City: Salzgitter
Region: Lower Saxony
Country: Germany
Internet Service Provider: Telekom
Hostname: unknown
Organization: Deutsche Telekom AG
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2003:de:3f2a:c200:21aa:b747:4732:b41c
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45425
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2003:de:3f2a:c200:21aa:b747:4732:b41c. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019072502 1800 900 604800 86400
;; Query time: 147 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 26 03:17:22 CST 2019
;; MSG SIZE rcvd: 141
c.1.4.b.2.3.7.4.7.4.7.b.a.a.1.2.0.0.2.c.a.2.f.3.e.d.0.0.3.0.0.2.ip6.arpa domain name pointer p200300DE3F2AC20021AAB7474732B41C.dip0.t-ipconnect.de.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
c.1.4.b.2.3.7.4.7.4.7.b.a.a.1.2.0.0.2.c.a.2.f.3.e.d.0.0.3.0.0.2.ip6.arpa name = p200300DE3F2AC20021AAB7474732B41C.dip0.t-ipconnect.de.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 185.175.93.17 | attackspam | 05/23/2020-03:33:01.864262 185.175.93.17 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-05-23 16:20:18 |
| 154.16.246.84 | attackspambots | SmallBizIT.US 1 packets to tcp(22) |
2020-05-23 16:41:48 |
| 185.141.60.169 | attackspambots | SmallBizIT.US 1 packets to tcp(3389) |
2020-05-23 16:23:24 |
| 185.175.93.14 | attack | May 23 09:45:27 debian-2gb-nbg1-2 kernel: \[12478740.608297\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.175.93.14 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=30214 PROTO=TCP SPT=48815 DPT=7534 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-05-23 16:20:42 |
| 183.80.83.100 | attackspam | SmallBizIT.US 1 packets to tcp(23) |
2020-05-23 16:25:13 |
| 141.98.80.39 | attack | SmallBizIT.US 4 packets to tcp(23000,24000,27000,29000) |
2020-05-23 16:45:33 |
| 167.71.222.137 | attackspam | SmallBizIT.US 28 packets to tcp(23) |
2020-05-23 16:37:10 |
| 200.175.247.161 | attack | " " |
2020-05-23 16:04:56 |
| 185.153.196.126 | attackspam | ET DROP Dshield Block Listed Source group 1 - port: 3389 proto: TCP cat: Misc Attack |
2020-05-23 16:22:27 |
| 176.122.178.228 | attack | Invalid user vvu from 176.122.178.228 port 50954 |
2020-05-23 16:31:02 |
| 188.165.169.238 | attackspam | (sshd) Failed SSH login from 188.165.169.238 (FR/France/ip238.ip-188-165-169.eu): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 23 08:50:08 amsweb01 sshd[8473]: Invalid user lne from 188.165.169.238 port 39708 May 23 08:50:10 amsweb01 sshd[8473]: Failed password for invalid user lne from 188.165.169.238 port 39708 ssh2 May 23 09:03:05 amsweb01 sshd[9865]: Invalid user tsb from 188.165.169.238 port 47414 May 23 09:03:07 amsweb01 sshd[9865]: Failed password for invalid user tsb from 188.165.169.238 port 47414 ssh2 May 23 09:06:25 amsweb01 sshd[10319]: Invalid user lcn from 188.165.169.238 port 51216 |
2020-05-23 16:17:41 |
| 161.35.61.27 | attackbotsspam | DATE:2020-05-23 09:24:18, IP:161.35.61.27, PORT:ssh SSH brute force auth (docker-dc) |
2020-05-23 16:39:58 |
| 185.53.88.207 | attackspambots | ET SCAN Sipvicious User-Agent Detected (friendly-scanner) - port: 5060 proto: UDP cat: Attempted Information Leak |
2020-05-23 16:23:48 |
| 193.165.247.107 | attackbots | SmallBizIT.US 1 packets to tcp(23) |
2020-05-23 16:15:25 |
| 167.99.48.123 | attack | Invalid user dho from 167.99.48.123 port 58876 |
2020-05-23 16:36:47 |