212.59.240.142

Basic Info

City: Huta Stara B

Region: Silesia

Country: Poland

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
spamattack	PHISHING AND SPAM ATTACK 178.19.109.108 woo_casino - bounce@office.com, COMPLETE ALL MISSIONS and get more than $150,000 in rewards, 05 Jul 2021 212.59.240.122 woo_casino - bounce@office.com, COMPLETE ALL MISSIONS and get more than $150,000 in rewards, 06 Jul 2021 212.59.240.142 Tinnitus - bounce@office.com, Eat THIS Before Bed to Reverse Tinnitus & Buzzing/Ringing-Ears?, 06 Jul 2021 inetnum: 185.24.216.0 - 185.24.219.255 netname: PL-LIVENET-20130424 person: Michal Piech inetnum: 212.59.240.0 - 212.59.241.255 netname: LIVENET person: Michal Piech inetnum: 178.19.104.0 - 178.19.111.255 netname: LIVENET person: Michal Piech Other emails from same group are listed below; 178.19.109.108 woo_casino - bounce@office.com, COMPLETE ALL MISSIONS and get more than $150,000 in rewards, 05 Jul 2021 185.24.216.80 Cougarsprey.com - bounce@office.com, Don't date data, meet real real people, 21 Jun 2021 185.24.219.193 Bitcoin News - bounce@office.com, Brits are making thousands a day trading Bitcoin, 21 Jun 2021 212.59.240.122 Bitcoin News - bounce@office.com, Brits are making thousands a day trading Bitcoin, 04 Jul 2021 212.59.240.122 woo_casino - bounce@office.com, COMPLETE ALL MISSIONS and get more than $150,000 in rewards, 06 Jul 2021	2021-07-07 08:27:02

Type

Details

Datetime

spamattack

PHISHING AND SPAM ATTACK
178.19.109.108  woo_casino - bounce@office.com, COMPLETE ALL MISSIONS and get more than $150,000 in rewards,  05 Jul 2021
212.59.240.122  woo_casino - bounce@office.com, COMPLETE ALL MISSIONS and get more than $150,000 in rewards,  06 Jul 2021
212.59.240.142	Tinnitus - bounce@office.com, Eat THIS Before Bed to Reverse Tinnitus & Buzzing/Ringing-Ears?, 06 Jul 2021
inetnum:   	185.24.216.0 - 185.24.219.255  	netname: PL-LIVENET-20130424 person:  Michal Piech
inetnum:        212.59.240.0 - 212.59.241.255  	netname: LIVENET   person:  Michal Piech
inetnum:        178.19.104.0 - 178.19.111.255	netname: LIVENET   person:  Michal Piech
Other emails from same group are listed below; 
178.19.109.108  woo_casino - bounce@office.com, COMPLETE ALL MISSIONS and get more than $150,000 in rewards,  05 Jul 2021
185.24.216.80  	Cougarsprey.com - bounce@office.com, Don't date data, meet real real people,  21 Jun 2021
185.24.219.193  Bitcoin News - bounce@office.com, Brits are making thousands a day trading Bitcoin,  21 Jun 2021
212.59.240.122  Bitcoin News - bounce@office.com, Brits are making thousands a day trading Bitcoin,  04 Jul 2021
212.59.240.122  woo_casino - bounce@office.com, COMPLETE ALL MISSIONS and get more than $150,000 in rewards,  06 Jul 2021

2021-07-07 08:27:02

Comments on same subnet:

IP	Type	Details	Datetime
212.59.240.141	spamattack	PHISHING AND SPAM ATTACK 178.19.109.108 woo_casino - bounce@office.com, COMPLETE ALL MISSIONS and get more than $150,000 in rewards, 05 Jul 2021 212.59.240.122 woo_casino - bounce@office.com, COMPLETE ALL MISSIONS and get more than $150,000 in rewards, 06 Jul 2021 inetnum: 185.24.216.0 - 185.24.219.255 netname: PL-LIVENET-20130424 person: Michal Piech inetnum: 212.59.240.0 - 212.59.241.255 netname: LIVENET person: Michal Piech inetnum: 178.19.104.0 - 178.19.111.255 netname: LIVENET person: Michal Piech Other emails from same group are listed below; 178.19.109.108 woo_casino - bounce@office.com, COMPLETE ALL MISSIONS and get more than $150,000 in rewards, 05 Jul 2021 185.24.216.80 Cougarsprey.com - bounce@office.com, Don't date data, meet real real people, 21 Jun 2021 185.24.219.193 Bitcoin News - bounce@office.com, Brits are making thousands a day trading Bitcoin, 21 Jun 2021 212.59.240.122 Bitcoin News - bounce@office.com, Brits are making thousands a day trading Bitcoin, 04 Jul 2021 212.59.240.122 woo_casino - bounce@office.com, COMPLETE ALL MISSIONS and get more than $150,000 in rewards, 06 Jul 2021	2021-07-06 16:49:03
212.59.240.122	spamattack	PHISHING AND SPAM ATTACK 212.59.240.122 Bitcoin News , Brits are making thousands a day trading Bitcoin, 04 Jul 2021 inetnum: 185.24.216.0 - 185.24.219.255 netname: PL-LIVENET-20130424 person: Michal Piech inetnum: 212.59.240.0 - 212.59.241.255 netname: LIVENET person: Michal Piech Other emails from same group are listed below; 185.24.216.80 Cougarsprey.com - bounce@office.com, Don't date data, meet real real people, 21 Jun 2021 185.24.219.193 Bitcoin News - bounce@office.com, Brits are making thousands a day trading Bitcoin, 21 Jun 2021 212.59.240.122 Bitcoin News , Brits are making thousands a day trading Bitcoin, 04 Jul 2021	2021-07-05 05:23:25

Type

Details

Datetime

212.59.240.141

spamattack

PHISHING AND SPAM ATTACK
178.19.109.108  woo_casino - bounce@office.com, COMPLETE ALL MISSIONS and get more than $150,000 in rewards,  05 Jul 2021
212.59.240.122  woo_casino - bounce@office.com, COMPLETE ALL MISSIONS and get more than $150,000 in rewards,  06 Jul 2021
inetnum:   	185.24.216.0 - 185.24.219.255  	netname: PL-LIVENET-20130424 person:  Michal Piech
inetnum:        212.59.240.0 - 212.59.241.255  	netname: LIVENET   person:  Michal Piech
inetnum:        178.19.104.0 - 178.19.111.255	netname: LIVENET   person:  Michal Piech
Other emails from same group are listed below; 
178.19.109.108  woo_casino - bounce@office.com, COMPLETE ALL MISSIONS and get more than $150,000 in rewards,  05 Jul 2021
185.24.216.80  	Cougarsprey.com - bounce@office.com, Don't date data, meet real real people,  21 Jun 2021
185.24.219.193  Bitcoin News - bounce@office.com, Brits are making thousands a day trading Bitcoin,  21 Jun 2021
212.59.240.122  Bitcoin News - bounce@office.com, Brits are making thousands a day trading Bitcoin,  04 Jul 2021
212.59.240.122  woo_casino - bounce@office.com, COMPLETE ALL MISSIONS and get more than $150,000 in rewards,  06 Jul 2021

2021-07-06 16:49:03

212.59.240.122

spamattack

PHISHING AND SPAM ATTACK
212.59.240.122  Bitcoin News , Brits are making thousands a day trading Bitcoin,  04 Jul 2021
inetnum:   	185.24.216.0 - 185.24.219.255  netname: PL-LIVENET-20130424 person:  Michal Piech
inetnum:        212.59.240.0 - 212.59.241.255  netname: LIVENET   person:  Michal Piech
Other emails from same group are listed below; 
185.24.216.80  Cougarsprey.com - bounce@office.com, Don't date data, meet real real people,  21 Jun 2021
185.24.219.193  Bitcoin News - bounce@office.com, Brits are making thousands a day trading Bitcoin,  21 Jun 2021
212.59.240.122  Bitcoin News , Brits are making thousands a day trading Bitcoin,  04 Jul 2021

2021-07-05 05:23:25

Whois info:

Dig info:

b'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 212.59.240.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57627
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;212.59.240.142.			IN	A

;; Query time: 1 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Tue Jul 06 16:57:05 CST 2021
;; MSG SIZE  rcvd: 43

'

Host info

142.240.59.212.in-addr.arpa domain name pointer 4zi3.udiva-uni.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
142.240.59.212.in-addr.arpa	name = 4zi3.udiva-uni.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
120.39.3.78	attack	Feb 28 10:30:01 nbi-636 sshd[23505]: Invalid user wenbo from 120.39.3.78 port 56026 Feb 28 10:30:01 nbi-636 sshd[23505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.39.3.78 Feb 28 10:30:03 nbi-636 sshd[23505]: Failed password for invalid user wenbo from 120.39.3.78 port 56026 ssh2 Feb 28 10:40:12 nbi-636 sshd[26000]: Invalid user user1 from 120.39.3.78 port 44646 Feb 28 10:40:12 nbi-636 sshd[26000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.39.3.78 Feb 28 10:40:14 nbi-636 sshd[26000]: Failed password for invalid user user1 from 120.39.3.78 port 44646 ssh2 Feb 28 10:40:15 nbi-636 sshd[26000]: Received disconnect from 120.39.3.78 port 44646:11: Bye Bye [preauth] Feb 28 10:40:15 nbi-636 sshd[26000]: Disconnected from invalid user user1 120.39.3.78 port 44646 [preauth] Feb 28 10:43:14 nbi-636 sshd[26667]: Invalid user tmpuser from 120.39.3.78 port 35546 Feb 28 10:43:14 nbi-63........ -------------------------------	2020-02-29 16:04:57
221.178.185.41	attack	port scan and connect, tcp 1433 (ms-sql-s)	2020-02-29 16:15:17
182.61.105.146	attackbots	Feb 28 15:11:33 s02-markstaller sshd[20990]: Invalid user julian from 182.61.105.146 Feb 28 15:11:35 s02-markstaller sshd[20990]: Failed password for invalid user julian from 182.61.105.146 port 39830 ssh2 Feb 28 15:14:44 s02-markstaller sshd[21068]: Invalid user ghost from 182.61.105.146 Feb 28 15:14:46 s02-markstaller sshd[21068]: Failed password for invalid user ghost from 182.61.105.146 port 52890 ssh2 Feb 28 15:16:29 s02-markstaller sshd[21122]: Invalid user r.r1 from 182.61.105.146 Feb 28 15:16:31 s02-markstaller sshd[21122]: Failed password for invalid user r.r1 from 182.61.105.146 port 49096 ssh2 Feb 28 15:18:07 s02-markstaller sshd[23214]: Invalid user ghostnamelab-prometheus from 182.61.105.146 Feb 28 15:18:08 s02-markstaller sshd[23214]: Failed password for invalid user ghostnamelab-prometheus from 182.61.105.146 port 45298 ssh2 Feb 28 15:19:44 s02-markstaller sshd[23271]: Invalid user db2inst1 from 182.61.105.146 Feb 28 15:19:46 s02-markstaller sshd[23271]: F........ ------------------------------	2020-02-29 16:13:44
141.98.10.141	attackbots	2020-02-29T07:59:28.653217beta postfix/smtpd[18744]: warning: unknown[141.98.10.141]: SASL LOGIN authentication failed: authentication failure 2020-02-29T08:16:02.222310beta postfix/smtpd[19041]: warning: unknown[141.98.10.141]: SASL LOGIN authentication failed: authentication failure 2020-02-29T08:17:22.431316beta postfix/smtpd[19041]: warning: unknown[141.98.10.141]: SASL LOGIN authentication failed: authentication failure ...	2020-02-29 16:26:04
113.170.194.59	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 16:34:35
78.128.113.182	attackspam	21 attempts against mh-misbehave-ban on sonic	2020-02-29 16:43:24
222.186.173.215	attack	2020-02-29T08:21:08.870698abusebot-7.cloudsearch.cf sshd[21391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.215 user=root 2020-02-29T08:21:10.687288abusebot-7.cloudsearch.cf sshd[21391]: Failed password for root from 222.186.173.215 port 53930 ssh2 2020-02-29T08:21:14.803806abusebot-7.cloudsearch.cf sshd[21391]: Failed password for root from 222.186.173.215 port 53930 ssh2 2020-02-29T08:21:08.870698abusebot-7.cloudsearch.cf sshd[21391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.215 user=root 2020-02-29T08:21:10.687288abusebot-7.cloudsearch.cf sshd[21391]: Failed password for root from 222.186.173.215 port 53930 ssh2 2020-02-29T08:21:14.803806abusebot-7.cloudsearch.cf sshd[21391]: Failed password for root from 222.186.173.215 port 53930 ssh2 2020-02-29T08:21:08.870698abusebot-7.cloudsearch.cf sshd[21391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 ...	2020-02-29 16:24:31
45.125.65.42	attack	Feb 29 09:16:44 statusweb1.srvfarm.net postfix/smtpd[2354213]: warning: unknown[45.125.65.42]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 29 09:19:49 statusweb1.srvfarm.net postfix/smtpd[2354213]: warning: unknown[45.125.65.42]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 29 09:22:39 statusweb1.srvfarm.net postfix/smtpd[2354654]: warning: unknown[45.125.65.42]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-02-29 16:29:29
113.175.222.191	attackspam	Unauthorized connection attempt detected from IP address 113.175.222.191 to port 23 [J]	2020-02-29 16:05:26
129.204.240.42	attack	Feb 29 08:58:34 h2177944 sshd\[11367\]: Invalid user gitlab-psql from 129.204.240.42 port 44768 Feb 29 08:58:34 h2177944 sshd\[11367\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.240.42 Feb 29 08:58:36 h2177944 sshd\[11367\]: Failed password for invalid user gitlab-psql from 129.204.240.42 port 44768 ssh2 Feb 29 09:08:46 h2177944 sshd\[11800\]: Invalid user grid from 129.204.240.42 port 45156 ...	2020-02-29 16:39:00
78.187.81.191	attackbotsspam	1582954976 - 02/29/2020 06:42:56 Host: 78.187.81.191/78.187.81.191 Port: 445 TCP Blocked	2020-02-29 16:40:53
177.126.165.170	attack	$f2bV_matches	2020-02-29 16:03:34
218.92.0.138	attack	Feb 29 13:40:40 areeb-Workstation sshd[4331]: Failed password for root from 218.92.0.138 port 49396 ssh2 Feb 29 13:40:44 areeb-Workstation sshd[4331]: Failed password for root from 218.92.0.138 port 49396 ssh2 ...	2020-02-29 16:25:34
117.27.40.175	attackspambots	Rude login attack (2 tries in 1d)	2020-02-29 16:23:28
54.37.232.137	attackbotsspam	Feb 29 09:18:57 sd-53420 sshd\[23300\]: Invalid user tom from 54.37.232.137 Feb 29 09:18:57 sd-53420 sshd\[23300\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.232.137 Feb 29 09:18:59 sd-53420 sshd\[23300\]: Failed password for invalid user tom from 54.37.232.137 port 59728 ssh2 Feb 29 09:28:17 sd-53420 sshd\[24105\]: Invalid user temp from 54.37.232.137 Feb 29 09:28:17 sd-53420 sshd\[24105\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.232.137 ...	2020-02-29 16:44:35

Recently Reported IPs

52.25.54.232	167.99.127.156	176.107.178.60	13.69.82.138
51.138.56.92	51.124.70.11	88.221.161.136	116.179.32.177
162.158.227.110	35.232.124.54	116.179.32.215	116.179.32.50
164.68.111.184	116.179.32.160	10.205.195.202	172.9.167.104
167.82.128.148	3.66.246.4	52.247.37.26	104.129.196.161