142.93.235.138

Basic Info

City: unknown

Region: unknown

Country: Netherlands

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	...	2020-02-02 03:39:45
attackspam	142.93.235.138 was recorded 12 times by 10 hosts attempting to connect to the following ports: 81. Incident counter (4h, 24h, all-time): 12, 64, 64	2019-11-19 18:27:38

Comments on same subnet:

IP	Type	Details	Datetime
142.93.235.47	attack	2020-10-02T15:21:19.088603server.mjenks.net sshd[97696]: Failed password for invalid user cesar from 142.93.235.47 port 34040 ssh2 2020-10-02T15:24:36.424633server.mjenks.net sshd[98116]: Invalid user vincent from 142.93.235.47 port 43584 2020-10-02T15:24:36.430533server.mjenks.net sshd[98116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.235.47 2020-10-02T15:24:36.424633server.mjenks.net sshd[98116]: Invalid user vincent from 142.93.235.47 port 43584 2020-10-02T15:24:38.227538server.mjenks.net sshd[98116]: Failed password for invalid user vincent from 142.93.235.47 port 43584 ssh2 ...	2020-10-03 04:58:24
142.93.235.47	attackbots	Oct 2 09:26:13 NPSTNNYC01T sshd[6309]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.235.47 Oct 2 09:26:15 NPSTNNYC01T sshd[6309]: Failed password for invalid user teamspeak from 142.93.235.47 port 41724 ssh2 Oct 2 09:29:50 NPSTNNYC01T sshd[6423]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.235.47 ...	2020-10-03 00:21:06
142.93.235.47	attackbots	Oct 2 08:29:52 NPSTNNYC01T sshd[2744]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.235.47 Oct 2 08:29:54 NPSTNNYC01T sshd[2744]: Failed password for invalid user oracle from 142.93.235.47 port 43022 ssh2 Oct 2 08:33:25 NPSTNNYC01T sshd[2951]: Failed password for root from 142.93.235.47 port 49996 ssh2 ...	2020-10-02 20:52:04
142.93.235.47	attackbotsspam	2020-10-02T08:06:08.925177abusebot-4.cloudsearch.cf sshd[455]: Invalid user test from 142.93.235.47 port 47348 2020-10-02T08:06:08.931647abusebot-4.cloudsearch.cf sshd[455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.235.47 2020-10-02T08:06:08.925177abusebot-4.cloudsearch.cf sshd[455]: Invalid user test from 142.93.235.47 port 47348 2020-10-02T08:06:10.678886abusebot-4.cloudsearch.cf sshd[455]: Failed password for invalid user test from 142.93.235.47 port 47348 ssh2 2020-10-02T08:09:31.934480abusebot-4.cloudsearch.cf sshd[565]: Invalid user user from 142.93.235.47 port 53400 2020-10-02T08:09:31.942004abusebot-4.cloudsearch.cf sshd[565]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.235.47 2020-10-02T08:09:31.934480abusebot-4.cloudsearch.cf sshd[565]: Invalid user user from 142.93.235.47 port 53400 2020-10-02T08:09:34.225961abusebot-4.cloudsearch.cf sshd[565]: Failed password for invalid ...	2020-10-02 17:24:21
142.93.235.47	attackbotsspam	Invalid user buero from 142.93.235.47 port 40720	2020-10-02 13:46:44
142.93.235.47	attack	Oct 1 20:57:04 vps-51d81928 sshd[502875]: Failed password for root from 142.93.235.47 port 49712 ssh2 Oct 1 21:00:21 vps-51d81928 sshd[502917]: Invalid user raquel from 142.93.235.47 port 57052 Oct 1 21:00:21 vps-51d81928 sshd[502917]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.235.47 Oct 1 21:00:21 vps-51d81928 sshd[502917]: Invalid user raquel from 142.93.235.47 port 57052 Oct 1 21:00:23 vps-51d81928 sshd[502917]: Failed password for invalid user raquel from 142.93.235.47 port 57052 ssh2 ...	2020-10-02 05:12:06
142.93.235.47	attack	Oct 1 15:08:46 buvik sshd[8732]: Failed password for root from 142.93.235.47 port 49588 ssh2 Oct 1 15:12:20 buvik sshd[9380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.235.47 user=root Oct 1 15:12:22 buvik sshd[9380]: Failed password for root from 142.93.235.47 port 55420 ssh2 ...	2020-10-01 21:30:19
142.93.235.47	attackspambots	Invalid user buero from 142.93.235.47 port 40720	2020-10-01 13:45:51
142.93.235.47	attack	Sep 29 20:21:14 roki-contabo sshd\[23220\]: Invalid user kay from 142.93.235.47 Sep 29 20:21:14 roki-contabo sshd\[23220\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.235.47 Sep 29 20:21:15 roki-contabo sshd\[23220\]: Failed password for invalid user kay from 142.93.235.47 port 39810 ssh2 Sep 29 20:30:26 roki-contabo sshd\[23460\]: Invalid user admin from 142.93.235.47 Sep 29 20:30:26 roki-contabo sshd\[23460\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.235.47 ...	2020-09-30 04:30:02
142.93.235.47	attackbots	2020-09-29T16:31:11.987059paragon sshd[507041]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.235.47 2020-09-29T16:31:11.983182paragon sshd[507041]: Invalid user nexus from 142.93.235.47 port 44158 2020-09-29T16:31:13.960919paragon sshd[507041]: Failed password for invalid user nexus from 142.93.235.47 port 44158 ssh2 2020-09-29T16:32:21.373722paragon sshd[507060]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.235.47 user=root 2020-09-29T16:32:23.291594paragon sshd[507060]: Failed password for root from 142.93.235.47 port 34876 ssh2 ...	2020-09-29 20:38:11
142.93.235.47	attackspam	Sep 28 23:00:08 rocket sshd[31448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.235.47 Sep 28 23:00:10 rocket sshd[31448]: Failed password for invalid user test from 142.93.235.47 port 39430 ssh2 ...	2020-09-29 12:46:50
142.93.235.47	attackspambots	Aug 26 14:37:38 ajax sshd[5878]: Failed password for root from 142.93.235.47 port 43920 ssh2	2020-08-26 23:02:48
142.93.235.47	attack	Aug 14 23:48:48 [host] sshd[2894]: pam_unix(sshd:a Aug 14 23:48:50 [host] sshd[2894]: Failed password Aug 14 23:52:28 [host] sshd[3014]: pam_unix(sshd:a	2020-08-15 07:12:53
142.93.235.47	attackbots	bruteforce detected	2020-08-13 06:59:34
142.93.235.47	attackspambots	Aug 4 18:11:43 game-panel sshd[14526]: Failed password for root from 142.93.235.47 port 57842 ssh2 Aug 4 18:15:24 game-panel sshd[14740]: Failed password for root from 142.93.235.47 port 41002 ssh2	2020-08-05 02:34:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.235.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18398
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.235.138.			IN	A

;; AUTHORITY SECTION:
.			451	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111900 1800 900 604800 86400

;; Query time: 34 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 19 18:27:35 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 138.235.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.235.93.142.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
92.255.178.230	attackspambots	Brute force SMTP login attempted. ...	2019-10-23 19:18:51
190.79.178.88	attackspambots	SSH scan ::	2019-10-23 19:16:32
194.182.86.126	attack	$f2bV_matches	2019-10-23 18:39:28
129.226.76.107	attackbotsspam	Oct 23 03:46:56 ns315508 sshd[9625]: User root from 129.226.76.107 not allowed because not listed in AllowUsers Oct 23 03:46:56 ns315508 sshd[9625]: User root from 129.226.76.107 not allowed because not listed in AllowUsers Oct 23 03:46:58 ns315508 sshd[9627]: User root from 129.226.76.107 not allowed because not listed in AllowUsers Oct 23 03:46:58 ns315508 sshd[9627]: User root from 129.226.76.107 not allowed because not listed in AllowUsers ...	2019-10-23 19:04:14
45.136.110.24	attack	Oct 23 10:10:09 TCP Attack: SRC=45.136.110.24 DST=[Masked] LEN=40 TOS=0x08 PREC=0x20 TTL=240 PROTO=TCP SPT=52057 DPT=10026 WINDOW=1024 RES=0x00 SYN URGP=0	2019-10-23 18:43:05
89.46.125.39	attack	Oct 23 12:56:22 rotator sshd\[2584\]: Invalid user uoa from 89.46.125.39Oct 23 12:56:23 rotator sshd\[2584\]: Failed password for invalid user uoa from 89.46.125.39 port 42736 ssh2Oct 23 12:56:25 rotator sshd\[2584\]: Failed password for invalid user uoa from 89.46.125.39 port 42736 ssh2Oct 23 12:56:27 rotator sshd\[2586\]: Invalid user update from 89.46.125.39Oct 23 12:56:30 rotator sshd\[2586\]: Failed password for invalid user update from 89.46.125.39 port 49410 ssh2Oct 23 12:56:32 rotator sshd\[2588\]: Invalid user upgrade from 89.46.125.39 ...	2019-10-23 18:57:34
45.45.45.45	attackspambots	23.10.2019 09:32:38 Recursive DNS scan	2019-10-23 18:55:46
156.211.66.148	attackbotsspam	Oct 21 07:56:36 linuxrulz sshd[27195]: Invalid user admin from 156.211.66.148 port 39935 Oct 21 07:56:36 linuxrulz sshd[27195]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.211.66.148 Oct 21 07:56:37 linuxrulz sshd[27195]: Failed password for invalid user admin from 156.211.66.148 port 39935 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=156.211.66.148	2019-10-23 18:42:27
177.18.3.115	attack	Oct 15 09:21:40 localhost postfix/smtpd[27817]: disconnect from 177.18.3.115.dynamic.adsl.gvt.net.br[177.18.3.115] ehlo=1 auth=0/1 quhostname=1 commands=2/3 Oct 15 09:21:40 localhost postfix/smtpd[27819]: disconnect from 177.18.3.115.dynamic.adsl.gvt.net.br[177.18.3.115] ehlo=1 auth=0/1 quhostname=1 commands=2/3 Oct 15 09:21:44 localhost postfix/smtpd[27821]: disconnect from 177.18.3.115.dynamic.adsl.gvt.net.br[177.18.3.115] ehlo=1 auth=0/1 quhostname=1 commands=2/3 Oct 15 09:21:44 localhost postfix/smtpd[27822]: disconnect from 177.18.3.115.dynamic.adsl.gvt.net.br[177.18.3.115] ehlo=1 auth=0/1 quhostname=1 commands=2/3 Oct 15 09:21:45 localhost postfix/smtpd[27820]: disconnect from 177.18.3.115.dynamic.adsl.gvt.net.br[177.18.3.115] ehlo=1 auth=0/1 quhostname=1 commands=2/3 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=177.18.3.115	2019-10-23 19:00:40
124.167.196.222	attack	scan z	2019-10-23 18:44:14
121.157.82.170	attackbotsspam	2019-10-23T10:53:50.547874abusebot-5.cloudsearch.cf sshd\[3140\]: Invalid user hp from 121.157.82.170 port 44258	2019-10-23 19:11:19
31.13.67.7	attackbots	Attempted User Privilege Gain ET INFO Session Traversal Utilities for NAT (STUN Binding Request) Ports 54615 and 3478	2019-10-23 19:21:06
207.244.70.35	attack	Automatic report - XMLRPC Attack	2019-10-23 18:41:55
72.252.211.174	attackspambots	$f2bV_matches	2019-10-23 19:15:58
152.136.100.66	attack	Oct 22 06:26:31 vps34202 sshd[3299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.100.66 user=r.r Oct 22 06:26:34 vps34202 sshd[3299]: Failed password for r.r from 152.136.100.66 port 56042 ssh2 Oct 22 06:26:34 vps34202 sshd[3299]: Received disconnect from 152.136.100.66: 11: Bye Bye [preauth] Oct 22 06:33:40 vps34202 sshd[3576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.100.66 user=r.r Oct 22 06:33:42 vps34202 sshd[3576]: Failed password for r.r from 152.136.100.66 port 47938 ssh2 Oct 22 06:33:42 vps34202 sshd[3576]: Received disconnect from 152.136.100.66: 11: Bye Bye [preauth] Oct 22 06:38:36 vps34202 sshd[3736]: Invalid user navy from 152.136.100.66 Oct 22 06:38:36 vps34202 sshd[3736]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.100.66 Oct 22 06:38:38 vps34202 sshd[3736]: Failed password for invalid user navy........ -------------------------------	2019-10-23 19:08:50

Recently Reported IPs

5.165.82.42	222.139.226.8	220.72.227.233	245.139.120.148
213.108.18.235	84.250.25.6	32.44.2.163	100.248.97.226
202.110.40.218	192.95.42.29	188.4.2.14	187.144.203.87
186.251.243.81	182.48.108.166	177.155.36.203	177.129.125.119
177.55.57.194	177.52.93.89	159.203.193.253	125.27.214.29