2002:dcaf:3227::dcaf:3227

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: 6to4 RFC3056

Hostname: unknown

Organization: unknown

Usage Type: Reserved

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Sep 6 05:42:23 lnxmail61 postfix/smtps/smtpd[30496]: warning: unknown[2002:dcaf:3227::dcaf:3227]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 6 05:42:25 lnxmail61 postfix/smtps/smtpd[30496]: lost connection after AUTH from unknown[2002:dcaf:3227::dcaf:3227] Sep 6 05:45:01 lnxmail61 postfix/smtps/smtpd[30494]: warning: unknown[2002:dcaf:3227::dcaf:3227]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 6 05:45:06 lnxmail61 postfix/smtps/smtpd[30494]: lost connection after AUTH from unknown[2002:dcaf:3227::dcaf:3227] Sep 6 05:47:11 lnxmail61 postfix/smtps/smtpd[30496]: warning: unknown[2002:dcaf:3227::dcaf:3227]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-09-06 21:10:40

Type

Details

Datetime

attackbots

Sep  6 05:42:23 lnxmail61 postfix/smtps/smtpd[30496]: warning: unknown[2002:dcaf:3227::dcaf:3227]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Sep  6 05:42:25 lnxmail61 postfix/smtps/smtpd[30496]: lost connection after AUTH from unknown[2002:dcaf:3227::dcaf:3227]
Sep  6 05:45:01 lnxmail61 postfix/smtps/smtpd[30494]: warning: unknown[2002:dcaf:3227::dcaf:3227]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Sep  6 05:45:06 lnxmail61 postfix/smtps/smtpd[30494]: lost connection after AUTH from unknown[2002:dcaf:3227::dcaf:3227]
Sep  6 05:47:11 lnxmail61 postfix/smtps/smtpd[30496]: warning: unknown[2002:dcaf:3227::dcaf:3227]: SASL LOGIN authentication failed: UGFzc3dvcmQ6

2019-09-06 21:10:40

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2002:dcaf:3227::dcaf:3227
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37517
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2002:dcaf:3227::dcaf:3227.	IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090600 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Sep 06 21:10:35 CST 2019
;; MSG SIZE  rcvd: 129

Host info

Host 7.2.2.3.f.a.c.d.0.0.0.0.0.0.0.0.0.0.0.0.7.2.2.3.f.a.c.d.2.0.0.2.ip6.arpa not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 7.2.2.3.f.a.c.d.0.0.0.0.0.0.0.0.0.0.0.0.7.2.2.3.f.a.c.d.2.0.0.2.ip6.arpa: NXDOMAIN

Related comments:

IP	Type	Details	Datetime
161.35.77.82	attackspam	$f2bV_matches	2020-06-28 08:41:05
165.227.187.185	attack	Jun 28 03:51:07 game-panel sshd[26494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.187.185 Jun 28 03:51:08 game-panel sshd[26494]: Failed password for invalid user a0 from 165.227.187.185 port 50494 ssh2 Jun 28 03:57:25 game-panel sshd[26907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.187.185	2020-06-28 12:00:19
65.49.20.68	attack	SSHD brute force attack detected by fail2ban	2020-06-28 12:06:09
118.89.115.224	attackbots	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-06-28 12:13:38
218.92.0.185	attack	Jun 28 06:14:07 * sshd[3456]: Failed password for root from 218.92.0.185 port 24811 ssh2 Jun 28 06:14:20 * sshd[3456]: error: maximum authentication attempts exceeded for root from 218.92.0.185 port 24811 ssh2 [preauth]	2020-06-28 12:21:48
185.6.139.169	attack	Automatic report - XMLRPC Attack	2020-06-28 12:02:47
61.133.232.250	attack	Jun 27 23:48:02 ws26vmsma01 sshd[187703]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.133.232.250 Jun 27 23:48:03 ws26vmsma01 sshd[187703]: Failed password for invalid user michele from 61.133.232.250 port 21031 ssh2 ...	2020-06-28 08:36:29
50.62.177.116	attackspam	Automatic report - XMLRPC Attack	2020-06-28 08:42:16
212.174.55.34	attackbotsspam	Automatic report - Port Scan	2020-06-28 08:46:40
128.0.129.192	attack	2020-06-27T23:38:17.692791afi-git.jinr.ru sshd[15884]: Failed password for invalid user julien from 128.0.129.192 port 36810 ssh2 2020-06-27T23:43:16.238245afi-git.jinr.ru sshd[17180]: Invalid user kitti from 128.0.129.192 port 34730 2020-06-27T23:43:16.241810afi-git.jinr.ru sshd[17180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.0.129.192 2020-06-27T23:43:16.238245afi-git.jinr.ru sshd[17180]: Invalid user kitti from 128.0.129.192 port 34730 2020-06-27T23:43:18.588980afi-git.jinr.ru sshd[17180]: Failed password for invalid user kitti from 128.0.129.192 port 34730 ssh2 ...	2020-06-28 08:46:07
120.31.138.70	attackbotsspam	Jun 28 05:58:25 electroncash sshd[49817]: Failed password for root from 120.31.138.70 port 34774 ssh2 Jun 28 06:01:13 electroncash sshd[51002]: Invalid user parking from 120.31.138.70 port 49090 Jun 28 06:01:13 electroncash sshd[51002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.31.138.70 Jun 28 06:01:13 electroncash sshd[51002]: Invalid user parking from 120.31.138.70 port 49090 Jun 28 06:01:15 electroncash sshd[51002]: Failed password for invalid user parking from 120.31.138.70 port 49090 ssh2 ...	2020-06-28 12:15:05
142.44.160.40	attackspam	2020-06-28T04:09:23.065091shield sshd\[26892\]: Invalid user support from 142.44.160.40 port 35012 2020-06-28T04:09:23.068695shield sshd\[26892\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.ip-142-44-160.net 2020-06-28T04:09:24.738901shield sshd\[26892\]: Failed password for invalid user support from 142.44.160.40 port 35012 ssh2 2020-06-28T04:13:18.186093shield sshd\[28581\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.ip-142-44-160.net user=root 2020-06-28T04:13:20.110824shield sshd\[28581\]: Failed password for root from 142.44.160.40 port 36410 ssh2	2020-06-28 12:26:04
101.51.59.22	attackbots	Unauthorized IMAP connection attempt	2020-06-28 12:05:40
46.101.249.232	attackspam	Jun 28 01:48:58 lukav-desktop sshd\[23574\]: Invalid user teamspeak from 46.101.249.232 Jun 28 01:48:58 lukav-desktop sshd\[23574\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.249.232 Jun 28 01:49:01 lukav-desktop sshd\[23574\]: Failed password for invalid user teamspeak from 46.101.249.232 port 49781 ssh2 Jun 28 01:52:42 lukav-desktop sshd\[23612\]: Invalid user sxc from 46.101.249.232 Jun 28 01:52:42 lukav-desktop sshd\[23612\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.249.232	2020-06-28 08:45:20
134.209.178.109	attackspam	Jun 27 21:43:13 l02a sshd[30776]: Invalid user tunnel from 134.209.178.109 Jun 27 21:43:13 l02a sshd[30776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.178.109 Jun 27 21:43:13 l02a sshd[30776]: Invalid user tunnel from 134.209.178.109 Jun 27 21:43:15 l02a sshd[30776]: Failed password for invalid user tunnel from 134.209.178.109 port 44552 ssh2	2020-06-28 08:49:58

Recently Reported IPs

113.182.7.45	121.161.220.212	115.191.151.101	115.85.213.217
62.99.177.238	176.225.121.97	138.255.9.221	14.210.111.238
147.163.255.175	191.53.250.73	84.22.4.227	176.58.130.196
179.125.63.110	82.252.135.10	196.75.102.19	40.112.250.138
63.216.30.135	218.235.233.204	32.228.248.230	36.67.25.138