City: unknown
Region: unknown
Country: unknown
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
bb'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 2600:141b:f000:11a1::2f1f
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 1902
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;2600:141b:f000:11a1::2f1f. IN A
;; Query time: 0 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Sat Feb 19 03:01:40 CST 2022
;; MSG SIZE rcvd: 54
'f.1.f.2.0.0.0.0.0.0.0.0.0.0.0.0.1.a.1.1.0.0.0.f.b.1.4.1.0.0.6.2.ip6.arpa domain name pointer g2600-141b-f000-11a1-0000-0000-0000-2f1f.deploy.static.akamaitechnologies.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
f.1.f.2.0.0.0.0.0.0.0.0.0.0.0.0.1.a.1.1.0.0.0.f.b.1.4.1.0.0.6.2.ip6.arpa name = g2600-141b-f000-11a1-0000-0000-0000-2f1f.deploy.static.akamaitechnologies.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 132.232.43.115 | attack | Dec 25 02:12:42 plusreed sshd[16197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.43.115 user=root Dec 25 02:12:44 plusreed sshd[16197]: Failed password for root from 132.232.43.115 port 51336 ssh2 ... |
2019-12-25 22:57:04 |
| 74.129.111.231 | attackspam | B: zzZZzz blocked content access |
2019-12-25 23:05:04 |
| 14.234.144.18 | attackspam | Dec 25 07:30:24 riskplan-s sshd[9135]: Address 14.234.144.18 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Dec 25 07:30:24 riskplan-s sshd[9135]: Invalid user user from 14.234.144.18 Dec 25 07:30:24 riskplan-s sshd[9135]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.234.144.18 Dec 25 07:30:26 riskplan-s sshd[9135]: Failed password for invalid user user from 14.234.144.18 port 60415 ssh2 Dec 25 07:30:26 riskplan-s sshd[9135]: Connection closed by 14.234.144.18 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.234.144.18 |
2019-12-25 22:36:53 |
| 172.105.28.158 | attackbots | "PROTOCOL-DNS DNS query amplification attempt" |
2019-12-25 22:31:40 |
| 1.58.113.105 | attackbotsspam | Scanning |
2019-12-25 22:29:22 |
| 117.69.154.163 | attackspam | 2019-12-25T07:18:13.183498 X postfix/smtpd[54540]: lost connection after AUTH from unknown[117.69.154.163] 2019-12-25T07:18:13.313442 X postfix/smtpd[58357]: lost connection after AUTH from unknown[117.69.154.163] 2019-12-25T07:18:13.972459 X postfix/smtpd[54540]: lost connection after AUTH from unknown[117.69.154.163] 2019-12-25T07:18:14.114554 X postfix/smtpd[58357]: lost connection after AUTH from unknown[117.69.154.163] |
2019-12-25 22:26:10 |
| 200.34.88.37 | attack | Invalid user PRECISIONGLUSER from 200.34.88.37 port 51370 |
2019-12-25 22:50:27 |
| 124.195.244.126 | attack | Automatic report - SSH Brute-Force Attack |
2019-12-25 22:37:30 |
| 93.97.217.81 | attack | Triggered by Fail2Ban at Ares web server |
2019-12-25 22:30:36 |
| 92.222.92.128 | attackbots | Dec 25 14:02:27 srv-ubuntu-dev3 sshd[108725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.92.128 user=root Dec 25 14:02:29 srv-ubuntu-dev3 sshd[108725]: Failed password for root from 92.222.92.128 port 55976 ssh2 Dec 25 14:07:21 srv-ubuntu-dev3 sshd[109098]: Invalid user lequin from 92.222.92.128 Dec 25 14:07:21 srv-ubuntu-dev3 sshd[109098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.92.128 Dec 25 14:07:21 srv-ubuntu-dev3 sshd[109098]: Invalid user lequin from 92.222.92.128 Dec 25 14:07:23 srv-ubuntu-dev3 sshd[109098]: Failed password for invalid user lequin from 92.222.92.128 port 51024 ssh2 Dec 25 14:09:54 srv-ubuntu-dev3 sshd[109454]: Invalid user masatoshi from 92.222.92.128 Dec 25 14:09:54 srv-ubuntu-dev3 sshd[109454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.92.128 Dec 25 14:09:54 srv-ubuntu-dev3 sshd[109454]: Invalid user m ... |
2019-12-25 22:43:33 |
| 112.160.147.67 | attackspam | SSH/22 MH Probe, BF, Hack - |
2019-12-25 23:08:57 |
| 112.78.134.11 | attack | SSH/22 MH Probe, BF, Hack - |
2019-12-25 22:58:00 |
| 222.186.175.148 | attack | Dec 25 15:57:24 sd-53420 sshd\[24152\]: User root from 222.186.175.148 not allowed because none of user's groups are listed in AllowGroups Dec 25 15:57:25 sd-53420 sshd\[24152\]: Failed none for invalid user root from 222.186.175.148 port 41766 ssh2 Dec 25 15:57:25 sd-53420 sshd\[24152\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root Dec 25 15:57:27 sd-53420 sshd\[24152\]: Failed password for invalid user root from 222.186.175.148 port 41766 ssh2 Dec 25 15:57:30 sd-53420 sshd\[24152\]: Failed password for invalid user root from 222.186.175.148 port 41766 ssh2 ... |
2019-12-25 23:00:36 |
| 222.186.175.169 | attack | pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root Failed password for root from 222.186.175.169 port 62784 ssh2 Failed password for root from 222.186.175.169 port 62784 ssh2 Failed password for root from 222.186.175.169 port 62784 ssh2 Failed password for root from 222.186.175.169 port 62784 ssh2 |
2019-12-25 23:07:43 |
| 185.200.118.73 | attack | Portscan or hack attempt detected by psad/fwsnort |
2019-12-25 22:58:15 |