93.138.137.125

Basic Info

City: unknown

Region: unknown

Country: Croatia

Internet Service Provider: Croatian Telecom Inc.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Jul 30 14:12:48 mxgate1 postfix/postscreen[2496]: CONNECT from [93.138.137.125]:44694 to [176.31.12.44]:25 Jul 30 14:12:48 mxgate1 postfix/dnsblog[2500]: addr 93.138.137.125 listed by domain zen.spamhaus.org as 127.0.0.11 Jul 30 14:12:48 mxgate1 postfix/dnsblog[2498]: addr 93.138.137.125 listed by domain b.barracudacentral.org as 127.0.0.2 Jul 30 14:12:54 mxgate1 postfix/postscreen[2496]: DNSBL rank 3 for [93.138.137.125]:44694 Jul x@x Jul 30 14:12:55 mxgate1 postfix/postscreen[2496]: HANGUP after 1.4 from [93.138.137.125]:44694 in tests after SMTP handshake Jul 30 14:12:55 mxgate1 postfix/postscreen[2496]: DISCONNECT [93.138.137.125]:44694 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=93.138.137.125	2019-07-30 20:41:55

Type

Details

Datetime

attack

Jul 30 14:12:48 mxgate1 postfix/postscreen[2496]: CONNECT from [93.138.137.125]:44694 to [176.31.12.44]:25
Jul 30 14:12:48 mxgate1 postfix/dnsblog[2500]: addr 93.138.137.125 listed by domain zen.spamhaus.org as 127.0.0.11
Jul 30 14:12:48 mxgate1 postfix/dnsblog[2498]: addr 93.138.137.125 listed by domain b.barracudacentral.org as 127.0.0.2
Jul 30 14:12:54 mxgate1 postfix/postscreen[2496]: DNSBL rank 3 for [93.138.137.125]:44694
Jul x@x
Jul 30 14:12:55 mxgate1 postfix/postscreen[2496]: HANGUP after 1.4 from [93.138.137.125]:44694 in tests after SMTP handshake
Jul 30 14:12:55 mxgate1 postfix/postscreen[2496]: DISCONNECT [93.138.137.125]:44694


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=93.138.137.125

2019-07-30 20:41:55

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 93.138.137.125
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44871
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;93.138.137.125.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019073001 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 30 20:41:48 CST 2019
;; MSG SIZE  rcvd: 118

Host info

125.137.138.93.in-addr.arpa domain name pointer 93-138-137-125.adsl.net.t-com.hr.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
125.137.138.93.in-addr.arpa	name = 93-138-137-125.adsl.net.t-com.hr.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
13.210.177.21	attackbotsspam	Fail2Ban Ban Triggered	2020-01-08 04:33:13
49.89.55.26	attackbots	Jan 7 13:55:15 debian-2gb-nbg1-2 kernel: \[661033.378957\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=49.89.55.26 DST=195.201.40.59 LEN=42 TOS=0x00 PREC=0x00 TTL=50 ID=0 DF PROTO=UDP SPT=15344 DPT=8081 LEN=22	2020-01-08 04:14:50
95.110.154.101	attack	Unauthorized connection attempt detected from IP address 95.110.154.101 to port 2220 [J]	2020-01-08 04:32:27
208.93.153.177	attack	IP: 208.93.153.177 Ports affected http protocol over TLS/SSL (443) Abuse Confidence rating 100% Found in DNSBL('s) ASN Details AS40913 Quality Technology Services Santa Clara LLC United States (US) CIDR 208.93.152.0/22 Log Date: 7/01/2020 5:12:38 PM UTC	2020-01-08 04:09:05
106.13.229.53	attack	Jan 7 12:37:48 vps46666688 sshd[25995]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.229.53 Jan 7 12:37:50 vps46666688 sshd[25995]: Failed password for invalid user factorio from 106.13.229.53 port 57228 ssh2 ...	2020-01-08 04:18:02
218.92.0.189	attack	Jan 7 17:06:27 legacy sshd[19892]: Failed password for root from 218.92.0.189 port 44578 ssh2 Jan 7 17:07:40 legacy sshd[19971]: Failed password for root from 218.92.0.189 port 62183 ssh2 Jan 7 17:07:41 legacy sshd[19971]: Failed password for root from 218.92.0.189 port 62183 ssh2 ...	2020-01-08 04:31:30
50.53.179.3	attack	2020-01-07T20:16:52.250701 sshd[22393]: Invalid user obg from 50.53.179.3 port 37046 2020-01-07T20:16:52.264970 sshd[22393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.53.179.3 2020-01-07T20:16:52.250701 sshd[22393]: Invalid user obg from 50.53.179.3 port 37046 2020-01-07T20:16:54.256696 sshd[22393]: Failed password for invalid user obg from 50.53.179.3 port 37046 ssh2 2020-01-07T20:33:18.468403 sshd[22755]: Invalid user test from 50.53.179.3 port 50238 ...	2020-01-08 04:24:15
171.252.201.101	attack	Unauthorized connection attempt detected from IP address 171.252.201.101 to port 445	2020-01-08 04:34:14
185.232.136.25	attack	1578401621 - 01/07/2020 13:53:41 Host: 185.232.136.25/185.232.136.25 Port: 445 TCP Blocked	2020-01-08 04:31:45
46.61.235.111	attackspam	Unauthorized connection attempt detected from IP address 46.61.235.111 to port 2220 [J]	2020-01-08 04:28:16
129.213.160.211	attackbotsspam	$f2bV_matches	2020-01-08 04:28:29
222.186.30.248	attackspambots	Jan 7 17:02:44 firewall sshd[11393]: Failed password for root from 222.186.30.248 port 58390 ssh2 Jan 7 17:02:47 firewall sshd[11393]: Failed password for root from 222.186.30.248 port 58390 ssh2 Jan 7 17:02:49 firewall sshd[11393]: Failed password for root from 222.186.30.248 port 58390 ssh2 ...	2020-01-08 04:04:33
164.132.80.139	attackspam	Unauthorized connection attempt detected from IP address 164.132.80.139 to port 2220 [J]	2020-01-08 04:44:03
103.104.104.104	attackspambots	Jan 6 17:28:41 Server1 sshd[13126]: Did not receive identification string from 103.104.104.104 port 46364 Jan 6 17:31:37 Server1 sshd[13429]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.104.104 user=r.r Jan 6 17:31:40 Server1 sshd[13429]: Failed password for r.r from 103.104.104.104 port 44350 ssh2 Jan 6 17:31:41 Server1 sshd[13429]: Received disconnect from 103.104.104.104 port 44350:11: Normal Shutdown, Thank you for playing [preauth] Jan 6 17:31:41 Server1 sshd[13429]: Disconnected from authenticating user r.r 103.104.104.104 port 44350 [preauth] Jan 6 17:32:53 Server1 sshd[13465]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.104.104 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.104.104.104	2020-01-08 04:43:31
139.199.115.210	attackbotsspam	Jan 7 19:31:29 124388 sshd[9299]: Invalid user wf from 139.199.115.210 port 26736 Jan 7 19:31:29 124388 sshd[9299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.115.210 Jan 7 19:31:29 124388 sshd[9299]: Invalid user wf from 139.199.115.210 port 26736 Jan 7 19:31:31 124388 sshd[9299]: Failed password for invalid user wf from 139.199.115.210 port 26736 ssh2 Jan 7 19:36:09 124388 sshd[9389]: Invalid user lian from 139.199.115.210 port 49358	2020-01-08 04:37:25

Recently Reported IPs

207.157.255.141	123.155.11.34	58.219.134.103	113.200.86.223
210.213.125.170	83.110.236.200	2.91.166.209	129.204.74.15
117.1.191.220	210.111.182.51	184.198.245.151	178.242.57.250
82.137.208.177	92.242.192.131	209.58.128.172	14.177.222.57
220.171.199.221	186.10.214.138	138.185.239.69	111.76.152.226