195.93.142.198

Basic Info

City: Kajetany

Region: Mazovia

Country: Poland

Internet Service Provider: PLJ Telecom S.C. Pawel Kurpiewski Anna Stec

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Aug 27 11:28:07 mail.srvfarm.net postfix/smtps/smtpd[1506077]: warning: unknown[195.93.142.198]: SASL PLAIN authentication failed: Aug 27 11:28:07 mail.srvfarm.net postfix/smtps/smtpd[1506077]: lost connection after AUTH from unknown[195.93.142.198] Aug 27 11:29:36 mail.srvfarm.net postfix/smtps/smtpd[1506846]: warning: unknown[195.93.142.198]: SASL PLAIN authentication failed: Aug 27 11:29:36 mail.srvfarm.net postfix/smtps/smtpd[1506846]: lost connection after AUTH from unknown[195.93.142.198] Aug 27 11:29:55 mail.srvfarm.net postfix/smtpd[1488218]: warning: unknown[195.93.142.198]: SASL PLAIN authentication failed:	2020-08-28 09:10:12

Type

Details

Datetime

attack

Aug 27 11:28:07 mail.srvfarm.net postfix/smtps/smtpd[1506077]: warning: unknown[195.93.142.198]: SASL PLAIN authentication failed: 
Aug 27 11:28:07 mail.srvfarm.net postfix/smtps/smtpd[1506077]: lost connection after AUTH from unknown[195.93.142.198]
Aug 27 11:29:36 mail.srvfarm.net postfix/smtps/smtpd[1506846]: warning: unknown[195.93.142.198]: SASL PLAIN authentication failed: 
Aug 27 11:29:36 mail.srvfarm.net postfix/smtps/smtpd[1506846]: lost connection after AUTH from unknown[195.93.142.198]
Aug 27 11:29:55 mail.srvfarm.net postfix/smtpd[1488218]: warning: unknown[195.93.142.198]: SASL PLAIN authentication failed:

2020-08-28 09:10:12

Comments on same subnet:

IP	Type	Details	Datetime
195.93.142.181	attack	(PL/Poland/-) SMTP Bruteforcing attempts	2020-06-05 18:53:05
195.93.142.70	attack	Unauthorized connection attempt detected from IP address 195.93.142.70 to port 80	2020-03-18 22:05:10

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 195.93.142.198
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41994
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;195.93.142.198.			IN	A

;; AUTHORITY SECTION:
.			331	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082702 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Aug 28 09:10:08 CST 2020
;; MSG SIZE  rcvd: 118

Host info

198.142.93.195.in-addr.arpa domain name pointer 195-93-142-198.pljtelecom.pl.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
198.142.93.195.in-addr.arpa	name = 195-93-142-198.pljtelecom.pl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.92.0.135	attackspam	Dec 4 20:28:10 MK-Soft-VM4 sshd[23044]: Failed password for root from 218.92.0.135 port 25472 ssh2 Dec 4 20:28:13 MK-Soft-VM4 sshd[23044]: Failed password for root from 218.92.0.135 port 25472 ssh2 ...	2019-12-05 03:37:11
177.73.8.230	spamattack	hacking attempts reported by Microsoft from 177.73.8.230 on a UK account for a recent data breach reported on https://haveibeenpwned.com/	2019-12-05 03:15:19
122.51.140.164	attackspam	Lines containing failures of 122.51.140.164 Dec 3 09:37:19 myhost sshd[19470]: Invalid user cussey from 122.51.140.164 port 55846 Dec 3 09:37:19 myhost sshd[19470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.140.164 Dec 3 09:37:21 myhost sshd[19470]: Failed password for invalid user cussey from 122.51.140.164 port 55846 ssh2 Dec 3 09:37:21 myhost sshd[19470]: Received disconnect from 122.51.140.164 port 55846:11: Bye Bye [preauth] Dec 3 09:37:21 myhost sshd[19470]: Disconnected from invalid user cussey 122.51.140.164 port 55846 [preauth] Dec 3 09:51:23 myhost sshd[19544]: User r.r from 122.51.140.164 not allowed because not listed in AllowUsers Dec 3 09:51:23 myhost sshd[19544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.140.164 user=r.r Dec 3 09:51:25 myhost sshd[19544]: Failed password for invalid user r.r from 122.51.140.164 port 46762 ssh2 Dec 3 09:51:25 ........ ------------------------------	2019-12-05 03:29:01
117.48.209.85	attack	Dec 4 19:58:24 meumeu sshd[22238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.48.209.85 Dec 4 19:58:26 meumeu sshd[22238]: Failed password for invalid user oliviaanne from 117.48.209.85 port 59614 ssh2 Dec 4 20:04:37 meumeu sshd[23584]: Failed password for root from 117.48.209.85 port 38522 ssh2 ...	2019-12-05 03:23:32
116.16.238.84	attackbots	badbot	2019-12-05 03:08:04
63.81.87.195	attackspam	2019-12-04T20:28:02.848825stark.klein-stark.info postfix/smtpd\[5635\]: NOQUEUE: reject: RCPT from urea.jcnovel.com\[63.81.87.195\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\ 2019-12-04T20:45:40.241129stark.klein-stark.info postfix/smtpd\[6608\]: NOQUEUE: reject: RCPT from urea.jcnovel.com\[63.81.87.195\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-05 03:47:31
188.6.161.77	attackbots	2019-12-04T19:28:18.901163abusebot-2.cloudsearch.cf sshd\[19915\]: Invalid user mcouat from 188.6.161.77 port 50953	2019-12-05 03:31:46
163.172.204.185	attackbots	Dec 4 20:11:48 MK-Soft-Root2 sshd[20216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.204.185 Dec 4 20:11:50 MK-Soft-Root2 sshd[20216]: Failed password for invalid user achuth from 163.172.204.185 port 52557 ssh2 ...	2019-12-05 03:20:45
60.2.10.86	attack	Dec 4 20:21:57 meumeu sshd[26364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.2.10.86 Dec 4 20:21:59 meumeu sshd[26364]: Failed password for invalid user guest from 60.2.10.86 port 40281 ssh2 Dec 4 20:28:20 meumeu sshd[27854]: Failed password for root from 60.2.10.86 port 16662 ssh2 ...	2019-12-05 03:31:02
151.80.144.39	attackspambots	Dec 4 20:04:39 mail sshd\[24072\]: Invalid user ploeger from 151.80.144.39 Dec 4 20:04:39 mail sshd\[24072\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.144.39 Dec 4 20:04:41 mail sshd\[24072\]: Failed password for invalid user ploeger from 151.80.144.39 port 34384 ssh2 ...	2019-12-05 03:27:44
218.92.0.173	attackspambots	Dec 4 20:33:07 SilenceServices sshd[3022]: Failed password for root from 218.92.0.173 port 14046 ssh2 Dec 4 20:33:11 SilenceServices sshd[3022]: Failed password for root from 218.92.0.173 port 14046 ssh2 Dec 4 20:33:21 SilenceServices sshd[3022]: error: maximum authentication attempts exceeded for root from 218.92.0.173 port 14046 ssh2 [preauth]	2019-12-05 03:39:10
91.134.242.199	attackbots	F2B jail: sshd. Time: 2019-12-04 20:12:48, Reported by: VKReport	2019-12-05 03:21:26
180.168.141.246	attackspambots	Dec 4 20:21:09 legacy sshd[4468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.168.141.246 Dec 4 20:21:11 legacy sshd[4468]: Failed password for invalid user server from 180.168.141.246 port 54200 ssh2 Dec 4 20:28:15 legacy sshd[4856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.168.141.246 ...	2019-12-05 03:36:13
69.229.6.52	attackbotsspam	Dec 4 20:24:46 eventyay sshd[26525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.229.6.52 Dec 4 20:24:48 eventyay sshd[26525]: Failed password for invalid user hauan from 69.229.6.52 port 52394 ssh2 Dec 4 20:32:55 eventyay sshd[26921]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.229.6.52 ...	2019-12-05 03:48:43
42.157.128.188	attack	Dec 4 21:28:08 sauna sshd[51697]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.128.188 Dec 4 21:28:10 sauna sshd[51697]: Failed password for invalid user tryjefaczka from 42.157.128.188 port 47104 ssh2 ...	2019-12-05 03:42:41

Recently Reported IPs

188.92.213.180	186.250.200.118	182.23.74.124	181.114.208.28
113.30.234.87	179.125.4.239	179.97.8.238	177.44.25.221
177.23.56.144	122.144.24.248	170.239.137.218	138.99.80.188
21.1.7.112	138.36.200.209	94.74.142.43	93.99.143.34
92.55.237.224	91.83.160.133	118.60.156.163	81.161.67.234