City: unknown
Region: unknown
Country: Germany
Internet Service Provider: ComTrade LLC
Hostname: unknown
Organization: unknown
Usage Type: Commercial
| Type | Details | Datetime |
|---|---|---|
| attackbots | Nov 11 06:52:17 mc1 kernel: \[4737820.876187\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.48 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=52182 PROTO=TCP SPT=58482 DPT=9573 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 11 06:59:56 mc1 kernel: \[4738279.145801\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.48 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=52961 PROTO=TCP SPT=58482 DPT=9446 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 11 07:01:47 mc1 kernel: \[4738390.829792\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.48 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=7773 PROTO=TCP SPT=58482 DPT=9445 WINDOW=1024 RES=0x00 SYN URGP=0 ... |
2019-11-11 14:06:21 |
| attackbotsspam | Nov 9 14:00:07 h2177944 kernel: \[6179994.437514\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.48 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=24091 PROTO=TCP SPT=50518 DPT=9128 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 9 14:02:03 h2177944 kernel: \[6180110.152984\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.48 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=41595 PROTO=TCP SPT=50518 DPT=8339 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 9 14:17:06 h2177944 kernel: \[6181012.849596\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.48 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=26527 PROTO=TCP SPT=50518 DPT=9321 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 9 14:23:37 h2177944 kernel: \[6181404.125895\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.48 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=16727 PROTO=TCP SPT=50518 DPT=9063 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 9 14:46:40 h2177944 kernel: \[6182786.252186\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.48 DST=85.214.117.9 |
2019-11-09 22:39:34 |
| attackbots | Oct 25 05:55:49 mc1 kernel: \[3262091.069194\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.48 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=12666 PROTO=TCP SPT=51874 DPT=9262 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 25 05:56:44 mc1 kernel: \[3262145.925084\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.48 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=32741 PROTO=TCP SPT=51874 DPT=9492 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 25 05:57:05 mc1 kernel: \[3262166.525892\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.48 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=64958 PROTO=TCP SPT=51874 DPT=9453 WINDOW=1024 RES=0x00 SYN URGP=0 ... |
2019-10-25 12:25:54 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 45.136.110.227 | attackspam | TCP scanned |
2020-06-15 02:24:50 |
| 45.136.110.25 | attack | Mar 13 18:33:09 debian-2gb-nbg1-2 kernel: \[6379921.888201\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=31856 PROTO=TCP SPT=45838 DPT=2891 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-03-14 01:34:57 |
| 45.136.110.25 | attackspam | Mar 13 05:18:39 debian-2gb-nbg1-2 kernel: \[6332254.684603\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=29917 PROTO=TCP SPT=42567 DPT=5768 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-03-13 12:22:14 |
| 45.136.110.25 | attackbots | Mar 12 18:54:02 debian-2gb-nbg1-2 kernel: \[6294779.364795\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=50546 PROTO=TCP SPT=40824 DPT=3009 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-03-13 02:06:49 |
| 45.136.110.25 | attackbots | Mar 12 06:06:36 debian-2gb-nbg1-2 kernel: \[6248736.057240\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=36529 PROTO=TCP SPT=40824 DPT=3230 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-03-12 13:12:51 |
| 45.136.110.25 | attackspam | Mar 11 20:18:44 debian-2gb-nbg1-2 kernel: \[6213465.545709\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=44819 PROTO=TCP SPT=52822 DPT=4035 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-03-12 04:08:04 |
| 45.136.110.25 | attack | Mar 11 06:03:41 debian-2gb-nbg1-2 kernel: \[6162165.528514\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=63434 PROTO=TCP SPT=51295 DPT=3710 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-03-11 13:05:03 |
| 45.136.110.135 | attackspambots | Scanning random ports - tries to find possible vulnerable services |
2020-03-11 06:59:16 |
| 45.136.110.25 | attack | Mar 9 00:46:54 debian-2gb-nbg1-2 kernel: \[5970368.159838\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=43699 PROTO=TCP SPT=53340 DPT=5288 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-03-09 08:27:58 |
| 45.136.110.25 | attackspambots | Mar 8 17:38:09 debian-2gb-nbg1-2 kernel: \[5944645.387471\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=53755 PROTO=TCP SPT=53340 DPT=5263 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-03-09 00:45:36 |
| 45.136.110.25 | attack | Mar 8 02:00:28 debian-2gb-nbg1-2 kernel: \[5888387.149380\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=57156 PROTO=TCP SPT=49617 DPT=4308 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-03-08 09:20:05 |
| 45.136.110.25 | attackbots | Mar 7 14:08:54 debian-2gb-nbg1-2 kernel: \[5845695.146432\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=45338 PROTO=TCP SPT=49617 DPT=4364 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-03-07 21:34:50 |
| 45.136.110.25 | attackbotsspam | Mar 5 23:22:53 debian-2gb-nbg1-2 kernel: \[5706141.085150\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=46803 PROTO=TCP SPT=56630 DPT=12121 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-03-06 06:27:20 |
| 45.136.110.25 | attackspam | Mar 5 01:11:04 debian-2gb-nbg1-2 kernel: \[5626236.499804\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.25 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=60913 PROTO=TCP SPT=59333 DPT=3934 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-03-05 08:20:16 |
| 45.136.110.135 | attackspambots | Attempt to attack host OS, exploiting network vulnerabilities, on 04-03-2020 13:35:09. |
2020-03-05 01:31:24 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.136.110.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18459
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.136.110.48. IN A
;; AUTHORITY SECTION:
. 571 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019102401 1800 900 604800 86400
;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 25 12:25:48 CST 2019
;; MSG SIZE rcvd: 117Host 48.110.136.45.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 48.110.136.45.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 2.187.243.11 | attackbots | 1588594300 - 05/04/2020 14:11:40 Host: 2.187.243.11/2.187.243.11 Port: 445 TCP Blocked |
2020-05-04 23:18:34 |
| 222.186.42.155 | attackspam | 2020-05-04T15:25:42.397102shield sshd\[10443\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.155 user=root 2020-05-04T15:25:44.340103shield sshd\[10443\]: Failed password for root from 222.186.42.155 port 19682 ssh2 2020-05-04T15:25:47.522174shield sshd\[10443\]: Failed password for root from 222.186.42.155 port 19682 ssh2 2020-05-04T15:25:50.076751shield sshd\[10443\]: Failed password for root from 222.186.42.155 port 19682 ssh2 2020-05-04T15:26:43.950708shield sshd\[10644\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.155 user=root |
2020-05-04 23:42:38 |
| 106.75.157.9 | attackbots | May 4 14:57:51 plex sshd[9701]: Invalid user admin from 106.75.157.9 port 48510 |
2020-05-04 23:34:24 |
| 49.235.33.171 | attackspambots | May 4 14:09:27 icinga sshd[40514]: Failed password for root from 49.235.33.171 port 41666 ssh2 May 4 14:13:06 icinga sshd[46741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.33.171 May 4 14:13:08 icinga sshd[46741]: Failed password for invalid user emmanuel from 49.235.33.171 port 46664 ssh2 ... |
2020-05-04 23:19:43 |
| 45.65.173.26 | attack | Unauthorized connection attempt detected from IP address 45.65.173.26 to port 23 |
2020-05-04 23:30:44 |
| 178.62.125.120 | attackspambots | Unauthorized connection attempt detected from IP address 178.62.125.120 to port 23 [T] |
2020-05-04 23:43:26 |
| 207.46.13.35 | attackspam | Automatic report - Banned IP Access |
2020-05-04 23:32:36 |
| 106.12.178.245 | attackbots | 2020-05-04T12:09:01.094315shield sshd\[6060\]: Invalid user guest2 from 106.12.178.245 port 41468 2020-05-04T12:09:01.097970shield sshd\[6060\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.178.245 2020-05-04T12:09:03.303122shield sshd\[6060\]: Failed password for invalid user guest2 from 106.12.178.245 port 41468 ssh2 2020-05-04T12:13:17.721399shield sshd\[7086\]: Invalid user customer from 106.12.178.245 port 34418 2020-05-04T12:13:17.725206shield sshd\[7086\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.178.245 |
2020-05-04 23:09:33 |
| 176.31.120.169 | attackbots | May 3 22:52:36 josie sshd[23596]: Invalid user radio from 176.31.120.169 May 3 22:52:36 josie sshd[23596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.120.169 May 3 22:52:38 josie sshd[23596]: Failed password for invalid user radio from 176.31.120.169 port 33266 ssh2 May 3 22:52:38 josie sshd[23597]: Received disconnect from 176.31.120.169: 11: Bye Bye May 3 23:02:53 josie sshd[25475]: Invalid user griffin from 176.31.120.169 May 3 23:02:53 josie sshd[25475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.120.169 May 3 23:02:55 josie sshd[25475]: Failed password for invalid user griffin from 176.31.120.169 port 49512 ssh2 May 3 23:02:55 josie sshd[25477]: Received disconnect from 176.31.120.169: 11: Bye Bye May 3 23:08:02 josie sshd[26349]: Invalid user facebook from 176.31.120.169 May 3 23:08:02 josie sshd[26349]: pam_unix(sshd:auth): authentication failure; l........ ------------------------------- |
2020-05-04 23:28:59 |
| 110.93.200.118 | attackbots | May 4 15:10:28 server sshd[50183]: Failed password for invalid user jasmina from 110.93.200.118 port 24226 ssh2 May 4 15:16:11 server sshd[55366]: Failed password for invalid user csserver from 110.93.200.118 port 16656 ssh2 May 4 15:21:49 server sshd[59774]: Failed password for invalid user brian from 110.93.200.118 port 14382 ssh2 |
2020-05-04 23:19:15 |
| 51.75.126.115 | attackspam | 2020-05-04T13:10:09.378922ionos.janbro.de sshd[118546]: Invalid user test from 51.75.126.115 port 35974 2020-05-04T13:10:11.256277ionos.janbro.de sshd[118546]: Failed password for invalid user test from 51.75.126.115 port 35974 ssh2 2020-05-04T13:14:03.002923ionos.janbro.de sshd[118549]: Invalid user camera from 51.75.126.115 port 44476 2020-05-04T13:14:03.088932ionos.janbro.de sshd[118549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.126.115 2020-05-04T13:14:03.002923ionos.janbro.de sshd[118549]: Invalid user camera from 51.75.126.115 port 44476 2020-05-04T13:14:04.307212ionos.janbro.de sshd[118549]: Failed password for invalid user camera from 51.75.126.115 port 44476 ssh2 2020-05-04T13:17:40.306487ionos.janbro.de sshd[118557]: Invalid user abu from 51.75.126.115 port 52984 2020-05-04T13:17:40.387877ionos.janbro.de sshd[118557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.126.115 2020- ... |
2020-05-04 23:36:55 |
| 49.83.226.31 | attackbotsspam | " " |
2020-05-04 23:50:07 |
| 138.197.98.251 | attackbots | $f2bV_matches |
2020-05-04 23:51:36 |
| 99.183.144.132 | attackspam | May 4 14:12:53 santamaria sshd\[6761\]: Invalid user debora from 99.183.144.132 May 4 14:12:53 santamaria sshd\[6761\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=99.183.144.132 May 4 14:12:55 santamaria sshd\[6761\]: Failed password for invalid user debora from 99.183.144.132 port 43770 ssh2 ... |
2020-05-04 23:28:03 |
| 2001:b07:a6e:5a30:47c:a40:875d:c631 | attack | MYH,DEF GET /wp-login.php |
2020-05-04 23:45:00 |