City: Braunschweig
Region: Lower Saxony
Country: Germany
Internet Service Provider: Vodafone
Hostname: unknown
Organization: Vodafone Kabel Deutschland GmbH
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2a02:8108:8200:2c4:dcaf:c82b:fda:c93c
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25761
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2a02:8108:8200:2c4:dcaf:c82b:fda:c93c. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019071801 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 19 03:20:27 CST 2019
;; MSG SIZE rcvd: 141
Host c.3.9.c.a.d.f.0.b.2.8.c.f.a.c.d.4.c.2.0.0.0.2.8.8.0.1.8.2.0.a.2.ip6.arpa not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find c.3.9.c.a.d.f.0.b.2.8.c.f.a.c.d.4.c.2.0.0.0.2.8.8.0.1.8.2.0.a.2.ip6.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 148.153.65.30 | attack | " " |
2020-03-06 06:37:40 |
| 118.25.23.188 | attackbots | $f2bV_matches |
2020-03-06 06:43:41 |
| 112.197.227.65 | attackspam | Honeypot attack, port: 81, PTR: PTR record not found |
2020-03-06 06:48:01 |
| 77.247.109.41 | attackbotsspam | Mar 5 23:05:27 debian-2gb-nbg1-2 kernel: \[5705095.043216\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=77.247.109.41 DST=195.201.40.59 LEN=442 TOS=0x00 PREC=0x00 TTL=54 ID=54435 DF PROTO=UDP SPT=5074 DPT=5060 LEN=422 |
2020-03-06 06:28:50 |
| 113.160.201.200 | attackbots | SSH bruteforce more then 50 syn to 22 port per 10 seconds. |
2020-03-06 06:45:53 |
| 115.159.3.221 | attack | $f2bV_matches |
2020-03-06 06:39:25 |
| 195.54.166.178 | attack | RDP Brute Force lasting for several days - currently ~50.000 attempts |
2020-03-06 06:38:19 |
| 106.39.15.168 | attackbotsspam | Mar 5 22:59:24 host sshd[23364]: Invalid user ftp_test from 106.39.15.168 port 53594 ... |
2020-03-06 06:31:40 |
| 129.28.191.35 | attackspam | Mar 6 00:49:29 server sshd\[12301\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.191.35 user=root Mar 6 00:49:31 server sshd\[12301\]: Failed password for root from 129.28.191.35 port 45074 ssh2 Mar 6 00:58:58 server sshd\[14096\]: Invalid user web from 129.28.191.35 Mar 6 00:58:58 server sshd\[14096\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.191.35 Mar 6 00:59:00 server sshd\[14096\]: Failed password for invalid user web from 129.28.191.35 port 52950 ssh2 ... |
2020-03-06 06:53:13 |
| 14.118.244.244 | attackbots | Honeypot attack, port: 5555, PTR: PTR record not found |
2020-03-06 07:07:30 |
| 187.174.154.124 | attackbotsspam | 20/3/5@17:39:00: FAIL: Alarm-Network address from=187.174.154.124 ... |
2020-03-06 06:59:01 |
| 46.185.131.206 | attack | Honeypot attack, port: 81, PTR: PTR record not found |
2020-03-06 07:01:28 |
| 2.42.255.171 | attack | Honeypot attack, port: 81, PTR: net-2-42-255-171.cust.vodafonedsl.it. |
2020-03-06 06:32:03 |
| 45.79.216.225 | attackspambots | Mar 5 23:52:52 vps691689 sshd[27700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.79.216.225 Mar 5 23:52:54 vps691689 sshd[27700]: Failed password for invalid user gaop from 45.79.216.225 port 50346 ssh2 ... |
2020-03-06 07:05:59 |
| 51.91.212.80 | attack | ET CINS Active Threat Intelligence Poor Reputation IP group 38 - port: 993 proto: TCP cat: Misc Attack |
2020-03-06 06:52:33 |