City: Middelburg
Region: Mpumalanga
Country: South Africa
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 102.221.13.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62372
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;102.221.13.2. IN A
;; AUTHORITY SECTION:
. 138 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022040101 1800 900 604800 86400
;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 01 20:36:54 CST 2022
;; MSG SIZE rcvd: 105
2.13.221.102.in-addr.arpa domain name pointer 102-221-13-2.techwoodtrading.co.za.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
2.13.221.102.in-addr.arpa name = 102-221-13-2.techwoodtrading.co.za.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 213.32.23.54 | attack | 2020-05-16T07:53:22.125561linuxbox-skyline sshd[13872]: Invalid user postgres from 213.32.23.54 port 36034 ... |
2020-05-17 02:50:30 |
| 106.13.81.181 | attackbots | May 16 17:13:20 ns382633 sshd\[21163\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.181 user=root May 16 17:13:23 ns382633 sshd\[21163\]: Failed password for root from 106.13.81.181 port 47350 ssh2 May 16 17:22:04 ns382633 sshd\[22797\]: Invalid user csgo from 106.13.81.181 port 42044 May 16 17:22:04 ns382633 sshd\[22797\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.181 May 16 17:22:06 ns382633 sshd\[22797\]: Failed password for invalid user csgo from 106.13.81.181 port 42044 ssh2 |
2020-05-17 02:16:55 |
| 121.162.60.159 | attackbotsspam | May 16 19:52:38 ns3164893 sshd[7471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.162.60.159 May 16 19:52:40 ns3164893 sshd[7471]: Failed password for invalid user server from 121.162.60.159 port 56254 ssh2 ... |
2020-05-17 02:17:17 |
| 49.235.49.150 | attack | 2020-05-16T12:04:42.809814shield sshd\[32398\]: Invalid user cod from 49.235.49.150 port 35634 2020-05-16T12:04:42.818703shield sshd\[32398\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.49.150 2020-05-16T12:04:44.723579shield sshd\[32398\]: Failed password for invalid user cod from 49.235.49.150 port 35634 ssh2 2020-05-16T12:10:18.615867shield sshd\[1181\]: Invalid user sftp from 49.235.49.150 port 40782 2020-05-16T12:10:18.624923shield sshd\[1181\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.49.150 |
2020-05-17 02:22:14 |
| 79.180.64.112 | attackspam | FTP Brute-Force |
2020-05-17 02:56:59 |
| 31.173.25.139 | attackbots | " " |
2020-05-17 02:32:16 |
| 41.45.201.230 | attackspam | May 16 12:09:17 IngegnereFirenze sshd[16527]: Did not receive identification string from 41.45.201.230 port 55132 ... |
2020-05-17 02:59:56 |
| 162.253.129.214 | attackspambots | (From Bucy25564@gmail.com) Do you need leads for your company? What would these be worth to you? We offer pay per lead promotion but only for accepted businesses. Send me a quick note and let me know what kind of business you require leads for and the amount you would like to to pay for them and perhaps we will be able to work together. Email me here: Leontinemaughan@gmail.com |
2020-05-17 02:52:25 |
| 51.91.250.49 | attackbots | SSH Brute Force |
2020-05-17 02:37:59 |
| 125.220.212.240 | attackbots | (sshd) Failed SSH login from 125.220.212.240 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 16 20:03:32 amsweb01 sshd[27957]: Invalid user postgres from 125.220.212.240 port 38758 May 16 20:03:35 amsweb01 sshd[27957]: Failed password for invalid user postgres from 125.220.212.240 port 38758 ssh2 May 16 20:12:05 amsweb01 sshd[28582]: Invalid user aws from 125.220.212.240 port 44560 May 16 20:12:07 amsweb01 sshd[28582]: Failed password for invalid user aws from 125.220.212.240 port 44560 ssh2 May 16 20:15:36 amsweb01 sshd[28899]: Invalid user ubuntu from 125.220.212.240 port 47188 |
2020-05-17 02:39:15 |
| 51.178.52.56 | attackspam | prod11 ... |
2020-05-17 02:54:02 |
| 188.80.75.72 | attack | firewall-block, port(s): 23/tcp |
2020-05-17 02:23:52 |
| 80.82.78.20 | attack | 05/16/2020-14:13:10.332389 80.82.78.20 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2020-05-17 02:54:35 |
| 68.183.43.150 | attackbotsspam | 68.183.43.150 - - [16/May/2020:18:21:30 +0200] "GET /wp-login.php HTTP/1.1" 200 5702 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 68.183.43.150 - - [16/May/2020:18:21:32 +0200] "POST /wp-login.php HTTP/1.1" 200 5953 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 68.183.43.150 - - [16/May/2020:18:21:33 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-05-17 02:49:59 |
| 103.149.60.74 | attackspam | Email rejected due to spam filtering |
2020-05-17 02:13:20 |