2600:387:b:982:0:0:0:13 - IPInfo

Basic Info

City: unknown

Region: Oregon

Country: United States

Internet Service Provider: AT&T

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

b'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 2600:387:b:982:0:0:0:13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 40005
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;2600:387:b:982:0:0:0:13.	IN	A

;; Query time: 0 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Fri Nov 11 22:52:38 CST 2022
;; MSG SIZE  rcvd: 52

'

Host info

Host 3.1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.2.8.9.0.b.0.0.0.7.8.3.0.0.0.6.2.ip6.arpa not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 3.1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.2.8.9.0.b.0.0.0.7.8.3.0.0.0.6.2.ip6.arpa: NXDOMAIN

Related comments:

IP	Type	Details	Datetime
27.72.170.42	attack	Unauthorized connection attempt from IP address 27.72.170.42 on Port 445(SMB)	2020-07-26 22:38:36
164.90.223.8	attack	2020-07-26T14:05:53.861504galaxy.wi.uni-potsdam.de sshd[29779]: Failed password for invalid user admin from 164.90.223.8 port 53348 ssh2 2020-07-26T14:05:54.141850galaxy.wi.uni-potsdam.de sshd[29784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.90.223.8 user=root 2020-07-26T14:05:56.536979galaxy.wi.uni-potsdam.de sshd[29784]: Failed password for root from 164.90.223.8 port 56370 ssh2 2020-07-26T14:05:56.763771galaxy.wi.uni-potsdam.de sshd[29788]: Invalid user 1234 from 164.90.223.8 port 59914 2020-07-26T14:05:56.768801galaxy.wi.uni-potsdam.de sshd[29788]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.90.223.8 2020-07-26T14:05:56.763771galaxy.wi.uni-potsdam.de sshd[29788]: Invalid user 1234 from 164.90.223.8 port 59914 2020-07-26T14:05:59.103155galaxy.wi.uni-potsdam.de sshd[29788]: Failed password for invalid user 1234 from 164.90.223.8 port 59914 ssh2 2020-07-26T14:05:59.329708galaxy.wi.uni-p ...	2020-07-26 22:22:33
144.130.160.250	attackbots	Jul 26 13:41:02 extapp sshd[10491]: Invalid user admin from 144.130.160.250 Jul 26 13:41:05 extapp sshd[10491]: Failed password for invalid user admin from 144.130.160.250 port 40827 ssh2 Jul 26 13:41:08 extapp sshd[10806]: Invalid user admin from 144.130.160.250 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=144.130.160.250	2020-07-26 22:32:59
80.82.64.98	attack	Jul 26 15:56:16 mail.srvfarm.net dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=80.82.64.98, lip=185.118.197.126, session= Jul 26 15:57:11 mail.srvfarm.net dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=80.82.64.98, lip=185.118.197.126, session= Jul 26 15:58:32 mail.srvfarm.net dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=80.82.64.98, lip=185.118.197.126, session= Jul 26 16:00:14 mail.srvfarm.net dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=80.82.64.98, lip=185.118.197.126, session= Jul 26 16:01:19 mail.srvfarm.net dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=	2020-07-26 22:48:24
37.139.16.229	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 16 - port: 20025 proto: tcp cat: Misc Attackbytes: 60	2020-07-26 22:21:05
185.24.233.93	attackbotsspam	Jul 26 14:55:25 mail.srvfarm.net postfix/smtpd[1232550]: warning: 93-233-24-185.static.servebyte.com[185.24.233.93]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 26 14:57:26 mail.srvfarm.net postfix/smtpd[1232247]: warning: 93-233-24-185.static.servebyte.com[185.24.233.93]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 26 14:59:33 mail.srvfarm.net postfix/smtpd[1234180]: warning: 93-233-24-185.static.servebyte.com[185.24.233.93]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 26 15:01:34 mail.srvfarm.net postfix/smtpd[1233431]: warning: 93-233-24-185.static.servebyte.com[185.24.233.93]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 26 15:03:34 mail.srvfarm.net postfix/smtpd[1234178]: warning: 93-233-24-185.static.servebyte.com[185.24.233.93]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-07-26 22:44:39
106.13.217.102	attackbotsspam	Unauthorized connection attempt detected from IP address 106.13.217.102 to port 27	2020-07-26 22:12:42
172.82.230.3	attack	Jul 26 16:03:22 mail.srvfarm.net postfix/smtpd[1254590]: lost connection after STARTTLS from r3.news.eu.rvca.com[172.82.230.3] Jul 26 16:04:29 mail.srvfarm.net postfix/smtpd[1267415]: lost connection after STARTTLS from r3.news.eu.rvca.com[172.82.230.3] Jul 26 16:05:36 mail.srvfarm.net postfix/smtpd[1267548]: lost connection after STARTTLS from r3.news.eu.rvca.com[172.82.230.3] Jul 26 16:07:41 mail.srvfarm.net postfix/smtpd[1267551]: lost connection after STARTTLS from r3.news.eu.rvca.com[172.82.230.3] Jul 26 16:09:46 mail.srvfarm.net postfix/smtpd[1254587]: lost connection after STARTTLS from r3.news.eu.rvca.com[172.82.230.3]	2020-07-26 22:48:10
62.210.194.7	attack	Jul 26 16:03:23 mail.srvfarm.net postfix/smtpd[1254649]: lost connection after STARTTLS from r7.news.eu.rvca.com[62.210.194.7] Jul 26 16:04:26 mail.srvfarm.net postfix/smtpd[1250833]: lost connection after STARTTLS from r7.news.eu.rvca.com[62.210.194.7] Jul 26 16:05:34 mail.srvfarm.net postfix/smtpd[1254673]: lost connection after STARTTLS from r7.news.eu.rvca.com[62.210.194.7] Jul 26 16:07:42 mail.srvfarm.net postfix/smtpd[1267415]: lost connection after STARTTLS from r7.news.eu.rvca.com[62.210.194.7] Jul 26 16:09:47 mail.srvfarm.net postfix/smtpd[1254587]: lost connection after STARTTLS from r7.news.eu.rvca.com[62.210.194.7]	2020-07-26 22:50:42
106.54.182.239	attackspambots	Exploited Host.	2020-07-26 22:19:47
218.92.0.249	attackbotsspam	Jul 26 13:58:05 rush sshd[25925]: Failed password for root from 218.92.0.249 port 21667 ssh2 Jul 26 13:58:19 rush sshd[25927]: Failed password for root from 218.92.0.249 port 41211 ssh2 Jul 26 13:58:22 rush sshd[25927]: Failed password for root from 218.92.0.249 port 41211 ssh2 ...	2020-07-26 22:21:28
172.82.239.23	attack	Jul 26 16:03:22 mail.srvfarm.net postfix/smtpd[1254649]: lost connection after STARTTLS from r23.news.eu.rvca.com[172.82.239.23] Jul 26 16:04:28 mail.srvfarm.net postfix/smtpd[1250857]: lost connection after STARTTLS from r23.news.eu.rvca.com[172.82.239.23] Jul 26 16:05:36 mail.srvfarm.net postfix/smtpd[1267550]: lost connection after STARTTLS from r23.news.eu.rvca.com[172.82.239.23] Jul 26 16:07:40 mail.srvfarm.net postfix/smtpd[1267549]: lost connection after STARTTLS from r23.news.eu.rvca.com[172.82.239.23] Jul 26 16:09:46 mail.srvfarm.net postfix/smtpd[1267415]: lost connection after STARTTLS from r23.news.eu.rvca.com[172.82.239.23]	2020-07-26 22:46:34
153.133.177.234	attack	Jul 26 13:41:27 h2022099 sshd[28568]: Invalid user admin from 153.133.177.234 Jul 26 13:41:29 h2022099 sshd[28568]: Failed password for invalid user admin from 153.133.177.234 port 61150 ssh2 Jul 26 13:41:29 h2022099 sshd[28568]: Received disconnect from 153.133.177.234: 11: Bye Bye [preauth] Jul 26 13:41:34 h2022099 sshd[28570]: Failed password for r.r from 153.133.177.234 port 61151 ssh2 Jul 26 13:41:34 h2022099 sshd[28570]: Received disconnect from 153.133.177.234: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=153.133.177.234	2020-07-26 22:37:50
94.79.55.192	attack	Jul 26 14:02:01 plex-server sshd[3400534]: Invalid user git_user from 94.79.55.192 port 59292 Jul 26 14:02:01 plex-server sshd[3400534]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.79.55.192 Jul 26 14:02:01 plex-server sshd[3400534]: Invalid user git_user from 94.79.55.192 port 59292 Jul 26 14:02:03 plex-server sshd[3400534]: Failed password for invalid user git_user from 94.79.55.192 port 59292 ssh2 Jul 26 14:06:03 plex-server sshd[3403583]: Invalid user dcg from 94.79.55.192 port 35222 ...	2020-07-26 22:14:14
177.92.244.112	attackspambots	Jul 26 13:47:04 mail.srvfarm.net postfix/smtps/smtpd[1208605]: warning: 177-92-244-112.tecportnet.com.br[177.92.244.112]: SASL PLAIN authentication failed: Jul 26 13:47:05 mail.srvfarm.net postfix/smtps/smtpd[1208605]: lost connection after AUTH from 177-92-244-112.tecportnet.com.br[177.92.244.112] Jul 26 13:49:45 mail.srvfarm.net postfix/smtps/smtpd[1209174]: warning: 177-92-244-112.tecportnet.com.br[177.92.244.112]: SASL PLAIN authentication failed: Jul 26 13:49:45 mail.srvfarm.net postfix/smtps/smtpd[1209174]: lost connection after AUTH from 177-92-244-112.tecportnet.com.br[177.92.244.112] Jul 26 13:52:13 mail.srvfarm.net postfix/smtps/smtpd[1211645]: warning: 177-92-244-112.tecportnet.com.br[177.92.244.112]: SASL PLAIN authentication failed:	2020-07-26 22:45:59

Recently Reported IPs

2600:387:0:982::32	2600:387:6:982::55	2600:387:a:19::bb	2600:387:0:982::17
2600:387:8:f::64	2600:387:2:813::b0	2405:205:1482:74e9::278e:50ad	2001:2d8:215:1573::3410:90a5
0.5.233.249	0:0:0:0:0:ffff:d1ad:35a7	163.255.120.238	2603:10a6:803:64::30
0.5.119.211	0.48.22.60	0.5.128.142	0.49.239.182
0.49.156.75	0.48.250.115	0.49.10.116	0.48.248.197