City: Munich
Region: Bavaria
Country: Germany
Internet Service Provider: Contabo GmbH
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attackspam | May 8 22:50:41 mout sshd[792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.104.214.189 user=root May 8 22:50:43 mout sshd[792]: Failed password for root from 93.104.214.189 port 55062 ssh2 May 8 22:50:43 mout sshd[792]: Connection closed by 93.104.214.189 port 55062 [preauth] |
2020-05-09 05:23:38 |
| attackbots | Lines containing failures of 93.104.214.189 May 4 18:57:06 linuxrulz sshd[1846]: Did not receive identification string from 93.104.214.189 port 56942 May 4 18:57:06 linuxrulz sshd[1847]: Did not receive identification string from 93.104.214.189 port 49446 May 4 18:57:06 linuxrulz sshd[1848]: Did not receive identification string from 93.104.214.189 port 60624 May 4 19:00:22 linuxrulz sshd[2484]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.104.214.189 user=r.r May 4 19:00:24 linuxrulz sshd[2484]: Failed password for r.r from 93.104.214.189 port 59076 ssh2 May 4 19:00:25 linuxrulz sshd[2484]: Received disconnect from 93.104.214.189 port 59076:11: Normal Shutdown, Thank you for playing [preauth] May 4 19:00:25 linuxrulz sshd[2484]: Disconnected from authenticating user r.r 93.104.214.189 port 59076 [preauth] May 4 19:00:26 linuxrulz sshd[2488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ........ ------------------------------ |
2020-05-05 07:48:13 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 93.104.214.243 | attackbotsspam | CloudCIX Reconnaissance Scan Detected, PTR: mail.ganztagsschule24.de. |
2019-08-03 07:26:58 |
| 93.104.214.243 | attackspambots | CloudCIX Reconnaissance Scan Detected, PTR: mail.ganztagsschule24.de. |
2019-07-30 05:35:30 |
| 93.104.214.243 | attack | CloudCIX Reconnaissance Scan Detected, PTR: mail.ganztagsschule24.de. |
2019-07-25 02:23:25 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 93.104.214.189
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18429
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;93.104.214.189. IN A
;; AUTHORITY SECTION:
. 411 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020050403 1800 900 604800 86400
;; Query time: 86 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue May 05 07:48:10 CST 2020
;; MSG SIZE rcvd: 118189.214.104.93.in-addr.arpa domain name pointer vmi159178.contaboserver.net.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
189.214.104.93.in-addr.arpa name = vmi159178.contaboserver.net.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 113.100.89.191 | attack | badbot |
2019-11-20 18:01:31 |
| 81.30.212.14 | attackspambots | 81.30.212.14 was recorded 5 times by 2 hosts attempting to connect to the following ports: 22. Incident counter (4h, 24h, all-time): 5, 24, 62 |
2019-11-20 18:26:58 |
| 60.210.40.210 | attack | Nov 20 05:58:43 marvibiene sshd[19323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.210.40.210 user=root Nov 20 05:58:45 marvibiene sshd[19323]: Failed password for root from 60.210.40.210 port 17906 ssh2 Nov 20 06:25:05 marvibiene sshd[19544]: Invalid user goodson from 60.210.40.210 port 17907 ... |
2019-11-20 18:37:33 |
| 216.218.206.103 | attackspambots | 11/20/2019-08:46:13.392243 216.218.206.103 Protocol: 17 GPL RPC portmap listing UDP 111 |
2019-11-20 18:28:08 |
| 113.190.130.87 | attackspambots | Nov 20 07:25:53 localhost sshd\[23702\]: Invalid user admin from 113.190.130.87 port 58793 Nov 20 07:25:53 localhost sshd\[23702\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.190.130.87 Nov 20 07:25:55 localhost sshd\[23702\]: Failed password for invalid user admin from 113.190.130.87 port 58793 ssh2 |
2019-11-20 18:09:44 |
| 80.82.64.73 | attackspam | MultiHost/MultiPort Probe, Scan, Hack - |
2019-11-20 17:59:01 |
| 112.194.65.166 | attack | badbot |
2019-11-20 18:06:37 |
| 66.235.169.51 | attack | Looking for resource vulnerabilities |
2019-11-20 18:22:24 |
| 112.205.100.9 | attack | LAMP,DEF GET /wp/123456.rar |
2019-11-20 18:06:51 |
| 177.69.187.241 | attackbotsspam | Nov 20 08:25:51 www sshd\[132344\]: Invalid user italia from 177.69.187.241 Nov 20 08:25:51 www sshd\[132344\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.69.187.241 Nov 20 08:25:53 www sshd\[132344\]: Failed password for invalid user italia from 177.69.187.241 port 51681 ssh2 ... |
2019-11-20 18:10:58 |
| 109.190.43.165 | attackspambots | 2019-11-20T08:30:35.679482abusebot-2.cloudsearch.cf sshd\[30218\]: Invalid user kellym03 from 109.190.43.165 port 64700 |
2019-11-20 18:32:54 |
| 95.77.251.231 | attack | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/95.77.251.231/ RO - 1H : (27) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : RO NAME ASN : ASN6830 IP : 95.77.251.231 CIDR : 95.77.0.0/16 PREFIX COUNT : 755 UNIQUE IP COUNT : 12137216 ATTACKS DETECTED ASN6830 : 1H - 1 3H - 1 6H - 1 12H - 3 24H - 7 DateTime : 2019-11-20 07:25:30 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery |
2019-11-20 18:24:15 |
| 60.172.70.52 | attack | badbot |
2019-11-20 18:08:56 |
| 180.104.86.197 | attackspambots | badbot |
2019-11-20 18:24:57 |
| 42.242.10.221 | attack | badbot |
2019-11-20 18:19:51 |