City: Cerdanyola del Vallès
Region: Catalonia
Country: Spain
Internet Service Provider: Centre de Telecomunicacions i Tecnologies de la Informacio de la Generalitat de Catalunya (CTTI)
Hostname: unknown
Organization: unknown
Usage Type: Government
| Type | Details | Datetime |
|---|---|---|
| attack | Feb 10 07:04:41 MK-Soft-VM8 sshd[16338]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.192.71.53 Feb 10 07:04:43 MK-Soft-VM8 sshd[16338]: Failed password for invalid user uvs from 85.192.71.53 port 59444 ssh2 ... |
2020-02-10 14:25:12 |
| attackbots | Feb 7 19:07:33 legacy sshd[6314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.192.71.53 Feb 7 19:07:35 legacy sshd[6314]: Failed password for invalid user duv from 85.192.71.53 port 5483 ssh2 Feb 7 19:10:55 legacy sshd[6514]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.192.71.53 ... |
2020-02-08 05:18:14 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 85.192.71.245 | attackspambots | Dec 8 13:26:48 sachi sshd\[29118\]: Invalid user mima0123 from 85.192.71.245 Dec 8 13:26:48 sachi sshd\[29118\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43013099.xtec.cat Dec 8 13:26:49 sachi sshd\[29118\]: Failed password for invalid user mima0123 from 85.192.71.245 port 34524 ssh2 Dec 8 13:32:19 sachi sshd\[29619\]: Invalid user withhold from 85.192.71.245 Dec 8 13:32:19 sachi sshd\[29619\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43013099.xtec.cat |
2019-12-09 07:37:47 |
| 85.192.71.245 | attackbots | 2019-11-08T20:39:56.891305shield sshd\[593\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ceip-agustibarbera-amposta.xtec.cat user=root 2019-11-08T20:39:58.857175shield sshd\[593\]: Failed password for root from 85.192.71.245 port 42058 ssh2 2019-11-08T20:43:41.581830shield sshd\[1073\]: Invalid user g from 85.192.71.245 port 51860 2019-11-08T20:43:41.586122shield sshd\[1073\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ceip-agustibarbera-amposta.xtec.cat 2019-11-08T20:43:44.446543shield sshd\[1073\]: Failed password for invalid user g from 85.192.71.245 port 51860 ssh2 |
2019-11-09 04:45:05 |
| 85.192.71.245 | attack | Nov 6 18:21:29 lnxmysql61 sshd[23958]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.192.71.245 |
2019-11-07 03:01:50 |
| 85.192.71.245 | attackspambots | Nov 5 15:32:46 [host] sshd[11500]: Invalid user ubnt from 85.192.71.245 Nov 5 15:32:46 [host] sshd[11500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.192.71.245 Nov 5 15:32:48 [host] sshd[11500]: Failed password for invalid user ubnt from 85.192.71.245 port 34054 ssh2 |
2019-11-06 04:25:19 |
| 85.192.71.245 | attack | Automatic report - SSH Brute-Force Attack |
2019-11-05 14:04:11 |
| 85.192.71.245 | attackspambots | *Port Scan* detected from 85.192.71.245 (ES/Spain/ceip-agustibarbera-amposta.xtec.cat). 4 hits in the last 100 seconds |
2019-10-22 19:51:26 |
| 85.192.71.245 | attackbots | Oct 17 16:41:45 icinga sshd[12361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.192.71.245 Oct 17 16:41:46 icinga sshd[12361]: Failed password for invalid user 12!@34#$ from 85.192.71.245 port 51276 ssh2 ... |
2019-10-18 02:08:03 |
| 85.192.71.245 | attackbotsspam | Oct 16 01:54:20 hpm sshd\[8327\]: Invalid user zypass from 85.192.71.245 Oct 16 01:54:20 hpm sshd\[8327\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ceip-agustibarbera-amposta.xtec.cat Oct 16 01:54:22 hpm sshd\[8327\]: Failed password for invalid user zypass from 85.192.71.245 port 40576 ssh2 Oct 16 01:58:40 hpm sshd\[8702\]: Invalid user alcapone from 85.192.71.245 Oct 16 01:58:40 hpm sshd\[8702\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ceip-agustibarbera-amposta.xtec.cat |
2019-10-16 19:59:47 |
| 85.192.71.245 | attackspambots | $f2bV_matches |
2019-10-12 19:16:10 |
| 85.192.71.245 | attackspam | Oct 10 19:28:19 vps691689 sshd[32168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.192.71.245 Oct 10 19:28:21 vps691689 sshd[32168]: Failed password for invalid user France@2018 from 85.192.71.245 port 37762 ssh2 Oct 10 19:32:31 vps691689 sshd[32235]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.192.71.245 ... |
2019-10-11 02:29:11 |
| 85.192.71.245 | attackspam | 2019-10-09T04:56:07.859473abusebot-3.cloudsearch.cf sshd\[19265\]: Invalid user Discovery2017 from 85.192.71.245 port 46092 |
2019-10-09 14:46:59 |
| 85.192.71.245 | attack | Sep 12 17:48:21 php1 sshd\[27134\]: Invalid user user1 from 85.192.71.245 Sep 12 17:48:21 php1 sshd\[27134\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ceip-agustibarbera-amposta.xtec.cat Sep 12 17:48:22 php1 sshd\[27134\]: Failed password for invalid user user1 from 85.192.71.245 port 60456 ssh2 Sep 12 17:52:47 php1 sshd\[27729\]: Invalid user P@ssw0rd from 85.192.71.245 Sep 12 17:52:47 php1 sshd\[27729\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ceip-agustibarbera-amposta.xtec.cat |
2019-09-13 11:58:31 |
| 85.192.71.245 | attackbots | Jul 31 08:45:06 [host] sshd[24058]: Invalid user khelms from 85.192.71.245 Jul 31 08:45:06 [host] sshd[24058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.192.71.245 Jul 31 08:45:08 [host] sshd[24058]: Failed password for invalid user khelms from 85.192.71.245 port 60486 ssh2 |
2019-07-31 16:03:39 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.192.71.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10812
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.192.71.53. IN A
;; AUTHORITY SECTION:
. 536 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020020701 1800 900 604800 86400
;; Query time: 550 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 08 05:18:11 CST 2020
;; MSG SIZE rcvd: 116
53.71.192.85.in-addr.arpa domain name pointer iesjoaquimmir.xtec.cat.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
53.71.192.85.in-addr.arpa name = iesjoaquimmir.xtec.cat.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 163.177.40.85 | attack | " " |
2019-10-28 13:52:10 |
| 115.198.188.209 | attack | 81/tcp [2019-10-28]1pkt |
2019-10-28 14:16:07 |
| 211.107.161.236 | attackbotsspam | Brute force attempt |
2019-10-28 14:05:31 |
| 210.56.20.181 | attack | 2019-10-28T06:06:02.958896abusebot-5.cloudsearch.cf sshd\[13006\]: Invalid user guest from 210.56.20.181 port 60988 |
2019-10-28 14:16:29 |
| 212.129.145.64 | attackspam | Oct 28 04:26:56 xxxxxxx8434580 sshd[1100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.145.64 user=r.r Oct 28 04:26:58 xxxxxxx8434580 sshd[1100]: Failed password for r.r from 212.129.145.64 port 60990 ssh2 Oct 28 04:26:58 xxxxxxx8434580 sshd[1100]: Received disconnect from 212.129.145.64: 11: Bye Bye [preauth] Oct 28 04:50:09 xxxxxxx8434580 sshd[1490]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.145.64 user=r.r Oct 28 04:50:12 xxxxxxx8434580 sshd[1490]: Failed password for r.r from 212.129.145.64 port 40869 ssh2 Oct 28 04:50:12 xxxxxxx8434580 sshd[1490]: Received disconnect from 212.129.145.64: 11: Bye Bye [preauth] Oct 28 05:00:48 xxxxxxx8434580 sshd[1523]: Invalid user ftpuser from 212.129.145.64 Oct 28 05:00:48 xxxxxxx8434580 sshd[1523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.145.64 Oct 28 05:00:49 xxxxxxx........ ------------------------------- |
2019-10-28 14:11:08 |
| 178.128.161.153 | attackbots | $f2bV_matches |
2019-10-28 14:14:15 |
| 42.115.222.98 | attackspambots | port scan and connect, tcp 23 (telnet) |
2019-10-28 14:08:15 |
| 112.119.38.127 | attackbots | 60001/tcp [2019-10-28]1pkt |
2019-10-28 14:18:41 |
| 119.90.43.106 | attack | Oct 27 18:34:22 auw2 sshd\[22438\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.90.43.106 user=root Oct 27 18:34:24 auw2 sshd\[22438\]: Failed password for root from 119.90.43.106 port 65428 ssh2 Oct 27 18:39:41 auw2 sshd\[23000\]: Invalid user anonymous from 119.90.43.106 Oct 27 18:39:41 auw2 sshd\[23000\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.90.43.106 Oct 27 18:39:42 auw2 sshd\[23000\]: Failed password for invalid user anonymous from 119.90.43.106 port 19862 ssh2 |
2019-10-28 14:07:04 |
| 128.199.162.108 | attack | Oct 28 06:59:31 v22018076622670303 sshd\[9382\]: Invalid user ts from 128.199.162.108 port 48750 Oct 28 06:59:31 v22018076622670303 sshd\[9382\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.162.108 Oct 28 06:59:32 v22018076622670303 sshd\[9382\]: Failed password for invalid user ts from 128.199.162.108 port 48750 ssh2 ... |
2019-10-28 14:04:21 |
| 216.10.249.73 | attackbots | Oct 27 19:12:28 hanapaa sshd\[12493\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.10.249.73 user=root Oct 27 19:12:31 hanapaa sshd\[12493\]: Failed password for root from 216.10.249.73 port 43608 ssh2 Oct 27 19:17:02 hanapaa sshd\[12962\]: Invalid user db2fenc1 from 216.10.249.73 Oct 27 19:17:02 hanapaa sshd\[12962\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.10.249.73 Oct 27 19:17:03 hanapaa sshd\[12962\]: Failed password for invalid user db2fenc1 from 216.10.249.73 port 54776 ssh2 |
2019-10-28 13:40:42 |
| 104.210.222.38 | attack | Oct 28 05:49:24 www sshd\[18444\]: Invalid user 12340000 from 104.210.222.38Oct 28 05:49:25 www sshd\[18444\]: Failed password for invalid user 12340000 from 104.210.222.38 port 45708 ssh2Oct 28 05:54:07 www sshd\[18491\]: Invalid user 123456 from 104.210.222.38 ... |
2019-10-28 13:47:07 |
| 124.11.230.177 | attackspam | 445/tcp 445/tcp [2019-10-26]2pkt |
2019-10-28 13:42:02 |
| 77.94.124.194 | attack | 445/tcp [2019-10-28]1pkt |
2019-10-28 14:16:51 |
| 112.85.42.94 | attackspam | 2019-10-28T05:40:15.459668abusebot-7.cloudsearch.cf sshd\[2447\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.94 user=root |
2019-10-28 13:43:14 |