City: Pinetown
Region: KwaZulu-Natal
Country: South Africa
Internet Service Provider: Telkom
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.225.102.65
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44059
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;105.225.102.65. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025102701 1800 900 604800 86400
;; Query time: 220 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 28 05:00:45 CST 2025
;; MSG SIZE rcvd: 10765.102.225.105.in-addr.arpa domain name pointer 102-225-105-65.east.dsl.telkomsa.net.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
65.102.225.105.in-addr.arpa name = 102-225-105-65.east.dsl.telkomsa.net.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 185.175.93.104 | attack | TCP Port Scanning |
2020-02-27 01:08:25 |
| 185.153.199.52 | attackspam | Feb 26 16:03:07 debian-2gb-nbg1-2 kernel: \[4988583.614120\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.153.199.52 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=30786 PROTO=TCP SPT=53402 DPT=33390 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-02-27 01:12:07 |
| 195.54.167.217 | attackbots | scans 16 times in preceeding hours on the ports (in chronological order) 41058 41835 41772 41134 41147 41364 41802 41143 41505 41344 41819 41764 41435 41923 41144 41935 resulting in total of 85 scans from 195.54.167.0/24 block. |
2020-02-27 01:38:34 |
| 80.82.77.33 | attackbotsspam | ET DROP Dshield Block Listed Source group 1 - port: 6969 proto: UDP cat: Misc Attack |
2020-02-27 01:29:10 |
| 185.175.93.3 | attack | ET DROP Dshield Block Listed Source group 1 - port: 6564 proto: TCP cat: Misc Attack |
2020-02-27 01:11:17 |
| 185.156.73.49 | attackspambots | Feb 26 18:04:41 debian-2gb-nbg1-2 kernel: \[4995876.663380\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.156.73.49 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=36644 PROTO=TCP SPT=53984 DPT=13148 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-02-27 01:11:34 |
| 218.92.0.148 | attack | Feb 26 17:50:58 jane sshd[7099]: Failed password for root from 218.92.0.148 port 32870 ssh2 Feb 26 17:51:03 jane sshd[7099]: Failed password for root from 218.92.0.148 port 32870 ssh2 ... |
2020-02-27 01:04:01 |
| 83.97.20.37 | attackbots | Feb 26 17:51:04 debian-2gb-nbg1-2 kernel: \[4995060.233112\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=83.97.20.37 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=46755 DPT=456 WINDOW=65535 RES=0x00 SYN URGP=0 |
2020-02-27 01:27:06 |
| 195.54.167.216 | attack | scans 15 times in preceeding hours on the ports (in chronological order) 40084 40378 40217 40040 40185 40469 40331 40141 40157 40370 40452 40082 40315 40329 40101 resulting in total of 85 scans from 195.54.167.0/24 block. |
2020-02-27 01:38:56 |
| 51.178.78.154 | attack | Port 2376 scan denied |
2020-02-27 01:30:48 |
| 93.174.95.106 | attackspam | ET CINS Active Threat Intelligence Poor Reputation IP group 90 - port: 2332 proto: TCP cat: Misc Attack |
2020-02-27 01:19:40 |
| 79.124.62.42 | attack | scans 13 times in preceeding hours on the ports (in chronological order) 18681 53635 33433 43234 1981 3800 3328 19091 5501 2277 14141 4389 3361 |
2020-02-27 01:00:36 |
| 88.214.26.102 | attackbotsspam | firewall-block, port(s): 15587/tcp |
2020-02-27 00:58:44 |
| 45.81.233.36 | attack | MINECRAFT SERVER DDOSER |
2020-02-27 01:34:30 |
| 185.175.93.78 | attackspam | ET DROP Dshield Block Listed Source group 1 - port: 38366 proto: TCP cat: Misc Attack |
2020-02-27 01:09:44 |