193.142.146.143

Basic Info

City: unknown

Region: unknown

Country: Netherlands

Internet Service Provider: Maximilian Kutzner

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	2019-12-22T05:39:21.432988hz01.yumiweb.com sshd\[31277\]: Invalid user ftpuser1 from 193.142.146.143 port 35474 2019-12-22T05:46:56.652072hz01.yumiweb.com sshd\[31305\]: Invalid user ftpuser1 from 193.142.146.143 port 31254 2019-12-22T05:54:30.188953hz01.yumiweb.com sshd\[31324\]: Invalid user ftpuser1 from 193.142.146.143 port 27198 ...	2019-12-22 14:09:35

Type

Details

Datetime

attack

2019-12-22T05:39:21.432988hz01.yumiweb.com sshd\[31277\]: Invalid user ftpuser1 from 193.142.146.143 port 35474
2019-12-22T05:46:56.652072hz01.yumiweb.com sshd\[31305\]: Invalid user ftpuser1 from 193.142.146.143 port 31254
2019-12-22T05:54:30.188953hz01.yumiweb.com sshd\[31324\]: Invalid user ftpuser1 from 193.142.146.143 port 27198
...

2019-12-22 14:09:35

Comments on same subnet:

IP	Type	Details	Datetime
193.142.146.232	attack	Unauthorized connection attempt detected from IP address 193.142.146.232 to port 8583 [T]	2020-08-31 18:25:27
193.142.146.232	attack	1597518870 - 08/16/2020 02:14:30 Host: 193.142.146.232/193.142.146.232 Port: 4096 TCP Blocked ...	2020-08-16 04:04:45
193.142.146.19	attackspam	Unauthorized connection attempt detected from IP address 193.142.146.19 to port 8339 [T]	2020-08-14 04:17:03
193.142.146.232	attackbotsspam	Unauthorized connection attempt detected from IP address 193.142.146.232 to port 4666 [T]	2020-08-14 03:22:31
193.142.146.219	attackspambots	Unauthorized connection attempt detected from IP address 193.142.146.219 to port 30000 [T]	2020-08-14 02:42:31
193.142.146.216	attackspambots	ET SCAN MS Terminal Server Traffic on Non-standard Port - port: 32400 proto: tcp cat: Attempted Information Leakbytes: 289	2020-08-08 04:19:18
193.142.146.179	attack	Aug 4 14:56:48 vps46666688 sshd[28685]: Failed password for root from 193.142.146.179 port 55402 ssh2 ...	2020-08-05 02:41:05
193.142.146.34	attackspambots	TCP Port Scanning	2020-08-04 22:02:08
193.142.146.202	attackspam	Firewall Dropped Connection	2020-07-27 23:22:48
193.142.146.212	attack	TCP (SYN) 193.142.146.212:52949 -> port 2, len 44	2020-07-27 19:44:30
193.142.146.204	attackbotsspam	TCP (SYN) 193.142.146.204:56696 -> port 143, len 44	2020-07-27 19:11:02
193.142.146.202	attackbotsspam	TCP (SYN) 193.142.146.202:56661 -> port 75, len 44	2020-07-27 13:57:13
193.142.146.204	attackspambots	07/26/2020-15:53:12.743728 193.142.146.204 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-07-27 04:14:30
193.142.146.212	attackspambots	SmallBizIT.US 2 packets to tcp(19,23)	2020-07-25 12:02:40
193.142.146.203	attack	Intruder & port scanner	2020-07-23 12:09:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 193.142.146.143
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20278
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;193.142.146.143.		IN	A

;; AUTHORITY SECTION:
.			561	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122200 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 22 14:09:32 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 143.146.142.193.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 143.146.142.193.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
62.234.79.230	attackbots	Brute force SMTP login attempted. ...	2019-12-02 01:29:54
104.236.72.187	attackbots	Dec 1 19:37:42 server sshd\[26075\]: Invalid user esplin from 104.236.72.187 port 43574 Dec 1 19:37:42 server sshd\[26075\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.72.187 Dec 1 19:37:43 server sshd\[26075\]: Failed password for invalid user esplin from 104.236.72.187 port 43574 ssh2 Dec 1 19:40:27 server sshd\[13572\]: Invalid user pul from 104.236.72.187 port 32943 Dec 1 19:40:27 server sshd\[13572\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.72.187	2019-12-02 01:43:47
125.211.197.252	attack	Dec 1 07:18:02 php1 sshd\[11397\]: Invalid user \#\#\#\#\#\#\# from 125.211.197.252 Dec 1 07:18:02 php1 sshd\[11397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.211.197.252 Dec 1 07:18:04 php1 sshd\[11397\]: Failed password for invalid user \#\#\#\#\#\#\# from 125.211.197.252 port 59423 ssh2 Dec 1 07:25:47 php1 sshd\[12031\]: Invalid user marlee from 125.211.197.252 Dec 1 07:25:47 php1 sshd\[12031\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.211.197.252	2019-12-02 01:36:34
103.36.9.13	attack	Mail sent to address harvested from public web site	2019-12-02 01:56:57
80.211.139.159	attack	Dec 1 18:50:31 mout sshd[31442]: Invalid user yi from 80.211.139.159 port 57002	2019-12-02 01:58:03
177.220.177.158	attackbotsspam	no	2019-12-02 01:46:07
177.69.118.197	attack	Dec 1 18:05:39 pkdns2 sshd\[32955\]: Invalid user dopke from 177.69.118.197Dec 1 18:05:40 pkdns2 sshd\[32955\]: Failed password for invalid user dopke from 177.69.118.197 port 50976 ssh2Dec 1 18:09:20 pkdns2 sshd\[33085\]: Invalid user changeme from 177.69.118.197Dec 1 18:09:22 pkdns2 sshd\[33085\]: Failed password for invalid user changeme from 177.69.118.197 port 42269 ssh2Dec 1 18:12:42 pkdns2 sshd\[33217\]: Invalid user 123123 from 177.69.118.197Dec 1 18:12:44 pkdns2 sshd\[33217\]: Failed password for invalid user 123123 from 177.69.118.197 port 33809 ssh2 ...	2019-12-02 02:03:37
148.70.136.94	attackspambots	Dec 1 17:41:39 root sshd[527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.136.94 Dec 1 17:41:41 root sshd[527]: Failed password for invalid user server from 148.70.136.94 port 43050 ssh2 Dec 1 17:57:23 root sshd[759]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.136.94 ...	2019-12-02 01:39:56
85.172.13.206	attack	Dec 1 16:58:17 venus sshd\[1520\]: Invalid user guest from 85.172.13.206 port 36040 Dec 1 16:58:17 venus sshd\[1520\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.172.13.206 Dec 1 16:58:18 venus sshd\[1520\]: Failed password for invalid user guest from 85.172.13.206 port 36040 ssh2 ...	2019-12-02 01:42:26
218.92.0.180	attackbots	Dec 1 19:01:28 jane sshd[14028]: Failed password for root from 218.92.0.180 port 53216 ssh2 Dec 1 19:01:33 jane sshd[14028]: Failed password for root from 218.92.0.180 port 53216 ssh2 ...	2019-12-02 02:03:22
43.225.151.142	attack	Dec 1 10:42:42 plusreed sshd[28812]: Invalid user wwwrun from 43.225.151.142 ...	2019-12-02 01:28:37
213.157.48.133	attackspam	Dec 1 23:20:56 webhost01 sshd[17430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133 Dec 1 23:20:58 webhost01 sshd[17430]: Failed password for invalid user lawlaw from 213.157.48.133 port 40300 ssh2 ...	2019-12-02 01:37:26
93.40.228.208	attackspambots	Sniffing for wp-login	2019-12-02 01:33:27
80.28.70.164	attackbots	Automatic report - Port Scan Attack	2019-12-02 01:42:05
111.231.121.62	attackspambots	Dec 1 17:28:25 xeon sshd[63913]: Failed password for root from 111.231.121.62 port 38760 ssh2	2019-12-02 02:02:10

Recently Reported IPs

22.55.230.62	98.29.8.13	198.71.241.14	122.51.46.172
49.85.197.143	41.43.91.101	178.216.248.36	112.98.104.30
190.60.106.142	168.232.12.90	128.199.171.89	111.193.97.180
42.115.220.203	2.177.34.11	197.61.182.20	171.232.44.123
138.97.53.239	130.61.57.37	125.41.186.223	104.208.218.17