142.93.5.8 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
142.93.57.255	attackbotsspam	SSH Invalid Login	2020-10-04 08:43:33
142.93.57.255	attackspambots	Oct 3 12:39:37 ajax sshd[992]: Failed password for root from 142.93.57.255 port 50358 ssh2 Oct 3 12:43:06 ajax sshd[2268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.57.255	2020-10-04 01:16:13
142.93.56.57	attackbots	(sshd) Failed SSH login from 142.93.56.57 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 30 09:49:45 server2 sshd[25809]: Invalid user admin from 142.93.56.57 Sep 30 09:49:45 server2 sshd[25809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.56.57 Sep 30 09:49:47 server2 sshd[25809]: Failed password for invalid user admin from 142.93.56.57 port 37282 ssh2 Sep 30 09:56:44 server2 sshd[32255]: Invalid user tom from 142.93.56.57 Sep 30 09:56:44 server2 sshd[32255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.56.57	2020-10-01 05:09:32
142.93.56.57	attackspambots	Failed password for root from 142.93.56.57 port 48550 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.56.57 Failed password for invalid user postgres from 142.93.56.57 port 58374 ssh2	2020-09-30 21:26:13
142.93.56.57	attack	Port scan denied	2020-09-30 13:56:15
142.93.56.57	attackspam	Sep 23 11:14:34 marvibiene sshd[16992]: Failed password for root from 142.93.56.57 port 45518 ssh2	2020-09-23 20:45:09
142.93.56.57	attackbots	Sep 23 05:55:04 pve1 sshd[4970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.56.57 Sep 23 05:55:06 pve1 sshd[4970]: Failed password for invalid user hadoop from 142.93.56.57 port 57504 ssh2 ...	2020-09-23 13:05:32
142.93.56.57	attack	sshd jail - ssh hack attempt	2020-09-23 04:52:26
142.93.52.174	attackspam	142.93.52.174 - - [21/Sep/2020:20:43:25 +0200] "POST /xmlrpc.php HTTP/1.1" 403 613 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.52.174 - - [21/Sep/2020:20:55:53 +0200] "POST /xmlrpc.php HTTP/1.1" 403 613 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-22 03:16:06
142.93.52.174	attack	142.93.52.174 - - [21/Sep/2020:12:12:36 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.52.174 - - [21/Sep/2020:12:12:37 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.52.174 - - [21/Sep/2020:12:12:39 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-21 19:01:02
142.93.57.255	attackspam	Sep 21 01:19:47 localhost sshd[4110198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.57.255 user=root Sep 21 01:19:48 localhost sshd[4110198]: Failed password for root from 142.93.57.255 port 49852 ssh2 ...	2020-09-21 01:48:31
142.93.57.255	attackspambots	Sep 20 10:24:54 rocket sshd[11164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.57.255 Sep 20 10:24:56 rocket sshd[11164]: Failed password for invalid user demouser from 142.93.57.255 port 49590 ssh2 ...	2020-09-20 17:48:00
142.93.56.57	attackbotsspam	Sep 19 19:30:03 vm1 sshd[19839]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.56.57 Sep 19 19:30:06 vm1 sshd[19839]: Failed password for invalid user admin2 from 142.93.56.57 port 45438 ssh2 ...	2020-09-20 03:23:44
142.93.56.57	attackspam	Sep 19 13:05:59 buvik sshd[9207]: Invalid user service from 142.93.56.57 Sep 19 13:05:59 buvik sshd[9207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.56.57 Sep 19 13:06:01 buvik sshd[9207]: Failed password for invalid user service from 142.93.56.57 port 43794 ssh2 ...	2020-09-19 19:25:18
142.93.52.3	attackbots	142.93.52.3 (US/United States/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 16 07:43:32 server2 sshd[30326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.132.211 user=root Sep 16 07:43:34 server2 sshd[30326]: Failed password for root from 119.28.132.211 port 57056 ssh2 Sep 16 07:43:52 server2 sshd[30379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.217.161 user=root Sep 16 07:43:24 server2 sshd[30269]: Failed password for root from 142.93.52.3 port 60144 ssh2 Sep 16 07:43:19 server2 sshd[30128]: Failed password for root from 119.250.158.217 port 62043 ssh2 Sep 16 07:43:22 server2 sshd[30269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.52.3 user=root IP Addresses Blocked: 119.28.132.211 (HK/Hong Kong/-) 134.175.217.161 (CN/China/-)	2020-09-16 23:30:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.5.8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63452
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.93.5.8.			IN	A

;; AUTHORITY SECTION:
.			283	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022701 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 04:22:18 CST 2022
;; MSG SIZE  rcvd: 103

Host info

8.5.93.142.in-addr.arpa domain name pointer 197817.cloudwaysapps.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
8.5.93.142.in-addr.arpa	name = 197817.cloudwaysapps.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
68.183.178.162	attackbotsspam	2019-09-01T17:06:55.417168 sshd[22271]: Invalid user rc from 68.183.178.162 port 49968 2019-09-01T17:06:55.430129 sshd[22271]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.178.162 2019-09-01T17:06:55.417168 sshd[22271]: Invalid user rc from 68.183.178.162 port 49968 2019-09-01T17:06:57.383920 sshd[22271]: Failed password for invalid user rc from 68.183.178.162 port 49968 ssh2 2019-09-01T17:11:34.106040 sshd[22383]: Invalid user vp from 68.183.178.162 port 38154 ...	2019-09-02 00:43:53
140.148.225.225	attackbotsspam	REQUESTED PAGE: ../../mnt/custom/ProductDefinition	2019-09-02 01:20:06
103.89.90.196	attackspambots	2019-09-01T16:29:02.747566beta postfix/smtpd[20002]: warning: unknown[103.89.90.196]: SASL LOGIN authentication failed: authentication failure 2019-09-01T16:29:05.582179beta postfix/smtpd[20002]: warning: unknown[103.89.90.196]: SASL LOGIN authentication failed: authentication failure 2019-09-01T16:29:08.971582beta postfix/smtpd[20002]: warning: unknown[103.89.90.196]: SASL LOGIN authentication failed: authentication failure ...	2019-09-02 01:33:32
142.93.81.77	attackbotsspam	Aug 31 10:01:13 itv-usvr-01 sshd[26849]: Invalid user admin from 142.93.81.77 Aug 31 10:01:13 itv-usvr-01 sshd[26849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.81.77 Aug 31 10:01:13 itv-usvr-01 sshd[26849]: Invalid user admin from 142.93.81.77 Aug 31 10:01:15 itv-usvr-01 sshd[26849]: Failed password for invalid user admin from 142.93.81.77 port 58580 ssh2	2019-09-02 01:00:21
219.84.203.57	attackbotsspam	$f2bV_matches	2019-09-02 01:07:16
159.65.4.86	attackbots	Sep 1 18:27:37 ncomp sshd[31874]: Invalid user net from 159.65.4.86 Sep 1 18:27:37 ncomp sshd[31874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.4.86 Sep 1 18:27:37 ncomp sshd[31874]: Invalid user net from 159.65.4.86 Sep 1 18:27:39 ncomp sshd[31874]: Failed password for invalid user net from 159.65.4.86 port 44860 ssh2	2019-09-02 01:06:35
134.73.76.221	attackspambots	Spam mails sent to address hacked/leaked from Nexus Mods in July 2013	2019-09-02 01:07:57
79.10.1.45	attackbotsspam	Autoban 79.10.1.45 AUTH/CONNECT	2019-09-02 01:05:37
185.128.143.162	attackspambots	router hack attempt	2019-09-02 01:33:59
120.132.6.27	attackbotsspam	Sep 1 22:42:16 localhost sshd[2931]: Invalid user marketing from 120.132.6.27 port 45898 Sep 1 22:42:17 localhost sshd[2931]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.6.27 Sep 1 22:42:16 localhost sshd[2931]: Invalid user marketing from 120.132.6.27 port 45898 Sep 1 22:42:18 localhost sshd[2931]: Failed password for invalid user marketing from 120.132.6.27 port 45898 ssh2 ...	2019-09-02 00:28:42
112.85.42.172	attack	$f2bV_matches	2019-09-02 00:44:32
106.52.231.160	attack	Sep 1 06:30:09 ws19vmsma01 sshd[232694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.231.160 Sep 1 06:30:11 ws19vmsma01 sshd[232694]: Failed password for invalid user mcserver from 106.52.231.160 port 42978 ssh2 ...	2019-09-02 00:29:42
194.88.204.163	attackspam	Sep 1 19:05:40 legacy sshd[17469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.88.204.163 Sep 1 19:05:42 legacy sshd[17469]: Failed password for invalid user pan from 194.88.204.163 port 56870 ssh2 Sep 1 19:11:11 legacy sshd[17622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.88.204.163 ...	2019-09-02 01:23:20
156.198.86.15	attackbots	Caught in portsentry honeypot	2019-09-02 01:39:06
101.128.203.211	attack	Sep 1 05:36:33 tdfoods sshd\[7539\]: Invalid user jenkins from 101.128.203.211 Sep 1 05:36:33 tdfoods sshd\[7539\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.203.128.101.dy.bbexcite.jp Sep 1 05:36:35 tdfoods sshd\[7539\]: Failed password for invalid user jenkins from 101.128.203.211 port 38614 ssh2 Sep 1 05:46:25 tdfoods sshd\[8499\]: Invalid user setup from 101.128.203.211 Sep 1 05:46:25 tdfoods sshd\[8499\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.203.128.101.dy.bbexcite.jp	2019-09-02 00:33:32

Recently Reported IPs

142.93.49.225	142.93.5.183	142.93.46.198	142.93.49.250
142.93.62.129	142.93.54.118	142.93.66.48	142.93.7.112
142.93.71.76	142.93.72.77	142.93.67.63	142.93.73.0
142.93.7.64	142.93.77.121	142.93.72.95	142.93.81.95
142.93.74.30	142.93.82.222	142.93.90.65	142.93.95.250