City: Gifhorn
Region: Lower Saxony
Country: Germany
Internet Service Provider: Telekom
Hostname: unknown
Organization: Deutsche Telekom AG
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2003:e0:1706:5824:b8fb:671e:96fd:c4a
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61098
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2003:e0:1706:5824:b8fb:671e:96fd:c4a. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019072401 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jul 25 03:21:45 CST 2019
;; MSG SIZE rcvd: 140
a.4.c.0.d.f.6.9.e.1.7.6.b.f.8.b.4.2.8.5.6.0.7.1.0.e.0.0.3.0.0.2.ip6.arpa domain name pointer p200300E017065824B8FB671E96FD0C4A.dip0.t-ipconnect.de.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
a.4.c.0.d.f.6.9.e.1.7.6.b.f.8.b.4.2.8.5.6.0.7.1.0.e.0.0.3.0.0.2.ip6.arpa name = p200300E017065824B8FB671E96FD0C4A.dip0.t-ipconnect.de.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 61.224.91.44 | attackbotsspam | Unauthorized connection attempt detected from IP address 61.224.91.44 to port 5555 [J] |
2020-02-03 05:54:19 |
| 193.112.19.168 | attack | Jun 27 13:05:16 ms-srv sshd[17346]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.19.168 user=root Jun 27 13:05:19 ms-srv sshd[17346]: Failed password for invalid user root from 193.112.19.168 port 58132 ssh2 |
2020-02-03 06:04:30 |
| 206.189.186.198 | attackspam | DATE:2020-02-02 16:06:22, IP:206.189.186.198, PORT:6379 REDIS brute force auth on honeypot server (honey-neo-dc) |
2020-02-03 05:46:19 |
| 190.187.104.146 | attackbots | Unauthorized connection attempt detected from IP address 190.187.104.146 to port 2220 [J] |
2020-02-03 05:47:22 |
| 193.112.219.176 | attackbots | Unauthorized connection attempt detected from IP address 193.112.219.176 to port 2220 [J] |
2020-02-03 05:58:58 |
| 222.186.30.209 | attack | Feb 2 23:00:26 v22018076622670303 sshd\[23799\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.209 user=root Feb 2 23:00:27 v22018076622670303 sshd\[23799\]: Failed password for root from 222.186.30.209 port 44195 ssh2 Feb 2 23:00:29 v22018076622670303 sshd\[23799\]: Failed password for root from 222.186.30.209 port 44195 ssh2 ... |
2020-02-03 06:04:14 |
| 212.85.91.19 | attack | Unauthorized connection attempt detected from IP address 212.85.91.19 to port 23 [J] |
2020-02-03 05:54:54 |
| 62.12.64.91 | attackspambots | Unauthorized connection attempt detected from IP address 62.12.64.91 to port 5555 [J] |
2020-02-03 05:43:49 |
| 142.93.214.20 | attackbotsspam | Unauthorized connection attempt detected from IP address 142.93.214.20 to port 2220 [J] |
2020-02-03 05:47:36 |
| 193.112.60.116 | attackspambots | Mar 6 11:35:50 ms-srv sshd[38160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.60.116 user=root Mar 6 11:35:51 ms-srv sshd[38160]: Failed password for invalid user root from 193.112.60.116 port 46844 ssh2 |
2020-02-03 05:36:56 |
| 193.112.46.99 | attackspambots | Jun 14 11:12:53 ms-srv sshd[53125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.46.99 Jun 14 11:12:55 ms-srv sshd[53125]: Failed password for invalid user postfix from 193.112.46.99 port 50240 ssh2 |
2020-02-03 05:45:20 |
| 193.112.29.23 | attackspam | Unauthorized connection attempt detected from IP address 193.112.29.23 to port 2220 [J] |
2020-02-03 05:55:14 |
| 193.112.242.217 | attackbotsspam | Jan 11 02:26:26 ms-srv sshd[45575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.242.217 Jan 11 02:26:28 ms-srv sshd[45575]: Failed password for invalid user kernoops from 193.112.242.217 port 50406 ssh2 |
2020-02-03 05:56:25 |
| 94.102.49.112 | attackspam | Feb 2 22:34:00 debian-2gb-nbg1-2 kernel: \[2938494.104218\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=94.102.49.112 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=12857 PROTO=TCP SPT=55833 DPT=18026 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-02-03 05:43:28 |
| 103.99.1.245 | attack | proto=tcp . spt=55660 . dpt=3389 . src=103.99.1.245 . dst=xx.xx.4.1 . Found on CINS badguys (950) |
2020-02-03 05:57:06 |