City: unknown
Region: unknown
Country: unknown
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
bb'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 2600:1408:c400:78c::2a5b
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 26064
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;2600:1408:c400:78c::2a5b. IN A
;; Query time: 0 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Sat Feb 19 03:00:48 CST 2022
;; MSG SIZE rcvd: 53
'b.5.a.2.0.0.0.0.0.0.0.0.0.0.0.0.c.8.7.0.0.0.4.c.8.0.4.1.0.0.6.2.ip6.arpa domain name pointer g2600-1408-c400-078c-0000-0000-0000-2a5b.deploy.static.akamaitechnologies.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
b.5.a.2.0.0.0.0.0.0.0.0.0.0.0.0.c.8.7.0.0.0.4.c.8.0.4.1.0.0.6.2.ip6.arpa name = g2600-1408-c400-078c-0000-0000-0000-2a5b.deploy.static.akamaitechnologies.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 111.67.198.202 | attackspambots | web-1 [ssh_2] SSH Attack |
2020-05-02 07:05:58 |
| 190.218.101.75 | attack | Attempted connection to port 5555. |
2020-05-02 07:08:27 |
| 106.13.1.81 | attackspam | Invalid user donatas from 106.13.1.81 port 50748 |
2020-05-02 07:40:19 |
| 24.97.254.74 | attack | Attempted connection to port 9000. |
2020-05-02 07:07:50 |
| 219.144.67.60 | attackspambots | May 1 23:12:56 server sshd[38379]: User postgres from 219.144.67.60 not allowed because not listed in AllowUsers May 1 23:12:57 server sshd[38379]: Failed password for invalid user postgres from 219.144.67.60 port 37356 ssh2 May 1 23:15:56 server sshd[40963]: Failed password for invalid user test from 219.144.67.60 port 51002 ssh2 |
2020-05-02 07:11:42 |
| 107.150.99.76 | attack | SSH auth scanning - multiple failed logins |
2020-05-02 07:09:53 |
| 45.164.8.244 | attackspam | May 1 20:25:59 vps46666688 sshd[4555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.164.8.244 May 1 20:26:01 vps46666688 sshd[4555]: Failed password for invalid user ding from 45.164.8.244 port 54574 ssh2 ... |
2020-05-02 07:40:33 |
| 58.87.97.166 | attack | SSH Bruteforce attack |
2020-05-02 07:31:14 |
| 200.55.196.142 | attackspambots | Apr 30 12:09:14 www sshd[12742]: reveeclipse mapping checking getaddrinfo for static.200.55.196.142.gtdinternet.com [200.55.196.142] failed - POSSIBLE BREAK-IN ATTEMPT! Apr 30 12:09:14 www sshd[12742]: Invalid user action from 200.55.196.142 Apr 30 12:09:14 www sshd[12742]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.55.196.142 Apr 30 12:09:16 www sshd[12742]: Failed password for invalid user action from 200.55.196.142 port 38542 ssh2 Apr 30 12:09:17 www sshd[12742]: Received disconnect from 200.55.196.142: 11: Bye Bye [preauth] Apr 30 12:18:45 www sshd[12825]: reveeclipse mapping checking getaddrinfo for static.200.55.196.142.gtdinternet.com [200.55.196.142] failed - POSSIBLE BREAK-IN ATTEMPT! Apr 30 12:18:45 www sshd[12825]: Invalid user uu from 200.55.196.142 Apr 30 12:18:45 www sshd[12825]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.55.196.142 Apr 30 12:18:47 www sshd[........ ------------------------------- |
2020-05-02 07:39:24 |
| 110.137.81.248 | attackspambots | Attempted connection to port 445. |
2020-05-02 07:11:11 |
| 200.62.96.201 | attackspambots | Attempted connection to port 1433. |
2020-05-02 07:08:12 |
| 45.230.241.142 | attackbotsspam | Attempted connection to port 445. |
2020-05-02 07:07:30 |
| 66.249.73.70 | attackspam | [Sat May 02 04:05:54.495075 2020] [:error] [pid 15500:tid 139985436071680] [client 66.249.73.70:41670] [client 66.249.73.70] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/normal-klimatologi/202-normal-curah-hujan-musim/normal-curah-hujan-musim-kemarau"] [unique_id "XqyPMj7hpe3084F2lqe53QAAAcI"] ... |
2020-05-02 07:38:34 |
| 89.141.56.162 | attackbots | 2020-05-02 07:35:41 | |
| 51.254.38.106 | attack | May 2 01:01:01 host sshd[58134]: Invalid user hora from 51.254.38.106 port 42874 ... |
2020-05-02 07:22:37 |