City: unknown
Region: unknown
Country: Germany
Internet Service Provider: Strato AG
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attackbotsspam | spam |
2020-04-15 17:28:55 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 85.214.45.232 | attack | Repeated RDP login failures. Last user: administrator |
2020-06-11 23:42:18 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.214.45.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20494
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.214.45.1. IN A
;; AUTHORITY SECTION:
. 507 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020041500 1800 900 604800 86400
;; Query time: 47 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 15 17:28:50 CST 2020
;; MSG SIZE rcvd: 115
1.45.214.85.in-addr.arpa domain name pointer h2852700.stratoserver.net.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
1.45.214.85.in-addr.arpa name = h2852700.stratoserver.net.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 103.1.209.245 | attackbotsspam | Unauthorized connection attempt detected from IP address 103.1.209.245 to port 2220 [J] |
2020-01-17 02:39:47 |
| 150.95.153.137 | attack | Unauthorized connection attempt detected from IP address 150.95.153.137 to port 2220 [J] |
2020-01-17 02:15:36 |
| 89.96.49.89 | attack | 2020-01-17T04:50:05.040212luisaranguren sshd[1673062]: Invalid user tomcat7 from 89.96.49.89 port 29057 2020-01-17T04:50:07.145834luisaranguren sshd[1673062]: Failed password for invalid user tomcat7 from 89.96.49.89 port 29057 ssh2 ... |
2020-01-17 02:40:51 |
| 222.186.175.216 | attack | Jan 16 19:26:35 eventyay sshd[6182]: Failed password for root from 222.186.175.216 port 35776 ssh2 Jan 16 19:26:48 eventyay sshd[6182]: error: maximum authentication attempts exceeded for root from 222.186.175.216 port 35776 ssh2 [preauth] Jan 16 19:26:53 eventyay sshd[6190]: Failed password for root from 222.186.175.216 port 55828 ssh2 ... |
2020-01-17 02:27:12 |
| 180.76.148.87 | attack | Unauthorized connection attempt detected from IP address 180.76.148.87 to port 2220 [J] |
2020-01-17 02:32:19 |
| 125.213.150.7 | attackbots | SSH Brute Force |
2020-01-17 02:35:42 |
| 69.158.207.141 | attackbots | Jan 16 13:00:24 XXX sshd[31258]: Invalid user user from 69.158.207.141 port 52260 |
2020-01-17 02:10:45 |
| 103.9.227.172 | attack | SMB Server BruteForce Attack |
2020-01-17 02:18:41 |
| 181.28.247.200 | attack | Unauthorized connection attempt detected from IP address 181.28.247.200 to port 2220 [J] |
2020-01-17 02:15:51 |
| 104.168.104.41 | attack | Unauthorized connection attempt detected from IP address 104.168.104.41 to port 2220 [J] |
2020-01-17 02:38:54 |
| 80.20.39.42 | attackspambots | Invalid user kyle from 80.20.39.42 port 53300 |
2020-01-17 02:10:22 |
| 49.88.112.67 | attackbotsspam | Jan 16 19:09:01 v22018053744266470 sshd[27263]: Failed password for root from 49.88.112.67 port 37955 ssh2 Jan 16 19:09:59 v22018053744266470 sshd[27322]: Failed password for root from 49.88.112.67 port 37095 ssh2 ... |
2020-01-17 02:21:14 |
| 183.82.121.34 | attack | Jan 16 18:55:37 MK-Soft-VM7 sshd[23492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82.121.34 Jan 16 18:55:39 MK-Soft-VM7 sshd[23492]: Failed password for invalid user tomcat from 183.82.121.34 port 48200 ssh2 ... |
2020-01-17 02:16:30 |
| 14.207.172.240 | attackspambots | "SMTP brute force auth login attempt." |
2020-01-17 02:07:14 |
| 45.139.51.17 | attackbotsspam | 10 attempts against mh_ha-misc-ban on bush.magehost.pro |
2020-01-17 02:02:47 |