City: unknown
Region: unknown
Country: Hong Kong
Internet Service Provider: Microsoft Corporation
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attackbots | ET CINS Active Threat Intelligence Poor Reputation IP group 39 - port: 19932 proto: TCP cat: Misc Attack |
2020-07-05 21:38:38 |
| attackspambots | Dec 20 23:52:16 microserver sshd[34426]: Invalid user host from 52.229.160.94 port 54420 Dec 20 23:52:16 microserver sshd[34426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.229.160.94 Dec 20 23:52:18 microserver sshd[34426]: Failed password for invalid user host from 52.229.160.94 port 54420 ssh2 Dec 20 23:58:08 microserver sshd[35237]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.229.160.94 user=www-data Dec 20 23:58:10 microserver sshd[35237]: Failed password for www-data from 52.229.160.94 port 38782 ssh2 Dec 21 00:10:29 microserver sshd[38240]: Invalid user home from 52.229.160.94 port 36774 Dec 21 00:10:29 microserver sshd[38240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.229.160.94 Dec 21 00:10:31 microserver sshd[38240]: Failed password for invalid user home from 52.229.160.94 port 36774 ssh2 Dec 21 00:16:19 microserver sshd[39103]: pam_unix(sshd:auth): authent |
2019-12-21 07:16:03 |
| attack | Invalid user unset from 52.229.160.94 port 33210 |
2019-12-20 05:05:02 |
| attackspam | Dec 19 02:30:23 microserver sshd[2665]: Invalid user server from 52.229.160.94 port 42396 Dec 19 02:30:23 microserver sshd[2665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.229.160.94 Dec 19 02:30:25 microserver sshd[2665]: Failed password for invalid user server from 52.229.160.94 port 42396 ssh2 Dec 19 02:39:55 microserver sshd[3711]: Invalid user bozzoli from 52.229.160.94 port 47004 Dec 19 02:39:55 microserver sshd[3711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.229.160.94 Dec 19 02:52:03 microserver sshd[5779]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.229.160.94 user=daemon Dec 19 02:52:05 microserver sshd[5779]: Failed password for daemon from 52.229.160.94 port 48772 ssh2 Dec 19 02:58:04 microserver sshd[6579]: Invalid user blenda from 52.229.160.94 port 35372 Dec 19 02:58:04 microserver sshd[6579]: pam_unix(sshd:auth): authentication failure; logname= uid |
2019-12-19 07:33:25 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 52.229.160.184 | attackbotsspam |
|
2020-08-09 19:38:05 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.229.160.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43595
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.229.160.94. IN A
;; AUTHORITY SECTION:
. 507 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019121802 1800 900 604800 86400
;; Query time: 161 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 19 07:33:22 CST 2019
;; MSG SIZE rcvd: 117Host 94.160.229.52.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 94.160.229.52.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 46.229.168.130 | attackbots | 46.229.168.130 - - \[01/Oct/2019:15:20:05 +0200\] "GET /index.php\?returnto=Sp%C3%A9cial%3AJournal\&returntoquery=page%3DSandBox%26printable%3Dyes\&title=Sp%C3%A9cial%3AConnexion HTTP/1.1" 200 4134 "-" "Mozilla/5.0 \(compatible\; SemrushBot/6\~bl\; +http://www.semrush.com/bot.html\)" 46.229.168.130 - - \[01/Oct/2019:15:20:25 +0200\] "GET /showthread.php\?mode=linear\&pid=5106\&tid=774 HTTP/1.1" 302 5 "-" "Mozilla/5.0 \(compatible\; SemrushBot/6\~bl\; +http://www.semrush.com/bot.html\)" |
2019-10-01 23:54:07 |
| 68.183.236.66 | attack | Oct 1 10:50:20 plusreed sshd[15391]: Invalid user edubuntu from 68.183.236.66 ... |
2019-10-02 00:03:51 |
| 219.223.234.7 | attackbotsspam | Automatic report - SSH Brute-Force Attack |
2019-10-01 23:46:36 |
| 204.17.56.42 | attack | ssh brute force |
2019-10-01 23:28:30 |
| 196.179.252.244 | attackspam | Attempt to attack host OS, exploiting network vulnerabilities, on 01-10-2019 13:15:22. |
2019-10-01 23:36:03 |
| 35.0.127.52 | attackspambots | Oct 1 16:20:00 rotator sshd\[3706\]: Failed password for root from 35.0.127.52 port 37626 ssh2Oct 1 16:20:03 rotator sshd\[3706\]: Failed password for root from 35.0.127.52 port 37626 ssh2Oct 1 16:20:05 rotator sshd\[3706\]: Failed password for root from 35.0.127.52 port 37626 ssh2Oct 1 16:20:08 rotator sshd\[3706\]: Failed password for root from 35.0.127.52 port 37626 ssh2Oct 1 16:20:11 rotator sshd\[3706\]: Failed password for root from 35.0.127.52 port 37626 ssh2Oct 1 16:20:14 rotator sshd\[3706\]: Failed password for root from 35.0.127.52 port 37626 ssh2 ... |
2019-10-02 00:04:58 |
| 49.49.28.203 | attackspambots | Chat Spam |
2019-10-01 23:19:37 |
| 62.68.252.154 | attackspambots | Attempt to attack host OS, exploiting network vulnerabilities, on 01-10-2019 13:15:24. |
2019-10-01 23:30:36 |
| 112.85.42.72 | attackbotsspam | Oct 1 10:59:56 xentho sshd[25716]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.72 user=root Oct 1 10:59:58 xentho sshd[25716]: Failed password for root from 112.85.42.72 port 42094 ssh2 Oct 1 11:00:00 xentho sshd[25716]: Failed password for root from 112.85.42.72 port 42094 ssh2 Oct 1 10:59:56 xentho sshd[25716]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.72 user=root Oct 1 10:59:58 xentho sshd[25716]: Failed password for root from 112.85.42.72 port 42094 ssh2 Oct 1 11:00:00 xentho sshd[25716]: Failed password for root from 112.85.42.72 port 42094 ssh2 Oct 1 10:59:56 xentho sshd[25716]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.72 user=root Oct 1 10:59:58 xentho sshd[25716]: Failed password for root from 112.85.42.72 port 42094 ssh2 Oct 1 11:00:00 xentho sshd[25716]: Failed password for root from 112.85.42.72 po ... |
2019-10-01 23:23:42 |
| 173.255.243.141 | attackspam | 4040/tcp 5985/tcp 4500/tcp... [2019-07-31/10-01]105pkt,74pt.(tcp),1pt.(udp) |
2019-10-01 23:21:15 |
| 222.91.198.255 | attack | Oct 1 11:15:03 debian sshd\[10257\]: Invalid user zxvf from 222.91.198.255 port 7130 Oct 1 11:15:03 debian sshd\[10257\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.91.198.255 Oct 1 11:15:06 debian sshd\[10257\]: Failed password for invalid user zxvf from 222.91.198.255 port 7130 ssh2 ... |
2019-10-01 23:16:36 |
| 106.225.129.108 | attack | Automatic report - Banned IP Access |
2019-10-01 23:26:11 |
| 159.146.47.126 | attackspambots | Attempt to attack host OS, exploiting network vulnerabilities, on 01-10-2019 13:15:21. |
2019-10-01 23:37:01 |
| 46.252.217.12 | attackbotsspam | Attempt to attack host OS, exploiting network vulnerabilities, on 01-10-2019 13:15:24. |
2019-10-01 23:31:01 |
| 197.55.191.165 | attackspambots | Chat Spam |
2019-10-01 23:46:56 |