131.159.24.47 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: Technische Universitaet Muenchen

Hostname: unknown

Organization: unknown

Usage Type: University/College/School

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 54377a32f860648b \| WAF_Rule_ID: 100001 \| WAF_Kind: firewall \| CF_Action: drop \| Country: DE \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: skk.moe \| User-Agent: \| CF_DC: FRA. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 06:20:32

Type

Details

Datetime

attackbots

The IP has triggered Cloudflare WAF. CF-Ray: 54377a32f860648b | WAF_Rule_ID: 100001 | WAF_Kind: firewall | CF_Action: drop | Country: DE | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: skk.moe | User-Agent:  | CF_DC: FRA. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-12 06:20:32

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.159.24.47
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56455
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;131.159.24.47.			IN	A

;; AUTHORITY SECTION:
.			383	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121101 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 12 06:20:29 CST 2019
;; MSG SIZE  rcvd: 117

Host info

47.24.159.131.in-addr.arpa domain name pointer one06.cm.in.tum.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
47.24.159.131.in-addr.arpa	name = one06.cm.in.tum.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
217.128.65.11	attackspambots	Jan 13 02:36:44 ms-srv sshd[52795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.128.65.11 user=root Jan 13 02:36:47 ms-srv sshd[52795]: Failed password for invalid user root from 217.128.65.11 port 48148 ssh2	2020-03-08 22:17:20
112.85.42.182	attack	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.182 user=root Failed password for root from 112.85.42.182 port 8957 ssh2 Failed password for root from 112.85.42.182 port 8957 ssh2 Failed password for root from 112.85.42.182 port 8957 ssh2 Failed password for root from 112.85.42.182 port 8957 ssh2	2020-03-08 22:51:33
197.1.219.213	attack	Honeypot attack, port: 5555, PTR: PTR record not found	2020-03-08 22:23:46
106.52.114.162	attackspambots	Automatic report - SSH Brute-Force Attack	2020-03-08 22:33:16
80.85.57.57	attackspambots	Fail2Ban - HTTP Auth Bruteforce Attempt	2020-03-08 22:45:37
217.111.239.37	attackbotsspam	Feb 16 00:25:43 ms-srv sshd[56886]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.111.239.37 user=root Feb 16 00:25:45 ms-srv sshd[56886]: Failed password for invalid user root from 217.111.239.37 port 39896 ssh2	2020-03-08 22:24:08
157.230.153.75	attackbotsspam	$f2bV_matches	2020-03-08 23:01:17
216.21.8.139	attack	Dec 29 01:35:51 ms-srv sshd[33154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.21.8.139 Dec 29 01:35:53 ms-srv sshd[33154]: Failed password for invalid user klyman from 216.21.8.139 port 41700 ssh2	2020-03-08 22:44:32
216.68.91.104	attack	Jan 14 19:00:02 ms-srv sshd[5586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.68.91.104 Jan 14 19:00:05 ms-srv sshd[5586]: Failed password for invalid user guest from 216.68.91.104 port 56002 ssh2	2020-03-08 22:33:31
217.12.56.23	attackbotsspam	Jan 21 21:06:16 ms-srv sshd[26619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.12.56.23 user=root Jan 21 21:06:18 ms-srv sshd[26619]: Failed password for invalid user root from 217.12.56.23 port 45918 ssh2	2020-03-08 22:20:30
46.142.5.67	attack	Telnet Server BruteForce Attack	2020-03-08 22:46:07
216.211.250.8	attack	Jul 25 16:57:56 ms-srv sshd[13915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.211.250.8 Jul 25 16:57:58 ms-srv sshd[13915]: Failed password for invalid user ftpuser from 216.211.250.8 port 46788 ssh2	2020-03-08 22:42:09
164.132.46.197	attack	Mar 8 19:20:11 gw1 sshd[7145]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.46.197 Mar 8 19:20:13 gw1 sshd[7145]: Failed password for invalid user oracle from 164.132.46.197 port 38936 ssh2 ...	2020-03-08 22:28:50
216.158.235.213	attackbotsspam	May 7 21:25:34 ms-srv sshd[45869]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.158.235.213 May 7 21:25:37 ms-srv sshd[45869]: Failed password for invalid user zimbra from 216.158.235.213 port 40822 ssh2	2020-03-08 22:49:45
222.186.30.35	attack	Mar 8 15:10:06 debian64 sshd[30787]: Failed password for root from 222.186.30.35 port 23649 ssh2 Mar 8 15:10:10 debian64 sshd[30787]: Failed password for root from 222.186.30.35 port 23649 ssh2 ...	2020-03-08 22:22:26

Recently Reported IPs

113.195.21.66	113.58.236.213	112.232.246.17	112.193.169.195
16.160.153.54	111.224.235.46	111.224.234.150	3.225.217.224
111.224.220.43	110.177.83.156	110.80.152.48	106.120.14.169
106.59.245.107	106.45.1.151	106.45.0.102	106.45.0.12
130.77.216.84	170.208.251.196	61.159.252.2	60.13.6.49