City: unknown
Region: unknown
Country: Netherlands
Internet Service Provider: Scanifi LLC
Hostname: unknown
Organization: unknown
Usage Type: Commercial
| Type | Details | Datetime |
|---|---|---|
| attackbotsspam | Unauthorized connection attempt detected from IP address 45.93.20.153 to port 5939 |
2019-12-21 19:52:55 |
| attack | 15232/tcp 45192/tcp 59161/tcp... [2019-10-16/12-08]11pkt,11pt.(tcp) |
2019-12-09 05:46:15 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 45.93.20.165 | attackspam | " " |
2019-12-28 00:33:47 |
| 45.93.20.156 | attack | firewall-block, port(s): 27973/tcp |
2019-12-27 15:09:30 |
| 45.93.20.171 | attackspam | Dec 27 05:57:33 debian-2gb-nbg1-2 kernel: \[1075378.769969\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.93.20.171 DST=195.201.40.59 LEN=40 TOS=0x08 PREC=0x00 TTL=241 ID=29493 PROTO=TCP SPT=61000 DPT=4031 WINDOW=1024 RES=0x00 SYN URGP=0 |
2019-12-27 13:10:40 |
| 45.93.20.186 | attack | firewall-block, port(s): 8943/tcp |
2019-12-26 14:49:12 |
| 45.93.20.156 | attackbots | firewall-block, port(s): 45954/tcp |
2019-12-26 08:11:09 |
| 45.93.20.161 | attackbotsspam | 56104/tcp 38252/tcp 33404/tcp... [2019-11-28/12-25]22pkt,22pt.(tcp) |
2019-12-25 21:15:52 |
| 45.93.20.181 | attack | Fail2Ban Ban Triggered |
2019-12-25 15:36:33 |
| 45.93.20.180 | attack | Unauthorized connection attempt detected from IP address 45.93.20.180 to port 11754 |
2019-12-25 13:24:34 |
| 45.93.20.154 | attack | 12/24/2019-05:30:20.456820 45.93.20.154 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 43 |
2019-12-24 19:23:01 |
| 45.93.20.143 | attackbotsspam | " " |
2019-12-24 08:44:52 |
| 45.93.20.138 | attackbots | 56208/tcp 24179/tcp 18281/tcp... [2019-11-27/12-23]19pkt,19pt.(tcp) |
2019-12-24 06:23:02 |
| 45.93.20.184 | attackbots | " " |
2019-12-24 06:19:05 |
| 45.93.20.187 | attackbotsspam | firewall-block, port(s): 31502/tcp |
2019-12-23 19:15:30 |
| 45.93.20.133 | attackbots | " " |
2019-12-23 08:51:29 |
| 45.93.20.190 | attack | Unauthorized connection attempt detected from IP address 45.93.20.190 to port 6724 |
2019-12-23 08:47:35 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.93.20.153
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28002
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.93.20.153. IN A
;; AUTHORITY SECTION:
. 318 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019120801 1800 900 604800 86400
;; Query time: 121 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 09 05:46:10 CST 2019
;; MSG SIZE rcvd: 116
Host 153.20.93.45.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 153.20.93.45.in-addr.arpa: NXDOMAIN
| IP | Type | Details | Datetime |
|---|---|---|---|
| 79.89.191.96 | attack | Invalid user linux from 79.89.191.96 port 38712 |
2019-07-19 22:30:37 |
| 112.85.42.88 | attackspambots | Jul 19 15:49:40 piServer sshd\[29160\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.88 user=root Jul 19 15:49:42 piServer sshd\[29160\]: Failed password for root from 112.85.42.88 port 29791 ssh2 Jul 19 15:51:21 piServer sshd\[29278\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.88 user=root Jul 19 15:51:22 piServer sshd\[29278\]: Failed password for root from 112.85.42.88 port 59542 ssh2 Jul 19 15:51:24 piServer sshd\[29278\]: Failed password for root from 112.85.42.88 port 59542 ssh2 ... |
2019-07-19 22:07:45 |
| 61.177.172.158 | attackbots | Jul 19 13:57:04 cvbmail sshd\[16836\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.158 user=root Jul 19 13:57:06 cvbmail sshd\[16836\]: Failed password for root from 61.177.172.158 port 12911 ssh2 Jul 19 14:00:58 cvbmail sshd\[16867\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.158 user=root |
2019-07-19 22:25:19 |
| 177.68.148.10 | attackspambots | Jul 18 13:43:35 vtv3 sshd\[12486\]: Invalid user zy from 177.68.148.10 port 26749 Jul 18 13:43:35 vtv3 sshd\[12486\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.68.148.10 Jul 18 13:43:37 vtv3 sshd\[12486\]: Failed password for invalid user zy from 177.68.148.10 port 26749 ssh2 Jul 18 13:49:27 vtv3 sshd\[15223\]: Invalid user alex from 177.68.148.10 port 22122 Jul 18 13:49:27 vtv3 sshd\[15223\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.68.148.10 Jul 18 14:01:05 vtv3 sshd\[21133\]: Invalid user ws from 177.68.148.10 port 54090 Jul 18 14:01:05 vtv3 sshd\[21133\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.68.148.10 Jul 18 14:01:07 vtv3 sshd\[21133\]: Failed password for invalid user ws from 177.68.148.10 port 54090 ssh2 Jul 18 14:06:58 vtv3 sshd\[23843\]: Invalid user giaou from 177.68.148.10 port 65399 Jul 18 14:06:58 vtv3 sshd\[23843\]: pam_unix\(sshd:aut |
2019-07-19 22:04:09 |
| 70.24.197.243 | attack | Jul 15 01:16:56 srv01 sshd[27510]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=qubcpq0634w-lp130-04-70-24-197-243.dsl.bell.ca user=jira Jul 15 01:16:58 srv01 sshd[27510]: Failed password for jira from 70.24.197.243 port 54309 ssh2 Jul 15 01:17:01 srv01 sshd[27510]: Failed password for jira from 70.24.197.243 port 54309 ssh2 Jul 15 01:17:02 srv01 sshd[27510]: Failed password for jira from 70.24.197.243 port 54309 ssh2 Jul 15 01:17:05 srv01 sshd[27510]: Failed password for jira from 70.24.197.243 port 54309 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=70.24.197.243 |
2019-07-19 22:29:20 |
| 197.157.216.75 | attackspambots | 445/tcp 445/tcp 445/tcp... [2019-07-01/19]4pkt,1pt.(tcp) |
2019-07-19 22:42:21 |
| 174.138.33.171 | attackbots | US United States - Hits: 11 |
2019-07-19 22:23:37 |
| 182.74.119.10 | attack | Unauthorised access (Jul 19) SRC=182.74.119.10 LEN=48 TTL=118 ID=8400 DF TCP DPT=445 WINDOW=8192 SYN |
2019-07-19 22:37:14 |
| 110.175.57.53 | attack | Jul 19 08:23:51 aat-srv002 sshd[10707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.175.57.53 Jul 19 08:23:53 aat-srv002 sshd[10707]: Failed password for invalid user debian from 110.175.57.53 port 46353 ssh2 Jul 19 08:35:43 aat-srv002 sshd[10916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.175.57.53 Jul 19 08:35:45 aat-srv002 sshd[10916]: Failed password for invalid user anna from 110.175.57.53 port 44041 ssh2 ... |
2019-07-19 21:59:06 |
| 151.80.166.73 | attack | st-nyc1-01 recorded 3 login violations from 151.80.166.73 and was blocked at 2019-07-19 14:02:59. 151.80.166.73 has been blocked on 46 previous occasions. 151.80.166.73's first attempt was recorded at 2019-07-19 01:48:53 |
2019-07-19 22:05:30 |
| 12.2.202.77 | attackspambots | 445/tcp 445/tcp 445/tcp... [2019-05-27/07-19]11pkt,1pt.(tcp) |
2019-07-19 22:42:56 |
| 82.220.2.159 | attackspambots | 445/tcp 445/tcp 445/tcp... [2019-06-02/07-19]5pkt,1pt.(tcp) |
2019-07-19 22:40:50 |
| 79.208.42.229 | attackspambots | Invalid user elastic from 79.208.42.229 port 65394 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.208.42.229 Failed password for invalid user elastic from 79.208.42.229 port 65394 ssh2 Invalid user tn from 79.208.42.229 port 59389 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.208.42.229 |
2019-07-19 22:55:42 |
| 110.93.244.78 | attackspam | 445/tcp 445/tcp 445/tcp... [2019-06-06/07-19]8pkt,1pt.(tcp) |
2019-07-19 22:38:30 |
| 75.35.219.219 | attack | 23/tcp 23/tcp [2019-07-04/19]2pkt |
2019-07-19 22:45:03 |