City: unknown
Region: unknown
Country: United States
Internet Service Provider: DigitalOcean LLC
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attackspam | Unauthorized connection attempt detected from IP address 142.93.167.254 to port 8088 [T] |
2020-01-21 04:13:25 |
| attackbots | Jan 15 10:22:45 debian-2gb-nbg1-2 kernel: \[1339464.139954\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=142.93.167.254 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=54321 PROTO=TCP SPT=41406 DPT=8088 WINDOW=65535 RES=0x00 SYN URGP=0 |
2020-01-15 18:33:56 |
| attack | Unauthorized connection attempt detected from IP address 142.93.167.254 to port 8088 |
2020-01-14 09:26:50 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 142.93.167.15 | attackspambots | Oct 13 15:48:41 ns308116 sshd[31987]: Invalid user saraki from 142.93.167.15 port 59792 Oct 13 15:48:41 ns308116 sshd[31987]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.167.15 Oct 13 15:48:43 ns308116 sshd[31987]: Failed password for invalid user saraki from 142.93.167.15 port 59792 ssh2 Oct 13 15:54:40 ns308116 sshd[32151]: Invalid user gary from 142.93.167.15 port 35222 Oct 13 15:54:40 ns308116 sshd[32151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.167.15 ... |
2020-10-14 01:08:08 |
| 142.93.167.15 | attackbotsspam | Oct 13 08:18:35 pornomens sshd\[30328\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.167.15 user=root Oct 13 08:18:37 pornomens sshd\[30328\]: Failed password for root from 142.93.167.15 port 60700 ssh2 Oct 13 08:25:54 pornomens sshd\[30453\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.167.15 user=root ... |
2020-10-13 16:18:54 |
| 142.93.167.15 | attackspambots | Oct 13 05:34:47 gw1 sshd[9174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.167.15 Oct 13 05:34:50 gw1 sshd[9174]: Failed password for invalid user space from 142.93.167.15 port 33896 ssh2 ... |
2020-10-13 08:52:06 |
| 142.93.167.34 | attack | Aug 21 14:44:18 vmd36147 sshd[5727]: Failed password for root from 142.93.167.34 port 35516 ssh2 Aug 21 14:44:28 vmd36147 sshd[6194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.167.34 ... |
2020-08-21 20:53:13 |
| 142.93.167.48 | attack | Feb 14 20:21:53 auw2 sshd\[2688\]: Invalid user 123password123 from 142.93.167.48 Feb 14 20:21:53 auw2 sshd\[2688\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.167.48 Feb 14 20:21:56 auw2 sshd\[2688\]: Failed password for invalid user 123password123 from 142.93.167.48 port 58420 ssh2 Feb 14 20:24:55 auw2 sshd\[2998\]: Invalid user teamspeak3 from 142.93.167.48 Feb 14 20:24:55 auw2 sshd\[2998\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.167.48 |
2020-02-15 14:25:14 |
| 142.93.167.36 | attack | 4782/tcp 4664/tcp 4444/tcp... [2020-01-09/27]10pkt,6pt.(tcp) |
2020-01-28 04:05:00 |
| 142.93.167.36 | attackbots | Unauthorized SSH login attempts |
2020-01-18 15:13:59 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.167.254
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55503
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.167.254. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019060500 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jun 05 13:52:16 CST 2019
;; MSG SIZE rcvd: 118
Host 254.167.93.142.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 67.207.67.2
Address: 67.207.67.2#53
** server can't find 254.167.93.142.in-addr.arpa: NXDOMAIN
| IP | Type | Details | Datetime |
|---|---|---|---|
| 74.63.232.2 | attackbotsspam | detected by Fail2Ban |
2019-07-09 03:35:31 |
| 103.52.221.249 | attack | Honeypot attack, port: 23, PTR: PTR record not found |
2019-07-09 03:43:40 |
| 103.204.84.86 | attackspambots | 8080/tcp [2019-07-08]1pkt |
2019-07-09 03:40:12 |
| 182.116.85.120 | attackbots | Honeypot attack, port: 23, PTR: hn.kd.ny.adsl. |
2019-07-09 03:39:20 |
| 58.40.26.126 | attackspambots | Multiple failed RDP login attempts |
2019-07-09 03:15:08 |
| 60.22.184.108 | attackbotsspam | Honeypot attack, port: 23, PTR: PTR record not found |
2019-07-09 03:43:00 |
| 162.247.74.7 | attackspambots | Malicious Traffic/Form Submission |
2019-07-09 03:34:19 |
| 78.229.158.27 | attackspambots | 2019-07-08T18:48:18.350101abusebot.cloudsearch.cf sshd\[22932\]: Invalid user pi from 78.229.158.27 port 54862 |
2019-07-09 03:25:52 |
| 223.197.216.112 | attackspambots | Automatic report - Web App Attack |
2019-07-09 03:27:00 |
| 43.228.71.149 | attack | Honeypot attack, port: 445, PTR: PTR record not found |
2019-07-09 03:31:37 |
| 68.160.224.34 | attack | Jul 8 14:32:44 *** sshd[14338]: Invalid user register from 68.160.224.34 port 45118 Jul 8 14:32:46 *** sshd[14338]: Failed password for invalid user register from 68.160.224.34 port 45118 ssh2 Jul 8 14:32:46 *** sshd[14338]: Received disconnect from 68.160.224.34 port 45118:11: Bye Bye [preauth] Jul 8 14:32:46 *** sshd[14338]: Disconnected from 68.160.224.34 port 45118 [preauth] Jul 8 14:34:48 *** sshd[15972]: Invalid user akio from 68.160.224.34 port 57534 Jul 8 14:34:50 *** sshd[15972]: Failed password for invalid user akio from 68.160.224.34 port 57534 ssh2 Jul 8 14:34:50 *** sshd[15972]: Received disconnect from 68.160.224.34 port 57534:11: Bye Bye [preauth] Jul 8 14:34:50 *** sshd[15972]: Disconnected from 68.160.224.34 port 57534 [preauth] Jul 8 14:36:19 *** sshd[17726]: Invalid user test01 from 68.160.224.34 port 38172 Jul 8 14:36:21 *** sshd[17726]: Failed password for invalid user test01 from 68.160.224.34 port 38172 ssh2 Jul 8 14:36:21 *** sshd[1772........ ------------------------------- |
2019-07-09 03:27:22 |
| 118.24.104.152 | attackspam | 2019-07-08T20:48:06.8510491240 sshd\[32118\]: Invalid user production from 118.24.104.152 port 54216 2019-07-08T20:48:06.8649841240 sshd\[32118\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.104.152 2019-07-08T20:48:09.1937691240 sshd\[32118\]: Failed password for invalid user production from 118.24.104.152 port 54216 ssh2 ... |
2019-07-09 03:30:29 |
| 156.217.209.207 | attack | Telnet/23 MH Probe, BF, Hack - |
2019-07-09 03:34:53 |
| 73.246.30.134 | attack | Jul 8 20:39:25 mail sshd\[1852\]: Invalid user fan from 73.246.30.134\ Jul 8 20:39:27 mail sshd\[1852\]: Failed password for invalid user fan from 73.246.30.134 port 58305 ssh2\ Jul 8 20:44:31 mail sshd\[1859\]: Invalid user enlace from 73.246.30.134\ Jul 8 20:44:33 mail sshd\[1859\]: Failed password for invalid user enlace from 73.246.30.134 port 41891 ssh2\ Jul 8 20:48:16 mail sshd\[1870\]: Invalid user administrador from 73.246.30.134\ Jul 8 20:48:17 mail sshd\[1870\]: Failed password for invalid user administrador from 73.246.30.134 port 50155 ssh2\ |
2019-07-09 03:26:19 |
| 190.175.139.251 | attackspambots | REQUESTED PAGE: /wp-login.php |
2019-07-09 03:10:04 |