City: unknown
Region: unknown
Country: Kenya
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 154.157.2.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65368
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;154.157.2.49. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020901 1800 900 604800 86400
;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 10:30:44 CST 2025
;; MSG SIZE rcvd: 10549.2.157.154.in-addr.arpa domain name pointer 49-2-157-154.r.airtelkenya.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
49.2.157.154.in-addr.arpa name = 49-2-157-154.r.airtelkenya.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 123.207.157.108 | attack | SSH Brute-Forcing (server2) |
2020-04-14 19:49:44 |
| 49.88.112.19 | attackbots | Apr 13 11:30:19 our-server-hostname postfix/smtpd[6579]: connect from unknown[49.88.112.19] Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=49.88.112.19 |
2020-04-14 19:43:50 |
| 113.137.110.96 | attack | Apr 14 09:10:15 our-server-hostname postfix/smtpd[20661]: connect from unknown[113.137.110.96] Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr 14 09:10:20 our-server-hostname postfix/smtpd[20661]: disconnect from unknown[113.137.110.96] Apr 14 13:38:27 our-server-hostname postfix/smtpd[30852]: connect from unknown[113.137.110.96] Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x Apr x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=113.137.110.96 |
2020-04-14 19:30:13 |
| 58.10.156.5 | attackbotsspam | Unauthorized connection attempt from IP address 58.10.156.5 on Port 445(SMB) |
2020-04-14 19:38:14 |
| 37.59.160.86 | attackbots | 2020-04-14T01:51:02.0606241495-001 sshd[41397]: Invalid user cheng from 37.59.160.86 port 38892 2020-04-14T01:51:02.0698551495-001 sshd[41397]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip86.ip-37-59-160.eu 2020-04-14T01:51:02.0606241495-001 sshd[41397]: Invalid user cheng from 37.59.160.86 port 38892 2020-04-14T01:51:04.3272111495-001 sshd[41397]: Failed password for invalid user cheng from 37.59.160.86 port 38892 ssh2 2020-04-14T01:54:43.0754791495-001 sshd[41524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip86.ip-37-59-160.eu user=root 2020-04-14T01:54:44.5524651495-001 sshd[41524]: Failed password for root from 37.59.160.86 port 33434 ssh2 ... |
2020-04-14 19:54:38 |
| 113.172.227.105 | attack | Unauthorized connection attempt from IP address 113.172.227.105 on Port 445(SMB) |
2020-04-14 19:37:34 |
| 27.3.254.223 | attack | Unauthorized connection attempt from IP address 27.3.254.223 on Port 445(SMB) |
2020-04-14 19:44:27 |
| 84.45.251.243 | attackspam | Apr 14 07:46:34 lukav-desktop sshd\[20040\]: Invalid user odoo from 84.45.251.243 Apr 14 07:46:34 lukav-desktop sshd\[20040\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.45.251.243 Apr 14 07:46:37 lukav-desktop sshd\[20040\]: Failed password for invalid user odoo from 84.45.251.243 port 60852 ssh2 Apr 14 07:50:13 lukav-desktop sshd\[20194\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.45.251.243 user=root Apr 14 07:50:14 lukav-desktop sshd\[20194\]: Failed password for root from 84.45.251.243 port 39970 ssh2 |
2020-04-14 20:03:51 |
| 138.0.7.150 | attackspam | Apr 14 05:45:22 *host* sshd\[19124\]: Invalid user admin from 138.0.7.150 port 49020 |
2020-04-14 19:52:06 |
| 141.98.81.81 | attackspambots | Apr 14 11:52:50 game-panel sshd[14056]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.81 Apr 14 11:52:52 game-panel sshd[14056]: Failed password for invalid user 1234 from 141.98.81.81 port 41350 ssh2 Apr 14 11:53:24 game-panel sshd[14130]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.81 |
2020-04-14 19:58:21 |
| 183.109.79.253 | attackspam | Apr 14 11:01:01 server sshd[2683]: Failed password for invalid user mirc from 183.109.79.253 port 62304 ssh2 Apr 14 11:05:29 server sshd[3610]: Failed password for root from 183.109.79.253 port 63365 ssh2 Apr 14 11:09:56 server sshd[4556]: Failed password for root from 183.109.79.253 port 62439 ssh2 |
2020-04-14 19:33:04 |
| 110.77.236.224 | attack | Unauthorized connection attempt from IP address 110.77.236.224 on Port 445(SMB) |
2020-04-14 19:55:12 |
| 115.166.142.214 | attackspambots | Apr 14 05:41:40 ws22vmsma01 sshd[49661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.166.142.214 Apr 14 05:41:42 ws22vmsma01 sshd[49661]: Failed password for invalid user celia from 115.166.142.214 port 51954 ssh2 ... |
2020-04-14 19:37:09 |
| 1.0.164.137 | attackbotsspam | Unauthorized connection attempt from IP address 1.0.164.137 on Port 445(SMB) |
2020-04-14 20:08:06 |
| 106.12.77.32 | attack | Apr 14 08:32:06 firewall sshd[25196]: Failed password for invalid user admin from 106.12.77.32 port 60572 ssh2 Apr 14 08:37:24 firewall sshd[25476]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.77.32 user=root Apr 14 08:37:26 firewall sshd[25476]: Failed password for root from 106.12.77.32 port 60440 ssh2 ... |
2020-04-14 19:42:43 |