City: unknown
Region: unknown
Country: unknown
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 142.93.240.62 | spamattack | PHISHING AND SPAM ATTACK FROM "Important Notification - newsletter@app.ksinergy.biz - " : SUBJECT "Congrats! Open Immediately! " : RECEIVED "from mail-02.ksinergy.biz ([142.93.240.62]:39126) " : DATE/TIMESENT "Mon, 01 Mar 2021 10:14:52 ": IP ADDRESS "inetnum: 142.93.0.0 - 142.93.255.255 OrgName: DigitalOcean, LLC |
2021-03-01 08:16:37 |
| 142.93.240.62 | spamattack | PHISHING AND SPAM ATTACK FROM "Casino For You - newsletter@app.ksinergy.biz -" : SUBJECT "Join today and receive an amazing welcome bonus " : RECEIVED "from mail-02.ksinergy.biz ([142.93.240.62]:57421) " : DATE/TIMESENT "Tue, 23 Feb 2021 01:27:07 " |
2021-02-23 04:32:24 |
| 142.93.212.91 | attackbotsspam | SSH BruteForce Attack |
2020-10-13 01:56:49 |
| 142.93.237.57 | attack | Multiport scan 2 ports : 1583 27080 |
2020-10-12 21:16:28 |
| 142.93.212.91 | attack | Oct 12 10:23:09 localhost sshd\[19098\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.212.91 user=root Oct 12 10:23:11 localhost sshd\[19098\]: Failed password for root from 142.93.212.91 port 59394 ssh2 Oct 12 10:27:27 localhost sshd\[19552\]: Invalid user sanjeev from 142.93.212.91 Oct 12 10:27:27 localhost sshd\[19552\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.212.91 Oct 12 10:27:29 localhost sshd\[19552\]: Failed password for invalid user sanjeev from 142.93.212.91 port 36984 ssh2 ... |
2020-10-12 17:20:25 |
| 142.93.237.57 | attack | 1089/tcp 5984/tcp [2020-10-11]2pkt |
2020-10-12 12:46:46 |
| 142.93.211.36 | attackspambots | Oct 12 00:25:27 *hidden* sshd[869]: Failed password for *hidden* from 142.93.211.36 port 56534 ssh2 Oct 12 00:28:28 *hidden* sshd[1320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.211.36 user=root Oct 12 00:28:30 *hidden* sshd[1320]: Failed password for *hidden* from 142.93.211.36 port 40212 ssh2 |
2020-10-12 07:11:11 |
| 142.93.209.251 | attackbotsspam | Oct 11 22:07:55 v2202009116398126984 sshd[2515868]: Invalid user elke from 142.93.209.251 port 44534 ... |
2020-10-12 06:24:15 |
| 142.93.223.118 | attackspam | SSH login attempts. |
2020-10-12 04:12:31 |
| 142.93.211.36 | attackspam | Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF) |
2020-10-11 23:23:00 |
| 142.93.209.251 | attack | Oct 11 16:26:57 sso sshd[30604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 Oct 11 16:26:59 sso sshd[30604]: Failed password for invalid user chris from 142.93.209.251 port 59794 ssh2 ... |
2020-10-11 22:34:31 |
| 142.93.223.118 | attackspam | SSH login attempts. |
2020-10-11 20:11:30 |
| 142.93.211.36 | attack | Fail2Ban |
2020-10-11 15:21:45 |
| 142.93.209.251 | attackbots | (sshd) Failed SSH login from 142.93.209.251 (IN/India/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 00:54:24 optimus sshd[28004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 user=root Oct 11 00:54:27 optimus sshd[28004]: Failed password for root from 142.93.209.251 port 54930 ssh2 Oct 11 01:19:11 optimus sshd[6951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 user=root Oct 11 01:19:13 optimus sshd[6951]: Failed password for root from 142.93.209.251 port 56072 ssh2 Oct 11 01:24:49 optimus sshd[11852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 user=root |
2020-10-11 14:29:57 |
| 142.93.223.118 | attackspam | 2020-10-11T07:03:53.476597lavrinenko.info sshd[19701]: Failed password for root from 142.93.223.118 port 55582 ssh2 2020-10-11T07:07:58.292860lavrinenko.info sshd[19798]: Invalid user next from 142.93.223.118 port 33376 2020-10-11T07:07:58.302917lavrinenko.info sshd[19798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.223.118 2020-10-11T07:07:58.292860lavrinenko.info sshd[19798]: Invalid user next from 142.93.223.118 port 33376 2020-10-11T07:08:00.553715lavrinenko.info sshd[19798]: Failed password for invalid user next from 142.93.223.118 port 33376 ssh2 ... |
2020-10-11 12:10:33 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.2.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 320
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;142.93.2.12. IN A
;; AUTHORITY SECTION:
. 186 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400
;; Query time: 84 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 09:44:54 CST 2022
;; MSG SIZE rcvd: 104
Host 12.2.93.142.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 12.2.93.142.in-addr.arpa: NXDOMAIN
| IP | Type | Details | Datetime |
|---|---|---|---|
| 117.55.241.2 | attack | SSH invalid-user multiple login attempts |
2019-07-05 10:03:18 |
| 134.209.157.162 | attackbotsspam | Jul 5 04:22:44 vtv3 sshd\[11900\]: Invalid user kan from 134.209.157.162 port 49774 Jul 5 04:22:44 vtv3 sshd\[11900\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.157.162 Jul 5 04:22:46 vtv3 sshd\[11900\]: Failed password for invalid user kan from 134.209.157.162 port 49774 ssh2 Jul 5 04:28:03 vtv3 sshd\[14360\]: Invalid user gitolite from 134.209.157.162 port 48720 Jul 5 04:28:03 vtv3 sshd\[14360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.157.162 Jul 5 04:38:13 vtv3 sshd\[19379\]: Invalid user nm from 134.209.157.162 port 40338 Jul 5 04:38:14 vtv3 sshd\[19379\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.157.162 Jul 5 04:38:16 vtv3 sshd\[19379\]: Failed password for invalid user nm from 134.209.157.162 port 40338 ssh2 Jul 5 04:40:50 vtv3 sshd\[21085\]: Invalid user ftpuser from 134.209.157.162 port 38486 Jul 5 04:40:50 vtv3 sshd\[2 |
2019-07-05 10:16:20 |
| 185.220.100.253 | attackspambots | Brute force attack stopped by firewall |
2019-07-05 10:28:17 |
| 92.118.160.37 | attackbots | Brute force attack stopped by firewall |
2019-07-05 10:22:59 |
| 185.53.88.37 | attackbotsspam | 05.07.2019 02:18:58 Connection to port 8030 blocked by firewall |
2019-07-05 10:26:57 |
| 198.108.66.33 | attackbots | Brute force attack stopped by firewall |
2019-07-05 10:24:35 |
| 37.49.225.220 | attackbots | Brute force attack stopped by firewall |
2019-07-05 10:03:52 |
| 198.108.66.145 | attackbotsspam | Brute force attack stopped by firewall |
2019-07-05 10:27:28 |
| 37.49.224.118 | attack | Brute force attack stopped by firewall |
2019-07-05 10:06:39 |
| 180.125.93.7 | attackspambots | 19/7/4@18:53:38: FAIL: IoT-Telnet address from=180.125.93.7 ... |
2019-07-05 10:14:08 |
| 195.154.61.206 | attack | Brute force attack stopped by firewall |
2019-07-05 10:12:50 |
| 211.176.125.70 | attack | Scanning unused Default website or suspicious access to valid sites from IP marked as abusive |
2019-07-05 10:38:40 |
| 197.45.68.231 | attackspambots | Automatic report - Web App Attack |
2019-07-05 10:36:27 |
| 118.25.46.228 | attackspam | Scanning unused Default website or suspicious access to valid sites from IP marked as abusive |
2019-07-05 10:43:08 |
| 210.190.168.90 | attack | Scanning unused Default website or suspicious access to valid sites from IP marked as abusive |
2019-07-05 10:26:38 |