City: Bremervörde
Region: Niedersachsen
Country: Germany
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 91.97.85.161
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39965
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;91.97.85.161. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021902 1800 900 604800 86400
;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 11:44:19 CST 2025
;; MSG SIZE rcvd: 105161.85.97.91.in-addr.arpa domain name pointer host-091-097-085-161.ewe-ip-backbone.de.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
161.85.97.91.in-addr.arpa name = host-091-097-085-161.ewe-ip-backbone.de.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 217.182.253.230 | attack | Jul 3 01:08:58 plusreed sshd[25535]: Invalid user admin from 217.182.253.230 ... |
2019-07-03 16:14:29 |
| 124.158.7.146 | attackbots | Jun 30 07:37:00 own sshd[23252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.158.7.146 user=r.r Jun 30 07:37:01 own sshd[23252]: Failed password for r.r from 124.158.7.146 port 57938 ssh2 Jun 30 07:37:04 own sshd[23252]: Failed password for r.r from 124.158.7.146 port 57938 ssh2 Jun 30 07:37:06 own sshd[23252]: Failed password for r.r from 124.158.7.146 port 57938 ssh2 Jun 30 07:37:11 own sshd[23252]: message repeated 2 times: [ Failed password for r.r from 124.158.7.146 port 57938 ssh2] Jun 30 07:37:11 own sshd[23252]: Connection reset by 124.158.7.146 port 57938 [preauth] Jun 30 07:37:11 own sshd[23252]: PAM 4 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.158.7.146 user=r.r Jul 2 12:35:58 own sshd[18912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.158.7.146 user=r.r Jul 2 12:36:00 own sshd[18912]: Failed password for r.r from 124.158.7.1........ ------------------------------- |
2019-07-03 16:05:28 |
| 198.108.66.162 | attackspam | firewall-block, port(s): 7547/tcp |
2019-07-03 16:10:51 |
| 174.138.9.132 | attackbotsspam | Scanning random ports - tries to find possible vulnerable services |
2019-07-03 16:16:29 |
| 201.116.200.210 | attackbots | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 02:47:23,863 INFO [shellcode_manager] (201.116.200.210) no match, writing hexdump (50bc73594f157331c5a4e7abd88fa487 :2042500) - MS17010 (EternalBlue) |
2019-07-03 16:39:20 |
| 172.245.5.172 | attackbots | 2019-07-03 01:55:39 dovecot_login authenticator failed for (xTS0wCwTPr) [172.245.5.172]:61509: 535 Incorrect authentication data (set_id=alex) 2019-07-03 01:55:49 dovecot_login authenticator failed for (SlC1J4b) [172.245.5.172]:63541: 535 Incorrect authentication data (set_id=alex) 2019-07-03 01:56:02 dovecot_login authenticator failed for (fHOeK4XB) [172.245.5.172]:64250: 535 Incorrect authentication data (set_id=alex) 2019-07-03 01:56:22 dovecot_login authenticator failed for (qVp2N8) [172.245.5.172]:56128: 535 Incorrect authentication data (set_id=alex) 2019-07-03 01:56:42 dovecot_login authenticator failed for (st9DfkxIk6) [172.245.5.172]:62338: 535 Incorrect authentication data (set_id=alex) 2019-07-03 01:57:03 dovecot_login authenticator failed for (K4nbrbsg92) [172.245.5.172]:63731: 535 Incorrect authentication data (set_id=alex) 2019-07-03 01:57:22 dovecot_login authenticator failed for (wtNXqx0EWX) [172.245.5.172]:50807: 535 Incorrect authentication data (set_id........ ------------------------------ |
2019-07-03 16:14:02 |
| 142.93.241.93 | attackspam | Jul 3 08:36:51 amit sshd\[22003\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.241.93 user=mysql Jul 3 08:36:54 amit sshd\[22003\]: Failed password for mysql from 142.93.241.93 port 38544 ssh2 Jul 3 08:40:04 amit sshd\[22086\]: Invalid user pie from 142.93.241.93 ... |
2019-07-03 16:47:16 |
| 174.75.32.242 | attackbots | Invalid user ba from 174.75.32.242 port 37994 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.75.32.242 Failed password for invalid user ba from 174.75.32.242 port 37994 ssh2 Invalid user mongodb from 174.75.32.242 port 40698 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.75.32.242 |
2019-07-03 16:19:55 |
| 116.107.177.11 | attackspambots | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 01:51:43,408 INFO [shellcode_manager] (116.107.177.11) no match, writing hexdump (83bc4e3a71dae41d4d4d5c1e140f4c9b :2115567) - MS17010 (EternalBlue) |
2019-07-03 16:43:40 |
| 46.166.80.213 | attackspambots | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 02:25:08,846 INFO [shellcode_manager] (46.166.80.213) no match, writing hexdump (ca45a8adf79ac69e0618e282203d1b44 :2322571) - MS17010 (EternalBlue) |
2019-07-03 16:40:16 |
| 177.17.189.234 | attackspam | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 02:40:47,958 INFO [shellcode_manager] (177.17.189.234) no match, writing hexdump (4ae8fd074f9dd953fed15c0f58c9c10ddc3e991517 :2392137) - MS17010 (EternalBlue) |
2019-07-03 16:45:22 |
| 218.92.0.138 | attack | Jul 3 07:40:57 meumeu sshd[5829]: Failed password for root from 218.92.0.138 port 7916 ssh2 Jul 3 07:41:00 meumeu sshd[5829]: Failed password for root from 218.92.0.138 port 7916 ssh2 Jul 3 07:41:13 meumeu sshd[5829]: Failed password for root from 218.92.0.138 port 7916 ssh2 ... |
2019-07-03 16:37:52 |
| 185.222.211.114 | attackbotsspam | 03.07.2019 07:53:58 Connection to port 3577 blocked by firewall |
2019-07-03 16:14:56 |
| 95.80.64.108 | attackspam | Sending SPAM email |
2019-07-03 16:26:56 |
| 27.8.224.154 | attackspam | 23/tcp [2019-07-03]1pkt |
2019-07-03 16:46:44 |