142.93.34.160 - IPInfo

Basic Info

City: London

Region: England

Country: United Kingdom

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
142.93.34.237	attackbots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-10-01 18:50:53
142.93.34.237	attack	scans 2 times in preceeding hours on the ports (in chronological order) 2812 2812	2020-09-20 22:48:04
142.93.34.237	attackbotsspam	(sshd) Failed SSH login from 142.93.34.237 (GB/United Kingdom/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 20 02:32:21 optimus sshd[18174]: Invalid user postgres from 142.93.34.237 Sep 20 02:32:21 optimus sshd[18174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.34.237 Sep 20 02:32:23 optimus sshd[18174]: Failed password for invalid user postgres from 142.93.34.237 port 53744 ssh2 Sep 20 02:34:07 optimus sshd[19447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.34.237 user=root Sep 20 02:34:09 optimus sshd[19447]: Failed password for root from 142.93.34.237 port 47652 ssh2	2020-09-20 14:39:11
142.93.34.237	attackbots	[ssh] SSH attack	2020-09-20 06:38:03
142.93.34.237	attack	Sep 9 08:23:48 root sshd[32474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.34.237 ...	2020-09-09 20:18:07
142.93.34.237	attackbots	Port scan denied	2020-09-09 14:15:06
142.93.34.237	attackspam	(sshd) Failed SSH login from 142.93.34.237 (GB/United Kingdom/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 8 17:44:52 server2 sshd[5793]: Invalid user opc from 142.93.34.237 Sep 8 17:44:52 server2 sshd[5793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.34.237 Sep 8 17:44:54 server2 sshd[5793]: Failed password for invalid user opc from 142.93.34.237 port 48194 ssh2 Sep 8 17:50:46 server2 sshd[9000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.34.237 user=root Sep 8 17:50:48 server2 sshd[9000]: Failed password for root from 142.93.34.237 port 45140 ssh2	2020-09-09 06:26:28
142.93.34.237	attackspambots	TCP port : 5290	2020-09-02 22:11:05
142.93.34.237	attackbotsspam	Port scan denied	2020-09-02 14:01:13
142.93.34.237	attackspambots	Invalid user mongo from 142.93.34.237 port 43272	2020-09-02 07:02:07
142.93.34.237	attackspam	Aug 30 07:54:05 lukav-desktop sshd\[20305\]: Invalid user sftp from 142.93.34.237 Aug 30 07:54:05 lukav-desktop sshd\[20305\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.34.237 Aug 30 07:54:08 lukav-desktop sshd\[20305\]: Failed password for invalid user sftp from 142.93.34.237 port 39110 ssh2 Aug 30 07:58:01 lukav-desktop sshd\[20345\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.34.237 user=root Aug 30 07:58:03 lukav-desktop sshd\[20345\]: Failed password for root from 142.93.34.237 port 47702 ssh2	2020-08-30 13:11:32
142.93.34.169	attackbotsspam	142.93.34.169 - - [24/Aug/2020:05:43:57 +0100] "POST /wp-login.php HTTP/1.1" 200 1996 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.34.169 - - [24/Aug/2020:05:43:58 +0100] "POST /wp-login.php HTTP/1.1" 200 1949 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.34.169 - - [24/Aug/2020:05:43:59 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-24 14:39:17
142.93.34.237	attackbotsspam	Invalid user demo from 142.93.34.237 port 45858	2020-08-22 06:25:00
142.93.34.169	attackbots	Attempt to hack Wordpress Login, XMLRPC or other login	2020-08-19 19:16:09
142.93.34.237	attack	Aug 18 12:30:05 vps-51d81928 sshd[708386]: Failed password for invalid user yuxin from 142.93.34.237 port 47050 ssh2 Aug 18 12:34:05 vps-51d81928 sshd[708526]: Invalid user josh from 142.93.34.237 port 55404 Aug 18 12:34:05 vps-51d81928 sshd[708526]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.34.237 Aug 18 12:34:05 vps-51d81928 sshd[708526]: Invalid user josh from 142.93.34.237 port 55404 Aug 18 12:34:07 vps-51d81928 sshd[708526]: Failed password for invalid user josh from 142.93.34.237 port 55404 ssh2 ...	2020-08-18 22:29:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.34.160
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64195
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.34.160.			IN	A

;; AUTHORITY SECTION:
.			270	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022002 1800 900 604800 86400

;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 21 06:07:47 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 160.34.93.142.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 160.34.93.142.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.132.1.52	attackspam	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-07-08 00:12:40
46.105.132.53	attackbotsspam	IP 46.105.132.53 attacked honeypot on port: 9200 at 7/7/2020 4:59:39 AM	2020-07-08 00:14:59
80.78.248.146	attackspambots	" "	2020-07-07 23:53:32
43.239.155.45	attack	Auto Detect gjan.info's Rule! This IP has been detected by automatic rule.	2020-07-07 23:55:24
36.155.115.95	attack	Jul 7 13:59:47 serwer sshd\[26779\]: Invalid user wang from 36.155.115.95 port 37083 Jul 7 13:59:47 serwer sshd\[26779\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.115.95 Jul 7 13:59:49 serwer sshd\[26779\]: Failed password for invalid user wang from 36.155.115.95 port 37083 ssh2 ...	2020-07-08 00:19:35
157.55.39.71	attackspambots	Automatic report - Banned IP Access	2020-07-08 00:18:37
49.235.151.50	attackbotsspam	2020-07-07T15:41:56.394648amanda2.illicoweb.com sshd\[26988\]: Invalid user word from 49.235.151.50 port 38836 2020-07-07T15:41:56.396848amanda2.illicoweb.com sshd\[26988\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.151.50 2020-07-07T15:41:58.390433amanda2.illicoweb.com sshd\[26988\]: Failed password for invalid user word from 49.235.151.50 port 38836 ssh2 2020-07-07T15:46:33.557262amanda2.illicoweb.com sshd\[27454\]: Invalid user user from 49.235.151.50 port 51460 2020-07-07T15:46:33.562297amanda2.illicoweb.com sshd\[27454\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.151.50 ...	2020-07-08 00:12:09
45.152.126.134	attack	Received: from [45.152.126.134] (helo=engineersedge.com) by ... Subject: Ausziehbare Leitern Message-ID: <111111111111111111@leiterprofis.com> From: "Sven Franke" Reply-To: hutxalegnou@mailforce.net X-SpamExperts-Class: spam X-SpamExperts-Evidence: dnsbl/ip-02.rbl.spamrl.com	2020-07-08 00:08:24
200.29.105.12	attackspam	Jul 6 11:53:42 cumulus sshd[9522]: Invalid user testuser5 from 200.29.105.12 port 40110 Jul 6 11:53:42 cumulus sshd[9522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.29.105.12 Jul 6 11:53:44 cumulus sshd[9522]: Failed password for invalid user testuser5 from 200.29.105.12 port 40110 ssh2 Jul 6 11:53:44 cumulus sshd[9522]: Received disconnect from 200.29.105.12 port 40110:11: Bye Bye [preauth] Jul 6 11:53:44 cumulus sshd[9522]: Disconnected from 200.29.105.12 port 40110 [preauth] Jul 6 11:57:13 cumulus sshd[9836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.29.105.12 user=r.r Jul 6 11:57:15 cumulus sshd[9836]: Failed password for r.r from 200.29.105.12 port 60260 ssh2 Jul 6 11:57:15 cumulus sshd[9836]: Received disconnect from 200.29.105.12 port 60260:11: Bye Bye [preauth] Jul 6 11:57:15 cumulus sshd[9836]: Disconnected from 200.29.105.12 port 60260 [preauth] ........ -----------------------------------	2020-07-07 23:57:56
92.63.196.28	attack	07/07/2020-09:36:31.352993 92.63.196.28 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-07-08 00:03:54
193.112.143.80	attack	Jul 7 15:12:59 lnxweb61 sshd[1429]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.143.80	2020-07-08 00:15:13
45.145.64.100	attackbots	Blocked for SQL Injection in query string: term=flat-fee	2020-07-07 23:52:08
222.221.248.242	attack	DATE:2020-07-07 14:00:10, IP:222.221.248.242, PORT:ssh SSH brute force auth (docker-dc)	2020-07-07 23:56:17
91.240.118.61	attack	Jul 7 18:18:24 debian-2gb-nbg1-2 kernel: \[16397307.070891\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=91.240.118.61 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=34246 PROTO=TCP SPT=41142 DPT=3398 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-08 00:21:09
194.61.24.94	attackbots	194.61.24.94 - - [07/Jul/2020:13:11:49 +0000] "GET /adminer-4.4.0-mysql-en.php HTTP/1.1" 404 224 "-" "-"	2020-07-08 00:10:48

Recently Reported IPs

126.74.16.217	189.89.14.187	201.146.14.230	118.113.159.151
67.165.62.212	122.139.239.112	207.41.127.213	59.166.7.114
68.27.238.22	5.21.62.12	73.198.173.230	12.114.58.6
80.137.39.38	83.188.64.187	213.122.209.129	47.44.223.110
182.161.182.21	39.189.48.252	153.169.246.40	88.64.138.43