.255.84.223	attackspam	2020-02-23T00:48:10.959368vps773228.ovh.net sshd[9390]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3038619.ip-51-255-84.eu 2020-02-23T00:48:10.944429vps773228.ovh.net sshd[9390]: Invalid user pgadmin from 51.255.84.223 port 34402 2020-02-23T00:48:12.882677vps773228.ovh.net sshd[9390]: Failed password for invalid user pgadmin from 51.255.84.223 port 34402 ssh2 2020-02-23T01:48:44.815012vps773228.ovh.net sshd[9479]: Invalid user web from 51.255.84.223 port 49086 2020-02-23T01:48:44.838481vps773228.ovh.net sshd[9479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3038619.ip-51-255-84.eu 2020-02-23T01:48:44.815012vps773228.ovh.net sshd[9479]: Invalid user web from 51.255.84.223 port 49086 2020-02-23T01:48:46.977932vps773228.ovh.net sshd[9479]: Failed password for invalid user web from 51.255.84.223 port 49086 ssh2 2020-02-23T01:49:05.019621vps773228.ovh.net sshd[9481]: Invalid user web from 51.255.84 ...	2020-02-23 09:00:17
177.1.214.84	attackbotsspam	Feb 22 19:49:03 plusreed sshd[26548]: Invalid user halflife from 177.1.214.84 ...	2020-02-23 09:02:16
51.75.248.127	attack	Feb 23 02:12:56 silence02 sshd[16555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.248.127 Feb 23 02:12:58 silence02 sshd[16555]: Failed password for invalid user usuario from 51.75.248.127 port 47048 ssh2 Feb 23 02:15:42 silence02 sshd[16773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.248.127	2020-02-23 09:16:19
94.254.125.44	attackspambots	Feb 22 14:47:47 kapalua sshd\[31192\]: Invalid user www from 94.254.125.44 Feb 22 14:47:47 kapalua sshd\[31192\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=h-125-44.a400.priv.bahnhof.se Feb 22 14:47:49 kapalua sshd\[31192\]: Failed password for invalid user www from 94.254.125.44 port 55608 ssh2 Feb 22 14:49:12 kapalua sshd\[31316\]: Invalid user oracle from 94.254.125.44 Feb 22 14:49:12 kapalua sshd\[31316\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=h-125-44.a400.priv.bahnhof.se	2020-02-23 08:54:16
45.12.32.55	attackbots	Unauthorised access (Feb 23) SRC=45.12.32.55 LEN=40 TTL=56 ID=42089 TCP DPT=8080 WINDOW=63819 SYN Unauthorised access (Feb 22) SRC=45.12.32.55 LEN=40 TTL=57 ID=10760 TCP DPT=8080 WINDOW=59076 SYN Unauthorised access (Feb 21) SRC=45.12.32.55 LEN=40 TTL=57 ID=31408 TCP DPT=8080 WINDOW=59076 SYN Unauthorised access (Feb 20) SRC=45.12.32.55 LEN=40 TTL=56 ID=23961 TCP DPT=8080 WINDOW=53954 SYN	2020-02-23 09:25:02
222.186.180.6	attackbotsspam	2020-02-23T02:12:51.054178vps751288.ovh.net sshd\[6084\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.6 user=root 2020-02-23T02:12:52.832016vps751288.ovh.net sshd\[6084\]: Failed password for root from 222.186.180.6 port 48268 ssh2 2020-02-23T02:12:56.588913vps751288.ovh.net sshd\[6084\]: Failed password for root from 222.186.180.6 port 48268 ssh2 2020-02-23T02:12:59.422510vps751288.ovh.net sshd\[6084\]: Failed password for root from 222.186.180.6 port 48268 ssh2 2020-02-23T02:13:02.667591vps751288.ovh.net sshd\[6084\]: Failed password for root from 222.186.180.6 port 48268 ssh2	2020-02-23 09:14:10
92.81.21.110	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 88 - port: 4567 proto: TCP cat: Misc Attack	2020-02-23 08:48:16

Recently Reported IPs

203.100.209.245	73.176.215.246	162.115.133.197	160.171.59.145
56.133.239.146	23.242.178.253	77.133.160.19	109.22.135.114
65.115.57.16	176.51.154.246	172.69.63.48	162.158.79.84
160.236.193.203	113.109.49.107	248.47.228.68	106.13.198.70
87.109.6.40	131.29.153.91	80.211.190.224	84.228.149.243