City: unknown
Region: unknown
Country: Singapore
Internet Service Provider: DigitalOcean LLC
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attack | UTC: 2019-12-25 port: 123/udp |
2019-12-26 14:24:03 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 157.245.48.44 | attackspambots | ET COMPROMISED Known Compromised or Hostile Host Traffic group 9 - port: 22 proto: tcp cat: Misc Attackbytes: 60 |
2020-07-30 15:50:21 |
| 157.245.48.44 | attack | $f2bV_matches |
2020-07-25 04:53:00 |
| 157.245.48.44 | attackspam | TCP ports : 22 / 2211 / 7788 / 7997 / 8877 / 8899 / 9988 / 40022 |
2020-07-11 18:28:12 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.48.116
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32685
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;157.245.48.116. IN A
;; AUTHORITY SECTION:
. 426 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019122600 1800 900 604800 86400
;; Query time: 135 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 26 14:23:59 CST 2019
;; MSG SIZE rcvd: 118Host 116.48.245.157.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 116.48.245.157.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 106.54.253.110 | attack | Apr 1 15:18:30 localhost sshd\[16807\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.253.110 user=root Apr 1 15:18:32 localhost sshd\[16807\]: Failed password for root from 106.54.253.110 port 56032 ssh2 Apr 1 15:22:29 localhost sshd\[17072\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.253.110 user=root Apr 1 15:22:32 localhost sshd\[17072\]: Failed password for root from 106.54.253.110 port 39906 ssh2 Apr 1 15:26:53 localhost sshd\[17348\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.253.110 user=root ... |
2020-04-02 01:01:35 |
| 192.71.225.127 | attack | bad bot |
2020-04-02 01:03:21 |
| 159.65.41.104 | attack | Invalid user uld from 159.65.41.104 port 48308 |
2020-04-02 00:50:52 |
| 80.82.77.245 | attackspam | firewall-block, port(s): 1064/udp |
2020-04-02 01:01:15 |
| 129.28.148.242 | attackspam | Apr 1 12:27:23 localhost sshd[583]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.148.242 user=root Apr 1 12:27:24 localhost sshd[583]: Failed password for root from 129.28.148.242 port 39590 ssh2 Apr 1 12:32:02 localhost sshd[1073]: Invalid user liangbin from 129.28.148.242 port 60116 Apr 1 12:32:02 localhost sshd[1073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.148.242 Apr 1 12:32:02 localhost sshd[1073]: Invalid user liangbin from 129.28.148.242 port 60116 Apr 1 12:32:04 localhost sshd[1073]: Failed password for invalid user liangbin from 129.28.148.242 port 60116 ssh2 ... |
2020-04-02 00:33:09 |
| 76.76.189.82 | attack | LC_Cable CABLE_<177>1585744301 [1:2403420:56395] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 61 [Classification: Misc Attack] [Priority: 2]: |
2020-04-02 01:04:19 |
| 159.89.231.172 | attack | 04/01/2020-08:32:01.317652 159.89.231.172 Protocol: 6 ET COMPROMISED Known Compromised or Hostile Host Traffic group 12 |
2020-04-02 00:38:31 |
| 128.199.123.170 | attackbots | invalid login attempt (sv) |
2020-04-02 00:21:26 |
| 197.234.219.53 | attackspambots | (smtpauth) Failed SMTP AUTH login from 197.234.219.53 (BJ/Benin/-): 5 in the last 3600 secs |
2020-04-02 00:32:25 |
| 51.75.208.181 | attackspam | 2020-04-01T14:44:05.724725dmca.cloudsearch.cf sshd[21203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip181.ip-51-75-208.eu user=root 2020-04-01T14:44:07.774904dmca.cloudsearch.cf sshd[21203]: Failed password for root from 51.75.208.181 port 47162 ssh2 2020-04-01T14:47:52.308007dmca.cloudsearch.cf sshd[21458]: Invalid user mm from 51.75.208.181 port 58246 2020-04-01T14:47:52.314179dmca.cloudsearch.cf sshd[21458]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip181.ip-51-75-208.eu 2020-04-01T14:47:52.308007dmca.cloudsearch.cf sshd[21458]: Invalid user mm from 51.75.208.181 port 58246 2020-04-01T14:47:54.528979dmca.cloudsearch.cf sshd[21458]: Failed password for invalid user mm from 51.75.208.181 port 58246 ssh2 2020-04-01T14:51:30.212039dmca.cloudsearch.cf sshd[21686]: Invalid user nw from 51.75.208.181 port 36208 ... |
2020-04-02 00:22:19 |
| 180.250.194.141 | attackbotsspam | Unauthorized connection attempt from IP address 180.250.194.141 on Port 445(SMB) |
2020-04-02 00:55:03 |
| 175.123.253.220 | attack | leo_www |
2020-04-02 00:29:56 |
| 45.166.232.173 | attackspam | Unauthorized connection attempt from IP address 45.166.232.173 on Port 445(SMB) |
2020-04-02 01:09:03 |
| 45.125.222.120 | attackbots | 2020-04-01 00:06:03 server sshd[35299]: Failed password for invalid user root from 45.125.222.120 port 51240 ssh2 |
2020-04-02 00:24:46 |
| 129.211.26.12 | attackspam | (sshd) Failed SSH login from 129.211.26.12 (CN/China/-): 5 in the last 3600 secs |
2020-04-02 00:32:54 |