City: unknown
Region: unknown
Country: South Africa
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.213.143.29
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1232
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;105.213.143.29. IN A
;; AUTHORITY SECTION:
. 600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022801 1800 900 604800 86400
;; Query time: 143 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 01 03:16:12 CST 2022
;; MSG SIZE rcvd: 10729.143.213.105.in-addr.arpa domain name pointer 105-213-143-29.access.mtnbusiness.co.za.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
29.143.213.105.in-addr.arpa name = 105-213-143-29.access.mtnbusiness.co.za.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 122.51.31.60 | attack | Feb 15 00:08:54 plex sshd[25367]: Invalid user heidnseek from 122.51.31.60 port 43448 |
2020-02-15 07:21:20 |
| 218.156.106.126 | attackspambots | port scan and connect, tcp 23 (telnet) |
2020-02-15 07:12:36 |
| 1.246.222.234 | attackspambots | MultiHost/MultiPort Probe, Scan, Hack - |
2020-02-15 06:53:20 |
| 1.246.222.14 | attack | MultiHost/MultiPort Probe, Scan, Hack - |
2020-02-15 07:18:38 |
| 80.82.65.74 | attack | Feb 14 23:25:40 debian-2gb-nbg1-2 kernel: \[3978365.171236\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=80.82.65.74 DST=195.201.40.59 LEN=60 TOS=0x00 PREC=0x00 TTL=56 ID=2056 DF PROTO=TCP SPT=60074 DPT=4145 WINDOW=29200 RES=0x00 SYN URGP=0 |
2020-02-15 06:50:15 |
| 192.228.100.98 | attackspam | Feb 14 23:15:35 mail postfix/smtpd[13649]: warning: unknown[192.228.100.98]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 14 23:15:35 mail postfix/smtpd[13587]: warning: unknown[192.228.100.98]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 14 23:15:35 mail postfix/smtpd[13756]: warning: unknown[192.228.100.98]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 14 23:15:35 mail postfix/smtpd[13031]: warning: unknown[192.228.100.98]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 14 23:15:35 mail postfix/smtpd[13404]: warning: unknown[192.228.100.98]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 14 23:15:35 mail postfix/smtpd[13666]: warning: unknown[192.228.100.98]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 14 23:15:35 mail postfix/smtpd[13034]: warning: unknown[192.228.100.98]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 14 23:15:35 mail postfix/smtpd[13658]: warning: unknown[192.228.100.98]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 14 23:15:35 mail postfix/sm |
2020-02-15 07:09:54 |
| 112.85.42.188 | attackspam | 02/14/2020-18:28:26.739850 112.85.42.188 Protocol: 6 ET SCAN Potential SSH Scan |
2020-02-15 07:29:58 |
| 201.171.205.64 | attackbotsspam | Honeypot attack, port: 81, PTR: 201.171.205.64.dsl.dyn.telnor.net. |
2020-02-15 06:52:53 |
| 89.248.168.87 | attackspambots | 02/14/2020-23:43:56.562421 89.248.168.87 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2020-02-15 06:48:10 |
| 60.190.249.121 | attack | Unauthorized access or intrusion attempt detected from Thor banned IP |
2020-02-15 06:56:01 |
| 36.224.254.130 | attack | 1581719120 - 02/14/2020 23:25:20 Host: 36.224.254.130/36.224.254.130 Port: 445 TCP Blocked |
2020-02-15 07:11:50 |
| 1.246.222.232 | attackspambots | MultiHost/MultiPort Probe, Scan, Hack - |
2020-02-15 06:56:32 |
| 118.24.236.121 | attackbotsspam | Feb 13 22:51:47 venus sshd[29375]: Invalid user mariah1 from 118.24.236.121 port 34844 Feb 13 22:51:47 venus sshd[29375]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.236.121 Feb 13 22:51:50 venus sshd[29375]: Failed password for invalid user mariah1 from 118.24.236.121 port 34844 ssh2 Feb 13 22:56:46 venus sshd[29991]: Invalid user banklogop from 118.24.236.121 port 33232 Feb 13 22:56:46 venus sshd[29991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.236.121 Feb 13 22:56:48 venus sshd[29991]: Failed password for invalid user banklogop from 118.24.236.121 port 33232 ssh2 Feb 13 23:00:10 venus sshd[30458]: Invalid user student from 118.24.236.121 port 59840 Feb 13 23:00:10 venus sshd[30458]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.236.121 Feb 13 23:00:13 venus sshd[30458]: Failed password for invalid user student from 1........ ------------------------------ |
2020-02-15 07:25:55 |
| 52.83.45.206 | attack | Feb 11 20:58:01 web1 sshd[6782]: Invalid user hdfs from 52.83.45.206 Feb 11 20:58:01 web1 sshd[6782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-52-83-45-206.cn-northwest-1.compute.amazonaws.com.cn Feb 11 20:58:03 web1 sshd[6782]: Failed password for invalid user hdfs from 52.83.45.206 port 56158 ssh2 Feb 11 20:58:03 web1 sshd[6782]: Received disconnect from 52.83.45.206: 11: Bye Bye [preauth] Feb 11 21:13:11 web1 sshd[8034]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-52-83-45-206.cn-northwest-1.compute.amazonaws.com.cn user=r.r Feb 11 21:13:14 web1 sshd[8034]: Failed password for r.r from 52.83.45.206 port 44202 ssh2 Feb 11 21:13:14 web1 sshd[8034]: Received disconnect from 52.83.45.206: 11: Bye Bye [preauth] Feb 11 21:15:58 web1 sshd[8370]: Invalid user role1 from 52.83.45.206 Feb 11 21:15:58 web1 sshd[8370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 e........ ------------------------------- |
2020-02-15 07:03:21 |
| 51.83.78.109 | attack | Invalid user user from 51.83.78.109 port 56462 |
2020-02-15 07:13:31 |