City: unknown
Region: unknown
Country: Russian Federation (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 5.42.21.72 | attackspambots | DATE:2020-02-13 14:48:56, IP:5.42.21.72, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc) |
2020-02-14 00:04:28 |
| 5.42.239.197 | attack | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/5.42.239.197/ SA - 1H : (12) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : SA NAME ASN : ASN35753 IP : 5.42.239.197 CIDR : 5.42.238.0/23 PREFIX COUNT : 230 UNIQUE IP COUNT : 194816 ATTACKS DETECTED ASN35753 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-11-18 23:53:44 INFO : Server 301 - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery |
2019-11-19 07:40:51 |
| 5.42.226.10 | attackspam | 2019-07-23T05:56:25.288967abusebot-6.cloudsearch.cf sshd\[876\]: Invalid user ze from 5.42.226.10 port 52470 |
2019-07-23 14:17:13 |
| 5.42.226.10 | attackspam | Jul 16 08:53:36 srv-4 sshd\[8178\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.42.226.10 user=root Jul 16 08:53:38 srv-4 sshd\[8178\]: Failed password for root from 5.42.226.10 port 48372 ssh2 Jul 16 08:59:07 srv-4 sshd\[8563\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.42.226.10 user=root ... |
2019-07-16 14:15:53 |
| 5.42.226.10 | attackspam | Jul 15 23:07:35 srv-4 sshd\[30286\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.42.226.10 user=daemon Jul 15 23:07:37 srv-4 sshd\[30286\]: Failed password for daemon from 5.42.226.10 port 33338 ssh2 Jul 15 23:13:01 srv-4 sshd\[30689\]: Invalid user train5 from 5.42.226.10 Jul 15 23:13:01 srv-4 sshd\[30689\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.42.226.10 ... |
2019-07-16 04:29:37 |
| 5.42.226.10 | attackbots | Jul 9 23:35:09 unicornsoft sshd\[15257\]: Invalid user vnc from 5.42.226.10 Jul 9 23:35:09 unicornsoft sshd\[15257\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.42.226.10 Jul 9 23:35:11 unicornsoft sshd\[15257\]: Failed password for invalid user vnc from 5.42.226.10 port 43006 ssh2 |
2019-07-10 08:10:45 |
| 5.42.226.10 | attack | Reported by AbuseIPDB proxy server. |
2019-07-08 02:00:13 |
| 5.42.226.10 | attackspambots | Jul 5 20:47:17 dedicated sshd[26725]: Invalid user daniel from 5.42.226.10 port 60224 |
2019-07-06 07:09:43 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.42.2.153
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25904
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;5.42.2.153. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021800 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 18 20:07:12 CST 2025
;; MSG SIZE rcvd: 103153.2.42.5.in-addr.arpa domain name pointer 5-42-2-153.colomna.net.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
153.2.42.5.in-addr.arpa name = 5-42-2-153.colomna.net.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 124.156.50.96 | attackspam | Unauthorized connection attempt detected from IP address 124.156.50.96 to port 8443 |
2020-03-21 00:17:17 |
| 13.127.176.247 | attackbotsspam | (mod_security) mod_security (id:5000135) triggered by 13.127.176.247 (IN/India/ec2-13-127-176-247.ap-south-1.compute.amazonaws.com): 10 in the last 3600 secs |
2020-03-21 00:34:49 |
| 222.186.42.75 | attack | Mar 20 17:27:42 SilenceServices sshd[19982]: Failed password for root from 222.186.42.75 port 15645 ssh2 Mar 20 17:27:44 SilenceServices sshd[19982]: Failed password for root from 222.186.42.75 port 15645 ssh2 Mar 20 17:27:47 SilenceServices sshd[19982]: Failed password for root from 222.186.42.75 port 15645 ssh2 |
2020-03-21 00:32:16 |
| 79.135.40.228 | attackspambots | Telnet/23 MH Probe, Scan, BF, Hack - |
2020-03-20 23:57:58 |
| 201.72.179.51 | attack | Mar 20 13:47:08 nextcloud sshd\[26464\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.72.179.51 user=gnats Mar 20 13:47:10 nextcloud sshd\[26464\]: Failed password for gnats from 201.72.179.51 port 42914 ssh2 Mar 20 14:12:25 nextcloud sshd\[32648\]: Invalid user nodeserver from 201.72.179.51 Mar 20 14:12:25 nextcloud sshd\[32648\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.72.179.51 |
2020-03-21 00:29:37 |
| 59.125.155.119 | attack | ET CINS Active Threat Intelligence Poor Reputation IP group 40 - port: 5555 proto: TCP cat: Misc Attack |
2020-03-21 00:00:00 |
| 80.82.78.211 | attackspam | MultiHost/MultiPort Probe, Scan, Hack - |
2020-03-20 23:53:57 |
| 184.105.247.243 | attackspambots | " " |
2020-03-21 00:14:31 |
| 94.102.56.215 | attack | 94.102.56.215 was recorded 21 times by 11 hosts attempting to connect to the following ports: 27016,28007,24292. Incident counter (4h, 24h, all-time): 21, 114, 8320 |
2020-03-20 23:44:22 |
| 87.251.74.11 | attackbotsspam | firewall-block, port(s): 474/tcp, 661/tcp, 2340/tcp, 2445/tcp, 7447/tcp, 7557/tcp, 46664/tcp |
2020-03-20 23:50:40 |
| 94.102.51.31 | attackspambots | Port-scan: detected 139 distinct ports within a 24-hour window. |
2020-03-20 23:45:38 |
| 176.113.115.137 | attackspam | ET DROP Dshield Block Listed Source group 1 - port: 3327 proto: TCP cat: Misc Attack |
2020-03-20 23:39:37 |
| 104.168.182.234 | attackbots | Ignored robots.txt |
2020-03-21 00:37:54 |
| 180.252.159.227 | attackspam | ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic |
2020-03-20 23:39:10 |
| 87.251.74.12 | attackspam | Mar 20 15:29:33 src: 87.251.74.12 signature match: "BACKDOOR PhaseZero Server Active on Network" (sid: 208) tcp port: 555 |
2020-03-20 23:50:16 |