142.93.215.100

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Aug 22 00:49:05 NPSTNNYC01T sshd[2253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.215.100 Aug 22 00:49:07 NPSTNNYC01T sshd[2253]: Failed password for invalid user pdf from 142.93.215.100 port 40702 ssh2 Aug 22 00:53:37 NPSTNNYC01T sshd[2573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.215.100 ...	2020-08-22 12:55:29
attackspam	Jul 26 10:59:46 Host-KEWR-E sshd[1820]: Disconnected from invalid user steam 142.93.215.100 port 55416 [preauth] ...	2020-07-26 23:22:38
attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-07-25 04:14:52
attackspam	Apr 27 16:51:35 ns382633 sshd\[10174\]: Invalid user xbmc from 142.93.215.100 port 60448 Apr 27 16:51:35 ns382633 sshd\[10174\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.215.100 Apr 27 16:51:37 ns382633 sshd\[10174\]: Failed password for invalid user xbmc from 142.93.215.100 port 60448 ssh2 Apr 27 17:03:40 ns382633 sshd\[12211\]: Invalid user as from 142.93.215.100 port 51346 Apr 27 17:03:40 ns382633 sshd\[12211\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.215.100	2020-04-28 03:21:04
attackbotsspam	2020-04-17T19:22:12.412436randservbullet-proofcloud-66.localdomain sshd[26773]: Invalid user jf from 142.93.215.100 port 55366 2020-04-17T19:22:12.416733randservbullet-proofcloud-66.localdomain sshd[26773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.215.100 2020-04-17T19:22:12.412436randservbullet-proofcloud-66.localdomain sshd[26773]: Invalid user jf from 142.93.215.100 port 55366 2020-04-17T19:22:14.407488randservbullet-proofcloud-66.localdomain sshd[26773]: Failed password for invalid user jf from 142.93.215.100 port 55366 ssh2 ...	2020-04-18 05:37:34
attack	2020-04-13T16:09:46.447430Z 28c2409d65fb New connection: 142.93.215.100:36748 (172.17.0.5:2222) [session: 28c2409d65fb] 2020-04-13T16:24:15.988577Z 7c070798d4d2 New connection: 142.93.215.100:47938 (172.17.0.5:2222) [session: 7c070798d4d2]	2020-04-14 01:22:09

Comments on same subnet:

IP	Type	Details	Datetime
142.93.215.118	attack	Sep 14 18:58:15 mail sshd[15183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.215.118 user=root Sep 14 18:58:17 mail sshd[15183]: Failed password for root from 142.93.215.118 port 35568 ssh2 ...	2020-09-16 00:44:03
142.93.215.118	attack	Sep 14 18:58:15 mail sshd[15183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.215.118 user=root Sep 14 18:58:17 mail sshd[15183]: Failed password for root from 142.93.215.118 port 35568 ssh2 ...	2020-09-15 16:35:43
142.93.215.19	attack	Sep 3 14:55:32 hidden sshd[8327]: Failed password for invalid user beo from 142.93.215.19 port 42622 ssh2 Sep 3 14:58:39 hidden sshd[8374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.215.19 user=www Sep 3 14:58:41 hidden sshd[8374]: Failed password for hidden from 142.93.215.19 port 49472 ssh2	2020-09-03 22:38:42
142.93.215.19	attack	Sep 3 02:56:28 vm0 sshd[29472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.215.19 Sep 3 02:56:31 vm0 sshd[29472]: Failed password for invalid user stats from 142.93.215.19 port 44116 ssh2 ...	2020-09-03 14:16:47
142.93.215.19	attackbotsspam	Sep 2 18:14:01 Tower sshd[28830]: Connection from 142.93.215.19 port 33290 on 192.168.10.220 port 22 rdomain "" Sep 2 18:14:03 Tower sshd[28830]: Invalid user ajay from 142.93.215.19 port 33290 Sep 2 18:14:03 Tower sshd[28830]: error: Could not get shadow information for NOUSER Sep 2 18:14:03 Tower sshd[28830]: Failed password for invalid user ajay from 142.93.215.19 port 33290 ssh2 Sep 2 18:14:03 Tower sshd[28830]: Received disconnect from 142.93.215.19 port 33290:11: Bye Bye [preauth] Sep 2 18:14:03 Tower sshd[28830]: Disconnected from invalid user ajay 142.93.215.19 port 33290 [preauth]	2020-09-03 06:29:01
142.93.215.19	attack	2020-08-29T15:05:30.307597snf-827550 sshd[26011]: Invalid user FB from 142.93.215.19 port 41102 2020-08-29T15:05:32.408028snf-827550 sshd[26011]: Failed password for invalid user FB from 142.93.215.19 port 41102 ssh2 2020-08-29T15:07:57.944919snf-827550 sshd[26037]: Invalid user user from 142.93.215.19 port 40116 ...	2020-08-30 00:30:21
142.93.215.19	attackspam	Invalid user rqh from 142.93.215.19 port 37158	2020-08-25 15:52:29
142.93.215.19	attackbots	Aug 24 18:15:55 firewall sshd[3211]: Invalid user blm from 142.93.215.19 Aug 24 18:15:56 firewall sshd[3211]: Failed password for invalid user blm from 142.93.215.19 port 53364 ssh2 Aug 24 18:20:17 firewall sshd[3417]: Invalid user melina from 142.93.215.19 ...	2020-08-25 07:49:43
142.93.215.19	attackbots	Aug 22 08:24:54 vps sshd[16679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.215.19 Aug 22 08:24:56 vps sshd[16679]: Failed password for invalid user james from 142.93.215.19 port 34504 ssh2 Aug 22 08:41:42 vps sshd[17725]: Failed password for root from 142.93.215.19 port 59512 ssh2 ...	2020-08-22 14:48:40
142.93.215.19	attackbotsspam	SSH invalid-user multiple login try	2020-08-19 15:56:16
142.93.215.22	attackbots	Aug 17 13:52:26 hidden sshd[16339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.215.22 Aug 17 13:52:28 hidden sshd[16339]: Failed password for invalid user aep from 142.93.215.22 port 43226 ssh2 Aug 17 14:05:21 hidden sshd[18736]: Invalid user roberta from 142.93.215.22 port 56890	2020-08-17 22:01:27
142.93.215.22	attack	web-1 [ssh_2] SSH Attack	2020-08-17 03:27:21
142.93.215.19	attack	Aug 15 12:36:59 serwer sshd\[32204\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.215.19 user=root Aug 15 12:37:00 serwer sshd\[32204\]: Failed password for root from 142.93.215.19 port 37680 ssh2 Aug 15 12:43:50 serwer sshd\[4056\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.215.19 user=root ...	2020-08-16 17:00:25
142.93.215.22	attackspambots	Aug 14 22:28:59 ns382633 sshd\[14205\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.215.22 user=root Aug 14 22:29:01 ns382633 sshd\[14205\]: Failed password for root from 142.93.215.22 port 50172 ssh2 Aug 14 22:39:37 ns382633 sshd\[16168\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.215.22 user=root Aug 14 22:39:38 ns382633 sshd\[16168\]: Failed password for root from 142.93.215.22 port 43798 ssh2 Aug 14 22:43:48 ns382633 sshd\[16984\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.215.22 user=root	2020-08-15 05:51:44
142.93.215.22	attackspam	Aug 14 05:53:35 nextcloud sshd\[27464\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.215.22 user=root Aug 14 05:53:37 nextcloud sshd\[27464\]: Failed password for root from 142.93.215.22 port 57954 ssh2 Aug 14 05:58:06 nextcloud sshd\[31894\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.215.22 user=root	2020-08-14 12:24:44

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.215.100
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9633
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.215.100.			IN	A

;; AUTHORITY SECTION:
.			598	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041301 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 14 01:22:05 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 100.215.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 100.215.93.142.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.231.11.182	attack	(sshd) Failed SSH login from 180.231.11.182 (KR/South Korea/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 10 18:51:45 srv sshd[729]: Invalid user angel from 180.231.11.182 port 37330 May 10 18:51:47 srv sshd[729]: Failed password for invalid user angel from 180.231.11.182 port 37330 ssh2 May 10 18:55:19 srv sshd[777]: Invalid user sofair from 180.231.11.182 port 48546 May 10 18:55:21 srv sshd[777]: Failed password for invalid user sofair from 180.231.11.182 port 48546 ssh2 May 10 18:57:19 srv sshd[813]: Invalid user webadm from 180.231.11.182 port 39230	2020-05-11 02:54:10
213.202.211.200	attackbots	Repeated brute force against a port	2020-05-11 02:54:55
49.176.212.31	attackspam	TCP (SYN) 49.176.212.31:65021 -> port 445, len 52	2020-05-11 03:03:25
49.235.107.14	attack	TCP (SYN) 49.235.107.14:59480 -> port 4297, len 44	2020-05-11 02:42:01
80.82.65.253	attackbots	Persistent port scanner - incrediserve - uses various IP Addresses	2020-05-11 03:07:17
151.237.185.2	attackspam	Honeypot attack, port: 445, PTR: vudis.vertclick.com.	2020-05-11 02:54:27
194.26.29.13	attack	May 10 20:54:54 debian-2gb-nbg1-2 kernel: \[11395764.977846\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.26.29.13 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=19766 PROTO=TCP SPT=55997 DPT=8218 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-11 03:02:54
183.88.243.115	attackspambots	Dovecot Invalid User Login Attempt.	2020-05-11 02:39:20
169.255.77.59	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-05-11 02:36:20
189.241.160.241	attack	Honeypot attack, port: 81, PTR: dsl-189-241-160-241-dyn.prod-infinitum.com.mx.	2020-05-11 02:38:59
79.181.28.106	attackspambots	Honeypot attack, port: 81, PTR: bzq-79-181-28-106.red.bezeqint.net.	2020-05-11 02:31:40
212.64.58.58	attack	2020-05-10T13:48:43.764428shield sshd\[7256\]: Invalid user pirate from 212.64.58.58 port 41190 2020-05-10T13:48:43.767839shield sshd\[7256\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.58.58 2020-05-10T13:48:46.154735shield sshd\[7256\]: Failed password for invalid user pirate from 212.64.58.58 port 41190 ssh2 2020-05-10T13:53:59.202305shield sshd\[9009\]: Invalid user qdba from 212.64.58.58 port 40554 2020-05-10T13:53:59.205774shield sshd\[9009\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.58.58	2020-05-11 02:51:18
79.137.72.171	attackspambots	May 10 17:33:04 roki-contabo sshd\[23593\]: Invalid user emms from 79.137.72.171 May 10 17:33:04 roki-contabo sshd\[23593\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.72.171 May 10 17:33:06 roki-contabo sshd\[23593\]: Failed password for invalid user emms from 79.137.72.171 port 53085 ssh2 May 10 17:42:05 roki-contabo sshd\[24148\]: Invalid user postgres from 79.137.72.171 May 10 17:42:05 roki-contabo sshd\[24148\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.72.171 ...	2020-05-11 02:28:46
98.103.168.234	attackbotsspam	SSH/22 MH Probe, BF, Hack -	2020-05-11 03:01:50
59.127.222.78	attackspam	Port probing on unauthorized port 23	2020-05-11 03:02:32

Recently Reported IPs

237.203.117.133	116.253.211.207	114.106.157.219	114.106.76.25
46.36.27.114	89.247.43.72	51.254.227.222	26.85.24.54
155.108.94.191	34.30.130.135	114.106.156.193	128.199.178.172
59.58.87.51	188.158.127.172	106.54.169.194	59.47.72.107
89.247.157.176	115.216.43.50	86.27.76.59	39.115.113.146