City: Cape Town
Region: Western Cape
Country: South Africa
Internet Service Provider: Vodacom
Hostname: unknown
Organization: unknown
Usage Type: unknown
| Type | Details | Datetime |
|---|---|---|
| attackspam | Apr 30 03:10:17 gw1 sshd[30946]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.0.202.246 Apr 30 03:10:18 gw1 sshd[30946]: Failed password for invalid user lgardner from 41.0.202.246 port 42464 ssh2 ... |
2020-04-30 06:15:05 |
| attack | Apr 20 21:44:00 server sshd[20286]: Failed password for root from 41.0.202.246 port 34390 ssh2 Apr 20 21:50:31 server sshd[21788]: Failed password for root from 41.0.202.246 port 42170 ssh2 Apr 20 21:57:01 server sshd[23369]: Failed password for root from 41.0.202.246 port 49966 ssh2 |
2020-04-21 04:55:41 |
| attackspambots | (sshd) Failed SSH login from 41.0.202.246 (ZA/South Africa/mail.kga.co.za): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 13 20:05:48 ubnt-55d23 sshd[5445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.0.202.246 user=root Apr 13 20:05:51 ubnt-55d23 sshd[5445]: Failed password for root from 41.0.202.246 port 46312 ssh2 |
2020-04-14 05:59:57 |
| attackspam | 2020-04-10T08:16:44.185602centos sshd[5653]: Invalid user mongodb from 41.0.202.246 port 44616 2020-04-10T08:16:46.490012centos sshd[5653]: Failed password for invalid user mongodb from 41.0.202.246 port 44616 ssh2 2020-04-10T08:23:36.333238centos sshd[6103]: Invalid user user from 41.0.202.246 port 55252 ... |
2020-04-10 16:39:13 |
| attackbots | Apr 9 10:23:31 cloud sshd[3296]: Failed password for admin from 41.0.202.246 port 33586 ssh2 Apr 9 10:36:31 cloud sshd[3459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.0.202.246 |
2020-04-09 18:49:32 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.0.202.246
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25255
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;41.0.202.246. IN A
;; AUTHORITY SECTION:
. 369 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020040402 1800 900 604800 86400
;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 05 05:18:12 CST 2020
;; MSG SIZE rcvd: 116246.202.0.41.in-addr.arpa domain name pointer mail.kga.co.za.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
246.202.0.41.in-addr.arpa name = mail.kga.co.za.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 189.89.215.223 | attackbots | $f2bV_matches |
2019-06-23 01:17:04 |
| 119.29.67.90 | attack | Jun 22 16:43:09 cp sshd[14742]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.67.90 Jun 22 16:43:12 cp sshd[14742]: Failed password for invalid user tun from 119.29.67.90 port 37454 ssh2 Jun 22 16:44:22 cp sshd[15430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.67.90 |
2019-06-23 00:57:42 |
| 125.64.94.220 | attackspam | 22.06.2019 16:14:27 Connection to port 8554 blocked by firewall |
2019-06-23 01:01:58 |
| 72.24.99.155 | attackspam | SSH Bruteforce Attack |
2019-06-23 01:27:25 |
| 2.49.14.255 | attackbotsspam | IP: 2.49.14.255 ASN: AS5384 Emirates Telecommunications Corporation Port: World Wide Web HTTP 80 Date: 22/06/2019 2:44:13 PM UTC |
2019-06-23 01:06:07 |
| 84.200.69.80 | attackbotsspam | DNS port flood |
2019-06-23 01:37:29 |
| 37.255.23.150 | attackspam | scan z |
2019-06-23 01:21:01 |
| 45.61.247.212 | attackspam | 23/tcp [2019-06-22]1pkt |
2019-06-23 01:46:42 |
| 184.105.139.110 | attack | 3389BruteforceFW23 |
2019-06-23 01:51:31 |
| 200.148.103.142 | attackspam | 8080/tcp [2019-06-22]1pkt |
2019-06-23 01:06:43 |
| 196.52.43.59 | attackspam | 22.06.2019 14:43:53 Connection to port 5901 blocked by firewall |
2019-06-23 01:22:45 |
| 186.101.201.247 | attackbotsspam | 445/tcp [2019-06-22]1pkt |
2019-06-23 01:40:44 |
| 139.167.169.163 | attackspambots | 445/tcp [2019-06-22]1pkt |
2019-06-23 01:37:59 |
| 192.99.186.31 | attack | IP: 192.99.186.31 ASN: AS16276 OVH SAS Port: Message Submission 587 Found in one or more Blacklists Date: 22/06/2019 2:44:07 PM UTC |
2019-06-23 01:10:04 |
| 201.131.184.86 | attackspambots | IP: 201.131.184.86 ASN: AS52912 VIEIRA E RETECHESKI LTDA Port: World Wide Web HTTP 80 Found in one or more Blacklists Date: 22/06/2019 2:44:14 PM UTC |
2019-06-23 01:02:24 |