93.95.240.245 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Kazakhstan

Internet Service Provider: Nur Sultan

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Oct 7 18:39:22 localhost sshd\[27883\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 user=root Oct 7 18:39:24 localhost sshd\[27883\]: Failed password for root from 93.95.240.245 port 52776 ssh2 Oct 7 18:42:13 localhost sshd\[28107\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 user=root Oct 7 18:42:15 localhost sshd\[28107\]: Failed password for root from 93.95.240.245 port 38304 ssh2 Oct 7 18:45:00 localhost sshd\[28194\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 user=root ...	2020-10-08 04:45:54
attack	2020-10-07T14:40:40+0200 Failed SSH Authentication/Brute Force Attack. (Server 4)	2020-10-07 21:07:33
attackspam	Oct 6 23:18:01 ovpn sshd\[11973\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 user=root Oct 6 23:18:03 ovpn sshd\[11973\]: Failed password for root from 93.95.240.245 port 49970 ssh2 Oct 6 23:26:09 ovpn sshd\[14039\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 user=root Oct 6 23:26:11 ovpn sshd\[14039\]: Failed password for root from 93.95.240.245 port 41142 ssh2 Oct 6 23:29:51 ovpn sshd\[14934\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 user=root	2020-10-07 12:53:46
attackspambots	2020-09-14T22:30:33.439150paragon sshd[45104]: Failed password for root from 93.95.240.245 port 58944 ssh2 2020-09-14T22:33:42.530827paragon sshd[45158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 user=root 2020-09-14T22:33:44.644589paragon sshd[45158]: Failed password for root from 93.95.240.245 port 48474 ssh2 2020-09-14T22:36:45.986816paragon sshd[45192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 user=root 2020-09-14T22:36:47.222816paragon sshd[45192]: Failed password for root from 93.95.240.245 port 38002 ssh2 ...	2020-09-15 03:06:18
attack	Sep 14 10:34:43 dhoomketu sshd[3079792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 user=root Sep 14 10:34:45 dhoomketu sshd[3079792]: Failed password for root from 93.95.240.245 port 49944 ssh2 Sep 14 10:35:35 dhoomketu sshd[3079820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 user=root Sep 14 10:35:37 dhoomketu sshd[3079820]: Failed password for root from 93.95.240.245 port 59886 ssh2 Sep 14 10:36:24 dhoomketu sshd[3079830]: Invalid user internet from 93.95.240.245 port 41598 ...	2020-09-14 18:58:45
attackspambots	2020-09-06T14:54:19.852313ks3355764 sshd[4431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 user=root 2020-09-06T14:54:21.757817ks3355764 sshd[4431]: Failed password for root from 93.95.240.245 port 45102 ssh2 ...	2020-09-07 03:13:01
attackspam	$f2bV_matches	2020-09-06 18:40:03
attackspambots	2020-08-09T00:10:43.796275snf-827550 sshd[6099]: Failed password for root from 93.95.240.245 port 40904 ssh2 2020-08-09T00:14:51.896926snf-827550 sshd[7632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 user=root 2020-08-09T00:14:54.101338snf-827550 sshd[7632]: Failed password for root from 93.95.240.245 port 50802 ssh2 ...	2020-08-09 05:16:19
attack	2020-08-07T06:39:21.995605amanda2.illicoweb.com sshd\[12936\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 user=root 2020-08-07T06:39:24.426985amanda2.illicoweb.com sshd\[12936\]: Failed password for root from 93.95.240.245 port 59342 ssh2 2020-08-07T06:44:24.935518amanda2.illicoweb.com sshd\[14084\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 user=root 2020-08-07T06:44:26.629778amanda2.illicoweb.com sshd\[14084\]: Failed password for root from 93.95.240.245 port 51346 ssh2 2020-08-07T06:48:32.335208amanda2.illicoweb.com sshd\[14926\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 user=root ...	2020-08-07 15:08:20
attackspam	Aug 5 13:59:33 ns382633 sshd\[14062\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 user=root Aug 5 13:59:35 ns382633 sshd\[14062\]: Failed password for root from 93.95.240.245 port 33954 ssh2 Aug 5 14:09:59 ns382633 sshd\[16089\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 user=root Aug 5 14:10:01 ns382633 sshd\[16089\]: Failed password for root from 93.95.240.245 port 50940 ssh2 Aug 5 14:14:28 ns382633 sshd\[16896\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 user=root	2020-08-06 01:51:21
attackbotsspam	Jul 31 13:17:25 inter-technics sshd[2812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 user=root Jul 31 13:17:27 inter-technics sshd[2812]: Failed password for root from 93.95.240.245 port 35210 ssh2 Jul 31 13:21:43 inter-technics sshd[3163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 user=root Jul 31 13:21:45 inter-technics sshd[3163]: Failed password for root from 93.95.240.245 port 44766 ssh2 Jul 31 13:26:03 inter-technics sshd[3464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 user=root Jul 31 13:26:06 inter-technics sshd[3464]: Failed password for root from 93.95.240.245 port 54338 ssh2 ...	2020-07-31 19:45:36
attackspam	Jul 27 09:12:07 ns382633 sshd\[20491\]: Invalid user arnie from 93.95.240.245 port 47718 Jul 27 09:12:07 ns382633 sshd\[20491\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 Jul 27 09:12:09 ns382633 sshd\[20491\]: Failed password for invalid user arnie from 93.95.240.245 port 47718 ssh2 Jul 27 09:27:10 ns382633 sshd\[23258\]: Invalid user deployer from 93.95.240.245 port 44254 Jul 27 09:27:10 ns382633 sshd\[23258\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245	2020-07-27 15:28:47
attackspambots	Jul 12 06:21:57 main sshd[23959]: Failed password for invalid user romero from 93.95.240.245 port 43702 ssh2 Jul 12 06:35:58 main sshd[24217]: Failed password for invalid user rizqi from 93.95.240.245 port 52360 ssh2 Jul 12 06:39:19 main sshd[24307]: Failed password for invalid user lj from 93.95.240.245 port 48278 ssh2 Jul 12 06:42:36 main sshd[24345]: Failed password for invalid user farris from 93.95.240.245 port 44186 ssh2 Jul 12 06:45:51 main sshd[24378]: Failed password for invalid user service from 93.95.240.245 port 40098 ssh2 Jul 12 06:49:14 main sshd[24416]: Failed password for invalid user bank from 93.95.240.245 port 36004 ssh2 Jul 12 06:56:07 main sshd[24489]: Failed password for invalid user ns08 from 93.95.240.245 port 56056 ssh2 Jul 12 06:59:22 main sshd[24875]: Failed password for invalid user plotex from 93.95.240.245 port 51968 ssh2 Jul 12 07:02:42 main sshd[24920]: Failed password for invalid user chenshiquan from 93.95.240.245 port 47884 ssh2	2020-07-13 06:14:32
attackspambots	2020-07-08T11:58:06.547358shield sshd\[15581\]: Invalid user inter from 93.95.240.245 port 58452 2020-07-08T11:58:06.551066shield sshd\[15581\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 2020-07-08T11:58:09.157042shield sshd\[15581\]: Failed password for invalid user inter from 93.95.240.245 port 58452 ssh2 2020-07-08T12:01:37.205426shield sshd\[17155\]: Invalid user bena from 93.95.240.245 port 54044 2020-07-08T12:01:37.210170shield sshd\[17155\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245	2020-07-08 21:55:11
attack	fail2ban	2020-06-28 21:18:42
attackspam	2020-06-26T05:46:44.051184n23.at sshd[936316]: Invalid user paulj from 93.95.240.245 port 38098 2020-06-26T05:46:46.385094n23.at sshd[936316]: Failed password for invalid user paulj from 93.95.240.245 port 38098 ssh2 2020-06-26T05:58:16.092579n23.at sshd[946071]: Invalid user dnc from 93.95.240.245 port 58112 ...	2020-06-26 12:03:49
attackspam	Invalid user sys from 93.95.240.245 port 37936	2020-06-17 15:31:59
attackspam	Jun 15 11:28:12 sigma sshd\[1284\]: Invalid user janas from 93.95.240.245Jun 15 11:28:14 sigma sshd\[1284\]: Failed password for invalid user janas from 93.95.240.245 port 50976 ssh2 ...	2020-06-15 18:33:26
attack	Automatic report BANNED IP	2020-06-13 19:14:34
attackspam	$f2bV_matches	2020-06-13 04:03:01
attack	2020-06-12T14:05:45.670917amanda2.illicoweb.com sshd\[7920\]: Invalid user upload from 93.95.240.245 port 56078 2020-06-12T14:05:45.673495amanda2.illicoweb.com sshd\[7920\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 2020-06-12T14:05:47.696608amanda2.illicoweb.com sshd\[7920\]: Failed password for invalid user upload from 93.95.240.245 port 56078 ssh2 2020-06-12T14:08:39.182029amanda2.illicoweb.com sshd\[8026\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 user=root 2020-06-12T14:08:41.426017amanda2.illicoweb.com sshd\[8026\]: Failed password for root from 93.95.240.245 port 45840 ssh2 ...	2020-06-12 21:12:53
attackbots	$f2bV_matches	2020-06-09 17:57:41
attackbots	5x Failed Password	2020-05-28 13:38:16
attackbotsspam	May 24 11:11:57 server sshd[24677]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 May 24 11:11:59 server sshd[24677]: Failed password for invalid user tpi from 93.95.240.245 port 60736 ssh2 May 24 11:15:58 server sshd[25011]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 ...	2020-05-24 19:37:18
attackbotsspam	573. On May 17 2020 experienced a Brute Force SSH login attempt -> 16 unique times by 93.95.240.245.	2020-05-20 19:18:56
attackspambots	$f2bV_matches	2020-05-02 23:49:37
attackspambots	Apr 27 08:16:43 ny01 sshd[10949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 Apr 27 08:16:45 ny01 sshd[10949]: Failed password for invalid user test101 from 93.95.240.245 port 50662 ssh2 Apr 27 08:19:01 ny01 sshd[11200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245	2020-04-28 01:13:23
attack	Apr 27 06:07:34 ny01 sshd[27174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 Apr 27 06:07:37 ny01 sshd[27174]: Failed password for invalid user salman from 93.95.240.245 port 59438 ssh2 Apr 27 06:10:07 ny01 sshd[27450]: Failed password for root from 93.95.240.245 port 39714 ssh2	2020-04-27 18:23:35
attackbots	Invalid user pi from 93.95.240.245 port 48250	2020-04-21 00:37:46
attack	Apr 17 15:53:35 gw1 sshd[8418]: Failed password for root from 93.95.240.245 port 43586 ssh2 Apr 17 15:57:35 gw1 sshd[8589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 ...	2020-04-17 19:26:40

Comments on same subnet:

IP	Type	Details	Datetime
93.95.240.246	attackbotsspam	1583864072 - 03/10/2020 19:14:32 Host: 93.95.240.246/93.95.240.246 Port: 445 TCP Blocked	2020-03-11 05:33:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 93.95.240.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35705
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;93.95.240.245.			IN	A

;; AUTHORITY SECTION:
.			598	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041701 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 17 19:26:37 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 245.240.95.93.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 245.240.95.93.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.71.217.146	attack	Invalid user wp from 167.71.217.146 port 49272	2020-01-18 22:06:55
103.40.235.215	attackspam	Unauthorized connection attempt detected from IP address 103.40.235.215 to port 2220 [J]	2020-01-18 22:42:15
106.13.20.73	attack	Invalid user suva from 106.13.20.73 port 42382	2020-01-18 22:14:49
156.251.174.83	attackspambots	Unauthorized connection attempt detected from IP address 156.251.174.83 to port 2220 [J]	2020-01-18 22:32:38
159.89.172.178	attackspambots	Jan 18 14:43:09 vpn01 sshd[19811]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.172.178 Jan 18 14:43:11 vpn01 sshd[19811]: Failed password for invalid user quincy from 159.89.172.178 port 43162 ssh2 ...	2020-01-18 22:31:22
106.13.16.56	attack	Invalid user master from 106.13.16.56 port 45126	2020-01-18 22:15:19
89.128.118.41	attackbotsspam	Unauthorized connection attempt detected from IP address 89.128.118.41 to port 2220 [J]	2020-01-18 22:17:40
168.61.176.121	attackbots	Jan 18 13:59:59 *** sshd[2398]: Invalid user henry from 168.61.176.121	2020-01-18 22:06:21
203.81.78.180	attackbots	Unauthorized connection attempt detected from IP address 203.81.78.180 to port 2220 [J]	2020-01-18 22:25:11
188.207.37.129	attackspam	Invalid user admin from 188.207.37.129 port 48446	2020-01-18 22:26:27
106.13.183.19	attack	Invalid user csserver from 106.13.183.19 port 32848	2020-01-18 22:14:11
137.74.44.162	attack	Invalid user ansible from 137.74.44.162 port 59262	2020-01-18 22:34:41
182.61.105.89	attackbots	Invalid user dark from 182.61.105.89 port 58352	2020-01-18 22:03:37
139.199.168.18	attack	Unauthorized connection attempt detected from IP address 139.199.168.18 to port 2220 [J]	2020-01-18 22:34:07
102.129.175.142	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-18 22:42:47

Recently Reported IPs

176.9.23.169	223.222.178.51	109.93.67.40	95.216.139.24
42.52.201.154	113.23.0.101	134.122.117.242	59.18.234.87
231.90.119.128	189.41.94.196	123.206.255.17	122.114.131.13
167.99.146.21	9.47.124.236	194.149.33.10	204.163.13.63
182.118.116.123	181.79.119.45	58.205.105.125	216.174.169.19