City: unknown
Region: unknown
Country: Germany
Internet Service Provider: myLoc managed IT AG
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attack | lfd: (smtpauth) Failed SMTP AUTH login from 85.14.245.40 (srv83039.dus2.fastwebserver.de): 5 in the last 3600 secs - Sun Jul 22 08:27:34 2018 |
2020-02-24 23:10:49 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 85.14.245.154 | attackbots | Repeated RDP login failures. Last user: alex |
2020-02-22 04:57:34 |
| 85.14.245.153 | attackspam | scan r |
2019-11-05 02:14:35 |
| 85.14.245.149 | attackbots | Honeypot hit. |
2019-10-24 06:54:14 |
| 85.14.245.156 | attack | webserver:80 [09/Oct/2019] "\x03" 400 0 webserver:80 [09/Oct/2019] "\x03" 400 0 webserver:80 [08/Oct/2019] "\x03" 400 0 |
2019-10-10 04:49:24 |
| 85.14.245.221 | attackbots | rdp |
2019-10-05 00:04:30 |
| 85.14.245.149 | attack | Many RDP login attempts detected by IDS script |
2019-07-18 11:05:40 |
| 85.14.245.158 | attackbotsspam | Bruteforcing port 3389 (Remote Desktop) - Exceed maximum 10 attempts/hour |
2019-07-14 09:35:56 |
| 85.14.245.157 | attack | 3389BruteforceFW22 |
2019-07-01 03:59:03 |
| 85.14.245.221 | attackspambots | RDP Brute-Force (Grieskirchen RZ1) |
2019-06-23 03:30:05 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.14.245.40
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43036
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.14.245.40. IN A
;; AUTHORITY SECTION:
. 406 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020022400 1800 900 604800 86400
;; Query time: 127 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 24 23:10:44 CST 2020
;; MSG SIZE rcvd: 11640.245.14.85.in-addr.arpa domain name pointer srv83039.dus2.dedicated.server-hosting.expert.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
40.245.14.85.in-addr.arpa name = srv83039.dus2.dedicated.server-hosting.expert.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 222.186.173.215 | attackspam | pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.215 user=root Failed password for root from 222.186.173.215 port 11562 ssh2 Failed password for root from 222.186.173.215 port 11562 ssh2 Failed password for root from 222.186.173.215 port 11562 ssh2 Failed password for root from 222.186.173.215 port 11562 ssh2 |
2020-01-15 00:49:07 |
| 134.175.117.8 | attack | Unauthorized connection attempt detected from IP address 134.175.117.8 to port 2220 [J] |
2020-01-15 00:52:08 |
| 177.128.136.4 | attackbotsspam | Jan 14 17:25:30 meumeu sshd[5009]: Failed password for git from 177.128.136.4 port 43122 ssh2 Jan 14 17:29:30 meumeu sshd[5711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.128.136.4 Jan 14 17:29:32 meumeu sshd[5711]: Failed password for invalid user prueba from 177.128.136.4 port 45836 ssh2 ... |
2020-01-15 00:42:57 |
| 51.15.9.27 | attackspambots | xmlrpc attack |
2020-01-15 00:39:59 |
| 77.122.75.63 | attackspam | Port 1433 Scan |
2020-01-15 00:41:01 |
| 193.238.46.18 | attackbotsspam | [13/Jan/2020:08:46:53 -0500] "GET /.env HTTP/1.1" "python-requests/2.22.0" |
2020-01-15 00:32:12 |
| 49.88.112.55 | attack | Jan 14 17:46:59 nextcloud sshd\[19697\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.55 user=root Jan 14 17:47:01 nextcloud sshd\[19697\]: Failed password for root from 49.88.112.55 port 13663 ssh2 Jan 14 17:47:04 nextcloud sshd\[19697\]: Failed password for root from 49.88.112.55 port 13663 ssh2 ... |
2020-01-15 00:48:33 |
| 205.251.218.97 | attackspam | Automatic report generated by Wazuh |
2020-01-15 00:36:11 |
| 200.196.249.170 | attack | Jan 14 17:13:54 sso sshd[31438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.196.249.170 Jan 14 17:13:56 sso sshd[31438]: Failed password for invalid user galina from 200.196.249.170 port 56136 ssh2 ... |
2020-01-15 01:05:29 |
| 85.119.144.182 | attackbotsspam | Unauthorized connection attempt detected from IP address 85.119.144.182 to port 2220 [J] |
2020-01-15 00:27:28 |
| 5.183.181.19 | attack | Unauthorized connection attempt from IP address 5.183.181.19 on Port 445(SMB) |
2020-01-15 00:41:19 |
| 113.14.159.49 | attackbotsspam | MultiHost/MultiPort Probe, Scan, Hack - |
2020-01-15 01:00:26 |
| 113.161.89.170 | attackbotsspam | MultiHost/MultiPort Probe, Scan, Hack - |
2020-01-15 00:52:26 |
| 92.118.161.9 | attack | Unauthorized connection attempt detected from IP address 92.118.161.9 to port 8090 [J] |
2020-01-15 00:52:56 |
| 187.189.51.117 | attackbots | Jan 14 10:04:14 ny01 sshd[6704]: Failed password for root from 187.189.51.117 port 14128 ssh2 Jan 14 10:07:21 ny01 sshd[7009]: Failed password for root from 187.189.51.117 port 41166 ssh2 |
2020-01-15 00:47:49 |