City: Frankfurt am Main
Region: Hessen
Country: Germany
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 139.59.211.245 | attackspam | SSH brutforce |
2020-10-05 04:59:23 |
| 139.59.211.245 | attackbots | Oct 4 14:52:35 host sshd[18768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.211.245 user=root Oct 4 14:52:37 host sshd[18768]: Failed password for root from 139.59.211.245 port 38516 ssh2 ... |
2020-10-04 20:53:33 |
| 139.59.211.245 | attackspambots | detected by Fail2Ban |
2020-10-04 12:36:51 |
| 139.59.211.245 | attackbots | Sep 30 20:24:04 buvik sshd[11406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.211.245 Sep 30 20:24:06 buvik sshd[11406]: Failed password for invalid user allan from 139.59.211.245 port 44884 ssh2 Sep 30 20:30:58 buvik sshd[12480]: Invalid user ftpuser from 139.59.211.245 ... |
2020-10-01 03:01:08 |
| 139.59.211.245 | attack | Invalid user administrador from 139.59.211.245 port 40100 |
2020-09-30 19:13:32 |
| 139.59.211.245 | attackbots | 139.59.211.245 (DE/Germany/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 3 09:47:25 server2 sshd[30071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.234.7.109 user=root Sep 3 09:47:27 server2 sshd[30071]: Failed password for root from 123.234.7.109 port 2358 ssh2 Sep 3 09:49:42 server2 sshd[31526]: Failed password for root from 207.180.196.207 port 53430 ssh2 Sep 3 09:54:46 server2 sshd[2259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.138.242 user=root Sep 3 09:54:48 server2 sshd[2259]: Failed password for root from 181.48.138.242 port 49964 ssh2 Sep 3 09:56:34 server2 sshd[3389]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.211.245 user=root IP Addresses Blocked: 123.234.7.109 (CN/China/-) 207.180.196.207 (DE/Germany/-) 181.48.138.242 (CO/Colombia/-) |
2020-09-04 01:07:51 |
| 139.59.211.245 | attackbotsspam | Invalid user msq from 139.59.211.245 port 40038 |
2020-09-03 16:31:27 |
| 139.59.211.245 | attackspambots | Invalid user 123 from 139.59.211.245 port 59876 |
2020-09-03 08:40:15 |
| 139.59.211.245 | attackbots | Invalid user msq from 139.59.211.245 port 40038 |
2020-08-31 16:37:10 |
| 139.59.211.245 | attackbotsspam | Aug 28 06:36:43 eventyay sshd[17016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.211.245 Aug 28 06:36:45 eventyay sshd[17016]: Failed password for invalid user giaou from 139.59.211.245 port 48412 ssh2 Aug 28 06:45:21 eventyay sshd[17399]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.211.245 ... |
2020-08-28 12:47:25 |
| 139.59.211.245 | attackbots | Aug 19 21:51:15 ip40 sshd[32510]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.211.245 Aug 19 21:51:17 ip40 sshd[32510]: Failed password for invalid user student4 from 139.59.211.245 port 40544 ssh2 ... |
2020-08-20 04:16:52 |
| 139.59.211.245 | attack | <6 unauthorized SSH connections |
2020-08-16 15:31:52 |
| 139.59.211.245 | attack | ssh brute force |
2020-08-13 14:19:19 |
| 139.59.211.245 | attackbots | 2020-08-08T05:31:19.239393ns386461 sshd\[5799\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.211.245 user=root 2020-08-08T05:31:21.498539ns386461 sshd\[5799\]: Failed password for root from 139.59.211.245 port 39116 ssh2 2020-08-08T05:43:34.794550ns386461 sshd\[16402\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.211.245 user=root 2020-08-08T05:43:36.288399ns386461 sshd\[16402\]: Failed password for root from 139.59.211.245 port 40886 ssh2 2020-08-08T05:53:04.061468ns386461 sshd\[25563\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.211.245 user=root ... |
2020-08-08 17:36:49 |
| 139.59.211.245 | attack | SSH Brute-Forcing (server1) |
2020-08-08 06:29:29 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.211.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7709
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;139.59.211.157. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025103001 1800 900 604800 86400
;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 31 04:00:45 CST 2025
;; MSG SIZE rcvd: 107Host 157.211.59.139.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 157.211.59.139.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 123.23.87.56 | attack | 168. On May 18 2020 experienced a Brute Force SSH login attempt -> 1 unique times by 123.23.87.56. |
2020-05-20 17:14:13 |
| 151.254.249.183 | attack | May 20 03:48:38 Tower sshd[32432]: Connection from 151.254.249.183 port 5547 on 192.168.10.220 port 22 rdomain "" May 20 03:48:39 Tower sshd[32432]: Invalid user admin from 151.254.249.183 port 5547 May 20 03:48:39 Tower sshd[32432]: error: Could not get shadow information for NOUSER May 20 03:48:39 Tower sshd[32432]: Failed password for invalid user admin from 151.254.249.183 port 5547 ssh2 May 20 03:48:39 Tower sshd[32432]: Connection closed by invalid user admin 151.254.249.183 port 5547 [preauth] |
2020-05-20 17:18:49 |
| 1.20.156.201 | attack | Hits on port : 8291(x2) 8728 |
2020-05-20 17:05:55 |
| 106.13.203.62 | attackspambots | May 20 10:16:34 srv-ubuntu-dev3 sshd[59187]: Invalid user kqa from 106.13.203.62 May 20 10:16:34 srv-ubuntu-dev3 sshd[59187]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.203.62 May 20 10:16:34 srv-ubuntu-dev3 sshd[59187]: Invalid user kqa from 106.13.203.62 May 20 10:16:36 srv-ubuntu-dev3 sshd[59187]: Failed password for invalid user kqa from 106.13.203.62 port 43142 ssh2 May 20 10:19:23 srv-ubuntu-dev3 sshd[59741]: Invalid user dfk from 106.13.203.62 May 20 10:19:23 srv-ubuntu-dev3 sshd[59741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.203.62 May 20 10:19:23 srv-ubuntu-dev3 sshd[59741]: Invalid user dfk from 106.13.203.62 May 20 10:19:24 srv-ubuntu-dev3 sshd[59741]: Failed password for invalid user dfk from 106.13.203.62 port 49966 ssh2 May 20 10:21:49 srv-ubuntu-dev3 sshd[60164]: Invalid user jsp from 106.13.203.62 ... |
2020-05-20 17:22:45 |
| 49.233.80.135 | attackspambots | May 20 11:09:45 ns37 sshd[14255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.80.135 |
2020-05-20 17:33:06 |
| 83.24.209.212 | attackspam | Lines containing failures of 83.24.209.212 May 20 10:42:40 ris sshd[9308]: Invalid user zuf from 83.24.209.212 port 41048 May 20 10:42:40 ris sshd[9308]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.24.209.212 May 20 10:42:43 ris sshd[9308]: Failed password for invalid user zuf from 83.24.209.212 port 41048 ssh2 May 20 10:42:44 ris sshd[9308]: Received disconnect from 83.24.209.212 port 41048:11: Bye Bye [preauth] May 20 10:42:44 ris sshd[9308]: Disconnected from invalid user zuf 83.24.209.212 port 41048 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=83.24.209.212 |
2020-05-20 17:27:18 |
| 2.222.249.17 | attackbots | Autoban 2.222.249.17 VIRUS |
2020-05-20 17:17:57 |
| 195.154.242.225 | attackbotsspam | (sshd) Failed SSH login from 195.154.242.225 (FR/France/195-154-242-225.rev.poneytelecom.eu): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 20 09:48:50 ubnt-55d23 sshd[27944]: Invalid user hms from 195.154.242.225 port 48752 May 20 09:48:53 ubnt-55d23 sshd[27944]: Failed password for invalid user hms from 195.154.242.225 port 48752 ssh2 |
2020-05-20 17:10:14 |
| 222.186.30.57 | attackbots | May 19 23:12:14 web9 sshd\[23170\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.57 user=root May 19 23:12:17 web9 sshd\[23170\]: Failed password for root from 222.186.30.57 port 43653 ssh2 May 19 23:12:23 web9 sshd\[23179\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.57 user=root May 19 23:12:25 web9 sshd\[23179\]: Failed password for root from 222.186.30.57 port 20619 ssh2 May 19 23:12:27 web9 sshd\[23179\]: Failed password for root from 222.186.30.57 port 20619 ssh2 |
2020-05-20 17:13:03 |
| 222.186.175.154 | attack | SSH/22 MH Probe, BF, Hack - |
2020-05-20 17:01:56 |
| 1.1.198.239 | attackspambots | 1589960917 - 05/20/2020 09:48:37 Host: 1.1.198.239/1.1.198.239 Port: 445 TCP Blocked |
2020-05-20 17:23:55 |
| 31.167.150.226 | attackbotsspam | May 20 10:53:06 abendstille sshd\[8275\]: Invalid user xda from 31.167.150.226 May 20 10:53:06 abendstille sshd\[8275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.167.150.226 May 20 10:53:07 abendstille sshd\[8275\]: Failed password for invalid user xda from 31.167.150.226 port 39324 ssh2 May 20 11:01:08 abendstille sshd\[17614\]: Invalid user chwx from 31.167.150.226 May 20 11:01:08 abendstille sshd\[17614\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.167.150.226 ... |
2020-05-20 17:17:11 |
| 84.141.244.239 | attack | May x@x May x@x May x@x May x@x May x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=84.141.244.239 |
2020-05-20 16:57:01 |
| 14.250.243.2 | attack | May 20 09:48:32 163-172-32-151 sshd[3383]: Invalid user 888888 from 14.250.243.2 port 58685 ... |
2020-05-20 17:27:57 |
| 190.122.109.114 | attack | Unauthorised access (May 20) SRC=190.122.109.114 LEN=52 TTL=114 ID=13523 DF TCP DPT=445 WINDOW=8192 SYN |
2020-05-20 17:12:18 |