142.93.209.102

Basic Info

City: Bengaluru

Region: Karnataka

Country: India

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
142.93.209.251	attackbotsspam	Oct 11 22:07:55 v2202009116398126984 sshd[2515868]: Invalid user elke from 142.93.209.251 port 44534 ...	2020-10-12 06:24:15
142.93.209.251	attack	Oct 11 16:26:57 sso sshd[30604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 Oct 11 16:26:59 sso sshd[30604]: Failed password for invalid user chris from 142.93.209.251 port 59794 ssh2 ...	2020-10-11 22:34:31
142.93.209.251	attackbots	(sshd) Failed SSH login from 142.93.209.251 (IN/India/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 00:54:24 optimus sshd[28004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 user=root Oct 11 00:54:27 optimus sshd[28004]: Failed password for root from 142.93.209.251 port 54930 ssh2 Oct 11 01:19:11 optimus sshd[6951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 user=root Oct 11 01:19:13 optimus sshd[6951]: Failed password for root from 142.93.209.251 port 56072 ssh2 Oct 11 01:24:49 optimus sshd[11852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 user=root	2020-10-11 14:29:57
142.93.209.251	attackbots	Oct 10 20:33:38 firewall sshd[2219]: Failed password for invalid user upload from 142.93.209.251 port 34734 ssh2 Oct 10 20:41:29 firewall sshd[2382]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 user=games Oct 10 20:41:31 firewall sshd[2382]: Failed password for games from 142.93.209.251 port 39358 ssh2 ...	2020-10-11 07:53:49
142.93.209.221	attackbotsspam	WordPress login Brute force / Web App Attack on client site.	2020-04-26 08:30:38
142.93.209.221	attack	142.93.209.221 - - [09/Mar/2020:03:53:20 +0000] "POST /wp-login.php HTTP/1.1" 200 6409 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.209.221 - - [09/Mar/2020:03:53:22 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-03-09 13:27:55
142.93.209.221	attackbots	Automatic report - XMLRPC Attack	2020-02-24 01:22:10
142.93.209.221	attackbotsspam	Web App Attack	2020-01-20 04:49:16
142.93.209.221	attackbotsspam	142.93.209.221 - - \[03/Dec/2019:07:26:57 +0100\] "POST /wp-login.php HTTP/1.0" 200 7538 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 142.93.209.221 - - \[03/Dec/2019:07:27:05 +0100\] "POST /wp-login.php HTTP/1.0" 200 7363 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 142.93.209.221 - - \[03/Dec/2019:07:27:08 +0100\] "POST /wp-login.php HTTP/1.0" 200 7358 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-12-03 17:39:10
142.93.209.221	attack	142.93.209.221 - - \[01/Dec/2019:21:08:03 +0000\] "POST /wp-login.php HTTP/1.1" 200 6393 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 142.93.209.221 - - \[01/Dec/2019:21:08:04 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2019-12-02 06:03:44
142.93.209.204	attack	2019-09-05 H=mail.nourishwel.in \[142.93.209.204\] F=\ rejected RCPT \: Unrouteable address 2019-09-05 H=mail.nourishwel.in \[142.93.209.204\] F=\ rejected RCPT \: Unrouteable address 2019-09-06 H=mail.nourishwel.in \[142.93.209.204\] F=\ rejected RCPT \: Unrouteable address	2019-09-06 14:12:20
142.93.209.204	attack	Never-ending info@nourishwel.in spam attempts	2019-08-15 11:00:47
142.93.209.221	attackspambots	Brute forcing Wordpress login	2019-08-13 14:16:17
142.93.209.221	attackbots	142.93.209.221 - - \[23/Jul/2019:11:20:11 +0200\] "POST /wp-login.php HTTP/1.1" 200 2110 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 142.93.209.221 - - \[23/Jul/2019:11:20:12 +0200\] "POST /wp-login.php HTTP/1.1" 200 2113 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2019-07-23 19:33:12

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.209.102
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4279
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.93.209.102.			IN	A

;; AUTHORITY SECTION:
.			527	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062400 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 24 20:58:13 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 102.209.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 102.209.93.142.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
35.188.246.64	attackbotsspam	Aug 5 14:49:35 abendstille sshd\[14192\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.188.246.64 user=root Aug 5 14:49:37 abendstille sshd\[14192\]: Failed password for root from 35.188.246.64 port 55596 ssh2 Aug 5 14:53:24 abendstille sshd\[17866\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.188.246.64 user=root Aug 5 14:53:26 abendstille sshd\[17866\]: Failed password for root from 35.188.246.64 port 35068 ssh2 Aug 5 14:57:11 abendstille sshd\[21342\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.188.246.64 user=root ...	2020-08-05 20:57:24
93.141.144.110	attackspambots	C1,WP GET /wp-login.php	2020-08-05 21:04:35
45.83.32.184	attackspam	firewall-block, port(s): 23/tcp	2020-08-05 20:56:58
92.255.110.146	attack	Tried sshing with brute force.	2020-08-05 21:22:11
77.37.162.17	attackspam	Aug 5 14:46:47 cosmoit sshd[15977]: Failed password for root from 77.37.162.17 port 57732 ssh2	2020-08-05 21:11:10
192.35.168.226	attackbots	TCP (SYN) 192.35.168.226:32539 -> port 1388, len 44	2020-08-05 21:12:33
185.119.120.225	attackspambots	SMTP-SASL bruteforce attempt	2020-08-05 21:07:08
36.7.80.168	attackspam	Attempted to establish connection to non opened port 10270	2020-08-05 21:05:55
14.126.226.34	attack	D-Link DAP-1860 Remote Command Injection Vulnerability, PTR: PTR record not found	2020-08-05 21:17:02
187.115.67.118	attackspambots	2020-08-05 07:17:07.951755-0500 localhost sshd[75019]: Failed password for root from 187.115.67.118 port 53068 ssh2	2020-08-05 20:58:14
159.65.41.159	attackbots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-08-05 20:51:23
68.52.159.133	attackbots	400 BAD REQUEST	2020-08-05 20:50:09
192.95.30.137	attackspam	192.95.30.137 - - [05/Aug/2020:14:03:07 +0100] "POST /wp-login.php HTTP/1.1" 200 6175 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.95.30.137 - - [05/Aug/2020:14:04:45 +0100] "POST /wp-login.php HTTP/1.1" 200 6175 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.95.30.137 - - [05/Aug/2020:14:07:30 +0100] "POST /wp-login.php HTTP/1.1" 200 6175 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" ...	2020-08-05 21:17:15
216.218.206.121	attack	srv02 Mass scanning activity detected Target: 3283 ..	2020-08-05 20:54:56
54.37.71.203	attack	Aug 5 14:52:41 [host] sshd[4842]: pam_unix(sshd:a Aug 5 14:52:43 [host] sshd[4842]: Failed password Aug 5 14:57:20 [host] sshd[4955]: pam_unix(sshd:a	2020-08-05 21:24:31

Recently Reported IPs

137.226.12.183	24.89.199.14	137.226.12.204	137.226.12.217
27.19.193.208	169.229.92.140	137.226.237.141	137.226.237.151
144.64.5.128	137.226.13.36	24.182.52.19	137.226.238.38
24.64.57.151	137.226.238.163	137.226.144.168	169.229.92.40
183.88.39.213	213.33.152.178	169.229.93.100	169.229.93.106