141.2.18.10 - IPInfo

Basic Info

City: Frankfurt am Main

Region: Hessen

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 141.2.18.10
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35753
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;141.2.18.10.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021300 1800 900 604800 86400

;; Query time: 34 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 13 19:30:52 CST 2025
;; MSG SIZE  rcvd: 104

Host info

10.18.2.141.in-addr.arpa domain name pointer pc-18-10.normativeorders.uni-frankfurt.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
10.18.2.141.in-addr.arpa	name = pc-18-10.normativeorders.uni-frankfurt.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
203.55.115.202	attack	Oct 18 14:34:55 www sshd\[56136\]: Invalid user ftpuser from 203.55.115.202Oct 18 14:34:58 www sshd\[56136\]: Failed password for invalid user ftpuser from 203.55.115.202 port 43928 ssh2Oct 18 14:35:02 www sshd\[56136\]: Failed password for invalid user ftpuser from 203.55.115.202 port 43928 ssh2 ...	2019-10-19 01:54:44
150.95.27.59	attackspam	Oct 18 12:53:46 firewall sshd[16248]: Invalid user qweASDzxc from 150.95.27.59 Oct 18 12:53:48 firewall sshd[16248]: Failed password for invalid user qweASDzxc from 150.95.27.59 port 44384 ssh2 Oct 18 12:58:42 firewall sshd[16357]: Invalid user ey@123 from 150.95.27.59 ...	2019-10-19 01:51:24
41.90.113.126	attackspam	41.90.113.126 - - [18/Oct/2019:07:34:52 -0400] "GET /?page=products&action=%2fetc%2fpasswd%00&manufacturerID=61&productID=4701-RIM&linkID=16812 HTTP/1.1" 200 17417 "https://exitdevice.com/?page=products&action=%2fetc%2fpasswd%00&manufacturerID=61&productID=4701-RIM&linkID=16812" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0" ...	2019-10-19 01:59:05
218.92.0.208	attack	2019-10-18T15:19:51.348466abusebot-7.cloudsearch.cf sshd\[14051\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.208 user=root	2019-10-19 02:14:49
162.247.72.199	attack	Oct 18 18:11:48 rotator sshd\[28545\]: Address 162.247.72.199 maps to jaffer.tor-exit.calyxinstitute.org, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Oct 18 18:11:50 rotator sshd\[28545\]: Failed password for root from 162.247.72.199 port 50804 ssh2Oct 18 18:11:52 rotator sshd\[28545\]: Failed password for root from 162.247.72.199 port 50804 ssh2Oct 18 18:11:56 rotator sshd\[28545\]: Failed password for root from 162.247.72.199 port 50804 ssh2Oct 18 18:11:59 rotator sshd\[28545\]: Failed password for root from 162.247.72.199 port 50804 ssh2Oct 18 18:12:03 rotator sshd\[28545\]: Failed password for root from 162.247.72.199 port 50804 ssh2 ...	2019-10-19 02:10:16
84.255.152.10	attack	$f2bV_matches	2019-10-19 02:19:16
182.52.90.164	attackbots	Oct 18 20:22:21 lnxmail61 sshd[10520]: Failed password for root from 182.52.90.164 port 56812 ssh2 Oct 18 20:22:21 lnxmail61 sshd[10520]: Failed password for root from 182.52.90.164 port 56812 ssh2	2019-10-19 02:26:59
123.207.79.126	attack	SSH brutforce	2019-10-19 02:12:49
36.255.253.89	attack	Oct 18 11:13:19 TORMINT sshd\[11332\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.255.253.89 user=root Oct 18 11:13:21 TORMINT sshd\[11332\]: Failed password for root from 36.255.253.89 port 54894 ssh2 Oct 18 11:18:13 TORMINT sshd\[11507\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.255.253.89 user=root ...	2019-10-19 01:46:00
54.36.172.105	attackspambots	Lines containing failures of 54.36.172.105 Oct 16 11:41:41 zabbix sshd[43557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.36.172.105 user=r.r Oct 16 11:41:43 zabbix sshd[43557]: Failed password for r.r from 54.36.172.105 port 48128 ssh2 Oct 16 11:41:43 zabbix sshd[43557]: Received disconnect from 54.36.172.105 port 48128:11: Bye Bye [preauth] Oct 16 11:41:43 zabbix sshd[43557]: Disconnected from authenticating user r.r 54.36.172.105 port 48128 [preauth] Oct 16 11:56:38 zabbix sshd[44546]: Invalid user ftpadmin from 54.36.172.105 port 32770 Oct 16 11:56:38 zabbix sshd[44546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.36.172.105 Oct 16 11:56:40 zabbix sshd[44546]: Failed password for invalid user ftpadmin from 54.36.172.105 port 32770 ssh2 Oct 16 11:56:40 zabbix sshd[44546]: Received disconnect from 54.36.172.105 port 32770:11: Bye Bye [preauth] Oct 16 11:56:40 zabbix sshd[445........ ------------------------------	2019-10-19 01:48:35
149.202.65.173	attackbots	Oct 18 14:53:47 firewall sshd[19051]: Invalid user mktg3 from 149.202.65.173 Oct 18 14:53:49 firewall sshd[19051]: Failed password for invalid user mktg3 from 149.202.65.173 port 35122 ssh2 Oct 18 14:57:17 firewall sshd[19143]: Invalid user tb from 149.202.65.173 ...	2019-10-19 02:12:26
118.25.195.244	attackbotsspam	SSH invalid-user multiple login try	2019-10-19 01:57:37
5.196.83.87	attackbotsspam	Automatic report - XMLRPC Attack	2019-10-19 02:04:03
185.156.73.21	attackspam	Port scan on 11 port(s): 13211 13212 23035 23036 35575 35576 35577 43934 58825 58826 58827	2019-10-19 02:07:47
103.84.83.59	attack	103.84.83.59 - - [18/Oct/2019:07:35:11 -0400] "GET /?page=..%2f..%2f..%2fetc%2fpasswd&action=view&manufacturerID=143&productID=9300&linkID=7489&duplicate=0 HTTP/1.1" 200 16656 "https://exitdevice.com/?page=..%2f..%2f..%2fetc%2fpasswd&action=view&manufacturerID=143&productID=9300&linkID=7489&duplicate=0" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0" ...	2019-10-19 01:48:07

Recently Reported IPs

190.198.74.90	219.141.170.0	13.171.146.239	246.160.39.232
214.109.236.68	229.58.192.128	154.169.217.55	97.80.28.28
20.91.202.165	135.89.101.120	6.123.216.178	214.68.135.129
185.22.66.181	229.188.129.86	65.168.24.97	17.48.102.126
96.93.162.236	91.189.32.1	30.251.1.108	166.141.219.203