城市(city): unknown
省份(region): unknown
国家(country): Germany
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 185.132.53.115 | attackspambots | Invalid user admin from 185.132.53.115 port 35110 |
2020-10-14 01:18:44 |
| 185.132.53.115 | attack | Oct 13 10:06:29 ns1 sshd[78677]: Did not receive identification string from 185.132.53.115 port 44168 Oct 13 10:06:33 ns1 sshd[78678]: Unable to negotiate with 185.132.53.115 port 40660: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Oct 13 10:06:49 ns1 sshd[78680]: Unable to negotiate with 185.132.53.115 port 41618: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Oct 13 10:07:05 ns1 sshd[78682]: Unable to negotiate with 185.132.53.115 port 42644: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Oct 13 10:07:20 ns1 sshd[78684]: Unable to negotiate with 185.132.53.115 port 43726: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-e ... |
2020-10-13 16:28:43 |
| 185.132.53.115 | attackbotsspam | Oct 12 20:59:42 targaryen sshd[6336]: Invalid user admin from 185.132.53.115 Oct 12 20:59:56 targaryen sshd[6338]: Invalid user admin from 185.132.53.115 Oct 12 21:00:12 targaryen sshd[6343]: Invalid user admin from 185.132.53.115 Oct 12 21:00:27 targaryen sshd[6345]: Invalid user admin from 185.132.53.115 ... |
2020-10-13 09:00:50 |
| 185.132.53.85 | attack | SSH Brute Force (V) |
2020-10-11 01:03:15 |
| 185.132.53.85 | attackspambots | Unauthorized connection attempt detected from IP address 185.132.53.85 to port 22 |
2020-10-10 16:54:57 |
| 185.132.53.14 | attackbotsspam | Oct 9 01:11:02 elp-server sshd[85411]: Unable to negotiate with 185.132.53.14 port 48206: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Oct 9 01:11:19 elp-server sshd[85417]: Unable to negotiate with 185.132.53.14 port 48212: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Oct 9 01:11:36 elp-server sshd[85423]: Unable to negotiate with 185.132.53.14 port 48258: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] ... |
2020-10-09 07:35:57 |
| 185.132.53.14 | attackspam | (sshd) Failed SSH login from 185.132.53.14 (DE/Germany/vps32.virtual4host.pt): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 8 11:51:30 server sshd[22256]: Did not receive identification string from 185.132.53.14 port 55218 Oct 8 11:51:58 server sshd[22312]: Failed password for root from 185.132.53.14 port 33202 ssh2 Oct 8 11:52:15 server sshd[22379]: Invalid user oracle from 185.132.53.14 port 33402 Oct 8 11:52:16 server sshd[22379]: Failed password for invalid user oracle from 185.132.53.14 port 33402 ssh2 Oct 8 11:52:35 server sshd[22457]: Failed password for root from 185.132.53.14 port 33592 ssh2 |
2020-10-09 00:07:57 |
| 185.132.53.14 | attackbotsspam | Oct 8 09:38:37 sd-69548 sshd[84133]: Unable to negotiate with 185.132.53.14 port 35272: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Oct 8 09:38:55 sd-69548 sshd[84153]: Unable to negotiate with 185.132.53.14 port 58052: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] ... |
2020-10-08 16:03:26 |
| 185.132.53.115 | attackbotsspam | Oct 6 22:25:15 nas sshd[30358]: Failed password for root from 185.132.53.115 port 42610 ssh2 Oct 6 22:25:31 nas sshd[30780]: Failed password for root from 185.132.53.115 port 40618 ssh2 ... |
2020-10-07 04:51:46 |
| 185.132.53.124 | attack | Oct 6 11:27:26 alfc-lms-prod01 sshd\[25821\]: Invalid user user from 185.132.53.124 Oct 6 11:27:33 alfc-lms-prod01 sshd\[25825\]: Invalid user git from 185.132.53.124 Oct 6 11:27:41 alfc-lms-prod01 sshd\[25827\]: Invalid user postgres from 185.132.53.124 ... |
2020-10-07 04:24:11 |
| 185.132.53.115 | attack | Icarus honeypot on github |
2020-10-06 20:57:26 |
| 185.132.53.124 | attackspambots | Oct 6 11:27:26 alfc-lms-prod01 sshd\[25821\]: Invalid user user from 185.132.53.124 Oct 6 11:27:33 alfc-lms-prod01 sshd\[25825\]: Invalid user git from 185.132.53.124 Oct 6 11:27:41 alfc-lms-prod01 sshd\[25827\]: Invalid user postgres from 185.132.53.124 ... |
2020-10-06 20:28:16 |
| 185.132.53.115 | attack | Oct 6 06:18:41 ns382633 sshd\[16857\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.132.53.115 user=root Oct 6 06:18:43 ns382633 sshd\[16857\]: Failed password for root from 185.132.53.115 port 39806 ssh2 Oct 6 06:18:55 ns382633 sshd\[16861\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.132.53.115 user=root Oct 6 06:18:58 ns382633 sshd\[16861\]: Failed password for root from 185.132.53.115 port 33824 ssh2 Oct 6 06:19:11 ns382633 sshd\[17121\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.132.53.115 user=root |
2020-10-06 12:38:44 |
| 185.132.53.124 | attackbotsspam | [N10.H2.VM2] Port Scanner Detected Blocked by UFW |
2020-10-06 12:07:49 |
| 185.132.53.124 | attackbots | fail2ban detected bruce force on ssh iptables |
2020-10-06 05:46:28 |
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See https://docs.db.ripe.net/terms-conditions.html
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '185.132.53.0 - 185.132.53.255'
% Abuse contact for '185.132.53.0 - 185.132.53.255' is 'abuse@aluy.net'
inetnum: 185.132.53.0 - 185.132.53.255
netname: LAIN
org: ORG-JA600-RIPE
country: NL
admin-c: LAIN
tech-c: LAIN
mnt-domains: lir-de-lain-1-MNT
status: ASSIGNED PA
mnt-by: lir-de-lain-1-MNT
created: 2023-08-21T08:01:57Z
last-modified: 2026-03-07T16:56:09Z
source: RIPE
organisation: ORG-JA600-RIPE
org-name: Julian Achter
country: DE
org-type: LIR
address: Am Hang 55
address: 85737
address: Ismaning
address: GERMANY
phone: +4915118462887
admin-c: LAIN
tech-c: LAIN
abuse-c: LAIN
mnt-ref: lir-de-lain-1-MNT
mnt-by: RIPE-NCC-HM-MNT
mnt-by: lir-de-lain-1-MNT
created: 2025-03-16T22:00:50Z
last-modified: 2026-02-21T17:44:01Z
source: RIPE # Filtered
role: LAIN
address: Am Hang 55, 85737 Ismaning, Germany
abuse-mailbox: abuse@aluy.net
nic-hdl: LAIN
remarks:
mnt-by: lir-de-lain-1-MNT
created: 2025-03-17T09:46:55Z
last-modified: 2026-02-21T17:42:43Z
source: RIPE # Filtered
% Information related to '185.132.53.0/24AS211507'
route: 185.132.53.0/24
origin: AS211507
mnt-by: lir-de-lain-1-MNT
created: 2025-03-17T17:13:45Z
last-modified: 2025-03-17T17:13:45Z
source: RIPE
% This query was served by the RIPE Database Query Service version 1.121.2 (DEXTER); <<>> DiG 9.10.3-P4-Ubuntu <<>> 185.132.53.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7627
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;185.132.53.112. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026032901 1800 900 604800 86400
;; Query time: 6 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 30 13:01:13 CST 2026
;; MSG SIZE rcvd: 107112.53.132.185.in-addr.arpa domain name pointer lain.185.132.53.112.aluy.net.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
112.53.132.185.in-addr.arpa name = lain.185.132.53.112.aluy.net.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 162.243.137.150 | attack | SmallBizIT.US 1 packets to tcp(22) |
2020-05-23 16:38:54 |
| 188.165.169.238 | attackspam | (sshd) Failed SSH login from 188.165.169.238 (FR/France/ip238.ip-188-165-169.eu): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 23 08:50:08 amsweb01 sshd[8473]: Invalid user lne from 188.165.169.238 port 39708 May 23 08:50:10 amsweb01 sshd[8473]: Failed password for invalid user lne from 188.165.169.238 port 39708 ssh2 May 23 09:03:05 amsweb01 sshd[9865]: Invalid user tsb from 188.165.169.238 port 47414 May 23 09:03:07 amsweb01 sshd[9865]: Failed password for invalid user tsb from 188.165.169.238 port 47414 ssh2 May 23 09:06:25 amsweb01 sshd[10319]: Invalid user lcn from 188.165.169.238 port 51216 |
2020-05-23 16:17:41 |
| 188.26.236.237 | attackspambots | SmallBizIT.US 1 packets to tcp(23) |
2020-05-23 16:18:19 |
| 183.80.83.100 | attackspam | SmallBizIT.US 1 packets to tcp(23) |
2020-05-23 16:25:13 |
| 171.100.24.193 | attackspambots | Invalid user service from 171.100.24.193 port 42437 |
2020-05-23 16:34:37 |
| 195.54.160.123 | attackspam | Unauthorized connection attempt detected from IP address 195.54.160.123 to port 6800 [T] |
2020-05-23 16:12:35 |
| 156.231.45.78 | attack | Port scan: Attack repeated for 24 hours |
2020-05-23 16:41:31 |
| 176.113.115.39 | attack | Port scan: Attack repeated for 24 hours |
2020-05-23 16:33:14 |
| 195.54.167.120 | attackbots | Port scan on 3 port(s): 4203 4208 4212 |
2020-05-23 16:08:09 |
| 178.91.79.164 | attack | SmallBizIT.US 1 packets to tcp(23) |
2020-05-23 16:29:40 |
| 180.182.228.195 | attack | SmallBizIT.US 1 packets to tcp(2323) |
2020-05-23 16:27:09 |
| 149.202.164.82 | attack | May 23 06:42:33 jane sshd[9575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.164.82 May 23 06:42:34 jane sshd[9575]: Failed password for invalid user ufb from 149.202.164.82 port 37260 ssh2 ... |
2020-05-23 16:43:26 |
| 154.16.246.84 | attackspambots | SmallBizIT.US 1 packets to tcp(22) |
2020-05-23 16:41:48 |
| 196.221.197.205 | attack | SmallBizIT.US 1 packets to tcp(23) |
2020-05-23 16:07:46 |
| 179.95.226.124 | attackbots | Invalid user tmo from 179.95.226.124 port 36116 |
2020-05-23 16:28:53 |