City: Zielona Góra
Region: Lubusz
Country: Poland
Internet Service Provider: Terra Telekom Sp. z o.o.
Hostname: unknown
Organization: Terra Telekom Sp. Z O.o.
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attackbotsspam | email spam |
2019-12-19 19:49:12 |
| attackspam | email spam |
2019-12-17 21:26:58 |
| attack | email spam |
2019-12-14 20:16:19 |
| attackspambots | proto=tcp . spt=58326 . dpt=25 . (listed on Blocklist de Jul 07) (21) |
2019-07-08 07:51:45 |
| attack | Autoban 185.14.148.75 AUTH/CONNECT |
2019-06-25 09:53:53 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 185.14.148.74 | attackspam | spam |
2020-04-15 17:20:05 |
| 185.14.148.66 | attack | Absender hat Spam-Falle ausgel?st |
2020-01-24 18:01:32 |
| 185.14.148.66 | attackbots | Absender hat Spam-Falle ausgel?st |
2020-01-10 20:48:10 |
| 185.14.148.66 | attackbotsspam | postfix |
2019-10-19 23:03:52 |
| 185.14.148.66 | attack | proto=tcp . spt=36306 . dpt=25 . (listed on Blocklist de Jul 02) (19) |
2019-07-03 10:31:42 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 185.14.148.75
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39087
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;185.14.148.75. IN A
;; AUTHORITY SECTION:
. 2997 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019042600 1800 900 604800 86400
;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Apr 27 00:16:43 +08 2019
;; MSG SIZE rcvd: 117
Host 75.148.14.185.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 67.207.67.3
Address: 67.207.67.3#53
** server can't find 75.148.14.185.in-addr.arpa: NXDOMAIN
| IP | Type | Details | Datetime |
|---|---|---|---|
| 173.246.23.219 | attackbotsspam | Apr 12 01:29:16 Tower sshd[39376]: refused connect from 119.29.2.157 (119.29.2.157) Apr 12 02:13:32 Tower sshd[39376]: Connection from 173.246.23.219 port 48348 on 192.168.10.220 port 22 rdomain "" Apr 12 02:13:32 Tower sshd[39376]: Invalid user ubnt from 173.246.23.219 port 48348 Apr 12 02:13:32 Tower sshd[39376]: error: Could not get shadow information for NOUSER Apr 12 02:13:32 Tower sshd[39376]: Failed password for invalid user ubnt from 173.246.23.219 port 48348 ssh2 Apr 12 02:13:32 Tower sshd[39376]: Received disconnect from 173.246.23.219 port 48348:11: Bye Bye [preauth] Apr 12 02:13:32 Tower sshd[39376]: Disconnected from invalid user ubnt 173.246.23.219 port 48348 [preauth] |
2020-04-12 14:18:04 |
| 138.204.27.114 | attackbots | Apr 12 05:24:34 game-panel sshd[19027]: Failed password for root from 138.204.27.114 port 59697 ssh2 Apr 12 05:29:33 game-panel sshd[19235]: Failed password for root from 138.204.27.114 port 34193 ssh2 |
2020-04-12 14:08:23 |
| 119.29.3.45 | attack | Unauthorised connection attempt detected at AUO NODE 1. System is sshd. Protected by AUO Stack Web Application Firewall (WAF) |
2020-04-12 13:51:57 |
| 119.123.66.50 | attackspambots | prod3 ... |
2020-04-12 14:27:11 |
| 51.15.58.168 | attackbots | Apr 12 07:27:59 pkdns2 sshd\[12582\]: Invalid user splunk from 51.15.58.168Apr 12 07:28:01 pkdns2 sshd\[12582\]: Failed password for invalid user splunk from 51.15.58.168 port 55886 ssh2Apr 12 07:31:26 pkdns2 sshd\[12775\]: Invalid user poll from 51.15.58.168Apr 12 07:31:28 pkdns2 sshd\[12775\]: Failed password for invalid user poll from 51.15.58.168 port 35896 ssh2Apr 12 07:34:54 pkdns2 sshd\[12880\]: Invalid user siamiah from 51.15.58.168Apr 12 07:34:56 pkdns2 sshd\[12880\]: Failed password for invalid user siamiah from 51.15.58.168 port 44138 ssh2 ... |
2020-04-12 14:19:14 |
| 51.159.35.94 | attackbots | Brute-force attempt banned |
2020-04-12 14:25:40 |
| 182.61.175.219 | attackspam | Apr 12 07:42:45 markkoudstaal sshd[20157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.175.219 Apr 12 07:42:47 markkoudstaal sshd[20157]: Failed password for invalid user sacerdot from 182.61.175.219 port 36996 ssh2 Apr 12 07:46:52 markkoudstaal sshd[20715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.175.219 |
2020-04-12 13:47:12 |
| 45.141.87.20 | attack | RDP Bruteforce |
2020-04-12 13:56:57 |
| 49.128.61.162 | attack | Apr 12 05:56:22 debian-2gb-nbg1-2 kernel: \[8922783.074162\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=49.128.61.162 DST=195.201.40.59 LEN=40 TOS=0x08 PREC=0x00 TTL=238 ID=55559 DF PROTO=TCP SPT=47565 DPT=23 WINDOW=14600 RES=0x00 SYN URGP=0 |
2020-04-12 13:59:25 |
| 120.92.119.90 | attackbots | SSH Bruteforce attempt |
2020-04-12 14:15:26 |
| 41.221.251.67 | attack | 20/4/11@23:55:59: FAIL: Alarm-Network address from=41.221.251.67 20/4/11@23:55:59: FAIL: Alarm-Network address from=41.221.251.67 ... |
2020-04-12 14:16:58 |
| 222.186.30.35 | attackbots | [MK-VM1] SSH login failed |
2020-04-12 14:05:58 |
| 222.173.235.34 | attack | Unauthorized connection attempt detected from IP address 222.173.235.34 to port 445 |
2020-04-12 14:00:16 |
| 45.134.179.57 | attackspam | Apr 12 07:52:01 debian-2gb-nbg1-2 kernel: \[8929721.308439\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.134.179.57 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=15894 PROTO=TCP SPT=42375 DPT=38850 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-04-12 14:02:15 |
| 90.180.92.121 | attack | Invalid user clinton from 90.180.92.121 port 38792 |
2020-04-12 13:58:00 |