137.248.58.237

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: Philipps-Universitaet Marburg

Hostname: unknown

Organization: unknown

Usage Type: University/College/School

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-20 21:00:34,640 INFO [amun_request_handler] PortScan Detected on Port: 445 (137.248.58.237)	2019-07-21 06:19:38

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 137.248.58.237
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12968
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;137.248.58.237.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072001 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jul 21 06:19:33 CST 2019
;; MSG SIZE  rcvd: 118

Host info

237.58.248.137.in-addr.arpa domain name pointer swla1437.wlan.uni-marburg.de.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
237.58.248.137.in-addr.arpa	name = swla1437.wlan.uni-marburg.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
158.181.48.29	attackspam	Web App Attack.	2020-04-16 23:48:14
218.92.0.184	attackbotsspam	Apr 16 17:39:26 minden010 sshd[30864]: Failed password for root from 218.92.0.184 port 9035 ssh2 Apr 16 17:39:30 minden010 sshd[30864]: Failed password for root from 218.92.0.184 port 9035 ssh2 Apr 16 17:39:33 minden010 sshd[30864]: Failed password for root from 218.92.0.184 port 9035 ssh2 Apr 16 17:39:39 minden010 sshd[30864]: error: maximum authentication attempts exceeded for root from 218.92.0.184 port 9035 ssh2 [preauth] ...	2020-04-16 23:40:57
194.158.215.210	attackspambots	Apr 16 14:13:01 mail postfix/postscreen[4270]: DNSBL rank 3 for [194.158.215.210]:62138 ...	2020-04-16 23:29:20
122.51.159.155	attackbots	Brute-force attempt banned	2020-04-16 23:50:09
185.200.241.148	attack	SSH bruteforce	2020-04-16 23:54:47
51.77.144.50	attack	Apr 16 05:05:51 web1 sshd\[27545\]: Invalid user prueba from 51.77.144.50 Apr 16 05:05:51 web1 sshd\[27545\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.144.50 Apr 16 05:05:53 web1 sshd\[27545\]: Failed password for invalid user prueba from 51.77.144.50 port 59800 ssh2 Apr 16 05:09:43 web1 sshd\[27706\]: Invalid user ubuntu from 51.77.144.50 Apr 16 05:09:43 web1 sshd\[27706\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.144.50	2020-04-16 23:51:05
181.189.222.20	attackbots	2020-04-16T10:52:18.9058411495-001 sshd[51466]: Invalid user br from 181.189.222.20 port 54437 2020-04-16T10:52:21.2047351495-001 sshd[51466]: Failed password for invalid user br from 181.189.222.20 port 54437 ssh2 2020-04-16T10:57:21.4768961495-001 sshd[53338]: Invalid user zs from 181.189.222.20 port 58671 2020-04-16T10:57:21.4803231495-001 sshd[53338]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=host181-189-222-20.wilnet.com.ar 2020-04-16T10:57:21.4768961495-001 sshd[53338]: Invalid user zs from 181.189.222.20 port 58671 2020-04-16T10:57:23.3640361495-001 sshd[53338]: Failed password for invalid user zs from 181.189.222.20 port 58671 ssh2 ...	2020-04-16 23:44:05
190.181.60.2	attack	Apr 16 10:49:37 ny01 sshd[17416]: Failed password for root from 190.181.60.2 port 39674 ssh2 Apr 16 10:56:36 ny01 sshd[18646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.181.60.2 Apr 16 10:56:39 ny01 sshd[18646]: Failed password for invalid user sl from 190.181.60.2 port 48160 ssh2	2020-04-17 00:06:11
83.37.177.47	attack	Automatic report - Port Scan Attack	2020-04-16 23:38:37
129.122.16.156	attackbotsspam	$f2bV_matches	2020-04-17 00:03:23
223.205.222.122	attackspam	1587039173 - 04/16/2020 14:12:53 Host: 223.205.222.122/223.205.222.122 Port: 445 TCP Blocked	2020-04-16 23:39:53
35.226.246.200	attackbotsspam	$f2bV_matches	2020-04-17 00:02:58
106.13.148.104	attack	$f2bV_matches	2020-04-16 23:58:19
203.76.117.157	attackbotsspam	2020-04-16T14:47:11.268348homeassistant sshd[8075]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.76.117.157 user=root 2020-04-16T14:47:13.413814homeassistant sshd[8075]: Failed password for root from 203.76.117.157 port 41480 ssh2 ...	2020-04-16 23:32:04
159.203.133.182	attackbotsspam	Apr 16 16:48:57 ncomp sshd[30177]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.133.182 user=root Apr 16 16:48:59 ncomp sshd[30177]: Failed password for root from 159.203.133.182 port 60996 ssh2 Apr 16 17:00:49 ncomp sshd[30389]: Invalid user ubuntu from 159.203.133.182	2020-04-17 00:10:28

Recently Reported IPs

159.117.85.64	84.54.58.45	152.231.162.180	184.65.88.157
111.45.60.122	14.189.77.158	69.162.98.88	42.235.4.65
37.214.249.88	197.51.199.58	38.112.2.87	101.255.75.125
190.99.16.18	196.188.240.241	103.249.207.34	95.85.69.209
138.30.124.46	181.30.103.218	99.49.223.24	45.179.49.205