City: unknown
Region: unknown
Country: unknown
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 142.93.240.62 | spamattack | PHISHING AND SPAM ATTACK FROM "Important Notification - newsletter@app.ksinergy.biz - " : SUBJECT "Congrats! Open Immediately! " : RECEIVED "from mail-02.ksinergy.biz ([142.93.240.62]:39126) " : DATE/TIMESENT "Mon, 01 Mar 2021 10:14:52 ": IP ADDRESS "inetnum: 142.93.0.0 - 142.93.255.255 OrgName: DigitalOcean, LLC |
2021-03-01 08:16:37 |
| 142.93.240.62 | spamattack | PHISHING AND SPAM ATTACK FROM "Casino For You - newsletter@app.ksinergy.biz -" : SUBJECT "Join today and receive an amazing welcome bonus " : RECEIVED "from mail-02.ksinergy.biz ([142.93.240.62]:57421) " : DATE/TIMESENT "Tue, 23 Feb 2021 01:27:07 " |
2021-02-23 04:32:24 |
| 142.93.212.91 | attackbotsspam | SSH BruteForce Attack |
2020-10-13 01:56:49 |
| 142.93.237.57 | attack | Multiport scan 2 ports : 1583 27080 |
2020-10-12 21:16:28 |
| 142.93.212.91 | attack | Oct 12 10:23:09 localhost sshd\[19098\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.212.91 user=root Oct 12 10:23:11 localhost sshd\[19098\]: Failed password for root from 142.93.212.91 port 59394 ssh2 Oct 12 10:27:27 localhost sshd\[19552\]: Invalid user sanjeev from 142.93.212.91 Oct 12 10:27:27 localhost sshd\[19552\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.212.91 Oct 12 10:27:29 localhost sshd\[19552\]: Failed password for invalid user sanjeev from 142.93.212.91 port 36984 ssh2 ... |
2020-10-12 17:20:25 |
| 142.93.237.57 | attack | 1089/tcp 5984/tcp [2020-10-11]2pkt |
2020-10-12 12:46:46 |
| 142.93.211.36 | attackspambots | Oct 12 00:25:27 *hidden* sshd[869]: Failed password for *hidden* from 142.93.211.36 port 56534 ssh2 Oct 12 00:28:28 *hidden* sshd[1320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.211.36 user=root Oct 12 00:28:30 *hidden* sshd[1320]: Failed password for *hidden* from 142.93.211.36 port 40212 ssh2 |
2020-10-12 07:11:11 |
| 142.93.209.251 | attackbotsspam | Oct 11 22:07:55 v2202009116398126984 sshd[2515868]: Invalid user elke from 142.93.209.251 port 44534 ... |
2020-10-12 06:24:15 |
| 142.93.223.118 | attackspam | SSH login attempts. |
2020-10-12 04:12:31 |
| 142.93.211.36 | attackspam | Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF) |
2020-10-11 23:23:00 |
| 142.93.209.251 | attack | Oct 11 16:26:57 sso sshd[30604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 Oct 11 16:26:59 sso sshd[30604]: Failed password for invalid user chris from 142.93.209.251 port 59794 ssh2 ... |
2020-10-11 22:34:31 |
| 142.93.223.118 | attackspam | SSH login attempts. |
2020-10-11 20:11:30 |
| 142.93.211.36 | attack | Fail2Ban |
2020-10-11 15:21:45 |
| 142.93.209.251 | attackbots | (sshd) Failed SSH login from 142.93.209.251 (IN/India/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 00:54:24 optimus sshd[28004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 user=root Oct 11 00:54:27 optimus sshd[28004]: Failed password for root from 142.93.209.251 port 54930 ssh2 Oct 11 01:19:11 optimus sshd[6951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 user=root Oct 11 01:19:13 optimus sshd[6951]: Failed password for root from 142.93.209.251 port 56072 ssh2 Oct 11 01:24:49 optimus sshd[11852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.209.251 user=root |
2020-10-11 14:29:57 |
| 142.93.223.118 | attackspam | 2020-10-11T07:03:53.476597lavrinenko.info sshd[19701]: Failed password for root from 142.93.223.118 port 55582 ssh2 2020-10-11T07:07:58.292860lavrinenko.info sshd[19798]: Invalid user next from 142.93.223.118 port 33376 2020-10-11T07:07:58.302917lavrinenko.info sshd[19798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.223.118 2020-10-11T07:07:58.292860lavrinenko.info sshd[19798]: Invalid user next from 142.93.223.118 port 33376 2020-10-11T07:08:00.553715lavrinenko.info sshd[19798]: Failed password for invalid user next from 142.93.223.118 port 33376 ssh2 ... |
2020-10-11 12:10:33 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.2.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 320
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;142.93.2.12. IN A
;; AUTHORITY SECTION:
. 186 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400
;; Query time: 84 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 09:44:54 CST 2022
;; MSG SIZE rcvd: 104Host 12.2.93.142.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 12.2.93.142.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 139.155.26.79 | attack | Aug 27 18:24:41 mellenthin sshd[5373]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.26.79 Aug 27 18:24:43 mellenthin sshd[5373]: Failed password for invalid user mia from 139.155.26.79 port 36754 ssh2 |
2020-08-28 02:17:14 |
| 176.31.181.168 | attack | Invalid user wendi from 176.31.181.168 port 41142 |
2020-08-28 02:23:48 |
| 182.61.164.198 | attackbots | Failed password for invalid user ftpuser from 182.61.164.198 port 52195 ssh2 |
2020-08-28 02:05:36 |
| 142.93.11.162 | attackspambots | 142.93.11.162 - - [27/Aug/2020:14:50:35 +0100] "POST /wp/wp-login.php HTTP/1.1" 200 1865 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.11.162 - - [27/Aug/2020:14:50:36 +0100] "POST /wp/wp-login.php HTTP/1.1" 200 1846 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.11.162 - - [27/Aug/2020:14:50:37 +0100] "POST /wp/xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-08-28 02:22:22 |
| 45.142.120.53 | attackspam | 2020-08-27 20:38:58 dovecot_login authenticator failed for \(User\) \[45.142.120.53\]: 535 Incorrect authentication data \(set_id=logs@org.ua\)2020-08-27 20:39:34 dovecot_login authenticator failed for \(User\) \[45.142.120.53\]: 535 Incorrect authentication data \(set_id=socialize@org.ua\)2020-08-27 20:40:19 dovecot_login authenticator failed for \(User\) \[45.142.120.53\]: 535 Incorrect authentication data \(set_id=webmail.www@org.ua\) ... |
2020-08-28 01:51:18 |
| 185.101.139.238 | attackbotsspam | E-Mail Spam (RBL) [REJECTED] |
2020-08-28 02:19:57 |
| 129.28.78.8 | attackspambots | Aug 27 20:40:30 pkdns2 sshd\[40529\]: Invalid user bar from 129.28.78.8Aug 27 20:40:31 pkdns2 sshd\[40529\]: Failed password for invalid user bar from 129.28.78.8 port 51258 ssh2Aug 27 20:41:57 pkdns2 sshd\[40587\]: Failed password for mysql from 129.28.78.8 port 38640 ssh2Aug 27 20:43:24 pkdns2 sshd\[40701\]: Invalid user ecastro from 129.28.78.8Aug 27 20:43:27 pkdns2 sshd\[40701\]: Failed password for invalid user ecastro from 129.28.78.8 port 54256 ssh2Aug 27 20:44:54 pkdns2 sshd\[40781\]: Invalid user ubuntu from 129.28.78.8 ... |
2020-08-28 02:03:32 |
| 36.133.48.222 | attackspam | Aug 27 18:18:12 root sshd[19747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.133.48.222 Aug 27 18:18:14 root sshd[19747]: Failed password for invalid user demo from 36.133.48.222 port 43926 ssh2 Aug 27 18:32:35 root sshd[21560]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.133.48.222 ... |
2020-08-28 02:01:45 |
| 200.75.249.38 | attackbotsspam | 20/8/27@08:59:46: FAIL: IoT-Telnet address from=200.75.249.38 ... |
2020-08-28 01:46:03 |
| 51.75.123.7 | attackspam | php WP PHPmyadamin ABUSE blocked for 12h |
2020-08-28 01:48:07 |
| 159.89.197.1 | attackspam | Aug 27 14:52:32 web-main sshd[3342339]: Invalid user ubuntu from 159.89.197.1 port 33852 Aug 27 14:52:34 web-main sshd[3342339]: Failed password for invalid user ubuntu from 159.89.197.1 port 33852 ssh2 Aug 27 14:59:24 web-main sshd[3343219]: Invalid user luiz from 159.89.197.1 port 34272 |
2020-08-28 02:04:17 |
| 121.123.189.203 | attackspam | Invalid user hadi from 121.123.189.203 port 64108 |
2020-08-28 02:13:55 |
| 92.145.226.69 | attackbotsspam | Invalid user tiger from 92.145.226.69 port 60782 |
2020-08-28 02:02:23 |
| 222.186.30.59 | attack | 2020-08-27T19:43:47.664057vps773228.ovh.net sshd[19374]: Failed password for root from 222.186.30.59 port 31746 ssh2 2020-08-27T19:43:49.701824vps773228.ovh.net sshd[19374]: Failed password for root from 222.186.30.59 port 31746 ssh2 2020-08-27T19:43:52.016254vps773228.ovh.net sshd[19374]: Failed password for root from 222.186.30.59 port 31746 ssh2 2020-08-27T19:45:25.737706vps773228.ovh.net sshd[19390]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.59 user=root 2020-08-27T19:45:27.269864vps773228.ovh.net sshd[19390]: Failed password for root from 222.186.30.59 port 56724 ssh2 ... |
2020-08-28 02:04:47 |
| 139.59.59.102 | attackspam | 2020-08-27T02:20:25.762784hostname sshd[48222]: Failed password for invalid user javed from 139.59.59.102 port 39190 ssh2 ... |
2020-08-28 02:15:22 |