92.86.16.142 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Romania

Internet Service Provider: Telekom Romania Communication S.A

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	port scan and connect, tcp 23 (telnet)	2019-07-17 07:58:38

Comments on same subnet:

IP	Type	Details	Datetime
92.86.16.202	attack	Trying ports that it shouldn't be.	2019-07-20 04:56:05

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 92.86.16.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17410
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;92.86.16.142.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071601 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 17 07:58:32 CST 2019
;; MSG SIZE  rcvd: 116

Host info

142.16.86.92.in-addr.arpa domain name pointer adsl92-86-16-142.romtelecom.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
142.16.86.92.in-addr.arpa	name = adsl92-86-16-142.romtelecom.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.30.187	attackbots	Feb 7 16:53:40 localhost sshd\[2138\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.187 user=root Feb 7 16:53:42 localhost sshd\[2138\]: Failed password for root from 222.186.30.187 port 40947 ssh2 Feb 7 16:53:45 localhost sshd\[2138\]: Failed password for root from 222.186.30.187 port 40947 ssh2 ...	2020-02-08 00:55:27
95.217.1.162	attack	2020-02-07T17:23:28.586886vps773228.ovh.net sshd[25044]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=static.162.1.217.95.clients.your-server.de user=root 2020-02-07T17:23:30.640024vps773228.ovh.net sshd[25044]: Failed password for root from 95.217.1.162 port 42746 ssh2 2020-02-07T17:23:53.770539vps773228.ovh.net sshd[25046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=static.162.1.217.95.clients.your-server.de user=root 2020-02-07T17:23:55.921782vps773228.ovh.net sshd[25046]: Failed password for root from 95.217.1.162 port 53904 ssh2 2020-02-07T17:24:19.813297vps773228.ovh.net sshd[25048]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=static.162.1.217.95.clients.your-server.de user=root 2020-02-07T17:24:21.532931vps773228.ovh.net sshd[25048]: Failed password for root from 95.217.1.162 port 36746 ssh2 2020-02-07T17:24:44.109868vps773228.ovh.net sshd[25050] ...	2020-02-08 00:34:19
94.191.59.86	attack	2020-02-07T07:07:52.844623-07:00 suse-nuc sshd[16293]: Invalid user pug from 94.191.59.86 port 50786 ...	2020-02-08 00:25:33
114.242.117.12	attackspambots	Feb 7 16:21:50 legacy sshd[28479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.242.117.12 Feb 7 16:21:52 legacy sshd[28479]: Failed password for invalid user vhb from 114.242.117.12 port 39677 ssh2 Feb 7 16:25:06 legacy sshd[28639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.242.117.12 ...	2020-02-08 00:53:49
113.162.178.18	attackspam	Unauthorized connection attempt from IP address 113.162.178.18 on Port 465(SMTPS)	2020-02-08 00:42:19
186.42.182.40	attackspambots	Portscan or hack attempt detected by psad/fwsnort	2020-02-08 00:44:42
164.132.122.241	attackbotsspam	Honeypot attack, port: 445, PTR: ip241.ip-164-132-122.eu.	2020-02-08 00:48:41
201.157.194.106	attackbots	Feb 7 16:53:15 server sshd\[19940\]: Invalid user ccf from 201.157.194.106 Feb 7 16:53:15 server sshd\[19940\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.157.194.106 Feb 7 16:53:17 server sshd\[19940\]: Failed password for invalid user ccf from 201.157.194.106 port 59563 ssh2 Feb 7 17:07:41 server sshd\[22357\]: Invalid user rlx from 201.157.194.106 Feb 7 17:07:41 server sshd\[22357\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.157.194.106 ...	2020-02-08 00:37:43
222.186.52.139	attackspambots	Feb 7 17:50:16 v22018076622670303 sshd\[3384\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.139 user=root Feb 7 17:50:18 v22018076622670303 sshd\[3384\]: Failed password for root from 222.186.52.139 port 20163 ssh2 Feb 7 17:50:20 v22018076622670303 sshd\[3384\]: Failed password for root from 222.186.52.139 port 20163 ssh2 ...	2020-02-08 00:54:47
93.152.159.11	attackspambots	Feb 7 16:44:59 sd-53420 sshd\[29582\]: Invalid user uci from 93.152.159.11 Feb 7 16:44:59 sd-53420 sshd\[29582\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.152.159.11 Feb 7 16:45:02 sd-53420 sshd\[29582\]: Failed password for invalid user uci from 93.152.159.11 port 48178 ssh2 Feb 7 16:46:48 sd-53420 sshd\[29890\]: Invalid user zez from 93.152.159.11 Feb 7 16:46:48 sd-53420 sshd\[29890\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.152.159.11 ...	2020-02-08 00:30:49
194.75.150.227	attackbots	Feb 7 14:07:53 thevastnessof sshd[1881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.75.150.227 ...	2020-02-08 00:14:54
89.248.168.41	attack	Feb 7 16:10:50 h2177944 kernel: \[4286312.899697\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=89.248.168.41 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=35021 PROTO=TCP SPT=46159 DPT=1471 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 7 16:10:50 h2177944 kernel: \[4286312.899710\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=89.248.168.41 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=35021 PROTO=TCP SPT=46159 DPT=1471 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 7 16:57:00 h2177944 kernel: \[4289081.949954\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=89.248.168.41 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=18608 PROTO=TCP SPT=46159 DPT=1706 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 7 16:57:00 h2177944 kernel: \[4289081.949968\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=89.248.168.41 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=18608 PROTO=TCP SPT=46159 DPT=1706 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 7 16:59:00 h2177944 kernel: \[4289202.245122\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=89.248.168.41 DST=85.214.117.9	2020-02-08 00:11:47
162.62.80.28	attack	ICMP MH Probe, Scan /Distributed -	2020-02-08 00:11:21
219.79.111.162	attackspambots	Honeypot attack, port: 5555, PTR: n219079111162.netvigator.com.	2020-02-08 00:15:27
162.14.8.254	attack	ICMP MH Probe, Scan /Distributed -	2020-02-08 00:47:14

Recently Reported IPs

95.7.175.245	178.124.166.216	195.97.216.234	245.124.190.6
196.41.183.113	200.111.40.56	225.19.160.53	220.168.214.253
80.71.94.4	108.192.120.163	109.51.72.40	204.30.205.5
244.0.228.224	1.192.241.0	165.164.96.224	122.224.207.83
215.252.56.103	90.68.157.155	136.243.15.47	225.211.216.5