142.93.241.19 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	2020-10-10T06:56:52.344225kitsunetech sshd[15347]: Invalid user guest1 from 142.93.241.19 port 46578	2020-10-10 22:30:49
attackbotsspam	SSH login attempts.	2020-10-10 14:23:31
attackbots	Sep 27 23:57:28 raspberrypi sshd[8046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.241.19 Sep 27 23:57:30 raspberrypi sshd[8046]: Failed password for invalid user aaa from 142.93.241.19 port 60544 ssh2 ...	2020-09-28 06:29:08
attackbots	(sshd) Failed SSH login from 142.93.241.19 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 27 09:42:33 server4 sshd[23456]: Invalid user alex from 142.93.241.19 Sep 27 09:42:33 server4 sshd[23456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.241.19 Sep 27 09:42:35 server4 sshd[23456]: Failed password for invalid user alex from 142.93.241.19 port 55898 ssh2 Sep 27 09:53:57 server4 sshd[30180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.241.19 user=root Sep 27 09:53:59 server4 sshd[30180]: Failed password for root from 142.93.241.19 port 34288 ssh2	2020-09-27 22:53:14
attack	$f2bV_matches	2020-09-27 14:49:19
attack	SSH bruteforce	2020-09-16 23:14:42
attackbots	prod11 ...	2020-09-16 15:31:04
attackbots	Sep 15 20:46:57 ajax sshd[6614]: Failed password for root from 142.93.241.19 port 55526 ssh2	2020-09-16 07:30:54
attack	Invalid user gui from 142.93.241.19 port 50894	2020-08-30 13:12:37
attackspambots	2020-08-22T15:40:33.700440mail.standpoint.com.ua sshd[25015]: Invalid user plex from 142.93.241.19 port 42132 2020-08-22T15:40:33.703665mail.standpoint.com.ua sshd[25015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.241.19 2020-08-22T15:40:33.700440mail.standpoint.com.ua sshd[25015]: Invalid user plex from 142.93.241.19 port 42132 2020-08-22T15:40:35.652343mail.standpoint.com.ua sshd[25015]: Failed password for invalid user plex from 142.93.241.19 port 42132 ssh2 2020-08-22T15:44:00.903180mail.standpoint.com.ua sshd[25476]: Invalid user sinusbot from 142.93.241.19 port 50214 ...	2020-08-22 20:54:22
attackbots	2020-08-19T04:51:06.917019shield sshd\[27971\]: Invalid user jeronimo from 142.93.241.19 port 43714 2020-08-19T04:51:06.926259shield sshd\[27971\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.241.19 2020-08-19T04:51:08.724847shield sshd\[27971\]: Failed password for invalid user jeronimo from 142.93.241.19 port 43714 ssh2 2020-08-19T04:54:55.407211shield sshd\[28371\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.241.19 user=root 2020-08-19T04:54:57.642239shield sshd\[28371\]: Failed password for root from 142.93.241.19 port 53950 ssh2	2020-08-19 13:03:28

Comments on same subnet:

IP	Type	Details	Datetime
142.93.241.93	attackspambots	Invalid user admin from 142.93.241.93 port 51394	2020-03-14 02:23:53
142.93.241.93	attack	Mar 5 21:49:02 tdfoods sshd\[29041\]: Invalid user jackson from 142.93.241.93 Mar 5 21:49:02 tdfoods sshd\[29041\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mobilia.com.pe Mar 5 21:49:04 tdfoods sshd\[29041\]: Failed password for invalid user jackson from 142.93.241.93 port 42600 ssh2 Mar 5 21:52:59 tdfoods sshd\[29343\]: Invalid user aion from 142.93.241.93 Mar 5 21:52:59 tdfoods sshd\[29343\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mobilia.com.pe	2020-03-06 16:02:55
142.93.241.93	attackspambots	Invalid user sonar from 142.93.241.93 port 50346 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.241.93 Failed password for invalid user sonar from 142.93.241.93 port 50346 ssh2 Invalid user smbuser from 142.93.241.93 port 55790 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.241.93	2020-03-05 13:53:14
142.93.241.93	attackspambots	$f2bV_matches	2020-03-03 14:53:37
142.93.241.93	attack	Mar 1 05:58:35 ns381471 sshd[28850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.241.93 Mar 1 05:58:37 ns381471 sshd[28850]: Failed password for invalid user kf2server from 142.93.241.93 port 43468 ssh2	2020-03-01 13:32:41
142.93.241.93	attackbots	2019-09-23T17:25:47.537961suse-nuc sshd[26803]: Invalid user jenkins from 142.93.241.93 port 44582 ...	2020-02-07 10:38:33
142.93.241.93	attack	Unauthorized connection attempt detected from IP address 142.93.241.93 to port 2220 [J]	2020-02-02 03:32:17
142.93.241.93	attackspambots	Unauthorized connection attempt detected from IP address 142.93.241.93 to port 2220 [J]	2020-01-24 03:49:03
142.93.241.93	attackspam	Invalid user host from 142.93.241.93	2020-01-21 09:00:50
142.93.241.93	attackspambots	Unauthorized connection attempt detected from IP address 142.93.241.93 to port 2220 [J]	2020-01-15 18:56:12
142.93.241.93	attack	Jan 12 13:54:09 mout sshd[25147]: Failed password for invalid user cecil from 142.93.241.93 port 57666 ssh2 Jan 12 14:13:23 mout sshd[26968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.241.93 user=root Jan 12 14:13:25 mout sshd[26968]: Failed password for root from 142.93.241.93 port 57848 ssh2	2020-01-12 21:27:14
142.93.241.93	attack	Unauthorized connection attempt detected from IP address 142.93.241.93 to port 2220 [J]	2020-01-11 23:00:49
142.93.241.93	attack	Jan 10 06:23:57 [host] sshd[16566]: Invalid user dbtest from 142.93.241.93 Jan 10 06:23:57 [host] sshd[16566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.241.93 Jan 10 06:23:59 [host] sshd[16566]: Failed password for invalid user dbtest from 142.93.241.93 port 53300 ssh2	2020-01-10 16:23:44
142.93.241.93	attack	Jan 8 23:16:08 DAAP sshd[2081]: Invalid user t from 142.93.241.93 port 44402 Jan 8 23:16:08 DAAP sshd[2081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.241.93 Jan 8 23:16:08 DAAP sshd[2081]: Invalid user t from 142.93.241.93 port 44402 Jan 8 23:16:10 DAAP sshd[2081]: Failed password for invalid user t from 142.93.241.93 port 44402 ssh2 Jan 8 23:18:50 DAAP sshd[2105]: Invalid user panda from 142.93.241.93 port 35664 ...	2020-01-09 08:46:18
142.93.241.93	attackspambots	leo_www	2020-01-08 17:02:54

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.241.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60838
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.241.19.			IN	A

;; AUTHORITY SECTION:
.			201	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081802 1800 900 604800 86400

;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Aug 19 13:03:20 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 19.241.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 19.241.93.142.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.13.103.128	attack	$f2bV_matches	2020-03-24 03:47:28
14.183.14.125	attack	Unauthorized connection attempt from IP address 14.183.14.125 on Port 445(SMB)	2020-03-24 03:53:54
103.74.124.92	attack	Mar 23 07:30:07 datentool sshd[3093]: Invalid user en from 103.74.124.92 Mar 23 07:30:07 datentool sshd[3093]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.74.124.92 Mar 23 07:30:09 datentool sshd[3093]: Failed password for invalid user en from 103.74.124.92 port 42685 ssh2 Mar 23 07:40:13 datentool sshd[3205]: Invalid user yonglibao from 103.74.124.92 Mar 23 07:40:13 datentool sshd[3205]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.74.124.92 Mar 23 07:40:15 datentool sshd[3205]: Failed password for invalid user yonglibao from 103.74.124.92 port 43585 ssh2 Mar 23 07:42:53 datentool sshd[3216]: Invalid user hduser from 103.74.124.92 Mar 23 07:42:53 datentool sshd[3216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.74.124.92 Mar 23 07:42:55 datentool sshd[3216]: Failed password for invalid user hduser from 103.74.124.92 port 5421........ -------------------------------	2020-03-24 03:19:39
116.236.220.210	attack	SSH Brute Force	2020-03-24 03:34:54
27.115.15.8	attack	2020-03-23T17:08:33.739671 sshd[21444]: Invalid user info from 27.115.15.8 port 49806 2020-03-23T17:08:33.752838 sshd[21444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.115.15.8 2020-03-23T17:08:33.739671 sshd[21444]: Invalid user info from 27.115.15.8 port 49806 2020-03-23T17:08:35.608329 sshd[21444]: Failed password for invalid user info from 27.115.15.8 port 49806 ssh2 ...	2020-03-24 03:44:14
78.83.57.73	attackspambots	Mar 23 18:35:58 h2646465 sshd[17246]: Invalid user ii from 78.83.57.73 Mar 23 18:35:58 h2646465 sshd[17246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.83.57.73 Mar 23 18:35:58 h2646465 sshd[17246]: Invalid user ii from 78.83.57.73 Mar 23 18:36:00 h2646465 sshd[17246]: Failed password for invalid user ii from 78.83.57.73 port 35036 ssh2 Mar 23 18:47:05 h2646465 sshd[20767]: Invalid user universitaetsgelaende from 78.83.57.73 Mar 23 18:47:05 h2646465 sshd[20767]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.83.57.73 Mar 23 18:47:05 h2646465 sshd[20767]: Invalid user universitaetsgelaende from 78.83.57.73 Mar 23 18:47:06 h2646465 sshd[20767]: Failed password for invalid user universitaetsgelaende from 78.83.57.73 port 58278 ssh2 Mar 23 18:50:48 h2646465 sshd[22058]: Invalid user he from 78.83.57.73 ...	2020-03-24 03:32:13
125.212.233.50	attackspam	(sshd) Failed SSH login from 125.212.233.50 (VN/Vietnam/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 23 18:08:22 amsweb01 sshd[16951]: Invalid user username from 125.212.233.50 port 37888 Mar 23 18:08:24 amsweb01 sshd[16951]: Failed password for invalid user username from 125.212.233.50 port 37888 ssh2 Mar 23 18:23:27 amsweb01 sshd[18959]: Invalid user pw from 125.212.233.50 port 38372 Mar 23 18:23:29 amsweb01 sshd[18959]: Failed password for invalid user pw from 125.212.233.50 port 38372 ssh2 Mar 23 18:26:37 amsweb01 sshd[19366]: Invalid user storm from 125.212.233.50 port 49314	2020-03-24 03:33:36
46.38.145.5	attack	Mar 23 19:59:11 mail postfix/smtpd\[16892\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Mar 23 19:59:41 mail postfix/smtpd\[16892\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Mar 23 20:30:08 mail postfix/smtpd\[17465\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Mar 23 20:30:36 mail postfix/smtpd\[17465\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-03-24 03:36:50
112.85.42.186	attackspam	Mar 24 01:19:20 areeb-Workstation sshd[5435]: Failed password for root from 112.85.42.186 port 44455 ssh2 Mar 24 01:19:23 areeb-Workstation sshd[5435]: Failed password for root from 112.85.42.186 port 44455 ssh2 ...	2020-03-24 03:50:38
141.8.183.90	attack	[Mon Mar 23 22:45:10.601907 2020] [:error] [pid 25293:tid 140519768332032] [client 141.8.183.90:39169] [client 141.8.183.90] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XnjZhrdSec56q6n39A6CPwAAAqM"] ...	2020-03-24 03:58:58
193.56.28.230	attackbots	Brute forcing email accounts	2020-03-24 03:52:41
175.24.36.114	attackspam	Mar 23 20:36:18 h2779839 sshd[10635]: Invalid user sinusbot from 175.24.36.114 port 47762 Mar 23 20:36:18 h2779839 sshd[10635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.36.114 Mar 23 20:36:18 h2779839 sshd[10635]: Invalid user sinusbot from 175.24.36.114 port 47762 Mar 23 20:36:20 h2779839 sshd[10635]: Failed password for invalid user sinusbot from 175.24.36.114 port 47762 ssh2 Mar 23 20:42:27 h2779839 sshd[10832]: Invalid user tighe from 175.24.36.114 port 43484 Mar 23 20:42:27 h2779839 sshd[10832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.36.114 Mar 23 20:42:27 h2779839 sshd[10832]: Invalid user tighe from 175.24.36.114 port 43484 Mar 23 20:42:29 h2779839 sshd[10832]: Failed password for invalid user tighe from 175.24.36.114 port 43484 ssh2 Mar 23 20:45:00 h2779839 sshd[10885]: Invalid user dc from 175.24.36.114 port 44786 ...	2020-03-24 03:47:45
125.161.105.64	attackspambots	Unauthorized connection attempt from IP address 125.161.105.64 on Port 445(SMB)	2020-03-24 03:23:08
101.231.126.114	attackbotsspam	Mar 23 19:54:35 SilenceServices sshd[31749]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.231.126.114 Mar 23 19:54:37 SilenceServices sshd[31749]: Failed password for invalid user test from 101.231.126.114 port 3704 ssh2 Mar 23 19:56:48 SilenceServices sshd[6453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.231.126.114	2020-03-24 03:53:20
175.100.35.51	attackspambots	Port probing on unauthorized port 23	2020-03-24 03:24:49

Recently Reported IPs

103.17.236.80	58.9.182.115	182.61.144.110	45.182.136.195
185.10.58.207	95.111.242.136	191.125.15.143	45.148.234.161
93.28.213.41	168.181.49.20	159.203.91.198	123.169.38.164
37.147.165.228	151.80.40.130	51.38.187.198	106.12.20.195
180.153.65.120	114.248.161.188	106.75.76.8	39.153.252.94