City: Bratislava
Region: Bratislava
Country: Slovakia
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 195.91.48.5 | attack | 2019-11-20 15:10:47 H=(pat-5.gprs.195-91-48.telekom.sk) [195.91.48.5]:26136 I=[10.100.18.25]:25 F= |
2019-11-21 01:02:15 |
| 195.91.48.126 | attack | Lines containing failures of 195.91.48.126 Nov 7 23:28:47 server01 postfix/smtpd[21874]: warning: hostname pat-126.gprs.195-91-48.telekom.sk does not resolve to address 195.91.48.126: Name or service not known Nov 7 23:28:47 server01 postfix/smtpd[21874]: connect from unknown[195.91.48.126] Nov x@x Nov x@x Nov 7 23:28:47 server01 postfix/policy-spf[22503]: : Policy action=PREPEND Received-SPF: none (surdeu.de: No applicable sender policy available) receiver=x@x Nov x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=195.91.48.126 |
2019-11-08 06:46:35 |
| 195.91.42.168 | attackspambots | Netgear DGN Device Remote Command Execution Vulnerability, PTR: mob-168.195-91-42.telekom.sk. |
2019-09-15 07:24:48 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 195.91.4.82
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33098
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;195.91.4.82. IN A
;; AUTHORITY SECTION:
. 216 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020061001 1800 900 604800 86400
;; Query time: 328 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 11 07:24:36 CST 2020
;; MSG SIZE rcvd: 11582.4.91.195.in-addr.arpa domain name pointer pat-gprs-82.195-91-4.telekom.sk.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
82.4.91.195.in-addr.arpa name = pat-gprs-82.195-91-4.telekom.sk.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 175.24.98.39 | attackbots | SSH Invalid Login |
2020-09-10 06:29:24 |
| 27.50.49.154 | attackspam | Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-09-09T16:51:25Z and 2020-09-09T16:51:27Z |
2020-09-10 07:02:35 |
| 172.58.99.196 | attack | Chat Spam |
2020-09-10 06:31:52 |
| 210.12.215.251 | attackspam | Unauthorised access (Sep 9) SRC=210.12.215.251 LEN=40 TTL=235 ID=3281 TCP DPT=1433 WINDOW=1024 SYN |
2020-09-10 06:55:14 |
| 173.245.217.165 | attackspam | [2020-09-09 21:51:49] SECURITY[4624] res_security_log.c: SecurityEvent="ChallengeResponseFailed",EventTV="2020-09-09T21:51:49.501+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID=" |
2020-09-10 07:00:04 |
| 93.177.103.76 | attackspambots | 2020-09-09T17:37:52Z - RDP login failed multiple times. (93.177.103.76) |
2020-09-10 06:39:46 |
| 68.183.89.147 | attackbots | 68.183.89.147 (IN/India/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 9 15:03:44 jbs1 sshd[4796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.89.147 user=root Sep 9 15:03:46 jbs1 sshd[4796]: Failed password for root from 68.183.89.147 port 50526 ssh2 Sep 9 14:59:10 jbs1 sshd[2222]: Failed password for root from 111.230.210.78 port 47074 ssh2 Sep 9 15:01:42 jbs1 sshd[3675]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.157.199 user=root Sep 9 15:01:44 jbs1 sshd[3675]: Failed password for root from 129.28.157.199 port 39496 ssh2 Sep 9 15:05:30 jbs1 sshd[5561]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.223.121 user=root IP Addresses Blocked: |
2020-09-10 06:27:46 |
| 49.233.77.12 | attack | Sep 9 09:46:43 pixelmemory sshd[578430]: Failed password for root from 49.233.77.12 port 49816 ssh2 Sep 9 09:49:30 pixelmemory sshd[578880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.77.12 user=root Sep 9 09:49:32 pixelmemory sshd[578880]: Failed password for root from 49.233.77.12 port 55580 ssh2 Sep 9 09:52:17 pixelmemory sshd[579352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.77.12 user=root Sep 9 09:52:18 pixelmemory sshd[579352]: Failed password for root from 49.233.77.12 port 33146 ssh2 ... |
2020-09-10 06:38:57 |
| 104.152.59.116 | attackbotsspam | Tried our host z. |
2020-09-10 06:39:24 |
| 1.53.137.12 | attackspambots | Dovecot Invalid User Login Attempt. |
2020-09-10 06:31:21 |
| 152.136.157.34 | attackbotsspam | Sep 9 14:19:39 ny01 sshd[29304]: Failed password for root from 152.136.157.34 port 36248 ssh2 Sep 9 14:27:01 ny01 sshd[30648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.157.34 Sep 9 14:27:03 ny01 sshd[30648]: Failed password for invalid user visitor from 152.136.157.34 port 59778 ssh2 |
2020-09-10 06:32:16 |
| 102.130.122.21 | attackspam | 15 attempts against mh-mag-login-ban on sonic |
2020-09-10 06:58:08 |
| 92.138.80.245 | attackbotsspam | Port Scan detected! ... |
2020-09-10 06:49:22 |
| 201.69.228.222 | attackspambots | 20/9/9@14:56:53: FAIL: Alarm-Network address from=201.69.228.222 20/9/9@14:56:54: FAIL: Alarm-Network address from=201.69.228.222 ... |
2020-09-10 06:41:52 |
| 222.186.175.163 | attack | Sep 10 00:50:43 vps639187 sshd\[7433\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.163 user=root Sep 10 00:50:45 vps639187 sshd\[7433\]: Failed password for root from 222.186.175.163 port 11306 ssh2 Sep 10 00:50:49 vps639187 sshd\[7433\]: Failed password for root from 222.186.175.163 port 11306 ssh2 ... |
2020-09-10 06:56:34 |