136.243.142.18

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: Hetzner Online AG

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Oct 6 19:20:34 ajax sshd[12039]: Failed password for root from 136.243.142.18 port 45458 ssh2	2020-10-07 02:49:24
attack	Oct 6 10:54:00 ms-srv sshd[16250]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=136.243.142.18 user=root Oct 6 10:54:03 ms-srv sshd[16250]: Failed password for invalid user root from 136.243.142.18 port 33542 ssh2	2020-10-06 18:48:25

Type

Details

Datetime

attackspambots

Oct  6 19:20:34 ajax sshd[12039]: Failed password for root from 136.243.142.18 port 45458 ssh2

2020-10-07 02:49:24

attack

Oct  6 10:54:00 ms-srv sshd[16250]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=136.243.142.18  user=root
Oct  6 10:54:03 ms-srv sshd[16250]: Failed password for invalid user root from 136.243.142.18 port 33542 ssh2

2020-10-06 18:48:25

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 136.243.142.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31558
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;136.243.142.18.			IN	A

;; AUTHORITY SECTION:
.			528	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020100600 1800 900 604800 86400

;; Query time: 86 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 06 18:48:20 CST 2020
;; MSG SIZE  rcvd: 118

Host info

18.142.243.136.in-addr.arpa domain name pointer trafspin.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
18.142.243.136.in-addr.arpa	name = trafspin.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.68.192.106	attack	Dec 17 17:32:08 MK-Soft-VM7 sshd[8672]: Failed password for root from 51.68.192.106 port 48530 ssh2 ...	2019-12-18 00:53:32
111.206.87.230	attack	Dec 17 17:05:42 microserver sshd[6340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.206.87.230 user=root Dec 17 17:05:43 microserver sshd[6340]: Failed password for root from 111.206.87.230 port 50200 ssh2 Dec 17 17:12:23 microserver sshd[7298]: Invalid user yajima from 111.206.87.230 port 60988 Dec 17 17:12:23 microserver sshd[7298]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.206.87.230 Dec 17 17:12:24 microserver sshd[7298]: Failed password for invalid user yajima from 111.206.87.230 port 60988 ssh2 Dec 17 17:58:16 microserver sshd[14594]: Invalid user adils from 111.206.87.230 port 55548 Dec 17 17:58:16 microserver sshd[14594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.206.87.230 Dec 17 17:58:18 microserver sshd[14594]: Failed password for invalid user adils from 111.206.87.230 port 55548 ssh2 Dec 17 18:05:12 microserver sshd[15875]: Invalid user bronco from 11	2019-12-18 00:44:05
59.153.74.43	attack	Dec 17 06:29:59 auw2 sshd\[11676\]: Invalid user tom from 59.153.74.43 Dec 17 06:29:59 auw2 sshd\[11676\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.153.74.43 Dec 17 06:30:01 auw2 sshd\[11676\]: Failed password for invalid user tom from 59.153.74.43 port 41814 ssh2 Dec 17 06:37:21 auw2 sshd\[12451\]: Invalid user pacopro from 59.153.74.43 Dec 17 06:37:21 auw2 sshd\[12451\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.153.74.43	2019-12-18 00:51:55
163.172.60.213	attackspam	wp-login.php	2019-12-18 00:56:50
177.170.157.182	attackspam	Unauthorized connection attempt detected from IP address 177.170.157.182 to port 445	2019-12-18 00:59:05
120.85.207.213	attackspambots	Dec 17 17:00:33 mail1 sshd[28017]: Invalid user zabbix from 120.85.207.213 port 2970 Dec 17 17:00:33 mail1 sshd[28017]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.85.207.213 Dec 17 17:00:35 mail1 sshd[28017]: Failed password for invalid user zabbix from 120.85.207.213 port 2970 ssh2 Dec 17 17:00:36 mail1 sshd[28017]: Received disconnect from 120.85.207.213 port 2970:11: Normal Shutdown, Thank you for playing [preauth] Dec 17 17:00:36 mail1 sshd[28017]: Disconnected from 120.85.207.213 port 2970 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=120.85.207.213	2019-12-18 00:38:35
103.57.210.12	attack	Dec 17 18:01:33 icinga sshd[7192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.57.210.12 Dec 17 18:01:35 icinga sshd[7192]: Failed password for invalid user admin from 103.57.210.12 port 60214 ssh2 ...	2019-12-18 01:10:51
95.110.227.64	attack	Dec 17 15:24:25 ns381471 sshd[27858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.110.227.64 Dec 17 15:24:27 ns381471 sshd[27858]: Failed password for invalid user gx from 95.110.227.64 port 51164 ssh2	2019-12-18 01:12:09
102.114.74.214	attackspam	Dec 17 17:11:28 h2034429 sshd[29014]: Invalid user pi from 102.114.74.214 Dec 17 17:11:28 h2034429 sshd[29016]: Invalid user pi from 102.114.74.214 Dec 17 17:11:29 h2034429 sshd[29014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.114.74.214 Dec 17 17:11:29 h2034429 sshd[29016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.114.74.214 Dec 17 17:11:30 h2034429 sshd[29014]: Failed password for invalid user pi from 102.114.74.214 port 47250 ssh2 Dec 17 17:11:30 h2034429 sshd[29016]: Failed password for invalid user pi from 102.114.74.214 port 47254 ssh2 Dec 17 17:11:31 h2034429 sshd[29014]: Connection closed by 102.114.74.214 port 47250 [preauth] Dec 17 17:11:31 h2034429 sshd[29016]: Connection closed by 102.114.74.214 port 47254 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=102.114.74.214	2019-12-18 00:42:33
218.92.0.170	attackspambots	Dec 17 17:49:56 eventyay sshd[24195]: Failed password for root from 218.92.0.170 port 48168 ssh2 Dec 17 17:49:59 eventyay sshd[24195]: Failed password for root from 218.92.0.170 port 48168 ssh2 Dec 17 17:50:03 eventyay sshd[24195]: Failed password for root from 218.92.0.170 port 48168 ssh2 Dec 17 17:50:09 eventyay sshd[24195]: error: maximum authentication attempts exceeded for root from 218.92.0.170 port 48168 ssh2 [preauth] ...	2019-12-18 00:56:04
192.3.25.92	attackspambots	Dec 17 17:02:21 localhost sshd\[75566\]: Invalid user cristiano from 192.3.25.92 port 39841 Dec 17 17:02:21 localhost sshd\[75566\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.3.25.92 Dec 17 17:02:23 localhost sshd\[75566\]: Failed password for invalid user cristiano from 192.3.25.92 port 39841 ssh2 Dec 17 17:05:07 localhost sshd\[75657\]: Invalid user isar from 192.3.25.92 port 53621 Dec 17 17:05:07 localhost sshd\[75657\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.3.25.92 ...	2019-12-18 01:18:28
119.29.62.104	attack	Dec 17 16:43:50 mail sshd\[1840\]: Invalid user pass666 from 119.29.62.104 Dec 17 16:43:50 mail sshd\[1840\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.62.104 Dec 17 16:43:51 mail sshd\[1840\]: Failed password for invalid user pass666 from 119.29.62.104 port 57812 ssh2 ...	2019-12-18 00:33:23
185.156.73.66	attackbots	12/17/2019-12:08:36.182655 185.156.73.66 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-12-18 01:19:01
49.88.112.113	attackbotsspam	Dec 17 11:47:25 plusreed sshd[22985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Dec 17 11:47:26 plusreed sshd[22985]: Failed password for root from 49.88.112.113 port 54164 ssh2 ...	2019-12-18 00:47:40
46.105.209.45	attack	Dec 17 17:29:10 mail postfix/smtpd[7307]: warning: ip45.ip-46-105-209.eu[46.105.209.45]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 17 17:29:10 mail postfix/smtpd[8747]: warning: ip45.ip-46-105-209.eu[46.105.209.45]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 17 17:29:10 mail postfix/smtpd[8748]: warning: ip45.ip-46-105-209.eu[46.105.209.45]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 17 17:29:10 mail postfix/smtpd[8745]: warning: ip45.ip-46-105-209.eu[46.105.209.45]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 17 17:29:10 mail postfix/smtpd[7375]: warning: ip45.ip-46-105-209.eu[46.105.209.45]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 17 17:29:10 mail postfix/smtpd[8760]: warning: ip45.ip-46-105-209.eu[46.105.209.45]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-12-18 00:50:01

Recently Reported IPs

246.242.216.245	80.158.206.230	62.18.206.109	84.177.231.230
45.145.185.13	246.16.252.19	169.9.28.137	81.239.31.224
45.72.26.165	35.92.97.157	67.76.170.30	170.86.44.250
219.83.132.17	90.180.207.135	188.131.219.110	188.131.218.232
58.87.127.192	45.112.69.185	198.251.55.159	181.214.88.151