130.185.108.140

Basic Info

City: Offenburg

Region: Baden-Württemberg

Country: Germany

Internet Service Provider: Xirra GmbH

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Feb 21 14:10:19 grey postfix/smtpd\[31717\]: NOQUEUE: reject: RCPT from bridge.graddoll.com\[130.185.108.140\]: 554 5.7.1 Service unavailable\; Client host \[130.185.108.140\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[130.185.108.140\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-22 05:05:49

Type

Details

Datetime

attack

Feb 21 14:10:19 grey postfix/smtpd\[31717\]: NOQUEUE: reject: RCPT from bridge.graddoll.com\[130.185.108.140\]: 554 5.7.1 Service unavailable\; Client host \[130.185.108.140\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[130.185.108.140\]\; from=\ to=\ proto=ESMTP helo=\
...

2020-02-22 05:05:49

Comments on same subnet:

IP	Type	Details	Datetime
130.185.108.169	attackbotsspam	SpamScore above: 10.0	2020-08-14 16:53:02
130.185.108.151	attack	SpamScore above: 10.0	2020-05-22 15:50:22
130.185.108.132	attack	SpamScore above: 10.0	2020-05-08 17:03:14
130.185.108.146	attack	SpamScore above: 10.0	2020-04-27 18:46:49
130.185.108.135	attackbots	SpamScore above: 10.0	2020-04-26 15:55:59
130.185.108.151	attackbotsspam	SpamScore above: 10.0	2020-04-20 17:32:05
130.185.108.131	attack	SpamScore above: 10.0	2020-04-16 13:09:15
130.185.108.149	attack	SpamScore above: 10.0	2020-04-15 17:48:13
130.185.108.134	attackbotsspam	SpamScore above: 10.0	2020-04-11 18:52:26
130.185.108.136	attackspambots	Apr 9 05:47:25 exim[808]: [1\52] 1jMOA0-0000D2-Jt H=hop.graddoll.com (hop.salemteb.com) [130.185.108.136] F= rejected after DATA: This message scored 103.2 spam points.	2020-04-09 20:12:39
130.185.108.163	attack	$f2bV_matches	2020-04-05 19:07:12
130.185.108.178	attack	Feb 25 18:40:22 grey postfix/smtpd\[5389\]: NOQUEUE: reject: RCPT from swung.graddoll.com\[130.185.108.178\]: 554 5.7.1 Service unavailable\; Client host \[130.185.108.178\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[130.185.108.178\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-26 04:26:55
130.185.108.151	attackbots	Feb 22 14:10:24 grey postfix/smtpd\[6126\]: NOQUEUE: reject: RCPT from blew.graddoll.com\[130.185.108.151\]: 554 5.7.1 Service unavailable\; Client host \[130.185.108.151\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[130.185.108.151\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-23 00:01:57

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 130.185.108.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4641
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;130.185.108.140.		IN	A

;; AUTHORITY SECTION:
.			371	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022101 1800 900 604800 86400

;; Query time: 27 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 22 05:05:46 CST 2020
;; MSG SIZE  rcvd: 119

Host info

140.108.185.130.in-addr.arpa domain name pointer bridge.graddoll.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
140.108.185.130.in-addr.arpa	name = bridge.graddoll.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
98.126.88.107	attackbots	Nov 16 21:20:32 kapalua sshd\[14563\]: Invalid user tepe from 98.126.88.107 Nov 16 21:20:32 kapalua sshd\[14563\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.126.88.107 Nov 16 21:20:34 kapalua sshd\[14563\]: Failed password for invalid user tepe from 98.126.88.107 port 47648 ssh2 Nov 16 21:24:21 kapalua sshd\[14881\]: Invalid user happy7627 from 98.126.88.107 Nov 16 21:24:21 kapalua sshd\[14881\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.126.88.107	2019-11-17 17:26:04
79.170.44.137	attackbots	Automatic report - XMLRPC Attack	2019-11-17 17:39:20
182.61.184.155	attackbots	Nov 17 09:33:54 MK-Soft-VM3 sshd[23045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.184.155 Nov 17 09:33:56 MK-Soft-VM3 sshd[23045]: Failed password for invalid user krajesky from 182.61.184.155 port 58504 ssh2 ...	2019-11-17 17:31:30
185.201.113.198	attackspambots	Scanning random ports - tries to find possible vulnerable services	2019-11-17 17:45:11
217.182.158.104	attackspam	2019-11-17T03:33:21.554118ns547587 sshd\[31619\]: Invalid user lofseik from 217.182.158.104 port 22537 2019-11-17T03:33:21.555627ns547587 sshd\[31619\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip104.ip-217-182-158.eu 2019-11-17T03:33:24.208365ns547587 sshd\[31619\]: Failed password for invalid user lofseik from 217.182.158.104 port 22537 ssh2 2019-11-17T03:36:39.693226ns547587 sshd\[5529\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip104.ip-217-182-158.eu user=root ...	2019-11-17 17:46:56
128.199.154.60	attack	Nov 17 10:16:08 sauna sshd[55268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.154.60 Nov 17 10:16:10 sauna sshd[55268]: Failed password for invalid user 1 from 128.199.154.60 port 41816 ssh2 ...	2019-11-17 17:52:37
77.247.108.52	attack	77.247.108.52 was recorded 28 times by 16 hosts attempting to connect to the following ports: 59287,59288,59289,54091,54092,54093. Incident counter (4h, 24h, all-time): 28, 156, 1505	2019-11-17 17:32:50
221.122.78.206	attackspambots	port scan and connect, tcp 1433 (ms-sql-s)	2019-11-17 17:44:20
181.123.9.3	attack	2019-11-17T07:00:41.628755abusebot-8.cloudsearch.cf sshd\[22583\]: Invalid user barzaghi from 181.123.9.3 port 39126	2019-11-17 17:29:37
60.175.90.221	attackspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-11-17 17:33:50
154.205.132.157	attackspam	SASL Brute Force	2019-11-17 17:44:41
89.34.25.245	attack	Automatic report - XMLRPC Attack	2019-11-17 17:42:24
123.30.236.149	attack	Nov 17 07:53:27 dedicated sshd[19069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.30.236.149 user=root Nov 17 07:53:29 dedicated sshd[19069]: Failed password for root from 123.30.236.149 port 59954 ssh2	2019-11-17 17:14:32
123.125.237.103	attack	SSH invalid-user multiple login try	2019-11-17 17:21:53
211.159.149.29	attack	Nov 17 10:13:59 vps01 sshd[4562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.159.149.29 Nov 17 10:14:01 vps01 sshd[4562]: Failed password for invalid user normi123456789 from 211.159.149.29 port 43364 ssh2	2019-11-17 17:24:18

Recently Reported IPs

175.197.115.76	208.207.125.174	139.198.6.14	159.213.80.129
153.202.246.57	152.3.2.215	210.83.129.142	113.209.247.10
81.217.68.194	110.185.216.243	123.115.72.1	89.218.3.218
64.132.49.93	114.135.109.175	63.14.175.102	95.199.208.145
54.80.186.92	120.51.146.160	129.109.64.0	175.138.98.130