City: Frankfurt am Main
Region: Hessen
Country: Germany
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 161.35.74.9 | attackspam | firewall-block, port(s): 4243/tcp |
2020-08-23 03:31:00 |
| 161.35.74.203 | attack | May 7 14:27:58 web01 sshd[27615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.74.203 May 7 14:27:59 web01 sshd[27615]: Failed password for invalid user ubuntu from 161.35.74.203 port 42904 ssh2 ... |
2020-05-07 21:14:57 |
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 161.35.0.0 - 161.35.255.255
CIDR: 161.35.0.0/16
NetName: DIGITALOCEAN-161-35-0-0
NetHandle: NET-161-35-0-0-1
Parent: NET161 (NET-161-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: DigitalOcean, LLC (DO-13)
RegDate: 2019-07-30
Updated: 2020-04-03
Comment: Routing and Peering Policy can be found at https://www.as14061.net
Comment:
Comment: Please submit abuse reports at https://www.digitalocean.com/company/contact/#abuse
Ref: https://rdap.arin.net/registry/ip/161.35.0.0
OrgName: DigitalOcean, LLC
OrgId: DO-13
Address: 105 Edgeview Drive, Suite 425
City: Broomfield
StateProv: CO
PostalCode: 80021
Country: US
RegDate: 2012-05-14
Updated: 2025-04-11
Ref: https://rdap.arin.net/registry/entity/DO-13
OrgAbuseHandle: DIGIT19-ARIN
OrgAbuseName: DigitalOcean Abuse
OrgAbusePhone: +1-646-827-4366
OrgAbuseEmail: abuse@digitalocean.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/DIGIT19-ARIN
OrgTechHandle: NOC32014-ARIN
OrgTechName: Network Operations Center
OrgTechPhone: +1-646-827-4366
OrgTechEmail: noc@digitalocean.com
OrgTechRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
OrgNOCHandle: NOC32014-ARIN
OrgNOCName: Network Operations Center
OrgNOCPhone: +1-646-827-4366
OrgNOCEmail: noc@digitalocean.com
OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 161.35.74.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50898
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;161.35.74.94. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026060200 1800 900 604800 86400
;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 02 22:02:08 CST 2026
;; MSG SIZE rcvd: 10594.74.35.161.in-addr.arpa domain name pointer portscanner-fra1-01.prod.cyberresilience.io.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
94.74.35.161.in-addr.arpa name = portscanner-fra1-01.prod.cyberresilience.io.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 167.172.195.227 | attackbotsspam | 2020-06-17T12:17:52.126608shield sshd\[4592\]: Invalid user hduser from 167.172.195.227 port 44616 2020-06-17T12:17:52.130163shield sshd\[4592\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.195.227 2020-06-17T12:17:54.034854shield sshd\[4592\]: Failed password for invalid user hduser from 167.172.195.227 port 44616 ssh2 2020-06-17T12:21:08.827075shield sshd\[5114\]: Invalid user hexing from 167.172.195.227 port 44840 2020-06-17T12:21:08.831677shield sshd\[5114\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.195.227 |
2020-06-17 20:36:57 |
| 46.38.145.252 | attackbots | Jun 17 13:27:04 blackbee postfix/smtpd\[9657\]: warning: unknown\[46.38.145.252\]: SASL LOGIN authentication failed: authentication failure Jun 17 13:28:35 blackbee postfix/smtpd\[9755\]: warning: unknown\[46.38.145.252\]: SASL LOGIN authentication failed: authentication failure Jun 17 13:30:06 blackbee postfix/smtpd\[9755\]: warning: unknown\[46.38.145.252\]: SASL LOGIN authentication failed: authentication failure Jun 17 13:31:37 blackbee postfix/smtpd\[9755\]: warning: unknown\[46.38.145.252\]: SASL LOGIN authentication failed: authentication failure Jun 17 13:33:10 blackbee postfix/smtpd\[9755\]: warning: unknown\[46.38.145.252\]: SASL LOGIN authentication failed: authentication failure ... |
2020-06-17 20:35:38 |
| 218.92.0.145 | attack | Jun 17 14:11:29 legacy sshd[12921]: Failed password for root from 218.92.0.145 port 46964 ssh2 Jun 17 14:11:42 legacy sshd[12921]: error: maximum authentication attempts exceeded for root from 218.92.0.145 port 46964 ssh2 [preauth] Jun 17 14:12:00 legacy sshd[12936]: Failed password for root from 218.92.0.145 port 32378 ssh2 ... |
2020-06-17 20:13:27 |
| 2.80.168.28 | attack | Jun 17 14:05:44 sip sshd[683009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.80.168.28 Jun 17 14:05:44 sip sshd[683009]: Invalid user devuser from 2.80.168.28 port 35956 Jun 17 14:05:46 sip sshd[683009]: Failed password for invalid user devuser from 2.80.168.28 port 35956 ssh2 ... |
2020-06-17 20:10:51 |
| 183.88.1.195 | attackbotsspam | 20/6/16@23:47:07: FAIL: Alarm-Network address from=183.88.1.195 20/6/16@23:47:08: FAIL: Alarm-Network address from=183.88.1.195 ... |
2020-06-17 20:06:20 |
| 111.230.137.250 | attackbots | Jun 17 13:32:39 ajax sshd[27935]: Failed password for root from 111.230.137.250 port 55522 ssh2 |
2020-06-17 20:45:10 |
| 222.186.30.218 | attack | Jun 17 14:37:20 freya sshd[23375]: Disconnected from authenticating user root 222.186.30.218 port 27994 [preauth] ... |
2020-06-17 20:46:15 |
| 51.68.122.155 | attackspam | Jun 17 05:21:54 dignus sshd[7794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.122.155 Jun 17 05:21:56 dignus sshd[7794]: Failed password for invalid user id from 51.68.122.155 port 43776 ssh2 Jun 17 05:25:18 dignus sshd[8097]: Invalid user cent from 51.68.122.155 port 44144 Jun 17 05:25:18 dignus sshd[8097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.122.155 Jun 17 05:25:20 dignus sshd[8097]: Failed password for invalid user cent from 51.68.122.155 port 44144 ssh2 ... |
2020-06-17 20:36:14 |
| 94.214.133.133 | attackbots | port scan and connect, tcp 443 (https) |
2020-06-17 20:35:20 |
| 218.55.177.7 | attackbotsspam | Invalid user dcmtk from 218.55.177.7 port 25639 |
2020-06-17 20:07:34 |
| 49.12.32.6 | attackspam | Jun 17 19:02:14 itv-usvr-02 sshd[15985]: Invalid user zyn from 49.12.32.6 port 53618 Jun 17 19:02:14 itv-usvr-02 sshd[15985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.12.32.6 Jun 17 19:02:14 itv-usvr-02 sshd[15985]: Invalid user zyn from 49.12.32.6 port 53618 Jun 17 19:02:16 itv-usvr-02 sshd[15985]: Failed password for invalid user zyn from 49.12.32.6 port 53618 ssh2 Jun 17 19:05:34 itv-usvr-02 sshd[16120]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.12.32.6 user=root Jun 17 19:05:36 itv-usvr-02 sshd[16120]: Failed password for root from 49.12.32.6 port 56618 ssh2 |
2020-06-17 20:17:35 |
| 81.210.92.245 | attackbots | RUSSIAN PORN SPAM ! |
2020-06-17 20:12:32 |
| 157.230.125.207 | attackbots | Jun 17 13:33:17 vpn01 sshd[26459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.125.207 Jun 17 13:33:19 vpn01 sshd[26459]: Failed password for invalid user aman from 157.230.125.207 port 59360 ssh2 ... |
2020-06-17 20:07:10 |
| 123.207.240.133 | attackbots | 2020-06-17T07:38:41.6452761495-001 sshd[45327]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.240.133 2020-06-17T07:38:41.6421351495-001 sshd[45327]: Invalid user suman from 123.207.240.133 port 49550 2020-06-17T07:38:43.4650831495-001 sshd[45327]: Failed password for invalid user suman from 123.207.240.133 port 49550 ssh2 2020-06-17T07:42:30.3701891495-001 sshd[45470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.240.133 user=root 2020-06-17T07:42:32.2954101495-001 sshd[45470]: Failed password for root from 123.207.240.133 port 46886 ssh2 2020-06-17T07:46:12.9890871495-001 sshd[45605]: Invalid user test from 123.207.240.133 port 43952 ... |
2020-06-17 20:34:58 |
| 185.171.10.96 | attack | (sshd) Failed SSH login from 185.171.10.96 (ES/Spain/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 17 14:05:24 ubnt-55d23 sshd[5664]: Invalid user trm from 185.171.10.96 port 56263 Jun 17 14:05:26 ubnt-55d23 sshd[5664]: Failed password for invalid user trm from 185.171.10.96 port 56263 ssh2 |
2020-06-17 20:23:33 |