City: Mannheim
Region: Baden-Württemberg
Country: Germany
Internet Service Provider: Vodafone
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.216.72.100
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49913
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;85.216.72.100. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2024121100 1800 900 604800 86400
;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 12 01:39:14 CST 2024
;; MSG SIZE rcvd: 106
100.72.216.85.in-addr.arpa domain name pointer ip-085-216-072-100.um25.pools.vodafone-ip.de.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
100.72.216.85.in-addr.arpa name = ip-085-216-072-100.um25.pools.vodafone-ip.de.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 185.163.200.34 | attackbotsspam | fail2ban honeypot |
2019-07-09 08:21:02 |
| 77.232.128.87 | attackspam | Jul 8 22:21:55 MainVPS sshd[15346]: Invalid user aaron from 77.232.128.87 port 60848 Jul 8 22:21:55 MainVPS sshd[15346]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.232.128.87 Jul 8 22:21:55 MainVPS sshd[15346]: Invalid user aaron from 77.232.128.87 port 60848 Jul 8 22:21:57 MainVPS sshd[15346]: Failed password for invalid user aaron from 77.232.128.87 port 60848 ssh2 Jul 8 22:24:18 MainVPS sshd[15504]: Invalid user miner from 77.232.128.87 port 45657 ... |
2019-07-09 08:43:16 |
| 142.254.109.204 | attack | Jul 8 13:04:56 home sshd[27326]: Invalid user admin1234 from 142.254.109.204 port 38578 Jul 8 13:04:57 home sshd[27326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.254.109.204 Jul 8 13:04:56 home sshd[27326]: Invalid user admin1234 from 142.254.109.204 port 38578 Jul 8 13:04:59 home sshd[27326]: Failed password for invalid user admin1234 from 142.254.109.204 port 38578 ssh2 Jul 8 13:44:15 home sshd[27628]: Invalid user 587 from 142.254.109.204 port 41528 Jul 8 13:44:15 home sshd[27628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.254.109.204 Jul 8 13:44:15 home sshd[27628]: Invalid user 587 from 142.254.109.204 port 41528 Jul 8 13:44:18 home sshd[27628]: Failed password for invalid user 587 from 142.254.109.204 port 41528 ssh2 Jul 8 14:07:34 home sshd[27815]: Invalid user admin1234 from 142.254.109.204 port 38060 Jul 8 14:07:34 home sshd[27815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 |
2019-07-09 08:28:43 |
| 77.40.65.226 | attack | Jul 8 20:30:13 mail postfix/smtps/smtpd[13233]: warning: unknown[77.40.65.226]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 8 20:33:28 mail postfix/smtps/smtpd[13238]: warning: unknown[77.40.65.226]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 8 20:35:35 mail postfix/smtps/smtpd[13243]: warning: unknown[77.40.65.226]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2019-07-09 08:47:29 |
| 153.92.5.4 | attackbotsspam | Jul 9 01:06:04 ns37 sshd[13834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.92.5.4 Jul 9 01:06:06 ns37 sshd[13834]: Failed password for invalid user testuser from 153.92.5.4 port 57090 ssh2 Jul 9 01:08:50 ns37 sshd[13933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.92.5.4 |
2019-07-09 08:56:46 |
| 68.183.184.243 | attackbotsspam | windhundgang.de 68.183.184.243 \[08/Jul/2019:20:34:48 +0200\] "POST /wp-login.php HTTP/1.1" 200 8414 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" windhundgang.de 68.183.184.243 \[08/Jul/2019:20:34:52 +0200\] "POST /wp-login.php HTTP/1.1" 200 8414 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2019-07-09 09:01:03 |
| 77.247.110.166 | attack | " " |
2019-07-09 08:31:33 |
| 185.176.27.18 | attackbots | 08.07.2019 23:42:12 Connection to port 49389 blocked by firewall |
2019-07-09 08:15:51 |
| 187.87.38.170 | attackspambots | Jul 8 15:26:34 plesk sshd[4667]: Invalid user samba from 187.87.38.170 Jul 8 15:26:34 plesk sshd[4667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.87.38.170.gd.net.br Jul 8 15:26:36 plesk sshd[4667]: Failed password for invalid user samba from 187.87.38.170 port 34118 ssh2 Jul 8 15:26:36 plesk sshd[4667]: Received disconnect from 187.87.38.170: 11: Bye Bye [preauth] Jul 8 15:31:06 plesk sshd[4717]: Invalid user xuan from 187.87.38.170 Jul 8 15:31:06 plesk sshd[4717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.87.38.170.gd.net.br Jul 8 15:31:08 plesk sshd[4717]: Failed password for invalid user xuan from 187.87.38.170 port 53458 ssh2 Jul 8 15:31:09 plesk sshd[4717]: Received disconnect from 187.87.38.170: 11: Bye Bye [preauth] Jul 8 15:33:47 plesk sshd[4752]: Invalid user earl from 187.87.38.170 Jul 8 15:33:47 plesk sshd[4752]: pam_unix(sshd:auth): authentication........ ------------------------------- |
2019-07-09 08:21:54 |
| 93.171.33.196 | attackbots | SSH-BruteForce |
2019-07-09 08:54:20 |
| 185.220.101.61 | attack | Jul 8 23:20:00 ns41 sshd[9545]: Failed password for root from 185.220.101.61 port 41272 ssh2 Jul 8 23:20:03 ns41 sshd[9545]: Failed password for root from 185.220.101.61 port 41272 ssh2 Jul 8 23:20:07 ns41 sshd[9545]: Failed password for root from 185.220.101.61 port 41272 ssh2 Jul 8 23:20:09 ns41 sshd[9545]: Failed password for root from 185.220.101.61 port 41272 ssh2 |
2019-07-09 08:52:22 |
| 206.189.122.133 | attack | 2019-07-09T00:20:08.517064scmdmz1 sshd\[2980\]: Invalid user virus from 206.189.122.133 port 36730 2019-07-09T00:20:08.521509scmdmz1 sshd\[2980\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.122.133 2019-07-09T00:20:10.692848scmdmz1 sshd\[2980\]: Failed password for invalid user virus from 206.189.122.133 port 36730 ssh2 ... |
2019-07-09 08:51:21 |
| 37.187.54.67 | attack | SSH Brute Force |
2019-07-09 08:29:33 |
| 59.72.112.21 | attack | detected by Fail2Ban |
2019-07-09 08:22:38 |
| 58.250.79.7 | attackspam | Jul 8 21:25:41 ip-172-31-22-16 sshd\[843\]: Invalid user netscreen from 58.250.79.7 Jul 8 21:25:50 ip-172-31-22-16 sshd\[847\]: Invalid user none from 58.250.79.7 Jul 8 21:25:59 ip-172-31-22-16 sshd\[851\]: Invalid user op from 58.250.79.7 Jul 8 21:26:07 ip-172-31-22-16 sshd\[854\]: Invalid user operator from 58.250.79.7 Jul 8 21:26:09 ip-172-31-22-16 sshd\[856\]: Invalid user patrol from 58.250.79.7 |
2019-07-09 08:33:13 |