142.93.208.220

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Mar 13 14:03:07 web8 sshd\[15273\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.208.220 user=root Mar 13 14:03:09 web8 sshd\[15273\]: Failed password for root from 142.93.208.220 port 57966 ssh2 Mar 13 14:08:03 web8 sshd\[17919\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.208.220 user=root Mar 13 14:08:05 web8 sshd\[17919\]: Failed password for root from 142.93.208.220 port 41744 ssh2 Mar 13 14:12:56 web8 sshd\[20670\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.208.220 user=root	2020-03-13 23:10:13

Type

Details

Datetime

attackbots

Mar 13 14:03:07 web8 sshd\[15273\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.208.220  user=root
Mar 13 14:03:09 web8 sshd\[15273\]: Failed password for root from 142.93.208.220 port 57966 ssh2
Mar 13 14:08:03 web8 sshd\[17919\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.208.220  user=root
Mar 13 14:08:05 web8 sshd\[17919\]: Failed password for root from 142.93.208.220 port 41744 ssh2
Mar 13 14:12:56 web8 sshd\[20670\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.208.220  user=root

2020-03-13 23:10:13

Comments on same subnet:

IP	Type	Details	Datetime
142.93.208.69	attackbots	04/12/2020-17:16:51.543747 142.93.208.69 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-04-13 08:28:08
142.93.208.158	attack	SSH login attempts.	2020-03-19 16:07:54
142.93.208.158	attackbotsspam	Mar 9 18:36:45 lukav-desktop sshd\[16609\]: Invalid user tr from 142.93.208.158 Mar 9 18:36:45 lukav-desktop sshd\[16609\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.208.158 Mar 9 18:36:46 lukav-desktop sshd\[16609\]: Failed password for invalid user tr from 142.93.208.158 port 36694 ssh2 Mar 9 18:40:15 lukav-desktop sshd\[16638\]: Invalid user docs from 142.93.208.158 Mar 9 18:40:15 lukav-desktop sshd\[16638\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.208.158	2020-03-10 03:20:21
142.93.208.250	attack	2020-03-07T12:44:19.452885dmca.cloudsearch.cf sshd[26998]: Invalid user ubuntu from 142.93.208.250 port 52048 2020-03-07T12:44:19.459556dmca.cloudsearch.cf sshd[26998]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=demo.b2grow.com 2020-03-07T12:44:19.452885dmca.cloudsearch.cf sshd[26998]: Invalid user ubuntu from 142.93.208.250 port 52048 2020-03-07T12:44:21.949980dmca.cloudsearch.cf sshd[26998]: Failed password for invalid user ubuntu from 142.93.208.250 port 52048 ssh2 2020-03-07T12:48:08.529859dmca.cloudsearch.cf sshd[27227]: Invalid user leo from 142.93.208.250 port 52778 2020-03-07T12:48:08.535947dmca.cloudsearch.cf sshd[27227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=demo.b2grow.com 2020-03-07T12:48:08.529859dmca.cloudsearch.cf sshd[27227]: Invalid user leo from 142.93.208.250 port 52778 2020-03-07T12:48:10.465672dmca.cloudsearch.cf sshd[27227]: Failed password for invalid user leo from 142. ...	2020-03-07 21:06:37
142.93.208.24	attackbots	Jan1505:49:43server4pure-ftpd:\(\?@103.16.228.20\)[WARNING]Authenticationfailedforuser[info]Jan1505:49:09server4pure-ftpd:\(\?@144.217.197.11\)[WARNING]Authenticationfailedforuser[info]Jan1505:49:28server4pure-ftpd:\(\?@144.217.197.11\)[WARNING]Authenticationfailedforuser[info]Jan1505:49:30server4pure-ftpd:\(\?@103.16.228.20\)[WARNING]Authenticationfailedforuser[info]Jan1505:49:55server4pure-ftpd:\(\?@142.93.208.24\)[WARNING]Authenticationfailedforuser[info]Jan1505:49:56server4pure-ftpd:\(\?@103.16.228.20\)[WARNING]Authenticationfailedforuser[info]Jan1505:49:59server4pure-ftpd:\(\?@103.18.179.196\)[WARNING]Authenticationfailedforuser[info]Jan1505:50:02server4pure-ftpd:\(\?@35.194.4.89\)[WARNING]Authenticationfailedforuser[info]Jan1505:49:22server4pure-ftpd:\(\?@144.217.197.11\)[WARNING]Authenticationfailedforuser[info]Jan1505:49:48server4pure-ftpd:\(\?@103.16.228.20\)[WARNING]Authenticationfailedforuser[info]IPAddressesBlocked:103.16.228.20\(HK/HongKong/www.northridgefinancialpartners.com\)144.217.197.11\(US/	2020-01-15 17:25:24
142.93.208.250	attackbotsspam	Unauthorized connection attempt detected from IP address 142.93.208.250 to port 2220 [J]	2020-01-14 05:10:49
142.93.208.92	attackbotsspam	Dec 26 07:18:41 mail sshd\[2145\]: Invalid user ftpuser from 142.93.208.92 Dec 26 07:18:53 mail sshd\[2149\]: Invalid user git from 142.93.208.92 Dec 26 07:19:06 mail sshd\[2166\]: Invalid user oracle from 142.93.208.92 Dec 26 07:19:33 mail sshd\[2172\]: Invalid user ftpuser from 142.93.208.92 Dec 26 07:19:47 mail sshd\[2175\]: Invalid user oracle from 142.93.208.92 ...	2019-12-26 22:06:43
142.93.208.92	attackbots	2019-12-25T07:09:01.598728shield sshd\[31609\]: Invalid user redis from 142.93.208.92 port 53980 2019-12-25T07:09:01.603088shield sshd\[31609\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.208.92 2019-12-25T07:09:03.531532shield sshd\[31609\]: Failed password for invalid user redis from 142.93.208.92 port 53980 ssh2 2019-12-25T07:12:35.235777shield sshd\[559\]: Invalid user www from 142.93.208.92 port 33408 2019-12-25T07:12:35.240148shield sshd\[559\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.208.92	2019-12-25 20:39:01
142.93.208.190	attackbotsspam	RDP Bruteforce	2019-12-18 21:48:05
142.93.208.219	attackspambots	Sep 7 13:18:40 eddieflores sshd\[27227\]: Invalid user postgres from 142.93.208.219 Sep 7 13:18:40 eddieflores sshd\[27227\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.208.219 Sep 7 13:18:42 eddieflores sshd\[27227\]: Failed password for invalid user postgres from 142.93.208.219 port 34816 ssh2 Sep 7 13:23:09 eddieflores sshd\[27563\]: Invalid user oracle from 142.93.208.219 Sep 7 13:23:09 eddieflores sshd\[27563\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.208.219	2019-09-08 07:33:17
142.93.208.219	attackspambots	Sep 5 00:35:31 hpm sshd\[13710\]: Invalid user webmaster from 142.93.208.219 Sep 5 00:35:31 hpm sshd\[13710\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.208.219 Sep 5 00:35:33 hpm sshd\[13710\]: Failed password for invalid user webmaster from 142.93.208.219 port 38906 ssh2 Sep 5 00:40:11 hpm sshd\[14245\]: Invalid user mysqlmysql from 142.93.208.219 Sep 5 00:40:11 hpm sshd\[14245\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.208.219	2019-09-05 18:55:20
142.93.208.219	attack	Aug 28 05:57:31 hiderm sshd\[29194\]: Invalid user test from 142.93.208.219 Aug 28 05:57:31 hiderm sshd\[29194\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.208.219 Aug 28 05:57:33 hiderm sshd\[29194\]: Failed password for invalid user test from 142.93.208.219 port 57578 ssh2 Aug 28 06:02:13 hiderm sshd\[29594\]: Invalid user ftpuser1 from 142.93.208.219 Aug 28 06:02:13 hiderm sshd\[29594\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.208.219	2019-08-29 07:52:12
142.93.208.219	attackbots	Aug 22 12:54:39 vps691689 sshd[19492]: Failed password for root from 142.93.208.219 port 49438 ssh2 Aug 22 12:59:39 vps691689 sshd[19631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.208.219 ...	2019-08-22 19:15:07
142.93.208.158	attackbots	SSH Brute-Force reported by Fail2Ban	2019-08-13 03:51:15
142.93.208.158	attackbots	19.07.2019 02:02:44 SSH access blocked by firewall	2019-07-19 10:35:13

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.208.220
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48148
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.208.220.			IN	A

;; AUTHORITY SECTION:
.			477	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031300 1800 900 604800 86400

;; Query time: 189 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 13 23:10:06 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 220.208.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 220.208.93.142.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
191.189.30.241	attack	Sep 21 08:39:17 bouncer sshd\[26509\]: Invalid user pdey from 191.189.30.241 port 58079 Sep 21 08:39:17 bouncer sshd\[26509\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.189.30.241 Sep 21 08:39:19 bouncer sshd\[26509\]: Failed password for invalid user pdey from 191.189.30.241 port 58079 ssh2 ...	2019-09-21 14:45:03
168.227.20.17	attackbots	Chat Spam	2019-09-21 14:56:29
181.30.26.40	attackspam	Invalid user op from 181.30.26.40 port 59796	2019-09-21 15:16:14
157.230.2.208	attack	Sep 21 06:06:05 markkoudstaal sshd[1776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.2.208 Sep 21 06:06:06 markkoudstaal sshd[1776]: Failed password for invalid user basket from 157.230.2.208 port 37402 ssh2 Sep 21 06:10:25 markkoudstaal sshd[2395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.2.208	2019-09-21 14:57:27
84.53.210.45	attack	Sep 20 20:58:48 eddieflores sshd\[581\]: Invalid user c from 84.53.210.45 Sep 20 20:58:48 eddieflores sshd\[581\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.53.210.45 Sep 20 20:58:50 eddieflores sshd\[581\]: Failed password for invalid user c from 84.53.210.45 port 39014 ssh2 Sep 20 21:03:21 eddieflores sshd\[989\]: Invalid user vnc from 84.53.210.45 Sep 20 21:03:21 eddieflores sshd\[989\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.53.210.45	2019-09-21 15:15:17
123.138.236.90	attackbots	kp-sea2-01 recorded 2 login violations from 123.138.236.90 and was blocked at 2019-09-21 03:53:24. 123.138.236.90 has been blocked on 1 previous occasions. 123.138.236.90's first attempt was recorded at 2019-09-16 05:37:39	2019-09-21 14:47:39
212.32.230.212	attackbots	[portscan] Port scan	2019-09-21 14:40:29
117.135.232.24	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-21 03:16:50,186 INFO [amun_request_handler] PortScan Detected on Port: 3389 (117.135.232.24)	2019-09-21 14:55:45
36.65.202.104	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-21 03:15:53,094 INFO [amun_request_handler] PortScan Detected on Port: 445 (36.65.202.104)	2019-09-21 15:07:19
177.155.142.3	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-21 03:17:02,209 INFO [amun_request_handler] PortScan Detected on Port: 445 (177.155.142.3)	2019-09-21 14:54:26
182.52.120.233	attack	Automatic report - Port Scan Attack	2019-09-21 15:11:08
159.203.179.230	attackspambots	2019-09-21T06:21:29.231023abusebot-3.cloudsearch.cf sshd\[30843\]: Invalid user alexie from 159.203.179.230 port 56876	2019-09-21 14:50:48
115.238.249.100	attackbotsspam	Sep 21 08:00:11 saschabauer sshd[27491]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.238.249.100 Sep 21 08:00:12 saschabauer sshd[27491]: Failed password for invalid user apps from 115.238.249.100 port 62129 ssh2	2019-09-21 14:40:53
23.126.140.33	attackbotsspam	Automated report - ssh fail2ban: Sep 21 08:17:47 authentication failure Sep 21 08:17:49 wrong password, user=support, port=54756, ssh2 Sep 21 08:24:00 authentication failure	2019-09-21 14:53:12
46.38.144.146	attack	Sep 21 09:02:18 webserver postfix/smtpd\[6221\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 21 09:03:37 webserver postfix/smtpd\[6221\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 21 09:04:54 webserver postfix/smtpd\[9819\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 21 09:06:10 webserver postfix/smtpd\[9163\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 21 09:07:27 webserver postfix/smtpd\[5219\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-09-21 15:11:33

Recently Reported IPs

172.217.173.3	217.182.33.33	144.217.206.177	85.26.211.83
149.129.54.112	149.126.16.238	191.246.86.100	83.226.108.68
50.31.134.63	180.104.10.30	103.135.39.52	42.95.210.239
188.27.15.230	201.74.153.196	152.85.99.89	51.5.246.124
200.179.100.61	122.102.32.165	244.203.32.38	2.154.232.180