City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 64.44.139.234 | attackbots | Oct 31 04:34:53 mxgate1 postfix/postscreen[24161]: CONNECT from [64.44.139.234]:55266 to [176.31.12.44]:25 Oct 31 04:34:53 mxgate1 postfix/dnsblog[24165]: addr 64.44.139.234 listed by domain zen.spamhaus.org as 127.0.0.3 Oct 31 04:34:54 mxgate1 postfix/dnsblog[24163]: addr 64.44.139.234 listed by domain b.barracudacentral.org as 127.0.0.2 Oct 31 04:34:58 mxgate1 postfix/dnsblog[24162]: addr 64.44.139.234 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Oct 31 04:34:59 mxgate1 postfix/postscreen[24161]: DNSBL rank 4 for [64.44.139.234]:55266 Oct 31 04:35:00 mxgate1 postfix/tlsproxy[24167]: CONNECT from [64.44.139.234]:55266 Oct x@x Oct 31 04:35:01 mxgate1 postfix/postscreen[24161]: DISCONNECT [64.44.139.234]:55266 Oct 31 04:35:01 mxgate1 postfix/tlsproxy[24167]: DISCONNECT [64.44.139.234]:55266 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=64.44.139.234 |
2019-10-31 18:42:49 |
| 64.44.139.227 | attackbots | Oct 21 13:35:29 mxgate1 postfix/postscreen[23236]: CONNECT from [64.44.139.227]:40226 to [176.31.12.44]:25 Oct 21 13:35:29 mxgate1 postfix/dnsblog[23237]: addr 64.44.139.227 listed by domain zen.spamhaus.org as 127.0.0.3 Oct 21 13:35:29 mxgate1 postfix/dnsblog[23239]: addr 64.44.139.227 listed by domain bl.spamcop.net as 127.0.0.2 Oct 21 13:35:30 mxgate1 postfix/dnsblog[23259]: addr 64.44.139.227 listed by domain b.barracudacentral.org as 127.0.0.2 Oct 21 13:35:35 mxgate1 postfix/postscreen[23236]: DNSBL rank 4 for [64.44.139.227]:40226 Oct 21 13:35:35 mxgate1 postfix/tlsproxy[23278]: CONNECT from [64.44.139.227]:40226 Oct x@x Oct 21 13:35:36 mxgate1 postfix/postscreen[23236]: DISCONNECT [64.44.139.227]:40226 Oct 21 13:35:36 mxgate1 postfix/tlsproxy[23278]: DISCONNECT [64.44.139.227]:40226 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=64.44.139.227 |
2019-10-21 22:42:55 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 64.44.139.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5560
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;64.44.139.138. IN A
;; AUTHORITY SECTION:
. 202 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400
;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 18:06:13 CST 2022
;; MSG SIZE rcvd: 106138.139.44.64.in-addr.arpa domain name pointer 138-139-44-64-.reverse-dns.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
138.139.44.64.in-addr.arpa name = 138-139-44-64-.reverse-dns.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 218.92.0.133 | attack | 2019-07-09T15:32:46.943170wiz-ks3 sshd[29678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.133 user=root 2019-07-09T15:32:49.432195wiz-ks3 sshd[29678]: Failed password for root from 218.92.0.133 port 49323 ssh2 2019-07-09T15:32:52.328098wiz-ks3 sshd[29678]: Failed password for root from 218.92.0.133 port 49323 ssh2 2019-07-09T15:32:46.943170wiz-ks3 sshd[29678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.133 user=root 2019-07-09T15:32:49.432195wiz-ks3 sshd[29678]: Failed password for root from 218.92.0.133 port 49323 ssh2 2019-07-09T15:32:52.328098wiz-ks3 sshd[29678]: Failed password for root from 218.92.0.133 port 49323 ssh2 2019-07-09T15:32:46.943170wiz-ks3 sshd[29678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.133 user=root 2019-07-09T15:32:49.432195wiz-ks3 sshd[29678]: Failed password for root from 218.92.0.133 port 49323 ssh2 2019-07-09T15:32: |
2019-07-21 09:19:04 |
| 36.76.24.182 | attack | Sat, 20 Jul 2019 21:55:54 +0000 likely compromised host or open proxy. ddos rate spidering |
2019-07-21 09:22:35 |
| 95.67.119.81 | attack | Sat, 20 Jul 2019 21:55:40 +0000 likely compromised host or open proxy. ddos rate spidering |
2019-07-21 09:55:55 |
| 178.207.82.226 | attackbots | Sat, 20 Jul 2019 21:55:47 +0000 likely compromised host or open proxy. ddos rate spidering |
2019-07-21 09:40:13 |
| 124.248.184.125 | attackbotsspam | Sat, 20 Jul 2019 21:55:48 +0000 likely compromised host or open proxy. ddos rate spidering |
2019-07-21 09:35:28 |
| 14.250.200.166 | attackspambots | Sat, 20 Jul 2019 21:55:44 +0000 likely compromised host or open proxy. ddos rate spidering |
2019-07-21 09:46:58 |
| 171.4.235.48 | attackbots | Sat, 20 Jul 2019 21:55:39 +0000 likely compromised host or open proxy. ddos rate spidering |
2019-07-21 09:58:00 |
| 37.6.202.227 | attack | Sat, 20 Jul 2019 21:55:37 +0000 likely compromised host or open proxy. ddos rate spidering |
2019-07-21 10:03:25 |
| 14.207.14.212 | attackbots | Sat, 20 Jul 2019 21:55:50 +0000 likely compromised host or open proxy. ddos rate spidering |
2019-07-21 09:32:44 |
| 180.180.35.116 | attack | Sat, 20 Jul 2019 21:55:46 +0000 likely compromised host or open proxy. ddos rate spidering |
2019-07-21 09:42:49 |
| 200.116.195.138 | attackbotsspam | Sat, 20 Jul 2019 21:55:34 +0000 likely compromised host or open proxy. ddos rate spidering |
2019-07-21 10:08:30 |
| 171.5.244.55 | attackbotsspam | Sat, 20 Jul 2019 21:55:43 +0000 likely compromised host or open proxy. ddos rate spidering |
2019-07-21 09:48:57 |
| 36.72.216.214 | attackspambots | Sat, 20 Jul 2019 21:55:40 +0000 likely compromised host or open proxy. ddos rate spidering |
2019-07-21 09:57:05 |
| 220.231.127.7 | attackbots | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-20 02:56:13,651 INFO [shellcode_manager] (220.231.127.7) no match, writing hexdump (d6d49e10a0ed5401f359ad34977272ce :2033346) - MS17010 (EternalBlue) |
2019-07-21 09:41:13 |
| 14.164.47.96 | attackbots | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-20 20:46:35,591 INFO [amun_request_handler] PortScan Detected on Port: 445 (14.164.47.96) |
2019-07-21 09:47:29 |