City: Schwentinental
Region: Schleswig-Holstein
Country: Germany
Internet Service Provider: Vodafone
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 31.18.123.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57608
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;31.18.123.138. IN A
;; AUTHORITY SECTION:
. 156 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2023040300 1800 900 604800 86400
;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 03 17:04:31 CST 2023
;; MSG SIZE rcvd: 106138.123.18.31.in-addr.arpa domain name pointer ip1f127b8a.dynamic.kabel-deutschland.de.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
138.123.18.31.in-addr.arpa name = ip1f127b8a.dynamic.kabel-deutschland.de.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 31.220.40.54 | attack | SSH bruteforce |
2019-07-03 04:09:40 |
| 139.0.4.194 | attack | 445/tcp [2019-07-02]1pkt |
2019-07-03 03:48:40 |
| 185.104.71.80 | attackspam | Telnet Server BruteForce Attack |
2019-07-03 03:32:01 |
| 140.121.199.228 | attackspam | Jul 2 14:10:32 gcems sshd\[5151\]: Invalid user scpuser from 140.121.199.228 port 63570 Jul 2 14:10:32 gcems sshd\[5151\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.121.199.228 Jul 2 14:10:34 gcems sshd\[5151\]: Failed password for invalid user scpuser from 140.121.199.228 port 63570 ssh2 Jul 2 14:16:16 gcems sshd\[5267\]: Invalid user testlinux from 140.121.199.228 port 58615 Jul 2 14:16:16 gcems sshd\[5267\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.121.199.228 ... |
2019-07-03 04:02:13 |
| 179.95.253.201 | attackspambots | Unauthorised access (Jul 2) SRC=179.95.253.201 LEN=52 TTL=114 ID=20447 DF TCP DPT=445 WINDOW=8192 SYN |
2019-07-03 04:05:03 |
| 112.84.90.208 | attack | Jul 2 15:27:50 mxgate1 postfix/postscreen[4221]: CONNECT from [112.84.90.208]:1706 to [176.31.12.44]:25 Jul 2 15:27:50 mxgate1 postfix/dnsblog[4745]: addr 112.84.90.208 listed by domain zen.spamhaus.org as 127.0.0.4 Jul 2 15:27:50 mxgate1 postfix/dnsblog[4745]: addr 112.84.90.208 listed by domain zen.spamhaus.org as 127.0.0.3 Jul 2 15:27:50 mxgate1 postfix/dnsblog[4745]: addr 112.84.90.208 listed by domain zen.spamhaus.org as 127.0.0.11 Jul 2 15:27:50 mxgate1 postfix/dnsblog[4744]: addr 112.84.90.208 listed by domain cbl.abuseat.org as 127.0.0.2 Jul 2 15:27:50 mxgate1 postfix/dnsblog[4742]: addr 112.84.90.208 listed by domain b.barracudacentral.org as 127.0.0.2 Jul 2 15:27:56 mxgate1 postfix/postscreen[4221]: DNSBL rank 4 for [112.84.90.208]:1706 Jul x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=112.84.90.208 |
2019-07-03 03:56:01 |
| 78.181.101.155 | attackspam | 23/tcp 23/tcp [2019-07-02]2pkt |
2019-07-03 04:13:57 |
| 175.114.6.6 | attack | Lines containing failures of 175.114.6.6 Jul 2 21:25:09 f sshd[5341]: Invalid user pi from 175.114.6.6 port 41000 Jul 2 21:25:09 f sshd[5341]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.114.6.6 Jul 2 21:25:10 f sshd[5343]: Invalid user pi from 175.114.6.6 port 41036 Jul 2 21:25:11 f sshd[5343]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.114.6.6 Jul 2 21:25:11 f sshd[5341]: Failed password for invalid user pi from 175.114.6.6 port 41000 ssh2 Jul 2 21:25:11 f sshd[5341]: Connection closed by 175.114.6.6 port 41000 [preauth] Jul 2 21:25:12 f sshd[5343]: Failed password for invalid user pi from 175.114.6.6 port 41036 ssh2 Jul 2 21:25:13 f sshd[5343]: Connection closed by 175.114.6.6 port 41036 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=175.114.6.6 |
2019-07-03 03:51:11 |
| 36.77.75.123 | attack | 445/tcp [2019-07-02]1pkt |
2019-07-03 04:08:25 |
| 188.17.152.117 | attackspam | Brute force attempt |
2019-07-03 03:31:44 |
| 159.89.162.203 | attackspambots | Jul 2 19:39:06 localhost sshd\[119424\]: Invalid user y from 159.89.162.203 port 64725 Jul 2 19:39:06 localhost sshd\[119424\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.162.203 Jul 2 19:39:08 localhost sshd\[119424\]: Failed password for invalid user y from 159.89.162.203 port 64725 ssh2 Jul 2 19:42:50 localhost sshd\[119564\]: Invalid user tester from 159.89.162.203 port 39584 Jul 2 19:42:50 localhost sshd\[119564\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.162.203 ... |
2019-07-03 04:01:58 |
| 36.239.120.100 | attack | 445/tcp [2019-07-02]1pkt |
2019-07-03 03:46:04 |
| 154.124.124.194 | attackspambots | Trying to deliver email spam, but blocked by RBL |
2019-07-03 03:43:41 |
| 159.203.122.149 | attackbotsspam | SSH Brute-Force reported by Fail2Ban |
2019-07-03 03:59:22 |
| 218.65.220.48 | attack | Jul 2 15:41:29 ns3042688 courier-imapd: LOGIN FAILED, method=PLAIN, ip=\[::ffff:218.65.220.48\] ... |
2019-07-03 04:08:07 |