City: Curepipe
Region: Plaines Wilhems
Country: Mauritius
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
% This is the AfriNIC Whois server.
% The AFRINIC whois database is subject to the following terms of Use. See https://afrinic.net/whois/terms
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '102.112.0.0 - 102.119.255.255'
% No abuse contact registered for 102.112.0.0 - 102.119.255.255
inetnum: 102.112.0.0 - 102.119.255.255
netname: MauritiusTelecom-v4
descr: Mauritius Telecom Ltd
country: MU
org: ORG-mA21-AFRINIC
admin-c: DR22-AFRINIC
admin-c: NG28-AFRINIC
admin-c: RB26-AFRINIC
admin-c: JL279-AFRINIC
admin-c: IJ7-AFRINIC
tech-c: DR22-AFRINIC
tech-c: NG28-AFRINIC
tech-c: RB26-AFRINIC
tech-c: JL279-AFRINIC
tech-c: IJ7-AFRINIC
status: ALLOCATED PA
mnt-by: AFRINIC-HM-MNT
mnt-lower: MU-MT-WIS-MNT
mnt-domains: MU-MT-WIS-MNT
source: AFRINIC # Filtered
parent: 102.0.0.0 - 102.255.255.255
organisation: ORG-mA21-AFRINIC
org-name: Mauritius Telecom Ltd
org-type: LIR
country: MU
address: 4th Floor
address: Orange Tower
address: Ebene
address: Ebene
phone: tel:+230-203-7000
phone: tel:+230-404-3118
phone: tel:+230-404-3106
phone: tel:+230-404-3117
fax-no: tel:+230-208-1070
admin-c: DR22-AFRINIC
admin-c: NG28-AFRINIC
admin-c: JL279-AFRINIC
admin-c: RB26-AFRINIC
admin-c: IJ7-AFRINIC
tech-c: DR22-AFRINIC
tech-c: NG28-AFRINIC
tech-c: JL279-AFRINIC
tech-c: RB26-AFRINIC
tech-c: IJ7-AFRINIC
mnt-ref: AFRINIC-HM-MNT
mnt-ref: MU-MT-WIS-MNT
mnt-by: AFRINIC-HM-MNT
source: AFRINIC # Filtered
person: Dheeraj Ramkhelawon
address: 4th Floor
address: Myt Tower
address: Ebene
address: Mauritius
address: Ebene
address: Other
phone: tel:+230-404-3118
nic-hdl: DR22-AFRINIC
mnt-by: GENERATED-POIVPI7O6FPBZXYLX43E4WTGB71754AR-MNT
source: AFRINIC # Filtered
person: Iqbal Janmahomed
address: Level 4 MyT tower
address: Ebene Vybercity
phone: tel:+230-5253-1584
phone: tel:+230-404-3152
nic-hdl: IJ7-AFRINIC
mnt-by: GENERATED-QS3X43N5PTZ0X897WNQX50XIIPKVIN8O-MNT
source: AFRINIC # Filtered
person: Johnny Lim Fook
nic-hdl: JL279-AFRINIC
address: 7th Floor
address: Telecom Tower
address: Edith Cavell Street
address: Port Louis
address: Mauritius
phone: tel:+230-5251-4942
fax-no: tel:+230-212-8290
mnt-by: MU-TELECOMPLUS-MNT
source: AFRINIC # Filtered
person: Norman Ghanty
address: 4th Floor
address: Orange Tower
address: Ebene
address: Mauritius
phone: tel:+230-5251-6701
phone: tel:+230-404-3117
nic-hdl: NG28-AFRINIC
mnt-by: GENERATED-8EHNCP81DKN7HLRANLGNDUTQC8FHPHGV-MNT
source: AFRINIC # Filtered
person: Ranjit Barah
address: 4th Floor
address: Myt Tower
address: Ebene
address: Mauritius
address: Ebene
address: Other
phone: tel:+230-404-3106
nic-hdl: RB26-AFRINIC
mnt-by: GENERATED-AVWWY9FBLGZHHNU5ZBBRDGBSK58ACQ6L-MNT
source: AFRINIC # Filtered
% Information related to '102.112.0.0/13AS23889'
route: 102.112.0.0/13
descr: MauritiusTelecom
origin: AS23889
mnt-by: MU-MT-WIS-MNT
source: AFRINIC # Filtered; <<>> DiG 9.10.3-P4-Ubuntu <<>> 102.113.130.216
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64300
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;102.113.130.216. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025110901 1800 900 604800 86400
;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 10 09:03:51 CST 2025
;; MSG SIZE rcvd: 108Host 216.130.113.102.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 216.130.113.102.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 39.73.14.174 | attackbots | DATE:2020-10-08 22:41:23, IP:39.73.14.174, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq) |
2020-10-09 17:34:59 |
| 158.69.197.113 | attackspam | sshguard |
2020-10-09 17:49:06 |
| 139.198.17.31 | attackbotsspam | sshd: Failed password for .... from 139.198.17.31 port 49608 ssh2 (12 attempts) |
2020-10-09 17:39:48 |
| 14.162.243.125 | attackspam | Brute forcing email accounts |
2020-10-09 17:41:29 |
| 141.98.80.39 | attack | Found on Binary Defense / proto=6 . srcport=65528 . dstport=53 DNS . (757) |
2020-10-09 17:53:14 |
| 189.162.123.212 | attackspambots | Oct 8 12:27:35 online-web-1 sshd[1806454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.162.123.212 user=r.r Oct 8 12:27:36 online-web-1 sshd[1806454]: Failed password for r.r from 189.162.123.212 port 60010 ssh2 Oct 8 12:27:37 online-web-1 sshd[1806454]: Received disconnect from 189.162.123.212 port 60010:11: Bye Bye [preauth] Oct 8 12:27:37 online-web-1 sshd[1806454]: Disconnected from 189.162.123.212 port 60010 [preauth] Oct 8 12:34:56 online-web-1 sshd[1807269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.162.123.212 user=r.r Oct 8 12:34:58 online-web-1 sshd[1807269]: Failed password for r.r from 189.162.123.212 port 35836 ssh2 Oct 8 12:34:58 online-web-1 sshd[1807269]: Received disconnect from 189.162.123.212 port 35836:11: Bye Bye [preauth] Oct 8 12:34:58 online-web-1 sshd[1807269]: Disconnected from 189.162.123.212 port 35836 [preauth] Oct 8 12:43:11 online-w........ ------------------------------- |
2020-10-09 17:45:13 |
| 118.89.241.126 | attackbotsspam | vps:sshd-InvalidUser |
2020-10-09 17:44:42 |
| 189.127.182.50 | attack | (cxs) cxs mod_security triggered by 189.127.182.50 (189-127-182-050.linknetinternet.com.br): 1 in the last 3600 secs |
2020-10-09 17:33:55 |
| 129.226.176.5 | attackspam | Oct 9 09:38:03 markkoudstaal sshd[29571]: Failed password for root from 129.226.176.5 port 41354 ssh2 Oct 9 09:43:48 markkoudstaal sshd[31269]: Failed password for root from 129.226.176.5 port 47846 ssh2 Oct 9 09:49:33 markkoudstaal sshd[319]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.176.5 ... |
2020-10-09 18:00:31 |
| 211.253.129.225 | attackspambots | Oct 9 08:02:21 inter-technics sshd[23498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.253.129.225 user=root Oct 9 08:02:23 inter-technics sshd[23498]: Failed password for root from 211.253.129.225 port 36062 ssh2 Oct 9 08:10:57 inter-technics sshd[24380]: Invalid user user from 211.253.129.225 port 43994 Oct 9 08:10:57 inter-technics sshd[24380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.253.129.225 Oct 9 08:10:57 inter-technics sshd[24380]: Invalid user user from 211.253.129.225 port 43994 Oct 9 08:10:58 inter-technics sshd[24380]: Failed password for invalid user user from 211.253.129.225 port 43994 ssh2 ... |
2020-10-09 17:39:18 |
| 218.92.0.250 | attack | Oct 9 11:54:56 ucs sshd\[21135\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.250 user=root Oct 9 11:54:58 ucs sshd\[21010\]: error: PAM: User not known to the underlying authentication module for root from 218.92.0.250 Oct 9 11:54:59 ucs sshd\[21137\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.250 user=root ... |
2020-10-09 17:55:50 |
| 5.190.209.3 | attackspambots | Oct 8 23:35:40 ip-172-31-16-56 sshd\[20411\]: Invalid user db2 from 5.190.209.3\ Oct 8 23:35:42 ip-172-31-16-56 sshd\[20411\]: Failed password for invalid user db2 from 5.190.209.3 port 56538 ssh2\ Oct 8 23:39:15 ip-172-31-16-56 sshd\[20538\]: Failed password for root from 5.190.209.3 port 53366 ssh2\ Oct 8 23:42:58 ip-172-31-16-56 sshd\[20568\]: Invalid user danny from 5.190.209.3\ Oct 8 23:43:00 ip-172-31-16-56 sshd\[20568\]: Failed password for invalid user danny from 5.190.209.3 port 50212 ssh2\ |
2020-10-09 17:54:57 |
| 111.85.96.173 | attackbots | 2020-10-09T06:50:39.506211abusebot-8.cloudsearch.cf sshd[31137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.85.96.173 user=root 2020-10-09T06:50:41.004779abusebot-8.cloudsearch.cf sshd[31137]: Failed password for root from 111.85.96.173 port 12952 ssh2 2020-10-09T06:55:23.863370abusebot-8.cloudsearch.cf sshd[31155]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.85.96.173 user=root 2020-10-09T06:55:25.690988abusebot-8.cloudsearch.cf sshd[31155]: Failed password for root from 111.85.96.173 port 12973 ssh2 2020-10-09T06:59:54.680321abusebot-8.cloudsearch.cf sshd[31238]: Invalid user math from 111.85.96.173 port 12994 2020-10-09T06:59:54.686584abusebot-8.cloudsearch.cf sshd[31238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.85.96.173 2020-10-09T06:59:54.680321abusebot-8.cloudsearch.cf sshd[31238]: Invalid user math from 111.85.96.173 port 12994 2 ... |
2020-10-09 18:00:58 |
| 167.172.186.32 | attackspambots | 167.172.186.32 - - [09/Oct/2020:04:44:58 +0100] "POST /wp-login.php HTTP/1.1" 200 2299 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.172.186.32 - - [09/Oct/2020:04:44:59 +0100] "POST /wp-login.php HTTP/1.1" 200 2282 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.172.186.32 - - [09/Oct/2020:04:44:59 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-10-09 17:57:01 |
| 112.85.42.73 | attackbots | Oct 9 09:54:33 mavik sshd[14549]: Failed password for root from 112.85.42.73 port 43519 ssh2 Oct 9 09:54:35 mavik sshd[14549]: Failed password for root from 112.85.42.73 port 43519 ssh2 Oct 9 09:57:38 mavik sshd[14705]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.73 user=root Oct 9 09:57:40 mavik sshd[14705]: Failed password for root from 112.85.42.73 port 24050 ssh2 Oct 9 09:57:42 mavik sshd[14705]: Failed password for root from 112.85.42.73 port 24050 ssh2 ... |
2020-10-09 17:52:00 |