193.40.244.102

Basic Info

City: unknown

Region: unknown

Country: Estonia

Internet Service Provider: Tallinn University of Technology

Hostname: unknown

Organization: unknown

Usage Type: University/College/School

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Sep 9 08:23:16 meumeu sshd[30228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.40.244.102 Sep 9 08:23:18 meumeu sshd[30228]: Failed password for invalid user steam from 193.40.244.102 port 52880 ssh2 Sep 9 08:29:29 meumeu sshd[31078]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.40.244.102 ...	2019-09-09 20:57:34

Type

Details

Datetime

attack

Sep  9 08:23:16 meumeu sshd[30228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.40.244.102 
Sep  9 08:23:18 meumeu sshd[30228]: Failed password for invalid user steam from 193.40.244.102 port 52880 ssh2
Sep  9 08:29:29 meumeu sshd[31078]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.40.244.102 
...

2019-09-09 20:57:34

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 193.40.244.102
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5742
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;193.40.244.102.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090900 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Sep 09 20:57:25 CST 2019
;; MSG SIZE  rcvd: 118

Host info

102.244.40.193.in-addr.arpa domain name pointer intranet.ld.ttu.ee.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
102.244.40.193.in-addr.arpa	name = intranet.ld.ttu.ee.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
1.71.129.49	attack	Failed password for invalid user 1234567890-=\\ from 1.71.129.49 port 52761 ssh2 Invalid user hack from 1.71.129.49 port 42281 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.71.129.49 Failed password for invalid user hack from 1.71.129.49 port 42281 ssh2 Invalid user hjs from 1.71.129.49 port 60034	2019-11-07 22:23:45
5.188.62.147	attack	Automatic report - Banned IP Access	2019-11-07 22:16:28
210.44.1.5	attackbots	Portscan or hack attempt detected by psad/fwsnort	2019-11-07 22:37:07
103.94.5.42	attackbots	$f2bV_matches	2019-11-07 21:56:38
23.95.84.74	attackbotsspam	11/07/2019-01:18:58.775803 23.95.84.74 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-11-07 22:13:46
45.63.8.142	attackspambots	Nov 7 12:28:52 vpn01 sshd[18739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.63.8.142 Nov 7 12:28:54 vpn01 sshd[18739]: Failed password for invalid user oracle from 45.63.8.142 port 46697 ssh2 ...	2019-11-07 22:39:18
113.125.179.213	attack	Automatic report - SSH Brute-Force Attack	2019-11-07 22:34:59
185.216.132.15	attackspambots	2019-11-07T07:19:01.479797 sshd[5493]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.216.132.15 user=root 2019-11-07T07:19:03.228684 sshd[5493]: Failed password for root from 185.216.132.15 port 14991 ssh2 2019-11-07T07:19:05.060596 sshd[5495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.216.132.15 user=root 2019-11-07T07:19:07.026622 sshd[5495]: Failed password for root from 185.216.132.15 port 15467 ssh2 2019-11-07T07:19:08.661950 sshd[5499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.216.132.15 user=root 2019-11-07T07:19:11.039529 sshd[5499]: Failed password for root from 185.216.132.15 port 16010 ssh2 ...	2019-11-07 22:02:28
211.143.246.38	attackbotsspam	Nov 7 02:33:20 hanapaa sshd\[2500\]: Invalid user db2fenc1 from 211.143.246.38 Nov 7 02:33:20 hanapaa sshd\[2500\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.143.246.38 Nov 7 02:33:23 hanapaa sshd\[2500\]: Failed password for invalid user db2fenc1 from 211.143.246.38 port 51069 ssh2 Nov 7 02:38:34 hanapaa sshd\[2910\]: Invalid user hadoop from 211.143.246.38 Nov 7 02:38:34 hanapaa sshd\[2910\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.143.246.38	2019-11-07 22:26:13
106.12.27.46	attack	2019-11-07T09:41:22.077395scmdmz1 sshd\[21797\]: Invalid user tom from 106.12.27.46 port 34348 2019-11-07T09:41:22.080487scmdmz1 sshd\[21797\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.27.46 2019-11-07T09:41:23.693300scmdmz1 sshd\[21797\]: Failed password for invalid user tom from 106.12.27.46 port 34348 ssh2 ...	2019-11-07 22:12:58
84.196.217.100	attackbots	Nov 7 13:26:48 amit sshd\[12481\]: Invalid user office from 84.196.217.100 Nov 7 13:26:48 amit sshd\[12481\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.196.217.100 Nov 7 13:26:50 amit sshd\[12481\]: Failed password for invalid user office from 84.196.217.100 port 53557 ssh2 ...	2019-11-07 22:05:10
193.31.24.113	attackbotsspam	11/07/2019-15:22:54.276386 193.31.24.113 Protocol: 6 SURICATA SMTP tls rejected	2019-11-07 22:29:53
220.191.237.203	attackbots	11/07/2019-01:18:51.191975 220.191.237.203 Protocol: 6 ET SCAN Suspicious inbound to mySQL port 3306	2019-11-07 22:17:04
218.92.0.154	attack	$f2bV_matches	2019-11-07 22:06:49
2607:5300:203:4c8::	attack	xmlrpc attack	2019-11-07 22:11:48

Recently Reported IPs

18.131.27.72	151.197.236.84	139.59.164.196	197.43.31.224
158.69.185.135	224.9.121.195	51.75.19.175	89.175.92.254
175.209.36.243	0.155.7.111	171.165.242.146	61.21.54.28
26.2.211.98	243.90.156.254	110.55.211.188	214.23.24.29
90.146.120.52	9.244.175.177	213.50.184.46	43.136.239.15