City: San Francisco
Region: California
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 138.68.216.178 | attackbotsspam | *Port Scan* detected from 138.68.216.178 (US/United States/zg-0905a-123.stretchoid.com). 4 hits in the last 165 seconds |
2019-09-12 06:54:53 |
| 138.68.216.74 | attackspam | port scan and connect, tcp 9200 (elasticsearch) |
2019-09-08 15:30:11 |
| 138.68.216.141 | attackbots | 1 pkts, ports: TCP:5432 |
2019-09-07 22:17:39 |
| 138.68.216.254 | attackspambots | scan z |
2019-09-06 04:20:38 |
| 138.68.216.242 | attackbots | failed_logins |
2019-09-05 23:36:09 |
| 138.68.216.31 | attack | Scanning random ports - tries to find possible vulnerable services |
2019-09-01 16:43:45 |
| 138.68.216.47 | attackbots | Scanning random ports - tries to find possible vulnerable services |
2019-09-01 16:43:17 |
| 138.68.216.236 | attack | Scanning random ports - tries to find possible vulnerable services |
2019-09-01 16:41:47 |
| 138.68.216.55 | attack | " " |
2019-08-31 09:47:00 |
| 138.68.216.232 | attack | MultiHost/MultiPort Probe, Scan, Hack - |
2019-08-31 00:15:26 |
| 138.68.216.47 | attack | 5672/tcp [2019-08-29]1pkt |
2019-08-30 12:13:00 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.216.79
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5300
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;138.68.216.79. IN A
;; AUTHORITY SECTION:
. 308 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2024060601 1800 900 604800 86400
;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 07 08:13:36 CST 2024
;; MSG SIZE rcvd: 106Host 79.216.68.138.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 79.216.68.138.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 182.162.70.253 | attack | 2019-08-20T10:05:55.431129abusebot-5.cloudsearch.cf sshd\[28508\]: Invalid user hortiuk from 182.162.70.253 port 60081 |
2019-08-20 18:34:11 |
| 164.163.2.4 | attackbotsspam | 2019-08-20T10:35:31.039815abusebot-2.cloudsearch.cf sshd\[1540\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.163.2.4 user=root |
2019-08-20 18:46:01 |
| 62.234.95.55 | attackbotsspam | Aug 20 09:09:38 legacy sshd[28666]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.95.55 Aug 20 09:09:41 legacy sshd[28666]: Failed password for invalid user teamspeak3 from 62.234.95.55 port 39926 ssh2 Aug 20 09:15:28 legacy sshd[28777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.95.55 ... |
2019-08-20 19:03:08 |
| 106.12.181.34 | attackspam | [ssh] SSH attack |
2019-08-20 18:23:06 |
| 36.80.7.170 | attackspam | 445/tcp [2019-08-20]1pkt |
2019-08-20 18:43:57 |
| 51.255.173.222 | attack | Aug 20 00:28:22 lcprod sshd\[29633\]: Invalid user felix from 51.255.173.222 Aug 20 00:28:22 lcprod sshd\[29633\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.ip-51-255-173.eu Aug 20 00:28:24 lcprod sshd\[29633\]: Failed password for invalid user felix from 51.255.173.222 port 50934 ssh2 Aug 20 00:33:17 lcprod sshd\[30108\]: Invalid user gbase from 51.255.173.222 Aug 20 00:33:17 lcprod sshd\[30108\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.ip-51-255-173.eu |
2019-08-20 18:37:50 |
| 125.213.150.7 | attackspam | Aug 20 12:31:04 OPSO sshd\[665\]: Invalid user help from 125.213.150.7 port 39172 Aug 20 12:31:04 OPSO sshd\[665\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.213.150.7 Aug 20 12:31:06 OPSO sshd\[665\]: Failed password for invalid user help from 125.213.150.7 port 39172 ssh2 Aug 20 12:36:41 OPSO sshd\[1854\]: Invalid user demon from 125.213.150.7 port 56696 Aug 20 12:36:41 OPSO sshd\[1854\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.213.150.7 |
2019-08-20 19:04:36 |
| 159.65.198.48 | attack | $f2bV_matches |
2019-08-20 18:16:20 |
| 51.15.212.48 | attackbots | Aug 20 07:05:23 www sshd\[90277\]: Invalid user hadoop from 51.15.212.48 Aug 20 07:05:23 www sshd\[90277\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.212.48 Aug 20 07:05:25 www sshd\[90277\]: Failed password for invalid user hadoop from 51.15.212.48 port 43366 ssh2 ... |
2019-08-20 19:08:14 |
| 51.38.186.244 | attack | Aug 20 11:02:12 pkdns2 sshd\[59466\]: Invalid user webrun from 51.38.186.244Aug 20 11:02:14 pkdns2 sshd\[59466\]: Failed password for invalid user webrun from 51.38.186.244 port 38612 ssh2Aug 20 11:05:55 pkdns2 sshd\[59615\]: Invalid user luan from 51.38.186.244Aug 20 11:05:57 pkdns2 sshd\[59615\]: Failed password for invalid user luan from 51.38.186.244 port 55196 ssh2Aug 20 11:09:48 pkdns2 sshd\[59749\]: Invalid user sxh from 51.38.186.244Aug 20 11:09:50 pkdns2 sshd\[59749\]: Failed password for invalid user sxh from 51.38.186.244 port 43556 ssh2 ... |
2019-08-20 18:43:35 |
| 36.76.173.16 | attackbots | Unauthorized connection attempt from IP address 36.76.173.16 on Port 445(SMB) |
2019-08-20 18:54:50 |
| 125.25.13.249 | attackspam | Unauthorized connection attempt from IP address 125.25.13.249 on Port 445(SMB) |
2019-08-20 19:05:33 |
| 142.93.74.45 | attack | Invalid user www from 142.93.74.45 port 46800 |
2019-08-20 18:58:18 |
| 1.235.192.218 | attack | Aug 20 11:29:02 XXX sshd[1759]: Invalid user master from 1.235.192.218 port 60246 |
2019-08-20 18:53:23 |
| 14.226.32.139 | attack | Unauthorized connection attempt from IP address 14.226.32.139 on Port 445(SMB) |
2019-08-20 18:30:54 |