City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 142.93.201.112 | attack | [N10.H2.VM2] Port Scanner Detected Blocked by UFW |
2020-08-11 01:25:04 |
| 142.93.201.112 | attack |
|
2020-08-08 04:11:37 |
| 142.93.201.112 | attackspam | 07/13/2020-10:59:02.940680 142.93.201.112 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-07-13 23:02:23 |
| 142.93.201.112 | attackbots | Jul 9 23:41:53 debian-2gb-nbg1-2 kernel: \[16589505.305724\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=142.93.201.112 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=16093 PROTO=TCP SPT=48956 DPT=9360 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-07-10 05:52:48 |
| 142.93.201.112 | attackbots | Port scan denied |
2020-05-27 17:31:10 |
| 142.93.201.112 | attack | " " |
2020-05-24 15:38:59 |
| 142.93.201.112 | attack | " " |
2020-05-08 21:02:26 |
| 142.93.201.112 | attackbotsspam | Apr 18 13:59:42 debian-2gb-nbg1-2 kernel: \[9470154.029182\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=142.93.201.112 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=20208 PROTO=TCP SPT=54543 DPT=2205 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-04-19 00:58:46 |
| 142.93.201.168 | attackbotsspam | Dec 27 10:36:41 v22018076590370373 sshd[11016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.201.168 ... |
2020-02-02 03:53:39 |
| 142.93.201.168 | attackbots | Unauthorized connection attempt detected from IP address 142.93.201.168 to port 22 |
2020-01-01 05:53:35 |
| 142.93.201.168 | attack | Dec 31 13:16:22 server sshd\[30253\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.201.168 user=root Dec 31 13:16:24 server sshd\[30253\]: Failed password for root from 142.93.201.168 port 51863 ssh2 Dec 31 13:22:08 server sshd\[31481\]: Invalid user chien from 142.93.201.168 Dec 31 13:22:08 server sshd\[31481\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.201.168 Dec 31 13:22:10 server sshd\[31481\]: Failed password for invalid user chien from 142.93.201.168 port 41983 ssh2 ... |
2019-12-31 18:42:20 |
| 142.93.201.168 | attack | " " |
2019-12-28 13:35:34 |
| 142.93.201.168 | attackspambots | *Port Scan* detected from 142.93.201.168 (US/United States/209060.cloudwaysapps.com). 4 hits in the last 215 seconds |
2019-12-24 13:15:12 |
| 142.93.201.168 | attackspambots | Dec 23 22:24:37 raspberrypi sshd\[2322\]: Invalid user fraties from 142.93.201.168Dec 23 22:24:40 raspberrypi sshd\[2322\]: Failed password for invalid user fraties from 142.93.201.168 port 33917 ssh2Dec 23 22:46:23 raspberrypi sshd\[2954\]: Invalid user guest from 142.93.201.168 ... |
2019-12-24 08:54:04 |
| 142.93.201.168 | attackbotsspam | Dec 9 00:37:13 itv-usvr-02 sshd[18818]: Invalid user boukra from 142.93.201.168 port 43310 Dec 9 00:37:13 itv-usvr-02 sshd[18818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.201.168 Dec 9 00:37:13 itv-usvr-02 sshd[18818]: Invalid user boukra from 142.93.201.168 port 43310 Dec 9 00:37:15 itv-usvr-02 sshd[18818]: Failed password for invalid user boukra from 142.93.201.168 port 43310 ssh2 Dec 9 00:43:48 itv-usvr-02 sshd[18918]: Invalid user user from 142.93.201.168 port 57970 |
2019-12-09 02:05:05 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.201.151
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1882
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;142.93.201.151. IN A
;; AUTHORITY SECTION:
. 432 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400
;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 12:23:42 CST 2022
;; MSG SIZE rcvd: 107Host 151.201.93.142.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 151.201.93.142.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 213.152.180.5 | attackspam | Jul 18 05:49:38 server2 sshd\[21605\]: User root from 213.152.180.5 not allowed because not listed in AllowUsers Jul 18 05:49:39 server2 sshd\[21607\]: Invalid user admin from 213.152.180.5 Jul 18 05:49:39 server2 sshd\[21609\]: Invalid user ubnt from 213.152.180.5 Jul 18 05:49:40 server2 sshd\[21611\]: Invalid user admin from 213.152.180.5 Jul 18 05:49:41 server2 sshd\[21613\]: User root from 213.152.180.5 not allowed because not listed in AllowUsers Jul 18 05:49:41 server2 sshd\[21615\]: Invalid user usuario from 213.152.180.5 |
2019-07-18 15:41:48 |
| 185.220.31.246 | attack | [ ?? ] From bounce5@pegandopromocao.com.br Wed Jul 17 22:17:00 2019 Received: from host2.pegandopromocao.com.br ([185.220.31.246]:34644) |
2019-07-18 16:12:34 |
| 186.206.134.122 | attackspam | Jul 18 09:35:14 s64-1 sshd[31226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.206.134.122 Jul 18 09:35:16 s64-1 sshd[31226]: Failed password for invalid user ts3 from 186.206.134.122 port 39556 ssh2 Jul 18 09:41:36 s64-1 sshd[31290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.206.134.122 ... |
2019-07-18 15:44:36 |
| 220.130.221.140 | attackbots | Jul 18 02:23:38 aat-srv002 sshd[3092]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.130.221.140 Jul 18 02:23:40 aat-srv002 sshd[3092]: Failed password for invalid user alarm from 220.130.221.140 port 37152 ssh2 Jul 18 02:28:53 aat-srv002 sshd[3184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.130.221.140 Jul 18 02:28:55 aat-srv002 sshd[3184]: Failed password for invalid user front from 220.130.221.140 port 60234 ssh2 ... |
2019-07-18 15:52:09 |
| 37.195.50.41 | attackbotsspam | Jul 18 07:19:24 mail sshd\[29876\]: Invalid user yarn from 37.195.50.41 port 43136 Jul 18 07:19:24 mail sshd\[29876\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.195.50.41 Jul 18 07:19:26 mail sshd\[29876\]: Failed password for invalid user yarn from 37.195.50.41 port 43136 ssh2 Jul 18 07:24:47 mail sshd\[29949\]: Invalid user kc from 37.195.50.41 port 40806 Jul 18 07:24:47 mail sshd\[29949\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.195.50.41 ... |
2019-07-18 15:25:46 |
| 45.63.0.158 | attack | Honeypot attack, port: 23, PTR: 45.63.0.158.vultr.com. |
2019-07-18 15:55:00 |
| 24.214.154.152 | attack | SASL Brute Force |
2019-07-18 15:55:59 |
| 62.24.102.106 | attackspambots | Jul 18 08:45:29 microserver sshd[13328]: Invalid user git from 62.24.102.106 port 36869 Jul 18 08:45:29 microserver sshd[13328]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.24.102.106 Jul 18 08:45:32 microserver sshd[13328]: Failed password for invalid user git from 62.24.102.106 port 36869 ssh2 Jul 18 08:51:23 microserver sshd[14327]: Invalid user rstudio from 62.24.102.106 port 15684 Jul 18 08:51:23 microserver sshd[14327]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.24.102.106 Jul 18 09:03:21 microserver sshd[16681]: Invalid user doudou from 62.24.102.106 port 36138 Jul 18 09:03:21 microserver sshd[16681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.24.102.106 Jul 18 09:03:23 microserver sshd[16681]: Failed password for invalid user doudou from 62.24.102.106 port 36138 ssh2 Jul 18 09:09:12 microserver sshd[17474]: Invalid user yuriy from 62.24.102.106 port 37860 Jul 1 |
2019-07-18 15:43:16 |
| 159.205.71.4 | attackspambots | Automatic report - Port Scan Attack |
2019-07-18 16:06:28 |
| 112.111.162.23 | attack | TCP port 23 (Telnet) attempt blocked by firewall. [2019-07-18 03:15:56] |
2019-07-18 16:14:13 |
| 124.105.13.150 | attackbots | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-17 02:56:04,868 INFO [shellcode_manager] (124.105.13.150) no match, writing hexdump (76dc64ff3b5cf13852aa01f9c6bd3565 :2362264) - MS17010 (EternalBlue) |
2019-07-18 15:53:05 |
| 81.192.159.130 | attackbotsspam | Multiple SSH auth failures recorded by fail2ban |
2019-07-18 15:22:53 |
| 113.161.1.111 | attackbotsspam | Jul 18 09:15:50 vps691689 sshd[31287]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.161.1.111 Jul 18 09:15:52 vps691689 sshd[31287]: Failed password for invalid user simon from 113.161.1.111 port 39648 ssh2 Jul 18 09:21:41 vps691689 sshd[31352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.161.1.111 ... |
2019-07-18 15:22:06 |
| 138.255.14.165 | attackspam | email spam |
2019-07-18 15:48:28 |
| 94.176.77.67 | attackspambots | (Jul 18) LEN=40 TTL=244 ID=35556 DF TCP DPT=23 WINDOW=14600 SYN (Jul 18) LEN=40 TTL=244 ID=10931 DF TCP DPT=23 WINDOW=14600 SYN (Jul 18) LEN=40 TTL=244 ID=7844 DF TCP DPT=23 WINDOW=14600 SYN (Jul 18) LEN=40 TTL=244 ID=40037 DF TCP DPT=23 WINDOW=14600 SYN (Jul 17) LEN=40 TTL=244 ID=64988 DF TCP DPT=23 WINDOW=14600 SYN (Jul 17) LEN=40 TTL=244 ID=37935 DF TCP DPT=23 WINDOW=14600 SYN (Jul 17) LEN=40 TTL=244 ID=32223 DF TCP DPT=23 WINDOW=14600 SYN (Jul 17) LEN=40 TTL=244 ID=19783 DF TCP DPT=23 WINDOW=14600 SYN (Jul 17) LEN=40 TTL=244 ID=13887 DF TCP DPT=23 WINDOW=14600 SYN (Jul 17) LEN=40 TTL=244 ID=49763 DF TCP DPT=23 WINDOW=14600 SYN (Jul 17) LEN=40 TTL=244 ID=35055 DF TCP DPT=23 WINDOW=14600 SYN (Jul 16) LEN=40 TTL=244 ID=30018 DF TCP DPT=23 WINDOW=14600 SYN (Jul 16) LEN=40 TTL=244 ID=51974 DF TCP DPT=23 WINDOW=14600 SYN (Jul 16) LEN=40 TTL=244 ID=62211 DF TCP DPT=23 WINDOW=14600 SYN (Jul 16) LEN=40 TTL=244 ID=32992 DF TCP DPT=23 WINDOW=14600 S... |
2019-07-18 16:06:10 |