93.124.101.42 - IPInfo

Basic Info

City: Penza

Region: Penzenskaya Oblast'

Country: Russia

Internet Service Provider: OJSC Rostelecom

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Portscan or hack attempt detected by psad/fwsnort	2020-03-07 06:23:35

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 93.124.101.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14303
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;93.124.101.42.			IN	A

;; AUTHORITY SECTION:
.			488	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030601 1800 900 604800 86400

;; Query time: 178 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 07 06:23:32 CST 2020
;; MSG SIZE  rcvd: 117

Host info

42.101.124.93.in-addr.arpa domain name pointer host-93-124-101-42.dsl.sura.ru.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
42.101.124.93.in-addr.arpa	name = host-93-124-101-42.dsl.sura.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
211.193.31.52	attackspam	ssh brute force	2020-06-25 16:43:01
120.131.3.91	attack	Unauthorized connection attempt detected from IP address 120.131.3.91 to port 11451	2020-06-25 16:44:06
188.163.109.153	attackspambots	0,17-02/03 [bc01/m31] PostRequest-Spammer scoring: Durban01	2020-06-25 17:05:07
123.28.240.70	attackspam	Automated report (2020-06-25T11:51:20+08:00). Referrer spam originating from this address detected (anti-crisis-seo.com).	2020-06-25 16:52:58
161.35.200.233	attack	detected by Fail2Ban	2020-06-25 16:37:02
42.106.200.180	attack	Email rejected due to spam filtering	2020-06-25 17:18:32
129.28.51.226	attackspam	Jun 25 09:20:38 ns382633 sshd\[19748\]: Invalid user georgia from 129.28.51.226 port 49542 Jun 25 09:20:38 ns382633 sshd\[19748\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.51.226 Jun 25 09:20:41 ns382633 sshd\[19748\]: Failed password for invalid user georgia from 129.28.51.226 port 49542 ssh2 Jun 25 09:41:11 ns382633 sshd\[23753\]: Invalid user lee from 129.28.51.226 port 38276 Jun 25 09:41:11 ns382633 sshd\[23753\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.51.226	2020-06-25 16:43:48
181.16.119.150	attack	Email rejected due to spam filtering	2020-06-25 17:19:21
218.92.0.184	attackbotsspam	Jun 25 10:49:48 sshgateway sshd\[15450\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.184 user=root Jun 25 10:49:51 sshgateway sshd\[15450\]: Failed password for root from 218.92.0.184 port 23801 ssh2 Jun 25 10:50:04 sshgateway sshd\[15450\]: Failed password for root from 218.92.0.184 port 23801 ssh2	2020-06-25 16:54:49
150.95.177.195	attackbotsspam	Jun 25 00:22:49 mockhub sshd[353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.95.177.195 Jun 25 00:22:50 mockhub sshd[353]: Failed password for invalid user jamie from 150.95.177.195 port 57290 ssh2 ...	2020-06-25 16:57:48
123.201.158.198	attackspam	Jun 25 08:40:21 fhem-rasp sshd[28899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.201.158.198 Jun 25 08:40:23 fhem-rasp sshd[28899]: Failed password for invalid user ftpuser from 123.201.158.198 port 44785 ssh2 ...	2020-06-25 16:45:36
163.44.169.18	attackspambots	Jun 24 22:20:12 web1 sshd\[23501\]: Invalid user test1 from 163.44.169.18 Jun 24 22:20:12 web1 sshd\[23501\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.44.169.18 Jun 24 22:20:15 web1 sshd\[23501\]: Failed password for invalid user test1 from 163.44.169.18 port 45862 ssh2 Jun 24 22:23:59 web1 sshd\[23786\]: Invalid user web from 163.44.169.18 Jun 24 22:23:59 web1 sshd\[23786\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.44.169.18	2020-06-25 16:47:39
114.67.95.121	attack	Jun 25 13:51:14 localhost sshd[2143312]: Invalid user vnc from 114.67.95.121 port 54062 ...	2020-06-25 16:56:40
5.239.241.237	attackbotsspam	06/24/2020-23:51:04.432530 5.239.241.237 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-06-25 17:04:18
35.243.217.161	attackspambots	Jun 25 10:42:13 server sshd[28975]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.243.217.161 Jun 25 10:42:16 server sshd[28975]: Failed password for invalid user director from 35.243.217.161 port 46490 ssh2 Jun 25 10:44:49 server sshd[29040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.243.217.161 ...	2020-06-25 16:49:34

Recently Reported IPs

168.24.232.101	172.58.215.26	111.82.165.187	68.251.79.233
213.207.141.162	87.231.157.234	197.195.250.140	162.237.174.75
87.213.247.217	34.87.185.57	91.88.60.107	186.193.26.232
66.79.117.58	27.94.215.35	102.82.104.65	71.152.226.189
185.41.17.38	77.160.192.187	86.30.124.128	190.236.196.210