城市(city): unknown
省份(region): unknown
国家(country): Germany
运营商(isp): myLoc managed IT AG
主机名(hostname): unknown
机构(organization): myLoc managed IT AG
使用类型(Usage Type): Data Center/Web Hosting/Transit
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attack | 3389BruteforceFW22 |
2019-07-01 03:59:03 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 85.14.245.40 | attack | lfd: (smtpauth) Failed SMTP AUTH login from 85.14.245.40 (srv83039.dus2.fastwebserver.de): 5 in the last 3600 secs - Sun Jul 22 08:27:34 2018 |
2020-02-24 23:10:49 |
| 85.14.245.154 | attackbots | Repeated RDP login failures. Last user: alex |
2020-02-22 04:57:34 |
| 85.14.245.153 | attackspam | scan r |
2019-11-05 02:14:35 |
| 85.14.245.149 | attackbots | Honeypot hit. |
2019-10-24 06:54:14 |
| 85.14.245.156 | attack | webserver:80 [09/Oct/2019] "\x03" 400 0 webserver:80 [09/Oct/2019] "\x03" 400 0 webserver:80 [08/Oct/2019] "\x03" 400 0 |
2019-10-10 04:49:24 |
| 85.14.245.221 | attackbots | rdp |
2019-10-05 00:04:30 |
| 85.14.245.149 | attack | Many RDP login attempts detected by IDS script |
2019-07-18 11:05:40 |
| 85.14.245.158 | attackbotsspam | Bruteforcing port 3389 (Remote Desktop) - Exceed maximum 10 attempts/hour |
2019-07-14 09:35:56 |
| 85.14.245.221 | attackspambots | RDP Brute-Force (Grieskirchen RZ1) |
2019-06-23 03:30:05 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.14.245.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60381
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.14.245.157. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019063001 1800 900 604800 86400
;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 01 03:58:58 CST 2019
;; MSG SIZE rcvd: 117
157.245.14.85.in-addr.arpa domain name pointer srv84076.dus2.fastwebserver.de.
Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
157.245.14.85.in-addr.arpa name = srv84076.dus2.fastwebserver.de.
Authoritative answers can be found from:
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 122.116.162.144 | attackbotsspam | Unauthorized connection attempt detected from IP address 122.116.162.144 to port 4567 [J] |
2020-01-29 05:14:08 |
| 115.231.181.16 | attack | Unauthorized connection attempt detected from IP address 115.231.181.16 to port 2220 [J] |
2020-01-29 05:15:45 |
| 79.65.43.252 | attack | Unauthorized connection attempt detected from IP address 79.65.43.252 to port 9000 [J] |
2020-01-29 05:20:55 |
| 84.22.41.42 | attackbotsspam | Unauthorized connection attempt detected from IP address 84.22.41.42 to port 4899 [J] |
2020-01-29 05:32:21 |
| 211.154.163.80 | attackspam | Unauthorized connection attempt detected from IP address 211.154.163.80 to port 1433 [J] |
2020-01-29 05:48:50 |
| 181.118.123.32 | attackbotsspam | Unauthorized connection attempt detected from IP address 181.118.123.32 to port 23 [J] |
2020-01-29 05:51:28 |
| 222.186.19.221 | attackbotsspam | RDP brute force attack detected by fail2ban |
2020-01-29 05:26:10 |
| 1.52.186.189 | attack | Unauthorized connection attempt detected from IP address 1.52.186.189 to port 23 [T] |
2020-01-29 05:46:36 |
| 106.13.93.199 | attackbots | Unauthorized connection attempt detected from IP address 106.13.93.199 to port 2220 [J] |
2020-01-29 05:17:06 |
| 186.215.102.12 | attackspambots | DATE:2020-01-28 19:25:17,IP:186.215.102.12,MATCHES:11,PORT:ssh |
2020-01-29 05:27:40 |
| 116.111.85.26 | attackspam | Unauthorized connection attempt detected from IP address 116.111.85.26 to port 3389 [J] |
2020-01-29 05:43:38 |
| 106.12.137.226 | attackspambots | Unauthorized connection attempt detected from IP address 106.12.137.226 to port 2220 [J] |
2020-01-29 05:17:20 |
| 122.116.90.39 | attackbotsspam | Unauthorized connection attempt detected from IP address 122.116.90.39 to port 23 [J] |
2020-01-29 05:30:13 |
| 212.100.153.130 | attackspambots | Unauthorized connection attempt detected from IP address 212.100.153.130 to port 8080 [J] |
2020-01-29 05:37:41 |
| 200.53.20.207 | attack | Unauthorized connection attempt detected from IP address 200.53.20.207 to port 8080 [J] |
2020-01-29 05:38:32 |