City: Pinetown
Region: KwaZulu-Natal
Country: South Africa
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 102.249.0.81 | bots | 102.249.0.81 - - [25/Apr/2019:06:39:08 +0800] "GET /check-ip/96.248.79.45 HTTP/1.1" 200 8853 "https:/" "Mozilla/5.0 (Windows NT 5.1; rv:6.0) Gecko/20100101 Firefox/6.0 FirePHP/0.6" 102.249.0.81 - - [25/Apr/2019:06:39:08 +0800] "GET /check-ip/100.4.47.199 HTTP/1.1" 200 9297 "https:/" "Mozilla/5.0 (Windows NT 5.1; rv:6.0) Gecko/20100101 Firefox/6.0 FirePHP/0.6" 102.249.0.81 - - [25/Apr/2019:06:39:10 +0800] "GET /check-ip/108.4.32.103 HTTP/1.1" 200 8793 "https:/" "Mozilla/4.0 (Mozilla/4.0; MSIE 7.0; Windows NT 5.1; FDM; SV1)" 102.249.0.81 - - [25/Apr/2019:06:39:11 +0800] "GET /check-ip/63.117.76.126 HTTP/1.1" 200 8618 "https:/" "Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; yie8)" |
2019-04-25 06:42:37 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 102.249.0.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10210
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;102.249.0.2. IN A
;; AUTHORITY SECTION:
. 110 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2023102100 1800 900 604800 86400
;; Query time: 148 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 21 20:17:54 CST 2023
;; MSG SIZE rcvd: 104
2.0.249.102.in-addr.arpa domain name pointer 8ta-249-0-02.telkomadsl.co.za.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
2.0.249.102.in-addr.arpa name = 8ta-249-0-02.telkomadsl.co.za.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 185.216.140.31 | attackbots | Port Scan: TCP/138 |
2020-09-11 13:29:01 |
| 211.226.49.175 | attack | SSH Invalid Login |
2020-09-11 13:27:28 |
| 49.235.37.232 | attackbots | 2020-09-10T18:52:12.878347centos sshd[6533]: Failed password for invalid user u252588 from 49.235.37.232 port 42422 ssh2 2020-09-10T18:57:44.100400centos sshd[6821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.37.232 user=root 2020-09-10T18:57:46.212556centos sshd[6821]: Failed password for root from 49.235.37.232 port 52342 ssh2 ... |
2020-09-11 13:43:35 |
| 174.76.35.9 | attackspambots | Distributed brute force attack |
2020-09-11 13:29:32 |
| 192.240.103.181 | attack | Sep 11 03:00:56 root sshd[25211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.240.103.181 user=root Sep 11 03:00:58 root sshd[25211]: Failed password for root from 192.240.103.181 port 37674 ssh2 ... |
2020-09-11 13:26:11 |
| 222.186.173.154 | attackspam | Sep 10 22:44:06 dignus sshd[1606]: error: maximum authentication attempts exceeded for root from 222.186.173.154 port 11400 ssh2 [preauth] Sep 10 22:44:11 dignus sshd[1626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.154 user=root Sep 10 22:44:14 dignus sshd[1626]: Failed password for root from 222.186.173.154 port 20218 ssh2 Sep 10 22:44:17 dignus sshd[1626]: Failed password for root from 222.186.173.154 port 20218 ssh2 Sep 10 22:44:26 dignus sshd[1626]: Failed password for root from 222.186.173.154 port 20218 ssh2 ... |
2020-09-11 13:51:15 |
| 106.12.165.253 | attackbots | Sep 11 09:09:51 itv-usvr-02 sshd[7944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.165.253 user=root Sep 11 09:11:26 itv-usvr-02 sshd[7983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.165.253 user=root Sep 11 09:15:05 itv-usvr-02 sshd[8123]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.165.253 user=root |
2020-09-11 13:47:20 |
| 188.173.80.134 | attackspambots | Sep 11 07:43:01 vmd17057 sshd[9688]: Failed password for root from 188.173.80.134 port 47062 ssh2 ... |
2020-09-11 13:56:09 |
| 185.176.27.230 | attackbots | SmallBizIT.US 3 packets to tcp(6363,9873,55511) |
2020-09-11 13:34:58 |
| 222.186.190.2 | attackspam | Sep 11 07:51:27 router sshd[24176]: Failed password for root from 222.186.190.2 port 22998 ssh2 Sep 11 07:51:32 router sshd[24176]: Failed password for root from 222.186.190.2 port 22998 ssh2 Sep 11 07:51:35 router sshd[24176]: Failed password for root from 222.186.190.2 port 22998 ssh2 Sep 11 07:51:39 router sshd[24176]: Failed password for root from 222.186.190.2 port 22998 ssh2 ... |
2020-09-11 13:54:51 |
| 61.177.172.61 | attack | 2020-09-11T07:23:24.711130vps773228.ovh.net sshd[17972]: Failed password for root from 61.177.172.61 port 50758 ssh2 2020-09-11T07:23:28.574974vps773228.ovh.net sshd[17972]: Failed password for root from 61.177.172.61 port 50758 ssh2 2020-09-11T07:23:32.489038vps773228.ovh.net sshd[17972]: Failed password for root from 61.177.172.61 port 50758 ssh2 2020-09-11T07:23:36.114630vps773228.ovh.net sshd[17972]: Failed password for root from 61.177.172.61 port 50758 ssh2 2020-09-11T07:23:39.776987vps773228.ovh.net sshd[17972]: Failed password for root from 61.177.172.61 port 50758 ssh2 ... |
2020-09-11 13:51:51 |
| 172.105.43.21 | attackspam |
|
2020-09-11 13:59:05 |
| 203.230.6.175 | attackspambots | $f2bV_matches |
2020-09-11 13:49:34 |
| 114.141.150.110 | attack | Automatic report - Banned IP Access |
2020-09-11 13:30:22 |
| 106.54.169.15 | attackspambots | port scan and connect, tcp 1433 (ms-sql-s) |
2020-09-11 13:39:11 |