City: unknown
Region: unknown
Country: unknown
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
bb'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 2001:638:508:100::83ad:1025
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 12837
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;2001:638:508:100::83ad:1025. IN A
;; Query time: 0 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Fri Feb 18 23:46:04 CST 2022
;; MSG SIZE rcvd: 56
'5.2.0.1.d.a.3.8.0.0.0.0.0.0.0.0.0.0.1.0.8.0.5.0.8.3.6.0.1.0.0.2.ip6.arpa domain name pointer t3prod3g.rz.uni-osnabrueck.de.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
5.2.0.1.d.a.3.8.0.0.0.0.0.0.0.0.0.0.1.0.8.0.5.0.8.3.6.0.1.0.0.2.ip6.arpa name = t3prod3g.rz.uni-osnabrueck.de.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 116.196.85.71 | attackbots | ssh failed login |
2019-10-17 14:56:28 |
| 111.231.219.142 | attackspambots | Oct 17 07:41:00 MK-Soft-VM3 sshd[14179]: Failed password for root from 111.231.219.142 port 32772 ssh2 ... |
2019-10-17 14:26:21 |
| 203.148.53.227 | attackspam | Oct 15 01:07:26 uapps sshd[31261]: Address 203.148.53.227 maps to static-ip-227-53-148-203.rev.dyxnet.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 15 01:07:28 uapps sshd[31261]: Failed password for invalid user finn from 203.148.53.227 port 58975 ssh2 Oct 15 01:07:28 uapps sshd[31261]: Received disconnect from 203.148.53.227: 11: Bye Bye [preauth] Oct 15 01:13:03 uapps sshd[31375]: Address 203.148.53.227 maps to static-ip-227-53-148-203.rev.dyxnet.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 15 01:13:03 uapps sshd[31375]: User r.r from 203.148.53.227 not allowed because not listed in AllowUsers Oct 15 01:13:03 uapps sshd[31375]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.148.53.227 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=203.148.53.227 |
2019-10-17 15:04:39 |
| 106.53.69.173 | attackbotsspam | Oct 17 07:56:52 MK-Soft-VM6 sshd[23289]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.69.173 Oct 17 07:56:54 MK-Soft-VM6 sshd[23289]: Failed password for invalid user eliuth from 106.53.69.173 port 44806 ssh2 ... |
2019-10-17 15:03:05 |
| 196.203.214.222 | attackspambots | RDP Brute-Force (Grieskirchen RZ1) |
2019-10-17 14:29:26 |
| 49.232.150.162 | attackspam | Oct 17 00:34:25 www6-3 sshd[6352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.150.162 user=r.r Oct 17 00:34:28 www6-3 sshd[6352]: Failed password for r.r from 49.232.150.162 port 53922 ssh2 Oct 17 00:34:28 www6-3 sshd[6352]: Received disconnect from 49.232.150.162 port 53922:11: Bye Bye [preauth] Oct 17 00:34:28 www6-3 sshd[6352]: Disconnected from 49.232.150.162 port 53922 [preauth] Oct 17 00:53:21 www6-3 sshd[7514]: Invalid user andriy from 49.232.150.162 port 41418 Oct 17 00:53:21 www6-3 sshd[7514]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.150.162 Oct 17 00:53:23 www6-3 sshd[7514]: Failed password for invalid user andriy from 49.232.150.162 port 41418 ssh2 Oct 17 00:53:23 www6-3 sshd[7514]: Received disconnect from 49.232.150.162 port 41418:11: Bye Bye [preauth] Oct 17 00:53:23 www6-3 sshd[7514]: Disconnected from 49.232.150.162 port 41418 [preauth] Oct 17 00:58........ ------------------------------- |
2019-10-17 14:57:52 |
| 191.115.17.196 | attackbotsspam | Automatic report - Port Scan Attack |
2019-10-17 14:30:07 |
| 186.225.176.7 | attackbots | Automatic report - Port Scan Attack |
2019-10-17 15:06:45 |
| 85.167.32.224 | attackspam | Oct 17 08:58:51 XXX sshd[8185]: Invalid user ofsaa from 85.167.32.224 port 56896 |
2019-10-17 15:06:19 |
| 105.154.224.28 | attackspam | /editBlackAndWhiteList |
2019-10-17 14:34:55 |
| 222.186.173.201 | attackbotsspam | Oct 17 11:58:36 gw1 sshd[7159]: Failed password for root from 222.186.173.201 port 3016 ssh2 Oct 17 11:58:53 gw1 sshd[7159]: error: maximum authentication attempts exceeded for root from 222.186.173.201 port 3016 ssh2 [preauth] ... |
2019-10-17 15:05:41 |
| 111.20.190.32 | attackbots | Automatic report - Port Scan Attack |
2019-10-17 14:38:39 |
| 51.77.150.217 | attackbotsspam | Oct 17 05:53:04 ks10 sshd[10171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.150.217 Oct 17 05:53:06 ks10 sshd[10171]: Failed password for invalid user fuckoff from 51.77.150.217 port 47312 ssh2 ... |
2019-10-17 14:52:41 |
| 77.247.108.213 | attack | MultiHost/MultiPort Probe, Scan, Hack - |
2019-10-17 14:28:57 |
| 92.119.160.106 | attackbotsspam | Oct 17 08:01:34 mc1 kernel: \[2578463.197691\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.119.160.106 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=48393 PROTO=TCP SPT=48793 DPT=10605 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 17 08:02:24 mc1 kernel: \[2578512.482817\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.119.160.106 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=54572 PROTO=TCP SPT=48793 DPT=11065 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 17 08:03:05 mc1 kernel: \[2578554.109557\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.119.160.106 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=10710 PROTO=TCP SPT=48793 DPT=10814 WINDOW=1024 RES=0x00 SYN URGP=0 ... |
2019-10-17 14:32:40 |