City: Nuremberg
Region: Bavaria
Country: Germany
Internet Service Provider: Contabo GmbH
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attack | Apr 25 16:15:08 aragorn sshd[11246]: Invalid user git from 144.91.83.149 Apr 25 16:17:43 aragorn sshd[11759]: Invalid user git from 144.91.83.149 Apr 25 16:20:17 aragorn sshd[12487]: Invalid user git from 144.91.83.149 Apr 25 16:22:50 aragorn sshd[12669]: Invalid user git from 144.91.83.149 ... |
2020-04-26 08:35:21 |
| attackbots | Apr 13 11:58:40 game-panel sshd[7450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.91.83.149 Apr 13 11:58:42 game-panel sshd[7450]: Failed password for invalid user nagios from 144.91.83.149 port 44538 ssh2 Apr 13 11:59:53 game-panel sshd[7495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.91.83.149 |
2020-04-13 20:10:21 |
| attackspambots | Apr 7 23:45:52 host5 sshd[24660]: Invalid user admin from 144.91.83.149 port 49900 Apr 7 23:45:49 host5 sshd[24615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vmi362111.contaboserver.net user=root Apr 7 23:45:52 host5 sshd[24615]: Failed password for root from 144.91.83.149 port 41406 ssh2 ... |
2020-04-08 06:23:40 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 144.91.83.122 | attackspam | Oct 12 14:30:23 *hidden* sshd[3816]: Invalid user o2 from 144.91.83.122 port 46558 Oct 12 14:30:23 *hidden* sshd[3816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.91.83.122 Oct 12 14:30:25 *hidden* sshd[3816]: Failed password for invalid user o2 from 144.91.83.122 port 46558 ssh2 |
2020-10-12 23:09:25 |
| 144.91.83.122 | attackspam | (sshd) Failed SSH login from 144.91.83.122 (DE/Germany/vmi307599.contaboserver.net): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 12 11:13:49 serv sshd[19480]: Invalid user nazarii from 144.91.83.122 port 57746 Oct 12 11:13:51 serv sshd[19480]: Failed password for invalid user nazarii from 144.91.83.122 port 57746 ssh2 Oct 12 11:22:43 serv sshd[10402]: Invalid user marcacygba from 144.91.83.122 port 34374 |
2020-10-12 14:35:13 |
| 144.91.83.19 | attack | $f2bV_matches |
2020-07-14 23:04:54 |
| 144.91.83.203 | attackspambots | May 6 11:20:15 l02a sshd[6399]: Invalid user test from 144.91.83.203 May 6 11:20:15 l02a sshd[6399]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vmd44419.contaboserver.net May 6 11:20:15 l02a sshd[6399]: Invalid user test from 144.91.83.203 May 6 11:20:17 l02a sshd[6399]: Failed password for invalid user test from 144.91.83.203 port 34086 ssh2 |
2020-05-06 19:09:44 |
| 144.91.83.203 | attackspambots | Lines containing failures of 144.91.83.203 May 4 06:08:21 linuxrulz sshd[2208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.91.83.203 user=r.r May 4 06:08:22 linuxrulz sshd[2208]: Failed password for r.r from 144.91.83.203 port 60620 ssh2 May 4 06:08:24 linuxrulz sshd[2208]: Received disconnect from 144.91.83.203 port 60620:11: Bye Bye [preauth] May 4 06:08:24 linuxrulz sshd[2208]: Disconnected from authenticating user r.r 144.91.83.203 port 60620 [preauth] May 4 06:18:55 linuxrulz sshd[3598]: Invalid user ondrea from 144.91.83.203 port 59142 May 4 06:18:55 linuxrulz sshd[3598]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.91.83.203 May 4 06:18:57 linuxrulz sshd[3598]: Failed password for invalid user ondrea from 144.91.83.203 port 59142 ssh2 May 4 06:18:58 linuxrulz sshd[3598]: Received disconnect from 144.91.83.203 port 59142:11: Bye Bye [preauth] May 4 06:18:58 li........ ------------------------------ |
2020-05-06 02:24:18 |
| 144.91.83.19 | attackbots | 01/04/2020-09:02:01.690295 144.91.83.19 Protocol: 17 ET SCAN Sipvicious User-Agent Detected (friendly-scanner) |
2020-01-04 22:09:15 |
| 144.91.83.1 | attackbots | 69/udp [2019-12-24]1pkt |
2019-12-25 01:46:23 |
| 144.91.83.19 | attackspambots | Host Scan |
2019-12-04 17:51:03 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 144.91.83.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21850
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;144.91.83.149. IN A
;; AUTHORITY SECTION:
. 445 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020040702 1800 900 604800 86400
;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 08 06:23:36 CST 2020
;; MSG SIZE rcvd: 117149.83.91.144.in-addr.arpa domain name pointer vmi362111.contaboserver.net.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
149.83.91.144.in-addr.arpa name = vmi362111.contaboserver.net.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 54.39.147.2 | attackbotsspam | detected by Fail2Ban |
2019-12-10 05:04:43 |
| 178.44.129.101 | attack | Unauthorized connection attempt from IP address 178.44.129.101 on Port 445(SMB) |
2019-12-10 04:47:50 |
| 112.72.215.35 | attackbots | firewall-block, port(s): 23/tcp |
2019-12-10 05:02:58 |
| 106.75.16.19 | attackspam | Dec 8 16:41:07 home sshd[6844]: Invalid user home from 106.75.16.19 port 40972 Dec 8 16:41:07 home sshd[6844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.16.19 Dec 8 16:41:07 home sshd[6844]: Invalid user home from 106.75.16.19 port 40972 Dec 8 16:41:08 home sshd[6844]: Failed password for invalid user home from 106.75.16.19 port 40972 ssh2 Dec 8 16:55:14 home sshd[6935]: Invalid user og from 106.75.16.19 port 40786 Dec 8 16:55:14 home sshd[6935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.16.19 Dec 8 16:55:14 home sshd[6935]: Invalid user og from 106.75.16.19 port 40786 Dec 8 16:55:16 home sshd[6935]: Failed password for invalid user og from 106.75.16.19 port 40786 ssh2 Dec 8 17:02:18 home sshd[6999]: Invalid user octobre from 106.75.16.19 port 41412 Dec 8 17:02:18 home sshd[6999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.16.19 Dec 8 17:02:18 |
2019-12-10 05:14:09 |
| 92.118.37.86 | attackbotsspam | 12/09/2019-15:12:55.976959 92.118.37.86 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2019-12-10 05:22:40 |
| 211.227.41.99 | attack | Unauthorized connection attempt detected from IP address 211.227.41.99 to port 3389 |
2019-12-10 05:06:59 |
| 139.219.5.139 | attack | Dec 9 22:08:39 sd-53420 sshd\[16940\]: Invalid user fouhy from 139.219.5.139 Dec 9 22:08:39 sd-53420 sshd\[16940\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.5.139 Dec 9 22:08:42 sd-53420 sshd\[16940\]: Failed password for invalid user fouhy from 139.219.5.139 port 1664 ssh2 Dec 9 22:16:12 sd-53420 sshd\[18300\]: Invalid user passwd1234567 from 139.219.5.139 Dec 9 22:16:12 sd-53420 sshd\[18300\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.5.139 ... |
2019-12-10 05:21:34 |
| 139.59.169.103 | attackspam | 2019-12-09T21:06:00.463484abusebot-4.cloudsearch.cf sshd\[6992\]: Invalid user adine from 139.59.169.103 port 42988 |
2019-12-10 05:19:52 |
| 157.245.73.144 | attackspam | Nov 7 01:17:13 odroid64 sshd\[9428\]: User root from 157.245.73.144 not allowed because not listed in AllowUsers Nov 7 01:17:13 odroid64 sshd\[9428\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.73.144 user=root ... |
2019-12-10 05:26:02 |
| 150.164.192.65 | attackbotsspam | Unauthorized connection attempt detected from IP address 150.164.192.65 to port 445 |
2019-12-10 05:31:23 |
| 119.29.242.48 | attackspam | Dec 9 21:48:46 v22018086721571380 sshd[4099]: Failed password for invalid user steam from 119.29.242.48 port 48340 ssh2 |
2019-12-10 05:29:38 |
| 46.217.14.42 | attack | Unauthorized connection attempt from IP address 46.217.14.42 on Port 445(SMB) |
2019-12-10 04:59:56 |
| 196.192.110.67 | attack | Dec 9 16:08:45 srv01 sshd[20473]: Invalid user dordahl from 196.192.110.67 port 56758 Dec 9 16:08:45 srv01 sshd[20473]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.192.110.67 Dec 9 16:08:45 srv01 sshd[20473]: Invalid user dordahl from 196.192.110.67 port 56758 Dec 9 16:08:47 srv01 sshd[20473]: Failed password for invalid user dordahl from 196.192.110.67 port 56758 ssh2 Dec 9 16:16:21 srv01 sshd[21227]: Invalid user rpm from 196.192.110.67 port 42322 ... |
2019-12-10 05:05:42 |
| 123.185.202.218 | attack | Mon Dec 9 17:00:43 2019 \[pid 17105\] \[lexgold\] FTP response: Client "123.185.202.218", "530 Permission denied." Mon Dec 9 17:00:48 2019 \[pid 17115\] \[lexgold\] FTP response: Client "123.185.202.218", "530 Permission denied." Mon Dec 9 17:01:06 2019 \[pid 17201\] \[lexgold\] FTP response: Client "123.185.202.218", "530 Permission denied." |
2019-12-10 04:55:38 |
| 77.247.109.82 | attack | 77.247.109.82 was recorded 57 times by 28 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 57, 269, 1202 |
2019-12-10 05:30:18 |