City: unknown
Region: unknown
Country: South Africa
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.213.106.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54171
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;105.213.106.55. IN A
;; AUTHORITY SECTION:
. 501 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400
;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 20:44:52 CST 2022
;; MSG SIZE rcvd: 10755.106.213.105.in-addr.arpa domain name pointer 105-213-106-55.access.mtnbusiness.co.za.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
55.106.213.105.in-addr.arpa name = 105-213-106-55.access.mtnbusiness.co.za.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 119.75.24.68 | attackbots | Aug 18 07:57:46 eventyay sshd[25965]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.75.24.68 Aug 18 07:57:49 eventyay sshd[25965]: Failed password for invalid user jack from 119.75.24.68 port 45734 ssh2 Aug 18 08:02:58 eventyay sshd[26271]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.75.24.68 ... |
2019-08-18 14:07:43 |
| 54.37.69.113 | attack | Aug 18 07:53:36 ks10 sshd[16622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.69.113 Aug 18 07:53:38 ks10 sshd[16622]: Failed password for invalid user ti from 54.37.69.113 port 56014 ssh2 ... |
2019-08-18 14:16:36 |
| 158.69.220.70 | attackspam | Aug 18 07:09:47 cp sshd[24756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.220.70 |
2019-08-18 13:24:04 |
| 109.153.52.232 | attackbots | $f2bV_matches |
2019-08-18 14:11:37 |
| 106.12.193.160 | attackbots | Aug 18 05:53:57 hb sshd\[22825\]: Invalid user bookings from 106.12.193.160 Aug 18 05:53:57 hb sshd\[22825\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.193.160 Aug 18 05:53:59 hb sshd\[22825\]: Failed password for invalid user bookings from 106.12.193.160 port 56462 ssh2 Aug 18 05:57:54 hb sshd\[23183\]: Invalid user icinga from 106.12.193.160 Aug 18 05:57:54 hb sshd\[23183\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.193.160 |
2019-08-18 14:08:17 |
| 117.6.205.217 | attackbotsspam | 445/tcp [2019-08-18]1pkt |
2019-08-18 13:18:40 |
| 186.236.105.208 | attackspambots | failed_logins |
2019-08-18 13:43:46 |
| 89.242.0.106 | attackbotsspam | Automatic report - Port Scan Attack |
2019-08-18 14:15:07 |
| 59.145.221.103 | attackbots | Aug 18 00:36:01 aat-srv002 sshd[18046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.145.221.103 Aug 18 00:36:03 aat-srv002 sshd[18046]: Failed password for invalid user popa3d from 59.145.221.103 port 33478 ssh2 Aug 18 00:41:53 aat-srv002 sshd[18467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.145.221.103 Aug 18 00:41:56 aat-srv002 sshd[18467]: Failed password for invalid user paypals from 59.145.221.103 port 45741 ssh2 ... |
2019-08-18 14:06:09 |
| 123.206.87.154 | attack | $f2bV_matches |
2019-08-18 14:13:01 |
| 118.171.37.78 | attack | 23/tcp [2019-08-18]1pkt |
2019-08-18 13:22:16 |
| 49.88.112.78 | attackspam | Aug 18 07:39:32 dcd-gentoo sshd[29573]: User root from 49.88.112.78 not allowed because none of user's groups are listed in AllowGroups Aug 18 07:39:35 dcd-gentoo sshd[29573]: error: PAM: Authentication failure for illegal user root from 49.88.112.78 Aug 18 07:39:32 dcd-gentoo sshd[29573]: User root from 49.88.112.78 not allowed because none of user's groups are listed in AllowGroups Aug 18 07:39:35 dcd-gentoo sshd[29573]: error: PAM: Authentication failure for illegal user root from 49.88.112.78 Aug 18 07:39:32 dcd-gentoo sshd[29573]: User root from 49.88.112.78 not allowed because none of user's groups are listed in AllowGroups Aug 18 07:39:35 dcd-gentoo sshd[29573]: error: PAM: Authentication failure for illegal user root from 49.88.112.78 Aug 18 07:39:35 dcd-gentoo sshd[29573]: Failed keyboard-interactive/pam for invalid user root from 49.88.112.78 port 57628 ssh2 ... |
2019-08-18 13:44:45 |
| 122.161.179.163 | attack | Aug 17 23:07:42 Tower sshd[2454]: Connection from 122.161.179.163 port 41533 on 192.168.10.220 port 22 Aug 17 23:07:45 Tower sshd[2454]: Failed password for root from 122.161.179.163 port 41533 ssh2 Aug 17 23:07:45 Tower sshd[2454]: Failed password for root from 122.161.179.163 port 41533 ssh2 Aug 17 23:07:45 Tower sshd[2454]: Failed password for root from 122.161.179.163 port 41533 ssh2 Aug 17 23:07:46 Tower sshd[2454]: Failed password for root from 122.161.179.163 port 41533 ssh2 Aug 17 23:07:47 Tower sshd[2454]: Failed password for root from 122.161.179.163 port 41533 ssh2 Aug 17 23:07:47 Tower sshd[2454]: Failed password for root from 122.161.179.163 port 41533 ssh2 Aug 17 23:07:47 Tower sshd[2454]: error: maximum authentication attempts exceeded for root from 122.161.179.163 port 41533 ssh2 [preauth] Aug 17 23:07:47 Tower sshd[2454]: Disconnecting authenticating user root 122.161.179.163 port 41533: Too many authentication failures [preauth] |
2019-08-18 13:24:33 |
| 188.169.178.50 | attackbotsspam | 23/tcp [2019-07-27/08-18]2pkt |
2019-08-18 13:29:02 |
| 185.94.111.1 | attackspambots | Splunk® : port scan detected: Aug 18 01:53:01 testbed kernel: Firewall: *UDP_IN Blocked* IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:64:c3:d6:0b:ef:f0:08:00 SRC=185.94.111.1 DST=104.248.11.191 LEN=28 TOS=0x00 PREC=0x00 TTL=243 ID=54321 PROTO=UDP SPT=35408 DPT=19 LEN=8 |
2019-08-18 13:53:33 |