City: unknown
Region: unknown
Country: Germany
Internet Service Provider: Strato AG
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attackspam | Nov 1 04:39:15 HOST sshd[904]: Failed password for r.r from 85.214.95.14 port 40636 ssh2 Nov 1 04:39:15 HOST sshd[904]: Connection closed by 85.214.95.14 [preauth] Nov 1 04:39:15 HOST sshd[907]: Failed password for r.r from 85.214.95.14 port 40640 ssh2 Nov 1 04:39:15 HOST sshd[903]: Failed password for r.r from 85.214.95.14 port 40632 ssh2 Nov 1 04:39:15 HOST sshd[903]: Connection closed by 85.214.95.14 [preauth] Nov 1 04:39:15 HOST sshd[907]: Connection closed by 85.214.95.14 [preauth] Nov 1 04:39:15 HOST sshd[908]: Failed password for r.r from 85.214.95.14 port 40644 ssh2 Nov 1 04:39:15 HOST sshd[908]: Connection closed by 85.214.95.14 [preauth] Nov 1 04:39:15 HOST sshd[902]: Failed password for r.r from 85.214.95.14 port 40630 ssh2 Nov 1 04:39:15 HOST sshd[902]: Connection closed by 85.214.95.14 [preauth] Nov 1 04:39:15 HOST sshd[905]: Failed password for r.r from 85.214.95.14 port 40634 ssh2 Nov 1 04:39:15 HOST sshd[906]: Failed password for r.r from 85......... ------------------------------- |
2019-11-01 17:32:59 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 85.214.95.237 | attackspam | Invalid user admin from 85.214.95.237 port 55200 |
2019-10-24 22:49:39 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.214.95.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27666
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.214.95.14. IN A
;; AUTHORITY SECTION:
. 469 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019110100 1800 900 604800 86400
;; Query time: 472 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 01 17:32:55 CST 2019
;; MSG SIZE rcvd: 11614.95.214.85.in-addr.arpa domain name pointer h2592985.stratoserver.net.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
14.95.214.85.in-addr.arpa name = h2592985.stratoserver.net.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 43.228.65.27 | attack | 445/tcp 1433/tcp... [2019-12-12/23]5pkt,2pt.(tcp) |
2019-12-24 05:06:19 |
| 129.204.11.182 | attackbotsspam | Apr 30 07:53:33 yesfletchmain sshd\[15194\]: Invalid user ubuntu from 129.204.11.182 port 60842 Apr 30 07:53:33 yesfletchmain sshd\[15194\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.11.182 Apr 30 07:53:35 yesfletchmain sshd\[15194\]: Failed password for invalid user ubuntu from 129.204.11.182 port 60842 ssh2 Apr 30 07:56:06 yesfletchmain sshd\[15225\]: Invalid user admin from 129.204.11.182 port 52276 Apr 30 07:56:06 yesfletchmain sshd\[15225\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.11.182 ... |
2019-12-24 04:53:29 |
| 122.4.241.6 | attack | Dec 23 22:49:24 areeb-Workstation sshd[17622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.4.241.6 Dec 23 22:49:27 areeb-Workstation sshd[17622]: Failed password for invalid user rpc from 122.4.241.6 port 59944 ssh2 ... |
2019-12-24 04:48:45 |
| 139.162.112.248 | attack | Unauthorised access (Dec 23) SRC=139.162.112.248 LEN=40 TTL=246 ID=54321 TCP DPT=8080 WINDOW=65535 SYN |
2019-12-24 05:03:45 |
| 94.203.254.248 | attack | Invalid user pi from 94.203.254.248 port 38738 |
2019-12-24 05:13:24 |
| 35.188.242.129 | attack | 2019-12-23T21:13:38.014195 sshd[26915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.188.242.129 user=root 2019-12-23T21:13:39.893159 sshd[26915]: Failed password for root from 35.188.242.129 port 60332 ssh2 2019-12-23T21:24:08.942921 sshd[27126]: Invalid user webadmin from 35.188.242.129 port 38228 2019-12-23T21:24:08.958426 sshd[27126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.188.242.129 2019-12-23T21:24:08.942921 sshd[27126]: Invalid user webadmin from 35.188.242.129 port 38228 2019-12-23T21:24:11.128708 sshd[27126]: Failed password for invalid user webadmin from 35.188.242.129 port 38228 ssh2 ... |
2019-12-24 04:50:08 |
| 89.133.103.216 | attackbots | Dec 23 05:56:42 wbs sshd\[1653\]: Invalid user ident from 89.133.103.216 Dec 23 05:56:42 wbs sshd\[1653\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=catv-89-133-103-216.catv.broadband.hu Dec 23 05:56:44 wbs sshd\[1653\]: Failed password for invalid user ident from 89.133.103.216 port 43248 ssh2 Dec 23 06:02:20 wbs sshd\[2244\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=catv-89-133-103-216.catv.broadband.hu user=root Dec 23 06:02:22 wbs sshd\[2244\]: Failed password for root from 89.133.103.216 port 47254 ssh2 |
2019-12-24 04:49:35 |
| 129.204.109.127 | attack | Dec 3 09:11:45 yesfletchmain sshd\[14951\]: Invalid user lambright from 129.204.109.127 port 58602 Dec 3 09:11:45 yesfletchmain sshd\[14951\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.109.127 Dec 3 09:11:47 yesfletchmain sshd\[14951\]: Failed password for invalid user lambright from 129.204.109.127 port 58602 ssh2 Dec 3 09:18:34 yesfletchmain sshd\[15085\]: User root from 129.204.109.127 not allowed because not listed in AllowUsers Dec 3 09:18:34 yesfletchmain sshd\[15085\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.109.127 user=root ... |
2019-12-24 04:57:38 |
| 114.64.255.197 | attackspam | leo_www |
2019-12-24 04:59:10 |
| 51.83.104.120 | attackbotsspam | Dec 23 15:48:52 web8 sshd\[27093\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.104.120 user=uucp Dec 23 15:48:55 web8 sshd\[27093\]: Failed password for uucp from 51.83.104.120 port 35358 ssh2 Dec 23 15:53:56 web8 sshd\[29352\]: Invalid user adjust from 51.83.104.120 Dec 23 15:53:56 web8 sshd\[29352\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.104.120 Dec 23 15:53:59 web8 sshd\[29352\]: Failed password for invalid user adjust from 51.83.104.120 port 39200 ssh2 |
2019-12-24 04:55:55 |
| 129.204.119.243 | attackbots | Feb 18 05:46:04 dillonfme sshd\[2727\]: Invalid user steam from 129.204.119.243 port 38296 Feb 18 05:46:04 dillonfme sshd\[2727\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.119.243 Feb 18 05:46:06 dillonfme sshd\[2727\]: Failed password for invalid user steam from 129.204.119.243 port 38296 ssh2 Feb 18 05:51:01 dillonfme sshd\[2945\]: Invalid user hack from 129.204.119.243 port 34036 Feb 18 05:51:01 dillonfme sshd\[2945\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.119.243 ... |
2019-12-24 04:44:24 |
| 77.111.107.114 | attackspam | 2019-12-23T15:53:49.370085shield sshd\[6610\]: Invalid user patsourellis from 77.111.107.114 port 52263 2019-12-23T15:53:49.374887shield sshd\[6610\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.111.107.114 2019-12-23T15:53:50.961014shield sshd\[6610\]: Failed password for invalid user patsourellis from 77.111.107.114 port 52263 ssh2 2019-12-23T15:59:15.967874shield sshd\[9337\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.111.107.114 user=root 2019-12-23T15:59:17.973520shield sshd\[9337\]: Failed password for root from 77.111.107.114 port 54209 ssh2 |
2019-12-24 04:46:42 |
| 222.72.135.102 | attackspambots | 1433/tcp 1433/tcp 1433/tcp... [2019-10-26/12-23]24pkt,1pt.(tcp) |
2019-12-24 04:58:34 |
| 129.204.110.224 | attack | Mar 18 16:36:09 yesfletchmain sshd\[21885\]: Invalid user adolphus from 129.204.110.224 port 45644 Mar 18 16:36:09 yesfletchmain sshd\[21885\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.110.224 Mar 18 16:36:11 yesfletchmain sshd\[21885\]: Failed password for invalid user adolphus from 129.204.110.224 port 45644 ssh2 Mar 18 16:42:57 yesfletchmain sshd\[22140\]: Invalid user sdtdserver from 129.204.110.224 port 43722 Mar 18 16:42:57 yesfletchmain sshd\[22140\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.110.224 ... |
2019-12-24 04:52:16 |
| 129.204.120.42 | attackbots | Feb 14 16:36:20 dillonfme sshd\[10403\]: Invalid user eli from 129.204.120.42 port 44090 Feb 14 16:36:20 dillonfme sshd\[10403\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.120.42 Feb 14 16:36:22 dillonfme sshd\[10403\]: Failed password for invalid user eli from 129.204.120.42 port 44090 ssh2 Feb 14 16:43:40 dillonfme sshd\[10910\]: Invalid user tf2 from 129.204.120.42 port 35240 Feb 14 16:43:40 dillonfme sshd\[10910\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.120.42 ... |
2019-12-24 04:41:59 |