City: Kleinblittersdorf
Region: Saarland
Country: Germany
Internet Service Provider: intersaar GmbH
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attack | suspicious action Wed, 26 Feb 2020 10:35:57 -0300 |
2020-02-27 02:24:17 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 213.135.4.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7256
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;213.135.4.164. IN A
;; AUTHORITY SECTION:
. 593 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019110501 1800 900 604800 86400
;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Nov 06 01:25:33 CST 2019
;; MSG SIZE rcvd: 117164.4.135.213.in-addr.arpa domain name pointer ip-213-135-4-164.intersaar.de.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
164.4.135.213.in-addr.arpa name = ip-213-135-4-164.intersaar.de.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 202.90.199.116 | attack | Apr 30 08:07:28 mail sshd[10424]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.90.199.116 Apr 30 08:07:30 mail sshd[10424]: Failed password for invalid user czy from 202.90.199.116 port 34648 ssh2 ... |
2020-05-01 20:55:25 |
| 176.31.206.211 | attackbots | firewall-block, port(s): 11211/tcp |
2020-05-01 20:58:05 |
| 120.70.97.233 | attackbots | May 1 14:45:39 markkoudstaal sshd[26699]: Failed password for root from 120.70.97.233 port 48848 ssh2 May 1 14:51:19 markkoudstaal sshd[27772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.70.97.233 May 1 14:51:21 markkoudstaal sshd[27772]: Failed password for invalid user test from 120.70.97.233 port 58084 ssh2 |
2020-05-01 21:03:36 |
| 113.53.218.79 | attackspambots | Automatic report - Port Scan Attack |
2020-05-01 21:14:20 |
| 192.241.202.169 | attackbots | May 1 12:35:31 124388 sshd[4851]: Invalid user grodriguez from 192.241.202.169 port 53336 May 1 12:35:31 124388 sshd[4851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.202.169 May 1 12:35:31 124388 sshd[4851]: Invalid user grodriguez from 192.241.202.169 port 53336 May 1 12:35:32 124388 sshd[4851]: Failed password for invalid user grodriguez from 192.241.202.169 port 53336 ssh2 May 1 12:39:18 124388 sshd[5053]: Invalid user uftp from 192.241.202.169 port 35880 |
2020-05-01 20:53:02 |
| 128.199.38.162 | attackspambots | 28472/tcp 17308/tcp 24381/tcp... [2020-04-12/30]63pkt,22pt.(tcp) |
2020-05-01 20:53:53 |
| 112.85.42.181 | attackspambots | May 1 15:05:13 inter-technics sshd[29938]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.181 user=root May 1 15:05:15 inter-technics sshd[29938]: Failed password for root from 112.85.42.181 port 7502 ssh2 May 1 15:05:18 inter-technics sshd[29938]: Failed password for root from 112.85.42.181 port 7502 ssh2 May 1 15:05:13 inter-technics sshd[29938]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.181 user=root May 1 15:05:15 inter-technics sshd[29938]: Failed password for root from 112.85.42.181 port 7502 ssh2 May 1 15:05:18 inter-technics sshd[29938]: Failed password for root from 112.85.42.181 port 7502 ssh2 May 1 15:05:13 inter-technics sshd[29938]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.181 user=root May 1 15:05:15 inter-technics sshd[29938]: Failed password for root from 112.85.42.181 port 7502 ssh2 May 1 15:05:1 ... |
2020-05-01 21:07:29 |
| 194.31.244.46 | attack | firewall-block, port(s): 7805/tcp, 7820/tcp, 7821/tcp, 7834/tcp |
2020-05-01 20:44:57 |
| 14.136.175.3 | attack | Telnet/23 MH Probe, Scan, BF, Hack - |
2020-05-01 20:39:50 |
| 195.54.160.243 | attackbots | firewall-block, port(s): 300/tcp, 900/tcp, 1020/tcp |
2020-05-01 20:42:46 |
| 196.52.43.100 | attackspam | 5907/tcp 27017/tcp 2083/tcp... [2020-03-04/04-30]54pkt,44pt.(tcp),3pt.(udp) |
2020-05-01 21:12:19 |
| 95.181.131.153 | attackspam | May 1 14:57:01 sip sshd[65250]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.181.131.153 May 1 14:57:01 sip sshd[65250]: Invalid user kristen from 95.181.131.153 port 47460 May 1 14:57:02 sip sshd[65250]: Failed password for invalid user kristen from 95.181.131.153 port 47460 ssh2 ... |
2020-05-01 21:04:47 |
| 139.198.122.76 | attackspam | May 1 13:43:31 melroy-server sshd[29406]: Failed password for git from 139.198.122.76 port 44876 ssh2 ... |
2020-05-01 21:13:42 |
| 195.54.166.177 | attack | Trying to brute force rdp connection |
2020-05-01 20:36:00 |
| 159.65.41.233 | attack | 05/01/2020-07:50:35.315853 159.65.41.233 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-05-01 20:45:16 |