2002:c1a9:fd8a::c1a9:fd8a

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: 6to4 RFC3056

Hostname: unknown

Organization: unknown

Usage Type: Reserved

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Aug 17 05:42:34 web01.agentur-b-2.de postfix/smtpd[738376]: warning: unknown[2002:c1a9:fd8a::c1a9:fd8a]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 17 05:42:34 web01.agentur-b-2.de postfix/smtpd[738376]: lost connection after AUTH from unknown[2002:c1a9:fd8a::c1a9:fd8a] Aug 17 05:46:59 web01.agentur-b-2.de postfix/smtpd[743791]: warning: unknown[2002:c1a9:fd8a::c1a9:fd8a]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 17 05:46:59 web01.agentur-b-2.de postfix/smtpd[743791]: lost connection after AUTH from unknown[2002:c1a9:fd8a::c1a9:fd8a] Aug 17 05:48:12 web01.agentur-b-2.de postfix/smtpd[738376]: warning: unknown[2002:c1a9:fd8a::c1a9:fd8a]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-08-17 12:04:13

Type

Details

Datetime

attackspam

Aug 17 05:42:34 web01.agentur-b-2.de postfix/smtpd[738376]: warning: unknown[2002:c1a9:fd8a::c1a9:fd8a]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Aug 17 05:42:34 web01.agentur-b-2.de postfix/smtpd[738376]: lost connection after AUTH from unknown[2002:c1a9:fd8a::c1a9:fd8a]
Aug 17 05:46:59 web01.agentur-b-2.de postfix/smtpd[743791]: warning: unknown[2002:c1a9:fd8a::c1a9:fd8a]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Aug 17 05:46:59 web01.agentur-b-2.de postfix/smtpd[743791]: lost connection after AUTH from unknown[2002:c1a9:fd8a::c1a9:fd8a]
Aug 17 05:48:12 web01.agentur-b-2.de postfix/smtpd[738376]: warning: unknown[2002:c1a9:fd8a::c1a9:fd8a]: SASL LOGIN authentication failed: UGFzc3dvcmQ6

2020-08-17 12:04:13

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6_10.3 <<>> 2002:c1a9:fd8a::c1a9:fd8a
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4011
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2002:c1a9:fd8a::c1a9:fd8a.	IN	A

;; AUTHORITY SECTION:
.			10800	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081601 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 100.100.2.138#53(100.100.2.138)
;; WHEN: Mon Aug 17 12:20:04 2020
;; MSG SIZE  rcvd: 118

Host info

Host a.8.d.f.9.a.1.c.0.0.0.0.0.0.0.0.0.0.0.0.a.8.d.f.9.a.1.c.2.0.0.2.ip6.arpa not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find a.8.d.f.9.a.1.c.0.0.0.0.0.0.0.0.0.0.0.0.a.8.d.f.9.a.1.c.2.0.0.2.ip6.arpa: NXDOMAIN

Related comments:

IP	Type	Details	Datetime
89.248.174.216	attack	05/03/2020-00:27:59.553413 89.248.174.216 Protocol: 17 ET DROP Dshield Block Listed Source group 1	2020-05-03 07:15:37
92.118.37.70	attack	Multiport scan : 11 ports scanned 3390 3391 3392 3394 3397 3399 3400 3403 3406 3407 3410	2020-05-03 06:46:40
80.82.77.240	attackspambots	05/03/2020-01:19:01.803711 80.82.77.240 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-05-03 07:21:07
45.79.110.218	attackspam	US_Linode_<177>1588459926 [1:2403350:56986] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 26 [Classification: Misc Attack] [Priority: 2]: {TCP} 45.79.110.218:55223	2020-05-03 07:02:18
141.98.81.138	attackbots	ET SCAN Potential SSH Scan - port: 22 proto: TCP cat: Attempted Information Leak	2020-05-03 07:11:01
80.82.64.146	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 65 - port: 5900 proto: TCP cat: Misc Attack	2020-05-03 06:54:15
80.82.77.139	attack	05/02/2020-17:40:53.918420 80.82.77.139 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 82	2020-05-03 07:21:36
89.248.172.85	attack	05/02/2020-18:39:55.165399 89.248.172.85 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-05-03 07:16:03
89.248.168.112	attackspam	ET CINS Active Threat Intelligence Poor Reputation IP group 79 - port: 5555 proto: TCP cat: Misc Attack	2020-05-03 06:48:55
92.53.65.52	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 84 - port: 2996 proto: TCP cat: Misc Attack	2020-05-03 06:47:35
64.225.114.132	attackbotsspam	ET CINS Active Threat Intelligence Poor Reputation IP group 51 - port: 787 proto: TCP cat: Misc Attack	2020-05-03 06:56:29
94.102.56.181	attackspambots	May 3 00:38:44 debian-2gb-nbg1-2 kernel: \[10718030.454716\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=94.102.56.181 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=64936 PROTO=TCP SPT=40429 DPT=5094 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-03 07:13:25
79.124.62.86	attackbots	Multiport scan : 21 ports scanned 389 1981 3080 3200 3307 3323 4443 5554 6003 6111 6500 7003 7005 7028 8084 8167 8833 9191 9200 10089 16486	2020-05-03 06:54:34
103.119.144.218	attackbotsspam	ET CINS Active Threat Intelligence Poor Reputation IP group 94 - port: 32993 proto: UDP cat: Misc Attack	2020-05-03 07:12:25
87.251.74.242	attackspambots	Multiport scan : 41 ports scanned 3029 3068 3078 3082 3101 3107 3120 3160 3163 3182 3223 3242 3244 3282 3339 3345 3366 3376 3385 3395 3472 3491 3492 3533 3541 3546 3565 3566 3575 3595 3614 3626 3664 3666 3693 3787 3788 3872 3913 3952 3977	2020-05-03 06:51:07

Recently Reported IPs

118.40.170.239	94.74.177.6	25.110.241.138	87.107.74.105
86.49.157.73	85.185.83.50	81.161.67.106	45.239.142.184
45.232.65.184	45.191.152.24	189.91.2.198	186.121.191.92
128.127.90.36	51.104.221.177	84.16.248.172	81.15.197.202
37.72.52.192	3.25.164.146	209.85.222.176	209.85.208.170