City: Johannesburg
Region: Gauteng
Country: South Africa
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 196.214.232.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46307
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;196.214.232.49. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025121901 1800 900 604800 86400
;; Query time: 6 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Dec 20 05:21:55 CST 2025
;; MSG SIZE rcvd: 107Host 49.232.214.196.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 49.232.214.196.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 218.92.0.138 | attackbots | 2020-05-10T02:04:50.622428rocketchat.forhosting.nl sshd[8099]: Failed password for root from 218.92.0.138 port 8512 ssh2 2020-05-10T02:04:54.672488rocketchat.forhosting.nl sshd[8099]: Failed password for root from 218.92.0.138 port 8512 ssh2 2020-05-10T02:05:00.601706rocketchat.forhosting.nl sshd[8099]: Failed password for root from 218.92.0.138 port 8512 ssh2 ... |
2020-05-10 08:37:44 |
| 148.251.120.201 | attackbots | Unauthorized access detected from black listed ip! |
2020-05-10 12:18:59 |
| 170.231.57.142 | attack | 2020-05-10T05:52:50.830915vps773228.ovh.net sshd[9400]: Invalid user patrick from 170.231.57.142 port 54396 2020-05-10T05:52:50.839474vps773228.ovh.net sshd[9400]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.231.57.142 2020-05-10T05:52:50.830915vps773228.ovh.net sshd[9400]: Invalid user patrick from 170.231.57.142 port 54396 2020-05-10T05:52:52.628660vps773228.ovh.net sshd[9400]: Failed password for invalid user patrick from 170.231.57.142 port 54396 ssh2 2020-05-10T05:56:55.449239vps773228.ovh.net sshd[9452]: Invalid user melody from 170.231.57.142 port 25382 ... |
2020-05-10 12:14:46 |
| 154.9.204.184 | attackspambots | SSH invalid-user multiple login try |
2020-05-10 08:38:31 |
| 103.108.87.161 | attackbotsspam | SSH Invalid Login |
2020-05-10 08:35:27 |
| 140.86.12.31 | attackbots | Bruteforce detected by fail2ban |
2020-05-10 12:13:31 |
| 89.248.171.97 | attackbotsspam | [09/May/2020:09:47:56 +0900] 400 89.248.171.97 "\x16\x03\x01\x00u\x01\x00\x00q\x03\x03G\xB8\x92\x81#\x17\x17\x80b\xF9\x9Au\x17)\x0CXp\x1A\xF3\x82\x99\x9E\xD7\x17\xEF\xF8k\x01:\xA7\xAC\xA5\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0" "-" "-" |
2020-05-10 12:17:51 |
| 201.22.74.99 | attackspam | 2020-05-09T23:46:17.6846741495-001 sshd[6436]: Failed password for invalid user az from 201.22.74.99 port 42638 ssh2 2020-05-09T23:48:46.0423811495-001 sshd[6492]: Invalid user user3 from 201.22.74.99 port 49098 2020-05-09T23:48:46.0454421495-001 sshd[6492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.22.74.99.static.gvt.net.br 2020-05-09T23:48:46.0423811495-001 sshd[6492]: Invalid user user3 from 201.22.74.99 port 49098 2020-05-09T23:48:48.0054691495-001 sshd[6492]: Failed password for invalid user user3 from 201.22.74.99 port 49098 ssh2 2020-05-09T23:51:23.7437291495-001 sshd[6623]: Invalid user sjx from 201.22.74.99 port 55558 ... |
2020-05-10 12:30:33 |
| 195.68.173.29 | attackbots | May 10 03:44:10 raspberrypi sshd\[23972\]: Invalid user cgh from 195.68.173.29May 10 03:44:12 raspberrypi sshd\[23972\]: Failed password for invalid user cgh from 195.68.173.29 port 53762 ssh2May 10 03:56:54 raspberrypi sshd\[786\]: Invalid user administrator from 195.68.173.29 ... |
2020-05-10 12:10:05 |
| 198.108.66.204 | attack | TCP port 8090: Scan and connection |
2020-05-10 12:35:31 |
| 124.156.115.13 | attack | May 10 06:28:02 [host] sshd[17541]: Invalid user d May 10 06:28:02 [host] sshd[17541]: pam_unix(sshd: May 10 06:28:04 [host] sshd[17541]: Failed passwor |
2020-05-10 12:38:54 |
| 189.203.142.73 | attack | May 10 05:52:59 piServer sshd[4250]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.203.142.73 May 10 05:53:01 piServer sshd[4250]: Failed password for invalid user hadoop from 189.203.142.73 port 60732 ssh2 May 10 05:56:57 piServer sshd[4625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.203.142.73 ... |
2020-05-10 12:11:48 |
| 159.65.106.196 | attackspambots | 159.65.106.196 - - [10/May/2020:05:56:36 +0200] "GET /wp-login.php HTTP/1.1" 200 6451 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.65.106.196 - - [10/May/2020:05:56:39 +0200] "POST /wp-login.php HTTP/1.1" 200 6702 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.65.106.196 - - [10/May/2020:05:56:42 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-05-10 12:28:32 |
| 51.178.50.244 | attackbotsspam | May 10 00:56:59 Ubuntu-1404-trusty-64-minimal sshd\[4942\]: Invalid user deploy from 51.178.50.244 May 10 00:56:59 Ubuntu-1404-trusty-64-minimal sshd\[4942\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.50.244 May 10 00:57:01 Ubuntu-1404-trusty-64-minimal sshd\[4942\]: Failed password for invalid user deploy from 51.178.50.244 port 37264 ssh2 May 10 01:09:27 Ubuntu-1404-trusty-64-minimal sshd\[14281\]: Invalid user postgres from 51.178.50.244 May 10 01:09:27 Ubuntu-1404-trusty-64-minimal sshd\[14281\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.50.244 |
2020-05-10 08:34:19 |
| 91.222.58.28 | attackbotsspam | (smtpauth) Failed SMTP AUTH login from 91.222.58.28 (PL/Poland/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-05-10 08:26:54 plain authenticator failed for ([91.222.58.28]) [91.222.58.28]: 535 Incorrect authentication data (set_id=m.kamran@safanicu.com) |
2020-05-10 12:15:09 |