City: Leipzig
Region: Saxony
Country: Germany
Internet Service Provider: Vodafone Kabel Deutschland GmbH
Hostname: unknown
Organization: unknown
Usage Type: Fixed Line ISP
| Type | Details | Datetime |
|---|---|---|
| attackbotsspam | 20 attempts against mh-misbehave-ban on storm |
2020-03-22 07:00:52 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 95.91.42.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61801
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;95.91.42.2. IN A
;; AUTHORITY SECTION:
. 345 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020032102 1800 900 604800 86400
;; Query time: 84 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 22 07:00:48 CST 2020
;; MSG SIZE rcvd: 1142.42.91.95.in-addr.arpa domain name pointer ip5f5b2a02.dynamic.kabel-deutschland.de.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
2.42.91.95.in-addr.arpa name = ip5f5b2a02.dynamic.kabel-deutschland.de.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 92.53.65.136 | attackbotsspam | 4006/tcp 4000/tcp 4008/tcp... [2019-08-25/10-25]324pkt,283pt.(tcp) |
2019-10-26 08:13:16 |
| 80.82.64.73 | attackbotsspam | 10/25/2019-18:59:22.692987 80.82.64.73 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2019-10-26 08:16:18 |
| 103.131.51.66 | attackbots | Invalid user louis from 103.131.51.66 port 48878 |
2019-10-26 08:24:55 |
| 92.53.90.132 | attackbots | Port Scan: TCP/5114 |
2019-10-26 07:53:37 |
| 89.248.160.178 | attackspam | Port scan: Attack repeated for 24 hours |
2019-10-26 07:55:57 |
| 58.229.123.142 | attack | 58.229.123.142 (KR/South Korea/-) blocked for port scanning Time: Fri Oct 25 13:29:48 2019 +0000 IP: 58.229.123.142 (KR/South Korea/-) Hits: 20 Blocked: Temporary Block for 3600 seconds [PS_LIMIT] Sample of block hits: Oct 25 13:29:13 server kernel: [735332.147742] Firewall: *Port Flood* IN=eth0 OUT= MAC=0a:df:4c:a0:a6:86:0a:b2:a6:f2:cb:7a:08:00 SRC=58.229.123.142 DST=172.31.47.249 LEN=40 TOS=0x08 PREC=0x20 TTL=57 ID=65366 DF PROTO=TCP SPT=37540 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 etc |
2019-10-26 07:53:24 |
| 62.234.73.104 | attackbotsspam | Oct 26 02:04:46 dedicated sshd[13178]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.73.104 user=root Oct 26 02:04:49 dedicated sshd[13178]: Failed password for root from 62.234.73.104 port 58214 ssh2 |
2019-10-26 08:23:15 |
| 185.156.73.14 | attackspambots | firewall-block, port(s): 8862/tcp, 33706/tcp, 33707/tcp, 33708/tcp, 40048/tcp, 40049/tcp, 40050/tcp, 40814/tcp |
2019-10-26 08:08:31 |
| 89.248.174.193 | attackspambots | 10/25/2019-18:05:30.150020 89.248.174.193 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2019-10-26 07:55:01 |
| 106.12.209.59 | attack | (sshd) Failed SSH login from 106.12.209.59 (CN/China/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 25 22:55:38 andromeda sshd[28678]: Invalid user anirudh from 106.12.209.59 port 45488 Oct 25 22:55:40 andromeda sshd[28678]: Failed password for invalid user anirudh from 106.12.209.59 port 45488 ssh2 Oct 25 23:09:21 andromeda sshd[30177]: Did not receive identification string from 106.12.209.59 port 60118 |
2019-10-26 08:11:19 |
| 81.22.45.150 | attackspambots | 10/25/2019-18:41:27.400723 81.22.45.150 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2019-10-26 07:56:53 |
| 31.184.218.126 | attackbotsspam | ET CINS Active Threat Intelligence Poor Reputation IP group 16 - port: 2222 proto: TCP cat: Misc Attack |
2019-10-26 08:01:42 |
| 185.209.0.91 | attackspam | 10/25/2019-23:28:09.770177 185.209.0.91 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2019-10-26 08:04:03 |
| 104.250.137.74 | attack | 10/25/2019-23:54:59.157786 104.250.137.74 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433 |
2019-10-26 12:01:01 |
| 89.248.174.206 | attack | Brute force attack stopped by firewall |
2019-10-26 07:54:39 |