City: unknown
Region: unknown
Country: South Africa
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.12.169.93
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20871
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;41.12.169.93. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012100 1800 900 604800 86400
;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 21 22:28:06 CST 2025
;; MSG SIZE rcvd: 10593.169.12.41.in-addr.arpa domain name pointer vc-kzn-41-12-169-93.umts.vodacom.co.za.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
93.169.12.41.in-addr.arpa name = vc-kzn-41-12-169-93.umts.vodacom.co.za.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 72.164.246.194 | attack | Unauthorized connection attempt from IP address 72.164.246.194 on Port 445(SMB) |
2020-03-14 07:10:01 |
| 106.54.87.169 | attackbots | Mar 13 22:42:30 silence02 sshd[7938]: Failed password for root from 106.54.87.169 port 60196 ssh2 Mar 13 22:44:45 silence02 sshd[8056]: Failed password for root from 106.54.87.169 port 58356 ssh2 |
2020-03-14 06:59:53 |
| 112.85.42.174 | attack | Mar 14 00:23:43 eventyay sshd[26770]: Failed password for root from 112.85.42.174 port 28109 ssh2 Mar 14 00:23:56 eventyay sshd[26770]: error: maximum authentication attempts exceeded for root from 112.85.42.174 port 28109 ssh2 [preauth] Mar 14 00:24:03 eventyay sshd[26773]: Failed password for root from 112.85.42.174 port 59614 ssh2 ... |
2020-03-14 07:27:38 |
| 95.27.70.193 | attackspambots | Attempt to attack host OS, exploiting network vulnerabilities, on 13-03-2020 21:15:15. |
2020-03-14 07:18:56 |
| 218.92.0.171 | attack | Brute-force attempt banned |
2020-03-14 06:57:32 |
| 129.250.206.86 | attackbots | Attempted to connect 2 times to port 123 UDP |
2020-03-14 06:57:52 |
| 122.155.11.89 | attackspam | Invalid user ftpuser from 122.155.11.89 port 59548 |
2020-03-14 07:22:45 |
| 35.153.28.247 | spam | AGAIN and AGAIN and ALWAYS the same REGISTRARS as namecheap.com, uniregistry.com and name.com TO STOP IMMEDIATELY for keeping LIERS, ROBERS and else since too many years ! The cheapest service, as usual...
And Link as usual by bit.ly to delette IMMEDIATELY too !
MARRE de ces ORDURES et autres FILS de PUTE genre SOUS MERDES capables de POLLUER STUPIDEMENT pour ne pas dire CONNEMENT la Planète par des POURRIELS INUTILES sur des listes VOLÉES on ne sait où et SANS notre accord !
From: newmask.online@gmail.com
Reply-To: newmask.online@gmail.com
To: ffd-dd-llpm-4+owners@marketnetweb.uno
Message-Id: <39b17b4d-be1b-4671-aa46-866d49418462@marketnetweb.uno>
marketnetweb.uno => namecheap.com => whoisguard.com
marketnetweb.uno => 162.255.119.206
162.255.119.206 => namecheap.com
https://www.mywot.com/scorecard/marketnetweb.uno
https://www.mywot.com/scorecard/namecheap.com
https://www.mywot.com/scorecard/whoisguard.com
https://en.asytech.cn/check-ip/162.255.119.206
AS USUAL since few days for PHISHING and SCAM send to :
http://bit.ly/2IJ16gn which resend to :
https://www.getsafemask.com/checkout?cop_id=kkvvg&aff_id=6468&image={image}&txid=10200a76ef1f9dca79a129309817e4&offer_id=4737&tpl={tpl}&lang={lang}&cur={aff_currency}&preload={preload}&show_timer={timer}&aff_sub=16T&aff_sub2=c0cc55c7-9401-4820-b2d3-bd712f691b9b&aff_sub3=&aff_sub4=&aff_sub5=&aff_click_id=
getsafemask.com => namecheap.com
getsafemask.com => 35.153.28.247
35.153.28.247 => amazon.com
https://www.mywot.com/scorecard/getsafemask.com
https://www.mywot.com/scorecard/namecheap.com
https://www.mywot.com/scorecard/whoisguard.com
https://www.mywot.com/scorecard/amazon.com
https://en.asytech.cn/check-ip/35.153.28.247 |
2020-03-14 07:10:14 |
| 36.78.252.138 | attackspambots | 1584134113 - 03/13/2020 22:15:13 Host: 36.78.252.138/36.78.252.138 Port: 445 TCP Blocked |
2020-03-14 07:11:56 |
| 187.32.151.97 | attackspam | Unauthorized connection attempt from IP address 187.32.151.97 on Port 445(SMB) |
2020-03-14 07:17:44 |
| 193.217.3.99 | attack | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/193.217.3.99/ SE - 1H : (140) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : SE NAME ASN : ASN202116 IP : 193.217.3.99 CIDR : 193.217.0.0/16 PREFIX COUNT : 99 UNIQUE IP COUNT : 1217024 ATTACKS DETECTED ASN202116 : 1H - 1 3H - 1 6H - 1 12H - 4 24H - 4 DateTime : 2020-03-13 22:15:24 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery |
2020-03-14 07:00:17 |
| 178.211.171.248 | attackbotsspam | Unauthorized connection attempt from IP address 178.211.171.248 on Port 445(SMB) |
2020-03-14 07:27:11 |
| 222.186.30.35 | attackspam | 13.03.2020 22:50:29 SSH access blocked by firewall |
2020-03-14 06:55:27 |
| 187.253.120.101 | attackbotsspam | Unauthorized connection attempt from IP address 187.253.120.101 on Port 445(SMB) |
2020-03-14 07:05:52 |
| 58.217.158.10 | attackspam | Mar 13 22:04:52 lock-38 sshd[40846]: Failed password for root from 58.217.158.10 port 33072 ssh2 Mar 13 22:10:10 lock-38 sshd[40874]: Invalid user ispconfig from 58.217.158.10 port 54479 Mar 13 22:10:10 lock-38 sshd[40874]: Invalid user ispconfig from 58.217.158.10 port 54479 Mar 13 22:10:11 lock-38 sshd[40874]: Failed password for invalid user ispconfig from 58.217.158.10 port 54479 ssh2 Mar 13 22:15:33 lock-38 sshd[40898]: Failed password for root from 58.217.158.10 port 47670 ssh2 ... |
2020-03-14 06:53:49 |