City: Hamburg
Region: Hamburg
Country: Germany
Internet Service Provider: unknown
Hostname: unknown
Organization: 1&1 Versatel Deutschland GmbH
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2001:16b8:66be:3f00:2dd1:dc9b:3c8:430e
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50178
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2001:16b8:66be:3f00:2dd1:dc9b:3c8:430e. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019072201 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 23 02:49:13 CST 2019
;; MSG SIZE rcvd: 142
e.0.3.4.8.c.3.0.b.9.c.d.1.d.d.2.0.0.f.3.e.b.6.6.8.b.6.1.1.0.0.2.ip6.arpa domain name pointer 200116b866be3f002dd1dc9b03c8430e.dip.versatel-1u1.de.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
e.0.3.4.8.c.3.0.b.9.c.d.1.d.d.2.0.0.f.3.e.b.6.6.8.b.6.1.1.0.0.2.ip6.arpa name = 200116b866be3f002dd1dc9b03c8430e.dip.versatel-1u1.de.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 46.100.107.72 | attackspam | port scan and connect, tcp 1433 (ms-sql-s) |
2020-01-25 00:41:03 |
| 222.186.169.194 | attackspambots | Jan 24 06:57:57 php1 sshd\[18722\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.169.194 user=root Jan 24 06:57:59 php1 sshd\[18722\]: Failed password for root from 222.186.169.194 port 64136 ssh2 Jan 24 06:58:15 php1 sshd\[18755\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.169.194 user=root Jan 24 06:58:17 php1 sshd\[18755\]: Failed password for root from 222.186.169.194 port 16366 ssh2 Jan 24 06:58:43 php1 sshd\[18775\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.169.194 user=root |
2020-01-25 01:14:13 |
| 80.128.255.134 | attack | Unauthorized connection attempt detected from IP address 80.128.255.134 to port 80 |
2020-01-25 00:34:15 |
| 51.91.136.174 | attackspambots | SIP/5060 Probe, BF, Hack - |
2020-01-25 01:05:42 |
| 5.62.56.34 | attackbotsspam | Brute forcing RDP port 3389 |
2020-01-25 01:02:26 |
| 158.69.54.207 | attackbotsspam | Unauthorized access detected from black listed ip |
2020-01-25 00:37:03 |
| 13.232.102.247 | attackspam | $f2bV_matches |
2020-01-25 00:52:05 |
| 200.54.216.66 | attack | Honeypot attack, port: 445, PTR: PTR record not found |
2020-01-25 00:57:37 |
| 183.62.225.103 | attackbots | SSH bruteforce (Triggered fail2ban) |
2020-01-25 00:42:40 |
| 3.14.146.82 | attack | Jan 24 06:20:16 php1 sshd\[14300\]: Invalid user wwwroot from 3.14.146.82 Jan 24 06:20:16 php1 sshd\[14300\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-3-14-146-82.us-east-2.compute.amazonaws.com Jan 24 06:20:18 php1 sshd\[14300\]: Failed password for invalid user wwwroot from 3.14.146.82 port 50208 ssh2 Jan 24 06:27:55 php1 sshd\[17508\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-3-14-146-82.us-east-2.compute.amazonaws.com user=root Jan 24 06:27:57 php1 sshd\[17508\]: Failed password for root from 3.14.146.82 port 46580 ssh2 |
2020-01-25 00:41:57 |
| 84.236.185.247 | attackbotsspam | proto=tcp . spt=36244 . dpt=25 . Listed on MailSpike (spam wave plus L3-L5) also unsubscore and rbldns-ru (479) |
2020-01-25 00:57:07 |
| 114.234.168.49 | attack | Telnet/23 MH Probe, BF, Hack - |
2020-01-25 01:12:33 |
| 80.82.64.127 | attack | Jan 24 17:28:35 debian-2gb-nbg1-2 kernel: \[2142591.111177\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=80.82.64.127 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=26860 PROTO=TCP SPT=48325 DPT=4013 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-01-25 00:45:32 |
| 212.144.102.107 | attack | Unauthorized connection attempt detected from IP address 212.144.102.107 to port 2220 [J] |
2020-01-25 01:07:55 |
| 124.9.192.227 | attackspambots | 1433/tcp [2020-01-24]1pkt |
2020-01-25 01:04:49 |