City: Gifhorn
Region: Niedersachsen
Country: Germany
Internet Service Provider: Telekom
Hostname: unknown
Organization: unknown
Usage Type: unknown
bb'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 2003:e0:171f:3300:5823:e98c:8c57:1024
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 61377
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;2003:e0:171f:3300:5823:e98c:8c57:1024. IN A
;; Query time: 0 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Thu Oct 03 05:34:24 CST 2024
;; MSG SIZE rcvd: 66
'b'4.2.0.1.7.5.c.8.c.8.9.e.3.2.8.5.0.0.3.3.f.1.7.1.0.e.0.0.3.0.0.2.ip6.arpa domain name pointer p200300e0171f33005823e98c8c571024.dip0.t-ipconnect.de.
'b'4.2.0.1.7.5.c.8.c.8.9.e.3.2.8.5.0.0.3.3.f.1.7.1.0.e.0.0.3.0.0.2.ip6.arpa name = p200300e0171f33005823e98c8c571024.dip0.t-ipconnect.de.
Authoritative answers can be found from:
'| IP | Type | Details | Datetime |
|---|---|---|---|
| 132.145.153.124 | attackspambots | Nov 14 05:56:46 cp sshd[9272]: Failed password for root from 132.145.153.124 port 38980 ssh2 Nov 14 05:56:46 cp sshd[9272]: Failed password for root from 132.145.153.124 port 38980 ssh2 |
2019-11-14 13:23:21 |
| 114.4.240.154 | attackbotsspam | 445/tcp 445/tcp 1433/tcp [2019-11-07/14]3pkt |
2019-11-14 13:40:13 |
| 92.119.160.40 | attack | Nov 14 05:07:22 h2177944 kernel: \[6579957.501552\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.40 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=20869 PROTO=TCP SPT=40109 DPT=4687 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 14 05:37:00 h2177944 kernel: \[6581735.617498\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.40 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=9360 PROTO=TCP SPT=40109 DPT=5387 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 14 05:38:52 h2177944 kernel: \[6581847.560056\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.40 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=20364 PROTO=TCP SPT=40109 DPT=3287 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 14 05:48:08 h2177944 kernel: \[6582402.965179\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.40 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=27249 PROTO=TCP SPT=40109 DPT=2788 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 14 05:56:47 h2177944 kernel: \[6582922.343254\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.40 DST=85.214.117.9 |
2019-11-14 13:21:31 |
| 51.68.123.198 | attackspambots | Nov 14 06:25:33 vps58358 sshd\[4779\]: Invalid user www from 51.68.123.198Nov 14 06:25:35 vps58358 sshd\[4779\]: Failed password for invalid user www from 51.68.123.198 port 51290 ssh2Nov 14 06:29:18 vps58358 sshd\[4793\]: Invalid user m1 from 51.68.123.198Nov 14 06:29:19 vps58358 sshd\[4793\]: Failed password for invalid user m1 from 51.68.123.198 port 60114 ssh2Nov 14 06:33:01 vps58358 sshd\[4824\]: Invalid user apple from 51.68.123.198Nov 14 06:33:03 vps58358 sshd\[4824\]: Failed password for invalid user apple from 51.68.123.198 port 40708 ssh2 ... |
2019-11-14 13:52:15 |
| 213.178.242.131 | attackbotsspam | 7002/tcp 1433/tcp 8080/tcp... [2019-10-12/11-14]4pkt,3pt.(tcp) |
2019-11-14 13:25:19 |
| 58.217.72.19 | attackspambots | 23/tcp 23/tcp [2019-11-12]2pkt |
2019-11-14 13:59:22 |
| 185.176.27.18 | attackbots | 11/14/2019-00:22:23.728850 185.176.27.18 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2019-11-14 13:28:54 |
| 117.240.207.59 | attack | Unauthorised access (Nov 14) SRC=117.240.207.59 LEN=52 TOS=0x08 TTL=118 ID=12476 DF TCP DPT=445 WINDOW=8192 SYN |
2019-11-14 13:21:50 |
| 115.79.60.104 | attackbots | Nov 14 06:30:47 ns41 sshd[16887]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.79.60.104 Nov 14 06:30:47 ns41 sshd[16887]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.79.60.104 |
2019-11-14 13:34:18 |
| 106.12.33.80 | attackspambots | detected by Fail2Ban |
2019-11-14 13:35:58 |
| 84.54.118.82 | attackspam | Nov 14 10:44:12 gw1 sshd[15354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.54.118.82 Nov 14 10:44:14 gw1 sshd[15354]: Failed password for invalid user 123Lobster from 84.54.118.82 port 53554 ssh2 ... |
2019-11-14 13:57:11 |
| 115.66.121.35 | attackspam | 2323/tcp 52869/tcp 5500/tcp... [2019-09-13/11-14]10pkt,3pt.(tcp) |
2019-11-14 13:28:06 |
| 109.105.227.242 | attack | Automatic report - Banned IP Access |
2019-11-14 13:59:03 |
| 125.224.24.185 | attackspambots | 23/tcp 23/tcp [2019-11-12]2pkt |
2019-11-14 14:02:52 |
| 92.222.84.34 | attack | Nov 14 05:56:11 tuxlinux sshd[9454]: Invalid user tiffany from 92.222.84.34 port 58602 Nov 14 05:56:11 tuxlinux sshd[9454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.84.34 Nov 14 05:56:11 tuxlinux sshd[9454]: Invalid user tiffany from 92.222.84.34 port 58602 Nov 14 05:56:11 tuxlinux sshd[9454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.84.34 ... |
2019-11-14 13:44:56 |