City: unknown
Region: unknown
Country: China
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.80.136.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7806
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;1.80.136.148. IN A
;; AUTHORITY SECTION:
. 599 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400
;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 14:17:46 CST 2022
;; MSG SIZE rcvd: 105
b';; connection timed out; no servers could be reached
'
server can't find 1.80.136.148.in-addr.arpa: SERVFAIL
| IP | Type | Details | Datetime |
|---|---|---|---|
| 83.97.20.49 | attackbotsspam | scans 18 times in preceeding hours on the ports (in chronological order) 5353 6664 28017 8545 8139 10333 22105 1099 4949 1911 6665 61616 45554 4848 5560 1991 6667 8378 resulting in total of 18 scans from 83.97.20.0/24 block. |
2020-03-25 20:39:03 |
| 162.243.131.58 | attack | *Port Scan* detected from 162.243.131.58 (US/United States/California/San Francisco/zg-0312c-262.stretchoid.com). 4 hits in the last 291 seconds |
2020-03-25 19:43:20 |
| 198.108.67.40 | attack | Honeypot attack, port: 139, PTR: worker-17.sfj.corp.censys.io. |
2020-03-25 20:10:19 |
| 185.176.27.246 | attack | Mar 25 12:51:31 debian-2gb-nbg1-2 kernel: \[7396171.866056\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.246 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=56194 PROTO=TCP SPT=51068 DPT=44211 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-03-25 20:15:33 |
| 80.82.77.240 | attackbots | Fail2Ban Ban Triggered |
2020-03-25 19:58:30 |
| 185.176.27.166 | attack | Port 56910 scan denied |
2020-03-25 20:15:52 |
| 80.82.77.245 | attackbotsspam | Port 445 (MS DS) access denied |
2020-03-25 20:40:32 |
| 185.200.118.39 | attackspam | Port 1723 scan denied |
2020-03-25 20:14:33 |
| 89.248.168.220 | attackspam | Port 4063 scan denied |
2020-03-25 19:56:20 |
| 89.248.174.3 | attackspambots | Port 102 scan denied |
2020-03-25 20:35:28 |
| 77.247.110.58 | attackbotsspam | Port 5636 scan denied |
2020-03-25 20:43:27 |
| 198.108.66.228 | attackbotsspam | Port 9874 scan denied |
2020-03-25 20:11:29 |
| 185.156.73.49 | attackbotsspam | Mar 25 12:50:25 debian-2gb-nbg1-2 kernel: \[7396105.380236\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.156.73.49 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=56604 PROTO=TCP SPT=59730 DPT=7412 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-03-25 20:22:43 |
| 87.214.234.168 | attack | Telnet/23 MH Probe, Scan, BF, Hack - |
2020-03-25 20:38:32 |
| 185.143.221.85 | attackbots | IP: 185.143.221.85
Ports affected
HTTP protocol over TLS/SSL (443)
Abuse Confidence rating 100%
Found in DNSBL('s)
ASN Details
AS49505 OOO Network of data-centers Selectel
Netherlands (NL)
CIDR 185.143.221.0/24
Log Date: 25/03/2020 11:27:24 AM UTC |
2020-03-25 20:23:14 |