City: unknown
Region: unknown
Country: Germany
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 168.119.4.164 | attackspam | (mod_security) mod_security (id:949110) triggered by 168.119.4.164 (DE/Germany/static.164.4.119.168.clients.your-server.de): 5 in the last 14400 secs; ID: luc |
2020-08-09 14:57:47 |
| 168.119.48.122 | attack | Fail2Ban Ban Triggered HTTP SQL Injection Attempt |
2020-08-05 12:09:50 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 168.119.4.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27772
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;168.119.4.44. IN A
;; AUTHORITY SECTION:
. 343 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400
;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 23:48:36 CST 2022
;; MSG SIZE rcvd: 10544.4.119.168.in-addr.arpa domain name pointer ninja-crawler42.webmeup.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
44.4.119.168.in-addr.arpa name = ninja-crawler42.webmeup.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 46.229.168.133 | attack | Malicious Traffic/Form Submission |
2019-08-10 05:16:17 |
| 134.209.70.255 | attackspam | Aug 9 23:47:53 srv-4 sshd\[4600\]: Invalid user admin from 134.209.70.255 Aug 9 23:47:53 srv-4 sshd\[4600\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.70.255 Aug 9 23:47:54 srv-4 sshd\[4600\]: Failed password for invalid user admin from 134.209.70.255 port 60416 ssh2 ... |
2019-08-10 05:15:56 |
| 46.3.96.67 | attack | 3260/tcp 3269/tcp 3263/tcp... [2019-06-08/08-09]3477pkt,961pt.(tcp) |
2019-08-10 04:57:50 |
| 182.253.220.109 | attack | Brute force SMTP login attempted. ... |
2019-08-10 05:02:09 |
| 112.85.42.194 | attack | Aug 9 22:23:32 dcd-gentoo sshd[32030]: User root from 112.85.42.194 not allowed because none of user's groups are listed in AllowGroups Aug 9 22:23:35 dcd-gentoo sshd[32030]: error: PAM: Authentication failure for illegal user root from 112.85.42.194 Aug 9 22:23:32 dcd-gentoo sshd[32030]: User root from 112.85.42.194 not allowed because none of user's groups are listed in AllowGroups Aug 9 22:23:35 dcd-gentoo sshd[32030]: error: PAM: Authentication failure for illegal user root from 112.85.42.194 Aug 9 22:23:32 dcd-gentoo sshd[32030]: User root from 112.85.42.194 not allowed because none of user's groups are listed in AllowGroups Aug 9 22:23:35 dcd-gentoo sshd[32030]: error: PAM: Authentication failure for illegal user root from 112.85.42.194 Aug 9 22:23:35 dcd-gentoo sshd[32030]: Failed keyboard-interactive/pam for invalid user root from 112.85.42.194 port 52595 ssh2 ... |
2019-08-10 04:41:02 |
| 200.129.202.58 | attackspambots | Aug 9 17:06:02 server sshd[31662]: Failed password for invalid user l from 200.129.202.58 port 44823 ssh2 Aug 9 17:06:02 server sshd[31662]: Received disconnect from 200.129.202.58: 11: Bye Bye [preauth] Aug 9 17:11:57 server sshd[32002]: Failed password for invalid user stan from 200.129.202.58 port 6058 ssh2 Aug 9 17:11:58 server sshd[32002]: Received disconnect from 200.129.202.58: 11: Bye Bye [preauth] Aug 9 17:17:17 server sshd[32280]: Failed password for invalid user jana from 200.129.202.58 port 16014 ssh2 Aug 9 17:17:18 server sshd[32280]: Received disconnect from 200.129.202.58: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=200.129.202.58 |
2019-08-10 05:08:53 |
| 104.140.188.18 | attackspambots | Automatic report - Port Scan Attack |
2019-08-10 05:23:54 |
| 145.220.24.215 | attack | 09-Aug-2019 19:32:19.743 client 145.220.24.215#48901 (aoxleytk.or.mkorczynski.com): query (cache) 'aoxleytk.or.mkorczynski.com/A/IN' denied ... |
2019-08-10 05:21:18 |
| 188.166.246.46 | attackspam | 2019-08-09T19:32:58.807813stark.klein-stark.info sshd\[5388\]: Invalid user smbuser from 188.166.246.46 port 59242 2019-08-09T19:32:58.811472stark.klein-stark.info sshd\[5388\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=komutodev.aptmi.com 2019-08-09T19:33:00.200446stark.klein-stark.info sshd\[5388\]: Failed password for invalid user smbuser from 188.166.246.46 port 59242 ssh2 ... |
2019-08-10 04:50:23 |
| 134.209.44.13 | attackbots | Brute force SMTP login attempted. ... |
2019-08-10 05:22:33 |
| 134.73.129.162 | attack | Brute force SMTP login attempted. ... |
2019-08-10 04:54:03 |
| 134.73.129.191 | attackbots | Brute force SMTP login attempted. ... |
2019-08-10 04:49:49 |
| 79.143.51.218 | attackspam | Aug 9 22:43:06 vps647732 sshd[21462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.143.51.218 Aug 9 22:43:07 vps647732 sshd[21462]: Failed password for invalid user system from 79.143.51.218 port 43070 ssh2 ... |
2019-08-10 04:44:17 |
| 134.73.129.190 | attack | Brute force SMTP login attempted. ... |
2019-08-10 04:51:23 |
| 134.73.129.28 | attackspam | Brute force SMTP login attempted. ... |
2019-08-10 04:37:35 |