142.93.241.53 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
142.93.241.19	attack	2020-10-10T06:56:52.344225kitsunetech sshd[15347]: Invalid user guest1 from 142.93.241.19 port 46578	2020-10-10 22:30:49
142.93.241.19	attackbotsspam	SSH login attempts.	2020-10-10 14:23:31
142.93.241.19	attackbots	Sep 27 23:57:28 raspberrypi sshd[8046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.241.19 Sep 27 23:57:30 raspberrypi sshd[8046]: Failed password for invalid user aaa from 142.93.241.19 port 60544 ssh2 ...	2020-09-28 06:29:08
142.93.241.19	attackbots	(sshd) Failed SSH login from 142.93.241.19 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 27 09:42:33 server4 sshd[23456]: Invalid user alex from 142.93.241.19 Sep 27 09:42:33 server4 sshd[23456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.241.19 Sep 27 09:42:35 server4 sshd[23456]: Failed password for invalid user alex from 142.93.241.19 port 55898 ssh2 Sep 27 09:53:57 server4 sshd[30180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.241.19 user=root Sep 27 09:53:59 server4 sshd[30180]: Failed password for root from 142.93.241.19 port 34288 ssh2	2020-09-27 22:53:14
142.93.241.19	attack	$f2bV_matches	2020-09-27 14:49:19
142.93.241.19	attack	SSH bruteforce	2020-09-16 23:14:42
142.93.241.19	attackbots	prod11 ...	2020-09-16 15:31:04
142.93.241.19	attackbots	Sep 15 20:46:57 ajax sshd[6614]: Failed password for root from 142.93.241.19 port 55526 ssh2	2020-09-16 07:30:54
142.93.241.19	attack	Invalid user gui from 142.93.241.19 port 50894	2020-08-30 13:12:37
142.93.241.19	attackspambots	2020-08-22T15:40:33.700440mail.standpoint.com.ua sshd[25015]: Invalid user plex from 142.93.241.19 port 42132 2020-08-22T15:40:33.703665mail.standpoint.com.ua sshd[25015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.241.19 2020-08-22T15:40:33.700440mail.standpoint.com.ua sshd[25015]: Invalid user plex from 142.93.241.19 port 42132 2020-08-22T15:40:35.652343mail.standpoint.com.ua sshd[25015]: Failed password for invalid user plex from 142.93.241.19 port 42132 ssh2 2020-08-22T15:44:00.903180mail.standpoint.com.ua sshd[25476]: Invalid user sinusbot from 142.93.241.19 port 50214 ...	2020-08-22 20:54:22
142.93.241.19	attackbots	2020-08-19T04:51:06.917019shield sshd\[27971\]: Invalid user jeronimo from 142.93.241.19 port 43714 2020-08-19T04:51:06.926259shield sshd\[27971\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.241.19 2020-08-19T04:51:08.724847shield sshd\[27971\]: Failed password for invalid user jeronimo from 142.93.241.19 port 43714 ssh2 2020-08-19T04:54:55.407211shield sshd\[28371\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.241.19 user=root 2020-08-19T04:54:57.642239shield sshd\[28371\]: Failed password for root from 142.93.241.19 port 53950 ssh2	2020-08-19 13:03:28
142.93.241.93	attackspambots	Invalid user admin from 142.93.241.93 port 51394	2020-03-14 02:23:53
142.93.241.93	attack	Mar 5 21:49:02 tdfoods sshd\[29041\]: Invalid user jackson from 142.93.241.93 Mar 5 21:49:02 tdfoods sshd\[29041\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mobilia.com.pe Mar 5 21:49:04 tdfoods sshd\[29041\]: Failed password for invalid user jackson from 142.93.241.93 port 42600 ssh2 Mar 5 21:52:59 tdfoods sshd\[29343\]: Invalid user aion from 142.93.241.93 Mar 5 21:52:59 tdfoods sshd\[29343\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mobilia.com.pe	2020-03-06 16:02:55
142.93.241.93	attackspambots	Invalid user sonar from 142.93.241.93 port 50346 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.241.93 Failed password for invalid user sonar from 142.93.241.93 port 50346 ssh2 Invalid user smbuser from 142.93.241.93 port 55790 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.241.93	2020-03-05 13:53:14
142.93.241.93	attackspambots	$f2bV_matches	2020-03-03 14:53:37

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.241.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58131
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.93.241.53.			IN	A

;; AUTHORITY SECTION:
.			215	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091500 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 16 01:08:10 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 53.241.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 53.241.93.142.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
52.174.81.61	attackspam	Apr 25 21:53:08 vps647732 sshd[9708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.174.81.61 Apr 25 21:53:10 vps647732 sshd[9708]: Failed password for invalid user adelheid from 52.174.81.61 port 36148 ssh2 ...	2020-04-26 04:12:00
158.69.172.231	attackspambots	abcdata-sys.de:80 158.69.172.231 - - [25/Apr/2020:14:09:51 +0200] "POST /xmlrpc.php HTTP/1.0" 301 497 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36" www.goldgier.de 158.69.172.231 [25/Apr/2020:14:09:53 +0200] "POST /xmlrpc.php HTTP/1.0" 200 3899 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_3) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36"	2020-04-26 04:26:55
187.33.235.50	attackbotsspam	Unauthorized connection attempt from IP address 187.33.235.50 on Port 445(SMB)	2020-04-26 04:09:35
162.243.50.8	attack	Apr 25 14:21:32 ip-172-31-61-156 sshd[6827]: Invalid user madssen from 162.243.50.8 Apr 25 14:21:33 ip-172-31-61-156 sshd[6827]: Failed password for invalid user madssen from 162.243.50.8 port 34640 ssh2 Apr 25 14:21:32 ip-172-31-61-156 sshd[6827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.50.8 Apr 25 14:21:32 ip-172-31-61-156 sshd[6827]: Invalid user madssen from 162.243.50.8 Apr 25 14:21:33 ip-172-31-61-156 sshd[6827]: Failed password for invalid user madssen from 162.243.50.8 port 34640 ssh2 ...	2020-04-26 04:28:41
122.176.52.13	attack	Apr 25 22:04:57 v22018086721571380 sshd[32086]: Failed password for invalid user ep from 122.176.52.13 port 20610 ssh2	2020-04-26 04:07:12
142.93.52.3	attackspam	$f2bV_matches	2020-04-26 04:44:57
106.13.31.119	attack	Apr 21 21:31:01 server4-pi sshd[12439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.31.119 Apr 21 21:31:04 server4-pi sshd[12439]: Failed password for invalid user ubuntu from 106.13.31.119 port 47850 ssh2	2020-04-26 04:11:29
193.112.112.78	attackbots	2020-04-25T18:15:42.122651ionos.janbro.de sshd[68113]: Invalid user andreas from 193.112.112.78 port 45402 2020-04-25T18:15:44.507725ionos.janbro.de sshd[68113]: Failed password for invalid user andreas from 193.112.112.78 port 45402 ssh2 2020-04-25T18:25:19.358171ionos.janbro.de sshd[68139]: Invalid user idenya from 193.112.112.78 port 37582 2020-04-25T18:25:19.721698ionos.janbro.de sshd[68139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.112.78 2020-04-25T18:25:19.358171ionos.janbro.de sshd[68139]: Invalid user idenya from 193.112.112.78 port 37582 2020-04-25T18:25:21.245037ionos.janbro.de sshd[68139]: Failed password for invalid user idenya from 193.112.112.78 port 37582 ssh2 2020-04-25T18:30:15.001076ionos.janbro.de sshd[68169]: Invalid user minecraft from 193.112.112.78 port 49008 2020-04-25T18:30:15.102891ionos.janbro.de sshd[68169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112. ...	2020-04-26 04:17:02
192.99.70.208	attackspambots	fail2ban/Apr 25 21:22:28 h1962932 sshd[28466]: Invalid user nagios from 192.99.70.208 port 50152 Apr 25 21:22:28 h1962932 sshd[28466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.ip-192-99-70.net Apr 25 21:22:28 h1962932 sshd[28466]: Invalid user nagios from 192.99.70.208 port 50152 Apr 25 21:22:29 h1962932 sshd[28466]: Failed password for invalid user nagios from 192.99.70.208 port 50152 ssh2 Apr 25 21:30:17 h1962932 sshd[28733]: Invalid user bull from 192.99.70.208 port 51468	2020-04-26 04:29:41
45.32.28.219	attackbotsspam	Apr 25 22:15:51 mail sshd[19922]: Invalid user webmaster from 45.32.28.219 Apr 25 22:15:51 mail sshd[19922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.32.28.219 Apr 25 22:15:51 mail sshd[19922]: Invalid user webmaster from 45.32.28.219 Apr 25 22:15:53 mail sshd[19922]: Failed password for invalid user webmaster from 45.32.28.219 port 59020 ssh2 Apr 25 22:28:34 mail sshd[21734]: Invalid user servers from 45.32.28.219 ...	2020-04-26 04:33:09
101.251.193.10	attack	Apr 26 01:28:27 gw1 sshd[15108]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.251.193.10 Apr 26 01:28:28 gw1 sshd[15108]: Failed password for invalid user vncuser from 101.251.193.10 port 53976 ssh2 ...	2020-04-26 04:39:46
178.154.200.123	attackspambots	[Sun Apr 26 03:28:29.915510 2020] [:error] [pid 4636:tid 140006048405248] [client 178.154.200.123:34050] [client 178.154.200.123] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XqSdbVUh@3zwuUEMiFVzyQAAAkk"] ...	2020-04-26 04:37:35
122.165.247.254	attackbotsspam	firewall-block, port(s): 29382/tcp	2020-04-26 04:16:06
180.137.148.115	attackbots	20/4/25@16:28:22: FAIL: IoT-Telnet address from=180.137.148.115 ...	2020-04-26 04:44:06
138.197.145.26	attack	(sshd) Failed SSH login from 138.197.145.26 (CA/Canada/-): 5 in the last 3600 secs	2020-04-26 04:40:35

Recently Reported IPs

165.227.25.94	139.59.159.130	2.59.21.128	194.31.162.79
123.218.60.176	1.116.40.192	51.38.191.78	198.46.166.120
60.37.190.107	103.178.204.201	175.162.172.96	195.178.120.117
117.82.36.32	95.164.232.11	159.203.64.132	123.185.229.19
223.13.68.100	185.213.242.251	45.137.43.18	107.175.130.56