City: Nuremberg
Region: Bavaria
Country: Germany
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 161.97.64.44 | attack | Aug 6 15:36:54 debian-2gb-nbg1-2 kernel: \[18979470.762287\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=161.97.64.44 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=54321 PROTO=TCP SPT=33277 DPT=83 WINDOW=65535 RES=0x00 SYN URGP=0 |
2020-08-06 22:18:15 |
| 161.97.64.247 | attackspam | Aug 4 15:08:23 gw1 sshd[8795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.97.64.247 Aug 4 15:08:25 gw1 sshd[8795]: Failed password for invalid user bot1 from 161.97.64.247 port 38566 ssh2 ... |
2020-08-04 18:20:16 |
| 161.97.64.247 | attackspambots | Aug 4 06:39:22 vmd36147 sshd[14502]: Failed password for backup from 161.97.64.247 port 38272 ssh2 Aug 4 06:39:29 vmd36147 sshd[14749]: Failed password for list from 161.97.64.247 port 55782 ssh2 ... |
2020-08-04 13:50:07 |
| 161.97.64.247 | attackspambots | trying to access non-authorized port |
2020-08-01 17:44:16 |
| 161.97.64.44 | attackbotsspam | Unauthorized connection attempt detected from IP address 161.97.64.44 to port 83 |
2020-07-26 14:08:46 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 161.97.64.59
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34036
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;161.97.64.59. IN A
;; AUTHORITY SECTION:
. 386 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020111400 1800 900 604800 86400
;; Query time: 26 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 14 22:23:32 CST 2020
;; MSG SIZE rcvd: 11659.64.97.161.in-addr.arpa domain name pointer vmi442741.contaboserver.net.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
59.64.97.161.in-addr.arpa name = vmi442741.contaboserver.net.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 45.153.186.121 | attackspambots | $f2bV_matches |
2019-12-29 04:58:34 |
| 103.113.105.11 | attackspam | Invalid user backup from 103.113.105.11 port 53142 |
2019-12-29 04:37:34 |
| 78.43.55.100 | attackbotsspam | Dec 28 21:39:04 lnxded64 sshd[27883]: Failed password for lp from 78.43.55.100 port 53825 ssh2 Dec 28 21:39:04 lnxded64 sshd[27883]: Failed password for lp from 78.43.55.100 port 53825 ssh2 Dec 28 21:43:52 lnxded64 sshd[28985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.43.55.100 |
2019-12-29 05:00:52 |
| 212.232.59.147 | attackbotsspam | Automatic report - Port Scan Attack |
2019-12-29 04:28:25 |
| 82.76.144.111 | attack | Dec 28 15:26:03 debian-2gb-nbg1-2 kernel: \[1195880.415185\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=82.76.144.111 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=54 ID=64417 PROTO=TCP SPT=34959 DPT=82 WINDOW=39810 RES=0x00 SYN URGP=0 |
2019-12-29 05:02:33 |
| 177.135.93.227 | attackspam | SSH bruteforce (Triggered fail2ban) |
2019-12-29 04:48:59 |
| 167.71.39.221 | attack | Automatic report - XMLRPC Attack |
2019-12-29 04:51:31 |
| 45.172.76.168 | attackbotsspam | Automatic report - Banned IP Access |
2019-12-29 04:49:52 |
| 193.70.0.93 | attack | $f2bV_matches |
2019-12-29 05:02:09 |
| 49.88.112.67 | attackspambots | Dec 28 21:38:44 v22018053744266470 sshd[30824]: Failed password for root from 49.88.112.67 port 43279 ssh2 Dec 28 21:39:40 v22018053744266470 sshd[30882]: Failed password for root from 49.88.112.67 port 31231 ssh2 ... |
2019-12-29 04:43:53 |
| 77.247.108.90 | attack | TCP Port Scanning |
2019-12-29 04:59:02 |
| 221.2.35.78 | attackspam | SSH auth scanning - multiple failed logins |
2019-12-29 04:58:50 |
| 46.173.35.229 | attackbotsspam | 46.173.35.229 - - [28/Dec/2019:09:27:09 -0500] "GET /?page=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00&action=view& HTTP/1.1" 200 17546 "https://ccbrass.com/?page=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00&action=view&" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0" ... |
2019-12-29 04:31:32 |
| 54.37.159.12 | attack | Dec 28 17:55:08 server sshd\[15934\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=12.ip-54-37-159.eu user=root Dec 28 17:55:10 server sshd\[15934\]: Failed password for root from 54.37.159.12 port 41892 ssh2 Dec 28 20:54:55 server sshd\[18101\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=12.ip-54-37-159.eu user=root Dec 28 20:54:58 server sshd\[18101\]: Failed password for root from 54.37.159.12 port 37184 ssh2 Dec 28 21:16:38 server sshd\[23619\]: Invalid user guest from 54.37.159.12 ... |
2019-12-29 04:50:09 |
| 180.127.93.194 | attack | Brute force attempt |
2019-12-29 04:59:35 |