City: Johannesburg
Region: Gauteng
Country: South Africa
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 102.65.85.103
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6497
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;102.65.85.103. IN A
;; AUTHORITY SECTION:
. 580 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2023051100 1800 900 604800 86400
;; Query time: 74 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 11 14:17:08 CST 2023
;; MSG SIZE rcvd: 106103.85.65.102.in-addr.arpa domain name pointer 102-65-85-103.ftth.web.africa.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
103.85.65.102.in-addr.arpa name = 102-65-85-103.ftth.web.africa.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 37.187.3.53 | attackbots | Oct 13 10:17:29 XXX sshd[52727]: Invalid user maria from 37.187.3.53 port 46239 |
2020-10-13 21:01:52 |
| 112.85.42.96 | attackbotsspam | Oct 13 14:47:14 marvibiene sshd[27691]: Failed password for root from 112.85.42.96 port 36300 ssh2 Oct 13 14:47:18 marvibiene sshd[27691]: Failed password for root from 112.85.42.96 port 36300 ssh2 |
2020-10-13 21:10:13 |
| 122.51.179.14 | attack | Oct 13 13:17:12 ip-172-31-16-56 sshd\[27573\]: Invalid user jv from 122.51.179.14\ Oct 13 13:17:14 ip-172-31-16-56 sshd\[27573\]: Failed password for invalid user jv from 122.51.179.14 port 33196 ssh2\ Oct 13 13:19:57 ip-172-31-16-56 sshd\[27631\]: Failed password for root from 122.51.179.14 port 45510 ssh2\ Oct 13 13:22:20 ip-172-31-16-56 sshd\[27675\]: Invalid user uschi from 122.51.179.14\ Oct 13 13:22:22 ip-172-31-16-56 sshd\[27675\]: Failed password for invalid user uschi from 122.51.179.14 port 51368 ssh2\ |
2020-10-13 21:39:28 |
| 107.172.206.82 | attackbotsspam | $f2bV_matches |
2020-10-13 21:45:24 |
| 104.248.130.10 | attackspambots | Oct 13 13:54:01 ajax sshd[30630]: Failed password for root from 104.248.130.10 port 51490 ssh2 Oct 13 13:57:38 ajax sshd[31719]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.130.10 |
2020-10-13 21:22:10 |
| 111.229.159.76 | attackbotsspam | Oct 13 14:45:07 server sshd[462]: Failed password for invalid user lsfadmin from 111.229.159.76 port 39032 ssh2 Oct 13 15:00:21 server sshd[9588]: Failed password for invalid user patrick from 111.229.159.76 port 40828 ssh2 Oct 13 15:05:18 server sshd[12401]: Failed password for root from 111.229.159.76 port 37444 ssh2 |
2020-10-13 21:17:20 |
| 218.92.0.208 | attackbotsspam | 2020-10-13T12:43:37.328200rem.lavrinenko.info sshd[12152]: refused connect from 218.92.0.208 (218.92.0.208) 2020-10-13T12:45:07.236768rem.lavrinenko.info sshd[12153]: refused connect from 218.92.0.208 (218.92.0.208) 2020-10-13T12:46:31.814628rem.lavrinenko.info sshd[12155]: refused connect from 218.92.0.208 (218.92.0.208) 2020-10-13T12:47:55.249406rem.lavrinenko.info sshd[12157]: refused connect from 218.92.0.208 (218.92.0.208) 2020-10-13T12:49:15.663638rem.lavrinenko.info sshd[12159]: refused connect from 218.92.0.208 (218.92.0.208) ... |
2020-10-13 21:46:23 |
| 101.227.82.219 | attackbots | (sshd) Failed SSH login from 101.227.82.219 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 13 08:38:22 optimus sshd[20531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.227.82.219 user=root Oct 13 08:38:24 optimus sshd[20531]: Failed password for root from 101.227.82.219 port 28082 ssh2 Oct 13 08:54:39 optimus sshd[2044]: Invalid user survey from 101.227.82.219 Oct 13 08:54:39 optimus sshd[2044]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.227.82.219 Oct 13 08:54:40 optimus sshd[2044]: Failed password for invalid user survey from 101.227.82.219 port 31070 ssh2 |
2020-10-13 21:15:09 |
| 45.148.10.15 | attackspambots | Bruteforce detected by fail2ban |
2020-10-13 21:25:53 |
| 106.54.197.97 | attackspam | Invalid user alan from 106.54.197.97 port 57816 |
2020-10-13 21:10:34 |
| 60.248.219.185 | attackspam | [Mon Oct 12 22:49:18 2020] IN=enp34s0 OUT= MAC=SERVERMAC SRC=60.248.219.185 DST=MYSERVERIP LEN=52 TOS=0x00 PREC=0x00 TTL=117 ID=9034 DF PROTO=TCP SPT=62428 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 Ports: 445 |
2020-10-13 21:19:30 |
| 188.166.236.206 | attackspambots | Oct 13 13:15:13 rocket sshd[30415]: Failed password for root from 188.166.236.206 port 44298 ssh2 Oct 13 13:19:15 rocket sshd[30790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.236.206 ... |
2020-10-13 21:06:19 |
| 175.24.42.244 | attack | Oct 13 14:20:47 Invalid user thunder from 175.24.42.244 port 59316 |
2020-10-13 21:29:52 |
| 23.97.67.16 | attackspambots | Invalid user jaime from 23.97.67.16 port 31292 |
2020-10-13 21:02:27 |
| 81.70.15.226 | attackspambots | Oct 13 14:00:49 ns392434 sshd[9268]: Invalid user ht from 81.70.15.226 port 45952 Oct 13 14:00:49 ns392434 sshd[9268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.70.15.226 Oct 13 14:00:49 ns392434 sshd[9268]: Invalid user ht from 81.70.15.226 port 45952 Oct 13 14:00:50 ns392434 sshd[9268]: Failed password for invalid user ht from 81.70.15.226 port 45952 ssh2 Oct 13 14:04:27 ns392434 sshd[9301]: Invalid user duncan from 81.70.15.226 port 56868 Oct 13 14:04:27 ns392434 sshd[9301]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.70.15.226 Oct 13 14:04:27 ns392434 sshd[9301]: Invalid user duncan from 81.70.15.226 port 56868 Oct 13 14:04:29 ns392434 sshd[9301]: Failed password for invalid user duncan from 81.70.15.226 port 56868 ssh2 Oct 13 14:06:58 ns392434 sshd[9356]: Invalid user jenifer from 81.70.15.226 port 56764 |
2020-10-13 21:32:36 |