City: Johannesburg
Region: Gauteng
Country: South Africa
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.210.108.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43440
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;105.210.108.242. IN A
;; AUTHORITY SECTION:
. 521 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020050101 1800 900 604800 86400
;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 01 22:17:02 CST 2020
;; MSG SIZE rcvd: 119242.108.210.105.in-addr.arpa domain name pointer 105-210-108-242.access.mtnbusiness.co.za.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
242.108.210.105.in-addr.arpa name = 105-210-108-242.access.mtnbusiness.co.za.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 167.99.107.202 | attackspambots | Feb 17 17:29:10 plusreed sshd[3478]: Invalid user wink from 167.99.107.202 ... |
2020-02-18 06:34:50 |
| 79.190.48.166 | attackbotsspam | 2020-02-02T01:07:31.337544suse-nuc sshd[21457]: Invalid user user from 79.190.48.166 port 47096 ... |
2020-02-18 06:34:11 |
| 92.118.38.41 | attackbotsspam | 2020-02-17 23:26:50 dovecot_login authenticator failed for \(User\) \[92.118.38.41\]: 535 Incorrect authentication data 2020-02-17 23:26:52 dovecot_login authenticator failed for \(User\) \[92.118.38.41\]: 535 Incorrect authentication data 2020-02-17 23:31:51 SMTP protocol synchronization error \(next input sent too soon: pipelining was advertised\): rejected "Ymxlc3NAbm8tc2VydmVyLmRl" H=\(User\) \[92.118.38.41\] next input="QUIT " 2020-02-17 23:32:09 dovecot_login authenticator failed for \(User\) \[92.118.38.41\]: 535 Incorrect authentication data \(set_id=jen@no-server.de\) 2020-02-17 23:32:10 dovecot_login authenticator failed for \(User\) \[92.118.38.41\]: 535 Incorrect authentication data \(set_id=jen@no-server.de\) ... |
2020-02-18 06:37:31 |
| 112.85.42.174 | attack | Feb 17 23:25:31 minden010 sshd[9573]: Failed password for root from 112.85.42.174 port 36383 ssh2 Feb 17 23:25:45 minden010 sshd[9573]: Failed password for root from 112.85.42.174 port 36383 ssh2 Feb 17 23:25:45 minden010 sshd[9573]: error: maximum authentication attempts exceeded for root from 112.85.42.174 port 36383 ssh2 [preauth] ... |
2020-02-18 06:31:39 |
| 79.69.76.251 | attack | 2019-10-15T06:23:59.030504suse-nuc sshd[7742]: Invalid user pi from 79.69.76.251 port 33594 2019-10-15T06:23:59.031218suse-nuc sshd[7741]: Invalid user pi from 79.69.76.251 port 33593 ... |
2020-02-18 06:23:39 |
| 78.128.113.46 | attackspambots | Feb 17 23:10:18 mail kernel: [804281.799663] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=78.128.113.46 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=5337 PROTO=TCP SPT=61000 DPT=3306 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 17 23:10:33 mail kernel: [804297.161734] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=78.128.113.46 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=22930 PROTO=TCP SPT=61000 DPT=1434 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 17 23:10:33 mail kernel: [804297.161734] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=78.128.113.46 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=22930 PROTO=TCP SPT=61000 DPT=1434 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 17 23:10:51 mail kernel: [804314.724422] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=78.128.113.46 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=22807 PROTO=TCP SPT=61000 DPT=626 WINDOW=1024 RES=0x00 SYN URGP=0 Fe |
2020-02-18 06:49:55 |
| 139.199.48.216 | attackbots | Feb 17 23:28:17 haigwepa sshd[18828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.48.216 Feb 17 23:28:19 haigwepa sshd[18828]: Failed password for invalid user teste from 139.199.48.216 port 40568 ssh2 ... |
2020-02-18 06:30:50 |
| 79.137.84.144 | attackspambots | 2019-10-03T06:54:02.082788suse-nuc sshd[21039]: Invalid user lists from 79.137.84.144 port 53630 ... |
2020-02-18 06:49:17 |
| 87.251.86.13 | attackspam | Autoban 87.251.86.13 AUTH/CONNECT |
2020-02-18 06:32:00 |
| 45.32.4.78 | attackbots | Brute force VPN server |
2020-02-18 06:38:58 |
| 58.219.242.254 | attackspam | Fail2Ban Ban Triggered |
2020-02-18 06:48:01 |
| 112.85.42.178 | attackspambots | Feb 18 03:41:55 gw1 sshd[441]: Failed password for root from 112.85.42.178 port 58120 ssh2 Feb 18 03:42:10 gw1 sshd[441]: error: maximum authentication attempts exceeded for root from 112.85.42.178 port 58120 ssh2 [preauth] ... |
2020-02-18 06:44:32 |
| 222.186.175.148 | attackbots | 2020-02-17T22:35:24.711502shield sshd\[14579\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root 2020-02-17T22:35:26.836989shield sshd\[14579\]: Failed password for root from 222.186.175.148 port 24738 ssh2 2020-02-17T22:35:30.420529shield sshd\[14579\]: Failed password for root from 222.186.175.148 port 24738 ssh2 2020-02-17T22:35:33.745429shield sshd\[14579\]: Failed password for root from 222.186.175.148 port 24738 ssh2 2020-02-17T22:35:37.153414shield sshd\[14579\]: Failed password for root from 222.186.175.148 port 24738 ssh2 |
2020-02-18 06:36:41 |
| 79.137.33.20 | attack | 2019-11-28T18:59:07.083541suse-nuc sshd[27641]: Invalid user mickecia from 79.137.33.20 port 44047 ... |
2020-02-18 06:55:36 |
| 116.109.111.196 | attack | Fail2Ban Ban Triggered |
2020-02-18 06:37:19 |